kontrola nb - pomalý internet
Napsal: 18 srp 2022 18:54
Prosím o kontrolu . Na nb pomalý wifi internet. ostatní nb 30mbit , tento nb 15mbit. Přes kabel ok.
log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2022
Ran by Vilem (administrator) on DEDA (ASUSTeK COMPUTER INC. X553MA) (18-08-2022 19:44:18)
Running from C:\Users\Vilem\Desktop
Loaded Profiles: Vilem
Platform: Microsoft Windows 10 Home Version 21H2 19044.1889 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\26.0.1.231\DiscoverySrv.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(cmd.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxcr.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intervideo, Inc. -> InterVideo Inc.) C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Služba Acronis Scheduler2] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [516928 2013-02-15] (Acronis International GmbH -> Acronis)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [492632 2022-07-14] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [UVS11 Preload] => C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [341488 2007-03-03] (Ulead Systems, Inc. -> InterVideo Digital Technology Corporation) [File not signed]
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6391960 2013-04-18] (Acronis International GmbH -> Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1105328 2013-01-10] (Acronis International GmbH -> Acronis)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [752736 2012-10-18] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\MountPoints2: {7a454186-591d-11ec-bd76-5c93a2cd27fc} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\MountPoints2: {7a45422c-591d-11ec-bd76-5c93a2cd27fc} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\104.0.5112.81\Installer\chrmstp.exe [2022-08-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2019-04-27]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [File not signed]
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {21E7D9D6-435B-4762-8611-0657AD46F389} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [43096 2022-07-20] (HP Inc. -> HP Inc.)
Task: {2F0BBCA7-1AD0-4D17-9603-A1ABCD83B168} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13877464 2015-06-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {310E80DC-8443-4BB1-A3A4-16B43DACBF9C} - System32\Tasks\CCleanerSkipUAC - Vilem => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {436489C5-B15E-4F57-A618-42AF326D730C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-03] (Google Inc -> Google LLC)
Task: {45CF7F9E-DCEA-44A0-9CDF-910C4F67F333} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\26.0.1.231\WatchDog.exe [1053264 2022-07-25] (Bitdefender SRL -> Bitdefender)
Task: {5C58ED13-3DF4-4C48-918E-DCAC8B8D726C} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-03-09] (ASUSTeK Computer Inc. -> AsusTek)
Task: {6ABF74A3-7719-4FEF-B3E4-C322D12017A3} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [192000 2022-08-17] (Microsoft Windows -> Microsoft Corporation)
Task: {6B768087-D573-4F65-80E7-59521F073CCF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {6D3ECE61-562A-4279-8C3A-3B7C7E456644} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform)
Task: {6F1DECC3-EFD4-4982-BD9F-4CA617D27337} - System32\Tasks\ebtools => C:\Program Files (x86)\EUROBYTE TOOLS\vp4.exe /SCHEDULED (No File)
Task: {82911583-AA75-4892-8D02-B34F05D5FE63} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [192000 2022-08-17] (Microsoft Windows -> Microsoft Corporation)
Task: {840D8202-252C-4199-A63D-FAB0B1529F69} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-03] (Google Inc -> Google LLC)
Task: {9044FF17-F3D2-4D68-9D02-BC31776F9C3C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {90F1341F-55E1-4AC1-875F-E0ECF39EF5DC} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {C451479F-BB05-4E44-A32B-446A60591D15} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-06-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {C5574456-3E87-4C0D-A851-AD492D5ED42F} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [43096 2022-07-20] (HP Inc. -> HP Inc.)
Task: {F8C20F9A-1FB9-4F7C-BE9E-D1CB6C86E6A4} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2022-03-16] () [File not signed]
Task: {FAA6D6A1-F189-444D-B6B9-BDE68E301384} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [584280 2022-04-02] (Bitdefender SRL -> Bitdefender)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0c8dddcb-b6e7-41bd-9c5f-dab0c6fb9498}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{15b37f45-28f8-47f9-8cbf-33615db2e61d}: [DhcpNameServer] 192.168.88.1 85.162.162.162 85.162.162.85 1.1.1.1 8.8.4.4 208.67.222.220
Tcpip\..\Interfaces\{15d28250-8fc7-4bf3-8725-d37c2a96f44a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{734cbd2f-4e07-4c52-9f9e-e0bf268a566f}: [DhcpNameServer] 192.168.88.2
Tcpip\..\Interfaces\{a06cd2d2-4899-4aac-8dce-ec952f31eedf}: [NameServer] 198.51.100.1
Tcpip\..\Interfaces\{a06cd2d2-4899-4aac-8dce-ec952f31eedf}: [DhcpNameServer] 8.8.8.8
Edge:
=======
DownloadDir: C:\Users\Vilem\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
FireFox:
========
FF DefaultProfile: 6qam00cd.default
FF ProfilePath: C:\Users\Vilem\AppData\Roaming\Mozilla\Firefox\Profiles\6qam00cd.default [2022-08-18]
FF Homepage: Mozilla\Firefox\Profiles\6qam00cd.default -> hxxps://www.seznam.cz/
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2021-08-24] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => not found
FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-10-30] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2021-09-29] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Default [2022-08-18]
CHR Notifications: Default -> hxxps://cs.womanuntamed.com; hxxps://fastbestcaptcha.top; hxxps://fastshare.cz; hxxps://kalkulackaenergie.com; hxxps://postovnezdarma.cz; hxxps://ru-vid.com; hxxps://svetsatelitu.cz; hxxps://tarifomat.cz; hxxps://windows-protection.com; hxxps://www-euronics-cz.pushpushgo.com; hxxps://www.autohotarek.cz; hxxps://www.automobilovedily24.cz; hxxps://www.emimino.cz; hxxps://www.euautodily.cz; hxxps://www.eva.cz; hxxps://www.exasoft.cz; hxxps://www.garaz.cz; hxxps://www.heureka.cz; hxxps://www.kokiskashop.cz; hxxps://www.koloasport.cz; hxxps://www.pekro.cz; hxxps://www.slevomat.cz; hxxps://www.slevydnes.cz; hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Extension: (Bitdefender Wallet) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2020-09-26]
CHR Extension: (Helium Backup) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl [2021-04-04]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2021-02-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-02-20]
CHR Profile: C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-08-18]
CHR Extension: (Prezentace) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-07]
CHR Extension: (Dokumenty) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-07]
CHR Extension: (Disk Google) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-23]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2021-05-23]
CHR Extension: (YouTube) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-05-23]
CHR Extension: (Tabulky) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-07]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-05-23]
CHR Extension: (Bitdefender Wallet) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2021-05-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-23]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2021-05-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-23]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2021-05-23]
CHR Extension: (Gmail) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-23]
CHR Extension: (Chrome Media Router) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-23]
CHR Profile: C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-05-21]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2022-04-12]
CHR Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-04-29]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-04-29]
CHR Extension: (Bitdefender Wallet) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2022-04-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-12]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2022-04-12]
CHR Profile: C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-20]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-341233860-2387372215-3518537327-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-341233860-2387372215-3518537327-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1143720 2013-02-15] (Acronis International GmbH -> Acronis)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [3779576 2020-09-24] (Acronis International GmbH -> Acronis)
S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\hydra.sdk.windows.service.exe [356504 2022-06-20] (Get Aura Inc -> AnchorFree Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3815712 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3580200 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [822240 2022-04-11] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [822240 2022-04-11] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195344 2019-06-03] (Bitdefender SRL -> Bitdefender)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2454632 2022-02-10] (Bitdefender SRL -> Bitdefender)
R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [449112 2022-07-14] (Bitdefender SRL -> Bitdefender)
R2 Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (Intervideo, Inc. -> InterVideo Inc.)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-12-11] (Mixbyte Inc -> Freemake)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [225368 2022-07-20] (HP Inc. -> HP Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S2 PCLEPCI; C:\WINDOWS\SysWOW64\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [789072 2022-07-25] (Bitdefender SRL -> Bitdefender)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7091584 2013-03-26] (Acronis International GmbH -> Acronis)
S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13088784 2020-05-25] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [284760 2022-04-02] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [822240 2022-04-11] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [128024 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [3947928 2022-02-12] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [800672 2021-12-17] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22976 2021-04-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [33208 2022-03-03] (Microsoft Windows Hardware Compatibility Publisher -> © Bitdefender SRL)
S3 bduefiscan; C:\WINDOWS\system32\DRIVERS\bduefiscan.sys [55864 2021-12-17] (Bitdefender SRL -> Bitdefender)
R1 bdvpn_netfilter; C:\WINDOWS\System32\drivers\bdvpn_netfilter.sys [94600 2021-09-16] (Pango Inc. -> Pango Inc)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [108832 2020-09-24] (Acronis International GmbH -> Acronis International GmbH)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\Gemma.sys [1188744 2021-12-17] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA)
R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [19976 2015-12-10] (Microsoft Windows Hardware Compatibility Publisher -> ASUS)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2022-08-18] (Martin Malik - REALiX -> REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R2 Ignis; C:\WINDOWS\System32\DRIVERS\ignis.sys [185312 2020-12-15] (Bitdefender SRL -> Bitdefender)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. -> )
R3 MarvinBus; C:\WINDOWS\System32\drivers\MarvinBus64.sys [261120 2005-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Pinnacle Systems GmbH)
S3 pcouffin; C:\Windows\SysWOW64\Drivers\pcouffin.sys [47360 2016-04-08] (VSO Software) [File not signed]
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1120032 2020-09-24] (Acronis International GmbH -> Acronis International GmbH)
S0 tib_mounter; C:\WINDOWS\System32\DRIVERS\tib_mounter.sys [183224 2020-09-24] (Acronis International GmbH -> Acronis)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [623008 2021-12-17] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 vlflt; C:\WINDOWS\System32\DRIVERS\vlflt.sys [485792 2022-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 PCASp60; System32\Drivers\PCASp60.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-08-18 19:43 - 2022-08-18 19:43 - 000000000 ____D C:\Users\Vilem\Desktop\FRST-OlderVersion
2022-08-18 19:37 - 2022-08-18 19:37 - 000159896 _____ C:\Users\Vilem\Downloads\WirelessRadioControl_Win10_64_VER1004.zip
2022-08-18 19:29 - 2022-08-18 19:41 - 000000000 ____D C:\ProgramData\ProductData
2022-08-18 19:29 - 2022-08-18 19:29 - 000000000 ____D C:\Users\Vilem\AppData\Roaming\DataWorks
2022-08-18 19:28 - 2022-08-18 19:41 - 000000000 ____D C:\Users\Vilem\AppData\Roaming\IObit
2022-08-18 19:28 - 2022-08-18 19:30 - 000000000 ____D C:\ProgramData\IObit
2022-08-18 19:28 - 2022-08-18 19:29 - 000000000 ____D C:\Users\Vilem\AppData\LocalLow\IObit
2022-08-18 19:28 - 2022-08-18 19:28 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2022-08-18 19:27 - 2022-08-18 19:27 - 019578824 _____ (IObit ) C:\Users\Vilem\Downloads\winn08180727wifi-driver-asus-x553m_CZ.exe
2022-08-18 18:35 - 2022-08-18 18:37 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-08-18 18:35 - 2022-08-18 18:37 - 000002023 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-08-17 17:37 - 2022-08-17 17:37 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-08-17 17:37 - 2022-08-17 17:37 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-08-17 17:37 - 2022-08-17 17:37 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-08-17 17:37 - 2022-08-17 17:37 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-17 17:36 - 2022-08-17 17:36 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-17 17:36 - 2022-08-17 17:36 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-08-17 17:36 - 2022-08-17 17:36 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-17 17:36 - 2022-08-17 17:36 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-17 17:16 - 2022-08-17 17:16 - 000000000 ___HD C:\$WinREAgent
2022-08-15 19:00 - 2022-08-15 19:00 - 000150952 _____ C:\Users\Vilem\Downloads\EE_CEN_G24_220101_DOM_EGD.pdf
2022-08-15 18:59 - 2022-08-15 18:59 - 000150876 _____ C:\Users\Vilem\Downloads\EE_CEN_G24_220401_DOM_EGD.pdf
2022-08-15 18:52 - 2022-08-15 18:52 - 000175661 _____ C:\Users\Vilem\Downloads\EE_CEN_OPT_220601_DOM_EGD.pdf
2022-08-15 18:48 - 2022-08-15 18:48 - 000158835 _____ C:\Users\Vilem\Downloads\EE_CEN_G24_220701_DOM_EGD.pdf
2022-08-15 16:44 - 2022-08-15 16:44 - 000099012 _____ C:\ProgramData\agent.update.1660574640.bdinstall.v2.bin
2022-08-13 19:51 - 2022-08-13 19:51 - 000234560 _____ C:\ProgramData\vpn.1660413039.bdinstall.v2.bin
2022-08-13 19:51 - 2022-08-13 19:51 - 000002153 _____ C:\Users\Public\Desktop\Bitdefender VPN.lnk
2022-08-13 19:50 - 2022-08-13 19:50 - 000085696 _____ C:\ProgramData\vpn.uninstall.1660413041.bdinstall.v2.bin
2022-08-13 17:32 - 2022-08-13 17:32 - 000000000 ____D C:\ProgramData\Hydra Windows SDK
2022-08-06 13:15 - 2022-08-06 13:15 - 000065027 _____ C:\Users\Vilem\Desktop\řeč.pdf
2022-08-05 09:25 - 2022-08-05 09:25 - 004144790 _____ ( ) C:\Users\Vilem\Downloads\office!.exe
2022-08-05 09:04 - 2022-08-05 09:04 - 000000000 ____D C:\Users\Vilem\AppData\Roaming\EasyOffice
2022-08-05 09:01 - 2022-08-05 09:02 - 097036570 _____ (InstallShield Software Corporation) C:\Users\Vilem\Downloads\easyoffice.exe
2022-08-05 08:57 - 2022-08-05 08:57 - 000000000 ____D C:\Users\Vilem\Desktop\OpenOffice 4.1.12 (cs) Installation Files
2022-08-05 08:55 - 2022-08-05 08:56 - 130023056 _____ (Apache Software Foundation) C:\Users\Vilem\Downloads\Apache_OpenOffice_4.1.12_Win_x86_install_cs.exe
2022-08-01 13:11 - 2022-08-01 13:11 - 000297811 _____ C:\Users\Vilem\Downloads\etiketa (2).pdf
2022-08-01 12:20 - 2022-08-01 12:20 - 000297811 _____ C:\Users\Vilem\Downloads\etiketa (1).pdf
2022-08-01 11:42 - 2022-08-01 11:42 - 000297811 _____ C:\Users\Vilem\Downloads\etiketa.pdf
2022-07-30 17:20 - 2022-07-30 17:20 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-30 17:20 - 2022-07-30 17:20 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-30 17:20 - 2022-07-30 17:20 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-30 17:20 - 2022-07-30 17:20 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-30 17:20 - 2022-07-30 17:20 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-30 17:20 - 2022-07-30 17:20 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-30 17:19 - 2022-07-30 17:19 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-30 17:19 - 2022-07-30 17:19 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-30 17:19 - 2022-07-30 17:19 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-30 17:19 - 2022-07-30 17:19 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-30 17:19 - 2022-07-30 17:19 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-30 17:19 - 2022-07-30 17:19 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-30 17:19 - 2022-07-30 17:19 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-30 17:18 - 2022-07-30 17:18 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-30 17:18 - 2022-07-30 17:18 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-30 17:17 - 2022-07-30 17:17 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-30 17:17 - 2022-07-30 17:17 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-08-18 19:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-18 19:45 - 2022-04-29 18:12 - 000029207 _____ C:\Users\Vilem\Desktop\FRST.txt
2022-08-18 19:45 - 2018-11-04 14:55 - 000000000 ____D C:\FRST
2022-08-18 19:43 - 2022-04-29 18:07 - 002371072 _____ (Farbar) C:\Users\Vilem\Desktop\FRST64 (2).exe
2022-08-18 19:43 - 2020-10-03 14:02 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-18 19:43 - 2019-12-07 16:41 - 000718024 _____ C:\WINDOWS\system32\perfh005.dat
2022-08-18 19:43 - 2019-12-07 16:41 - 000145166 _____ C:\WINDOWS\system32\perfc005.dat
2022-08-18 19:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-08-18 19:43 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-08-18 19:40 - 2019-01-02 17:16 - 000000000 ____D C:\Program Files\CCleaner
2022-08-18 19:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-18 19:39 - 2017-08-20 11:42 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2022-08-18 19:39 - 2015-08-24 21:18 - 000000000 ____D C:\Program Files (x86)\Google
2022-08-18 19:38 - 2020-10-03 14:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-08-18 19:38 - 2020-09-22 22:59 - 000008192 ___SH C:\DumpStack.log.tmp
2022-08-18 19:38 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-08-18 19:38 - 2015-08-10 19:24 - 000000000 __SHD C:\Users\Vilem\IntelGraphicsProfiles
2022-08-18 19:23 - 2020-10-03 13:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-08-18 18:37 - 2020-11-02 12:28 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-08-18 18:34 - 2020-12-29 15:38 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-08-18 18:34 - 2020-12-29 15:38 - 000000000 ____D C:\Program Files\Adobe
2022-08-18 18:33 - 2015-10-03 14:48 - 000000000 ____D C:\ProgramData\Adobe
2022-08-18 18:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-08-18 17:56 - 2020-10-03 13:42 - 000452888 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-18 17:54 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-18 17:12 - 2020-12-29 15:39 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-08-17 17:43 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-17 17:36 - 2020-10-03 13:47 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-17 17:25 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-17 16:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-17 16:38 - 2015-08-23 19:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-17 16:15 - 2015-08-23 19:45 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-17 16:10 - 2018-11-28 19:05 - 000000958 _____ C:\Users\Vilem\Desktop\wifi.txt
2022-08-17 15:59 - 2020-10-03 14:26 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-08-15 16:44 - 2020-10-03 14:26 - 000003846 _____ C:\WINDOWS\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2022-08-15 16:44 - 2020-09-06 15:57 - 000000000 ____D C:\Users\Vilem\AppData\Roaming\Kodi
2022-08-15 16:44 - 2018-03-04 14:33 - 000000000 ____D C:\Program Files\Bitdefender Agent
2022-08-13 19:49 - 2019-12-07 11:03 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2022-08-13 17:40 - 2019-11-03 14:00 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-08-13 17:40 - 2019-11-03 14:00 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-08-05 09:26 - 2016-02-05 22:10 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-08-05 09:17 - 2021-03-10 20:43 - 000000000 ____D C:\Users\Vilem\AppData\Local\CrashDumps
2022-08-05 09:16 - 2017-12-05 07:20 - 000000000 ____D C:\Users\Vilem\AppData\Local\Packages
2022-08-05 09:11 - 2022-04-04 17:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-08-05 09:11 - 2022-04-04 17:59 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-08-05 09:06 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-08-05 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-08-05 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-08-05 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-08-05 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-08-05 09:05 - 2020-10-03 13:50 - 000000000 ____D C:\Users\Vilem
2022-08-01 12:41 - 2016-02-05 23:18 - 000000000 ____D C:\Users\Vilem\AppData\Local\ElevatedDiagnostics
2022-08-01 11:58 - 2021-01-21 20:43 - 000000000 ____D C:\ProgramData\HP
==================== Files in the root of some directories ========
2019-03-20 22:37 - 2019-03-20 22:37 - 005242880 _____ () C:\Program Files (x86)\PicosmosTools.part1.rar
2019-03-20 22:37 - 2019-03-20 22:37 - 005242880 _____ () C:\Program Files (x86)\PicosmosTools.part2.rar
2019-03-20 22:37 - 2019-03-20 22:37 - 001703959 _____ () C:\Program Files (x86)\PicosmosTools.part3.rar
2016-04-08 21:24 - 2016-04-08 21:24 - 000099384 _____ () C:\Users\Vilem\AppData\Roaming\ezpinst.exe
2016-11-03 22:44 - 2020-11-04 10:14 - 000099384 _____ () C:\Users\Vilem\AppData\Roaming\inst.exe
2016-04-08 21:24 - 2020-11-04 10:14 - 000007859 _____ () C:\Users\Vilem\AppData\Roaming\pcouffin.cat
2016-04-08 21:24 - 2020-11-04 10:14 - 000001167 _____ () C:\Users\Vilem\AppData\Roaming\pcouffin.inf
2015-11-28 22:17 - 2020-11-04 10:14 - 000000055 _____ () C:\Users\Vilem\AppData\Roaming\pcouffin.log
2016-04-08 21:24 - 2020-11-04 10:14 - 000082816 _____ (VSO Software) C:\Users\Vilem\AppData\Roaming\pcouffin.sys
2019-12-19 19:47 - 2020-03-30 11:24 - 000005632 _____ () C:\Users\Vilem\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-12-29 16:10 - 2020-12-29 16:10 - 000000000 _____ () C:\Users\Vilem\AppData\Local\oobelibMkey.log
2019-10-15 19:18 - 2021-04-04 20:23 - 000007622 _____ () C:\Users\Vilem\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-08-2022
Ran by Vilem (18-08-2022 19:49:26)
Running from C:\Users\Vilem\Desktop
Microsoft Windows 10 Home Version 21H2 19044.1889 (X64) (2020-10-03 12:27:21)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-341233860-2387372215-3518537327-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-341233860-2387372215-3518537327-503 - Limited - Disabled)
Guest (S-1-5-21-341233860-2387372215-3518537327-501 - Limited - Disabled)
Vilem (S-1-5-21-341233860-2387372215-3518537327-1001 - Administrator - Enabled) => C:\Users\Vilem
WDAGUtilityAccount (S-1-5-21-341233860-2387372215-3518537327-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus (Disabled - Out of date) {D5E94967-2F1B-E136-4D3B-25723F3E3632}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {EDD2C842-6574-E06E-6664-8C47C1ED7149}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
7-Zip 19.01 alpha (x64) (HKLM\...\7-Zip) (Version: 19.01 alpha - Igor Pavlov)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.002.20191 - Adobe)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 7.7.0.35 - Adobe Inc.)
Adobe Photoshop 7.0 CE (HKLM-x32\...\Adobe Photoshop 7.0 CE) (Version: 7.0 CE - Adobe Systems, Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Advanced IP Scanner 2.5 (HKLM-x32\...\{12830D25-D77C-46B1-902E-2CAD8878CE95}) (Version: 2.5.3499 - Famatech)
Any Video Converter 7.1.5 (HKLM-x32\...\Any Video Converter) (Version: 7.1.5 - Anvsoft)
Ashampoo Burning Studio FREE (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.21.5 - Ashampoo GmbH & Co. KG)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS)
ASUS Wireless Router Device Discovery Utility (HKLM-x32\...\{09CDCA35-23FF-4ED6-AFDA-BBD55235CE4B}) (Version: 1.4.7.2 - ASUS)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1189.1 - AVAST Software) Hidden
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 26.0.1.231 - Bitdefender)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 22.0.1.1 - Bitdefender)
Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 25.5.5.5 - Bitdefender)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.76.1090 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 6.01 - Piriform)
CDSM Designer (HKLM-x32\...\CDSM_CDSM Designer) (Version: - )
Codec Pack - All In 1 6.0.3.0 (HKLM-x32\...\Cool's_Codec_pack_4.12) (Version: - )
DVDFab Platinum 3.0.8.6 (HKLM-x32\...\DVDFab Platinum_is1) (Version: - Fengtao Software Inc.)
FastStone Image Viewer 5.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.5 - FastStone Soft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 104.0.5112.81 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.500 - Huawei Technologies Co., Ltd.)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4252 - Intel Corporation)
InterVideo DeviceService (HKLM-x32\...\{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}) (Version: 1.0.0 - InterVideo)
K-Lite Codec Pack 16.9.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 16.9.0 - KLCP)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.2.2.56 - PandoraTV)
Kodi (HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\Kodi) (Version: 19.3.0.0 - XBMC Foundation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
LG Mobile Drivers (HKLM-x32\...\{D8D0327A-72B4-4C79-9883-1B6B6C20ED2B}) (Version: 4.0.3 - LG Electronics)
LibreOffice 5.0.4.2 (HKLM-x32\...\{14B5DDCF-61C4-4F1E-A621-844685D60B5A}) (Version: 5.0.4.2 - The Document Foundation)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.0.78 - McAfee, LLC.)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30133 (HKLM\...\{E699E009-1C3C-4E50-9B57-2B39F0954C7F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30133 (HKLM\...\{6CD9E9ED-906D-4196-8DC3-F987D2F6615F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 (HKLM-x32\...\{86BE78D9-65A1-4E69-86F8-C1F5281F8553}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 (HKLM-x32\...\{00AC3934-26B4-406E-807C-1692AC7329EC}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.31.1 - Nikon Corporation)
NirSoft ProduKey (HKLM-x32\...\NirSoft ProduKey) (Version: - )
Ovladače videa společnosti Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
Pinnacle Studio 14 (HKLM-x32\...\{AADD1C8F-D59F-4D55-A726-768C71A205A8}) (Version: 14.0.0.7255 - Pinnacle Systems)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7514 - Realtek Semiconductor Corp.)
Recover Files 3.26 (HKLM-x32\...\Recover Files_is1) (Version: - Undelete & Unerase, Inc.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Super DVD Ripper (remove only) (HKLM-x32\...\x2VCD) (Version: - )
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.6.7 - TeamViewer)
True Image 2013 (HKLM-x32\...\{903BAE11-EAE6-476C-801D-D75BAADE0920}) (Version: 16.0.6514 - Acronis) Hidden
True Image 2013 (HKLM-x32\...\{903BAE11-EAE6-476C-801D-D75BAADE0920}Visible) (Version: 16.0.6514 - Acronis)
Ulead VideoStudio 11 (HKLM-x32\...\InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}) (Version: 11.0.0.0000 - InterVideo Digital Technology Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
VSO ConvertXToDVD 6 (HKLM-x32\...\{8FC36FA6-C508-44FB-B137-1CB46D8258B2}_is1) (Version: 6.0.0.71 - VSO Software)
WhatsApp (HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\WhatsApp) (Version: 2.2202.12 - WhatsApp)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
XnView 2.34 (HKLM-x32\...\XnView_is1) (Version: 2.34 - Gougelet Pierre-e)
Zoner Photo Studio 15 (HKLM\...\ZonerPhotoStudio15_CZ_is1) (Version: 15.0.1.3 - ZONER software)
Packages:
=========
ASUS Welcome -> C:\Program Files\WindowsApps\B9ECED6F.ASUSWelcome_1.0.1.0_x64__qmba6cd70vzyy [2016-02-05] (ASUSTeK COMPUTER INC.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-31] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6 [2022-08-05] (HP Inc.)
Media Player -> C:\Program Files\WindowsApps\9FD20106.MediaPlayerQueen_1.2.5.0_x64__nwhm06f2kfry2 [2016-11-25] (Digital Cloud Technologies Global)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-341233860-2387372215-3518537327-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-04-18] (Acronis International GmbH -> Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-04-18] (Acronis International GmbH -> Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-04-18] (Acronis International GmbH -> Acronis)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\x64\versions_page.dll [2013-04-18] (Acronis International GmbH -> Acronis)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2-x32: [Ulead UDF Driver] -> {DBD8E168-244D-448C-9922-25508950D1DC} => C:\Program Files (x86)\Common Files\Ulead Systems\DVD\USIShex.dll [2007-03-03] (Ulead Systems, Inc. -> Ulead Systems, Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-08-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\x64\versions_page.dll [2013-04-18] (Acronis International GmbH -> Acronis)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.dvacm] => C:\Program Files (x86)\Common Files\Ulead Systems\VIO\DVACM.acm [20992 2007-03-02] (InterVideo Digital Technology Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.MPEGacm] => C:\Program Files (x86)\Common Files\Ulead Systems\MPEG\MPEGACM.acm [69632 2006-04-17] (Ulead Systems, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.ulmp3acm] => C:\Program Files (x86)\Common Files\Ulead Systems\MPEG\ulmp3acm.acm [319488 2006-01-23] (Ulead systems) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Vilem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Helium Backup.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gpglbgbpeobllokpmeagpoagjbfknanl
==================== Loaded Modules (Whitelisted) =============
2020-09-24 20:13 - 2012-10-09 13:21 - 001323008 ____R (Acronis) [File not signed] C:\Program Files (x86)\Common Files\Acronis\Home\libcrypto10.dll
2020-11-06 12:33 - 2019-09-05 07:00 - 000076800 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-10-03 13:53 - 2020-10-03 13:53 - 000097280 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
2016-02-15 21:02 - 2006-09-14 17:40 - 000045056 ____N (Pinnacle Systems, Inc.) [File not signed] C:\Program Files (x86)\Pinnacle\Shared Files\Filter\FileCaptureSource.ax
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {0D53A732-8758-4423-B0AD-C5D7C759AC33} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {23605601-D6F5-49BA-AF32-B8F8E4D6FF22} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {5332AFBC-241E-4DBC-9E8C-084743D3406C} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {64B1FD19-21BF-4271-8330-7EE8D1262635} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {A441246E-EE91-4A20-8D71-235F1FC30790} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {AC716E7E-AAFB-4298-AE6F-B595F9984E7B} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {ADDF374F-043D-4289-8955-1BB9C4AB8A1D} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {B2325E6C-AB58-489E-BFE1-C06284AE13E3} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {B49EDD39-FD5E-42B8-98CC-D470A668FA13} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_37180
BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll [2022-04-02] (Bitdefender SRL -> Bitdefender)
BHO-x32: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll [2022-04-02] (Bitdefender SRL -> Bitdefender)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-08-23 19:26 - 2022-08-18 19:38 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts
2017-04-19 21:00 - 2018-12-31 20:04 - 000000466 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 d
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Vilem\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\asus.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "BdVpnApp"
HKLM\...\StartupApproved\Run: => "Služba Acronis Scheduler2"
HKLM\...\StartupApproved\Run32: => "UVS11 Preload"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\StartupApproved\Run: => "LaunchList"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\StartupApproved\Run: => "Picosmos"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{5D396F3E-70F8-48A9-8319-AB571C40544A}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> Acronis)
FirewallRules: [{5B0AD119-4105-4058-8B6E-3381A2C59F36}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> Acronis)
FirewallRules: [{19B09C52-DE4F-44FE-A4E5-784998484F36}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F217B1E1-C0C6-47CE-BE2A-163F940F5011}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{EA5CB871-1470-4C0D-9E84-D02740C8990B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{38BF349C-520E-4AFB-89E4-A218A555994E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DEA3B2F4-018E-4A58-9CEF-6F56B769702A}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe (ASUSTeK COMPUTER INC.) [File not signed]
FirewallRules: [{6CD0E4B2-C063-480B-81A1-15E01001B6F6}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe (ASUSTeK COMPUTER INC.) [File not signed]
FirewallRules: [{CA0C52EB-68CC-4CBE-9AF2-4E3BF9835CDB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{03A55787-F0A1-4797-88E5-9386276EC7F8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9B3F2063-BA19-4489-A0D9-25E1FBA456FB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AF0964AB-F8E3-40EE-828D-382E70B538B9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{72D678E2-4390-43DF-9443-628DF4735FCB}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{B1B6D063-D532-450F-8249-7C48D15FD7E5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{FE0AD32C-7080-4EC9-A325-41E2A4B0E8F0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{9C566CFB-AD9E-4092-AD8D-937C3A660576}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [TCP Query User{729C1443-2A98-41F5-8C71-D485C0CEB4B1}C:\program files (x86)\pinnacle\studio 14\programs\studio.exe] => (Block) C:\program files (x86)\pinnacle\studio 14\programs\studio.exe (Pinnacle Systems, Inc. -> Pinnacle Systems)
FirewallRules: [UDP Query User{C45DB0D4-0290-4A31-BC6D-0F665C37E6D3}C:\program files (x86)\pinnacle\studio 14\programs\studio.exe] => (Block) C:\program files (x86)\pinnacle\studio 14\programs\studio.exe (Pinnacle Systems, Inc. -> Pinnacle Systems)
FirewallRules: [TCP Query User{AD3C466B-6999-4A1B-9083-68680CC9D792}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{03776741-1790-411A-8A80-7D5F0494A173}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{297889A3-83D0-4B42-B151-0DE663570B87}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{19849377-4E18-4F26-A7CE-023AAC7A58E9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D4EBA98B-7FE9-45B2-BFB9-78C9A49C2D1F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{65B442F0-C647-4BDC-99F9-56E2A06C5C35}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4691BEA0-D287-4394-8F60-603B91472191}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/18/2022 07:38:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FreemakeUtilsService.exe, verze: 1.0.0.0, časové razítko: 0x5df073cc
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1889, časové razítko: 0xdc0d8494
Kód výjimky: 0xe0434352
Posun chyby: 0x0012ca42
ID chybujícího procesu: 0x15a0
Čas spuštění chybující aplikace: 0x01d8b3295f301581
Cesta k chybující aplikaci: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 7cf397c3-c198-4a75-aecb-ab4a71bc5fce
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2022 07:38:48 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FreemakeUtilsService.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.FileNotFoundException
na FreemakeUtilsService.Program.Main(System.String[])
Error: (08/18/2022 06:36:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ADelRCP.exe, verze: 22.1.20142.0, časové razítko: 0x629bce6a
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.789, časové razítko: 0x2bd748bf
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000071208
ID chybujícího procesu: 0x2d24
Čas spuštění chybující aplikace: 0x01d8b3209f46b663
Cesta k chybující aplikaci: C:\Program Files\Adobe\Acrobat DC\Acrobat\ADelRCP.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: f1bd7789-4c78-4ef6-af13-27d476c9ac4a
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2022 06:10:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FreemakeUtilsService.exe, verze: 1.0.0.0, časové razítko: 0x5df073cc
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1889, časové razítko: 0xdc0d8494
Kód výjimky: 0xe0434352
Posun chyby: 0x0012ca42
ID chybujícího procesu: 0x12cc
Čas spuštění chybující aplikace: 0x01d8b31d071edc25
Cesta k chybující aplikaci: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 30588a5c-731b-4680-b8b8-4ebccc989465
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2022 06:10:26 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FreemakeUtilsService.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.FileNotFoundException
na FreemakeUtilsService.Program.Main(System.String[])
Error: (08/18/2022 05:56:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FreemakeUtilsService.exe, verze: 1.0.0.0, časové razítko: 0x5df073cc
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1889, časové razítko: 0xdc0d8494
Kód výjimky: 0xe0434352
Posun chyby: 0x0012ca42
ID chybujícího procesu: 0x14d0
Čas spuštění chybující aplikace: 0x01d8b31b14431665
Cesta k chybující aplikaci: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: f41bc411-1eb1-4784-a6b7-acdaf91c1111
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2022 05:56:29 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FreemakeUtilsService.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.FileNotFoundException
na FreemakeUtilsService.Program.Main(System.String[])
Error: (08/17/2022 05:16:28 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1852_none_7de3b01c7cacf858\TiWorker.exe -Embedding; Popis = Instalační služba modulů systému Windows; Chyba = 0x80070422).
System errors:
=============
Error: (08/18/2022 07:39:12 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/18/2022 07:38:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Freemake Improver neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (08/18/2022 07:38:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Freemake Improver bylo dosaženo časového limitu (45000 ms).
Error: (08/18/2022 07:31:34 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXeb42j1vh6rk395pm0vmcx57dxqjhej5d.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/18/2022 07:31:32 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXg58n4jqcxjfvb6epaz8mmvfjtq8mhj65.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/18/2022 07:30:42 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXeb42j1vh6rk395pm0vmcx57dxqjhej5d.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/18/2022 07:30:40 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXg58n4jqcxjfvb6epaz8mmvfjtq8mhj65.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/18/2022 07:29:52 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXeb42j1vh6rk395pm0vmcx57dxqjhej5d.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
CodeIntegrity:
===============
Date: 2021-11-14 14:40:14
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-11-14 14:39:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. X553MA.209 08/08/2014
Motherboard: ASUSTeK COMPUTER INC. X553MA
Processor: Intel(R) Pentium(R) CPU N3540 @ 2.16GHz
Percentage of memory in use: 72%
Total physical RAM: 3982.56 MB
Available physical RAM: 1076.03 MB
Total Virtual: 4686.56 MB
Available Virtual: 1537.96 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:185.74 GB) (Free:60.08 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:258.35 GB) (Free:20.34 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS
\\?\Volume{9a95f04b-28af-455d-b4da-d5339d74b097}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.59 GB) NTFS
\\?\Volume{428dac14-d9f3-4ae2-9577-00385acce128}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS
\\?\Volume{a8743280-3264-45dc-85de-7b6aba284dac}\ (Restore) (Fixed) (Total:20.01 GB) (Free:9.14 GB) NTFS
\\?\Volume{f77c8be7-842b-4689-8bc3-db3b32013dcc}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 61561CB3)
Partition: GPT.
==================== End of Addition.txt =======================
log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2022
Ran by Vilem (administrator) on DEDA (ASUSTeK COMPUTER INC. X553MA) (18-08-2022 19:44:18)
Running from C:\Users\Vilem\Desktop
Loaded Profiles: Vilem
Platform: Microsoft Windows 10 Home Version 21H2 19044.1889 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\26.0.1.231\DiscoverySrv.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(cmd.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxcr.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intervideo, Inc. -> InterVideo Inc.) C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Služba Acronis Scheduler2] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [516928 2013-02-15] (Acronis International GmbH -> Acronis)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [492632 2022-07-14] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [UVS11 Preload] => C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [341488 2007-03-03] (Ulead Systems, Inc. -> InterVideo Digital Technology Corporation) [File not signed]
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6391960 2013-04-18] (Acronis International GmbH -> Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1105328 2013-01-10] (Acronis International GmbH -> Acronis)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [752736 2012-10-18] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\MountPoints2: {7a454186-591d-11ec-bd76-5c93a2cd27fc} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\MountPoints2: {7a45422c-591d-11ec-bd76-5c93a2cd27fc} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\104.0.5112.81\Installer\chrmstp.exe [2022-08-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2019-04-27]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [File not signed]
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {21E7D9D6-435B-4762-8611-0657AD46F389} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [43096 2022-07-20] (HP Inc. -> HP Inc.)
Task: {2F0BBCA7-1AD0-4D17-9603-A1ABCD83B168} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13877464 2015-06-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {310E80DC-8443-4BB1-A3A4-16B43DACBF9C} - System32\Tasks\CCleanerSkipUAC - Vilem => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {436489C5-B15E-4F57-A618-42AF326D730C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-03] (Google Inc -> Google LLC)
Task: {45CF7F9E-DCEA-44A0-9CDF-910C4F67F333} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\26.0.1.231\WatchDog.exe [1053264 2022-07-25] (Bitdefender SRL -> Bitdefender)
Task: {5C58ED13-3DF4-4C48-918E-DCAC8B8D726C} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-03-09] (ASUSTeK Computer Inc. -> AsusTek)
Task: {6ABF74A3-7719-4FEF-B3E4-C322D12017A3} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [192000 2022-08-17] (Microsoft Windows -> Microsoft Corporation)
Task: {6B768087-D573-4F65-80E7-59521F073CCF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {6D3ECE61-562A-4279-8C3A-3B7C7E456644} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform)
Task: {6F1DECC3-EFD4-4982-BD9F-4CA617D27337} - System32\Tasks\ebtools => C:\Program Files (x86)\EUROBYTE TOOLS\vp4.exe /SCHEDULED (No File)
Task: {82911583-AA75-4892-8D02-B34F05D5FE63} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [192000 2022-08-17] (Microsoft Windows -> Microsoft Corporation)
Task: {840D8202-252C-4199-A63D-FAB0B1529F69} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-03] (Google Inc -> Google LLC)
Task: {9044FF17-F3D2-4D68-9D02-BC31776F9C3C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {90F1341F-55E1-4AC1-875F-E0ECF39EF5DC} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {C451479F-BB05-4E44-A32B-446A60591D15} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-06-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {C5574456-3E87-4C0D-A851-AD492D5ED42F} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [43096 2022-07-20] (HP Inc. -> HP Inc.)
Task: {F8C20F9A-1FB9-4F7C-BE9E-D1CB6C86E6A4} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2022-03-16] () [File not signed]
Task: {FAA6D6A1-F189-444D-B6B9-BDE68E301384} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [584280 2022-04-02] (Bitdefender SRL -> Bitdefender)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0c8dddcb-b6e7-41bd-9c5f-dab0c6fb9498}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{15b37f45-28f8-47f9-8cbf-33615db2e61d}: [DhcpNameServer] 192.168.88.1 85.162.162.162 85.162.162.85 1.1.1.1 8.8.4.4 208.67.222.220
Tcpip\..\Interfaces\{15d28250-8fc7-4bf3-8725-d37c2a96f44a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{734cbd2f-4e07-4c52-9f9e-e0bf268a566f}: [DhcpNameServer] 192.168.88.2
Tcpip\..\Interfaces\{a06cd2d2-4899-4aac-8dce-ec952f31eedf}: [NameServer] 198.51.100.1
Tcpip\..\Interfaces\{a06cd2d2-4899-4aac-8dce-ec952f31eedf}: [DhcpNameServer] 8.8.8.8
Edge:
=======
DownloadDir: C:\Users\Vilem\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
FireFox:
========
FF DefaultProfile: 6qam00cd.default
FF ProfilePath: C:\Users\Vilem\AppData\Roaming\Mozilla\Firefox\Profiles\6qam00cd.default [2022-08-18]
FF Homepage: Mozilla\Firefox\Profiles\6qam00cd.default -> hxxps://www.seznam.cz/
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2021-08-24] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => not found
FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-10-30] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2021-09-29] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Default [2022-08-18]
CHR Notifications: Default -> hxxps://cs.womanuntamed.com; hxxps://fastbestcaptcha.top; hxxps://fastshare.cz; hxxps://kalkulackaenergie.com; hxxps://postovnezdarma.cz; hxxps://ru-vid.com; hxxps://svetsatelitu.cz; hxxps://tarifomat.cz; hxxps://windows-protection.com; hxxps://www-euronics-cz.pushpushgo.com; hxxps://www.autohotarek.cz; hxxps://www.automobilovedily24.cz; hxxps://www.emimino.cz; hxxps://www.euautodily.cz; hxxps://www.eva.cz; hxxps://www.exasoft.cz; hxxps://www.garaz.cz; hxxps://www.heureka.cz; hxxps://www.kokiskashop.cz; hxxps://www.koloasport.cz; hxxps://www.pekro.cz; hxxps://www.slevomat.cz; hxxps://www.slevydnes.cz; hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Extension: (Bitdefender Wallet) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2020-09-26]
CHR Extension: (Helium Backup) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl [2021-04-04]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2021-02-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-02-20]
CHR Profile: C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-08-18]
CHR Extension: (Prezentace) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-07]
CHR Extension: (Dokumenty) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-07]
CHR Extension: (Disk Google) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-23]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2021-05-23]
CHR Extension: (YouTube) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-05-23]
CHR Extension: (Tabulky) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-07]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-05-23]
CHR Extension: (Bitdefender Wallet) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2021-05-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-23]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2021-05-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-23]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2021-05-23]
CHR Extension: (Gmail) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-23]
CHR Extension: (Chrome Media Router) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-23]
CHR Profile: C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-05-21]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2022-04-12]
CHR Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-04-29]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-04-29]
CHR Extension: (Bitdefender Wallet) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2022-04-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-12]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2022-04-12]
CHR Profile: C:\Users\Vilem\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-20]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-341233860-2387372215-3518537327-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-341233860-2387372215-3518537327-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1143720 2013-02-15] (Acronis International GmbH -> Acronis)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [3779576 2020-09-24] (Acronis International GmbH -> Acronis)
S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\hydra.sdk.windows.service.exe [356504 2022-06-20] (Get Aura Inc -> AnchorFree Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3815712 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3580200 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [822240 2022-04-11] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [822240 2022-04-11] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195344 2019-06-03] (Bitdefender SRL -> Bitdefender)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2454632 2022-02-10] (Bitdefender SRL -> Bitdefender)
R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [449112 2022-07-14] (Bitdefender SRL -> Bitdefender)
R2 Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (Intervideo, Inc. -> InterVideo Inc.)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-12-11] (Mixbyte Inc -> Freemake)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [225368 2022-07-20] (HP Inc. -> HP Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S2 PCLEPCI; C:\WINDOWS\SysWOW64\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [789072 2022-07-25] (Bitdefender SRL -> Bitdefender)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7091584 2013-03-26] (Acronis International GmbH -> Acronis)
S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13088784 2020-05-25] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [284760 2022-04-02] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [822240 2022-04-11] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [128024 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [3947928 2022-02-12] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [800672 2021-12-17] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22976 2021-04-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [33208 2022-03-03] (Microsoft Windows Hardware Compatibility Publisher -> © Bitdefender SRL)
S3 bduefiscan; C:\WINDOWS\system32\DRIVERS\bduefiscan.sys [55864 2021-12-17] (Bitdefender SRL -> Bitdefender)
R1 bdvpn_netfilter; C:\WINDOWS\System32\drivers\bdvpn_netfilter.sys [94600 2021-09-16] (Pango Inc. -> Pango Inc)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [108832 2020-09-24] (Acronis International GmbH -> Acronis International GmbH)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\Gemma.sys [1188744 2021-12-17] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA)
R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [19976 2015-12-10] (Microsoft Windows Hardware Compatibility Publisher -> ASUS)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2022-08-18] (Martin Malik - REALiX -> REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R2 Ignis; C:\WINDOWS\System32\DRIVERS\ignis.sys [185312 2020-12-15] (Bitdefender SRL -> Bitdefender)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. -> )
R3 MarvinBus; C:\WINDOWS\System32\drivers\MarvinBus64.sys [261120 2005-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Pinnacle Systems GmbH)
S3 pcouffin; C:\Windows\SysWOW64\Drivers\pcouffin.sys [47360 2016-04-08] (VSO Software) [File not signed]
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1120032 2020-09-24] (Acronis International GmbH -> Acronis International GmbH)
S0 tib_mounter; C:\WINDOWS\System32\DRIVERS\tib_mounter.sys [183224 2020-09-24] (Acronis International GmbH -> Acronis)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [623008 2021-12-17] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 vlflt; C:\WINDOWS\System32\DRIVERS\vlflt.sys [485792 2022-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 PCASp60; System32\Drivers\PCASp60.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-08-18 19:43 - 2022-08-18 19:43 - 000000000 ____D C:\Users\Vilem\Desktop\FRST-OlderVersion
2022-08-18 19:37 - 2022-08-18 19:37 - 000159896 _____ C:\Users\Vilem\Downloads\WirelessRadioControl_Win10_64_VER1004.zip
2022-08-18 19:29 - 2022-08-18 19:41 - 000000000 ____D C:\ProgramData\ProductData
2022-08-18 19:29 - 2022-08-18 19:29 - 000000000 ____D C:\Users\Vilem\AppData\Roaming\DataWorks
2022-08-18 19:28 - 2022-08-18 19:41 - 000000000 ____D C:\Users\Vilem\AppData\Roaming\IObit
2022-08-18 19:28 - 2022-08-18 19:30 - 000000000 ____D C:\ProgramData\IObit
2022-08-18 19:28 - 2022-08-18 19:29 - 000000000 ____D C:\Users\Vilem\AppData\LocalLow\IObit
2022-08-18 19:28 - 2022-08-18 19:28 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2022-08-18 19:27 - 2022-08-18 19:27 - 019578824 _____ (IObit ) C:\Users\Vilem\Downloads\winn08180727wifi-driver-asus-x553m_CZ.exe
2022-08-18 18:35 - 2022-08-18 18:37 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-08-18 18:35 - 2022-08-18 18:37 - 000002023 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-08-17 17:37 - 2022-08-17 17:37 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-08-17 17:37 - 2022-08-17 17:37 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-08-17 17:37 - 2022-08-17 17:37 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-08-17 17:37 - 2022-08-17 17:37 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-17 17:36 - 2022-08-17 17:36 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-17 17:36 - 2022-08-17 17:36 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-08-17 17:36 - 2022-08-17 17:36 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-17 17:36 - 2022-08-17 17:36 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-17 17:16 - 2022-08-17 17:16 - 000000000 ___HD C:\$WinREAgent
2022-08-15 19:00 - 2022-08-15 19:00 - 000150952 _____ C:\Users\Vilem\Downloads\EE_CEN_G24_220101_DOM_EGD.pdf
2022-08-15 18:59 - 2022-08-15 18:59 - 000150876 _____ C:\Users\Vilem\Downloads\EE_CEN_G24_220401_DOM_EGD.pdf
2022-08-15 18:52 - 2022-08-15 18:52 - 000175661 _____ C:\Users\Vilem\Downloads\EE_CEN_OPT_220601_DOM_EGD.pdf
2022-08-15 18:48 - 2022-08-15 18:48 - 000158835 _____ C:\Users\Vilem\Downloads\EE_CEN_G24_220701_DOM_EGD.pdf
2022-08-15 16:44 - 2022-08-15 16:44 - 000099012 _____ C:\ProgramData\agent.update.1660574640.bdinstall.v2.bin
2022-08-13 19:51 - 2022-08-13 19:51 - 000234560 _____ C:\ProgramData\vpn.1660413039.bdinstall.v2.bin
2022-08-13 19:51 - 2022-08-13 19:51 - 000002153 _____ C:\Users\Public\Desktop\Bitdefender VPN.lnk
2022-08-13 19:50 - 2022-08-13 19:50 - 000085696 _____ C:\ProgramData\vpn.uninstall.1660413041.bdinstall.v2.bin
2022-08-13 17:32 - 2022-08-13 17:32 - 000000000 ____D C:\ProgramData\Hydra Windows SDK
2022-08-06 13:15 - 2022-08-06 13:15 - 000065027 _____ C:\Users\Vilem\Desktop\řeč.pdf
2022-08-05 09:25 - 2022-08-05 09:25 - 004144790 _____ ( ) C:\Users\Vilem\Downloads\office!.exe
2022-08-05 09:04 - 2022-08-05 09:04 - 000000000 ____D C:\Users\Vilem\AppData\Roaming\EasyOffice
2022-08-05 09:01 - 2022-08-05 09:02 - 097036570 _____ (InstallShield Software Corporation) C:\Users\Vilem\Downloads\easyoffice.exe
2022-08-05 08:57 - 2022-08-05 08:57 - 000000000 ____D C:\Users\Vilem\Desktop\OpenOffice 4.1.12 (cs) Installation Files
2022-08-05 08:55 - 2022-08-05 08:56 - 130023056 _____ (Apache Software Foundation) C:\Users\Vilem\Downloads\Apache_OpenOffice_4.1.12_Win_x86_install_cs.exe
2022-08-01 13:11 - 2022-08-01 13:11 - 000297811 _____ C:\Users\Vilem\Downloads\etiketa (2).pdf
2022-08-01 12:20 - 2022-08-01 12:20 - 000297811 _____ C:\Users\Vilem\Downloads\etiketa (1).pdf
2022-08-01 11:42 - 2022-08-01 11:42 - 000297811 _____ C:\Users\Vilem\Downloads\etiketa.pdf
2022-07-30 17:20 - 2022-07-30 17:20 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-30 17:20 - 2022-07-30 17:20 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-30 17:20 - 2022-07-30 17:20 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-30 17:20 - 2022-07-30 17:20 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-30 17:20 - 2022-07-30 17:20 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-30 17:20 - 2022-07-30 17:20 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-30 17:19 - 2022-07-30 17:19 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-30 17:19 - 2022-07-30 17:19 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-30 17:19 - 2022-07-30 17:19 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-30 17:19 - 2022-07-30 17:19 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-30 17:19 - 2022-07-30 17:19 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-30 17:19 - 2022-07-30 17:19 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-30 17:19 - 2022-07-30 17:19 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-30 17:18 - 2022-07-30 17:18 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-30 17:18 - 2022-07-30 17:18 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-30 17:17 - 2022-07-30 17:17 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-30 17:17 - 2022-07-30 17:17 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-08-18 19:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-18 19:45 - 2022-04-29 18:12 - 000029207 _____ C:\Users\Vilem\Desktop\FRST.txt
2022-08-18 19:45 - 2018-11-04 14:55 - 000000000 ____D C:\FRST
2022-08-18 19:43 - 2022-04-29 18:07 - 002371072 _____ (Farbar) C:\Users\Vilem\Desktop\FRST64 (2).exe
2022-08-18 19:43 - 2020-10-03 14:02 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-18 19:43 - 2019-12-07 16:41 - 000718024 _____ C:\WINDOWS\system32\perfh005.dat
2022-08-18 19:43 - 2019-12-07 16:41 - 000145166 _____ C:\WINDOWS\system32\perfc005.dat
2022-08-18 19:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-08-18 19:43 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-08-18 19:40 - 2019-01-02 17:16 - 000000000 ____D C:\Program Files\CCleaner
2022-08-18 19:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-18 19:39 - 2017-08-20 11:42 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2022-08-18 19:39 - 2015-08-24 21:18 - 000000000 ____D C:\Program Files (x86)\Google
2022-08-18 19:38 - 2020-10-03 14:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-08-18 19:38 - 2020-09-22 22:59 - 000008192 ___SH C:\DumpStack.log.tmp
2022-08-18 19:38 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-08-18 19:38 - 2015-08-10 19:24 - 000000000 __SHD C:\Users\Vilem\IntelGraphicsProfiles
2022-08-18 19:23 - 2020-10-03 13:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-08-18 18:37 - 2020-11-02 12:28 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-08-18 18:34 - 2020-12-29 15:38 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-08-18 18:34 - 2020-12-29 15:38 - 000000000 ____D C:\Program Files\Adobe
2022-08-18 18:33 - 2015-10-03 14:48 - 000000000 ____D C:\ProgramData\Adobe
2022-08-18 18:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-08-18 17:56 - 2020-10-03 13:42 - 000452888 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-18 17:54 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-18 17:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-18 17:12 - 2020-12-29 15:39 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-08-17 17:43 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-17 17:36 - 2020-10-03 13:47 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-17 17:25 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-17 16:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-17 16:38 - 2015-08-23 19:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-17 16:15 - 2015-08-23 19:45 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-17 16:10 - 2018-11-28 19:05 - 000000958 _____ C:\Users\Vilem\Desktop\wifi.txt
2022-08-17 15:59 - 2020-10-03 14:26 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-08-15 16:44 - 2020-10-03 14:26 - 000003846 _____ C:\WINDOWS\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2022-08-15 16:44 - 2020-09-06 15:57 - 000000000 ____D C:\Users\Vilem\AppData\Roaming\Kodi
2022-08-15 16:44 - 2018-03-04 14:33 - 000000000 ____D C:\Program Files\Bitdefender Agent
2022-08-13 19:49 - 2019-12-07 11:03 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2022-08-13 17:40 - 2019-11-03 14:00 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-08-13 17:40 - 2019-11-03 14:00 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-08-05 09:26 - 2016-02-05 22:10 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-08-05 09:17 - 2021-03-10 20:43 - 000000000 ____D C:\Users\Vilem\AppData\Local\CrashDumps
2022-08-05 09:16 - 2017-12-05 07:20 - 000000000 ____D C:\Users\Vilem\AppData\Local\Packages
2022-08-05 09:11 - 2022-04-04 17:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-08-05 09:11 - 2022-04-04 17:59 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-08-05 09:06 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-08-05 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-08-05 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-08-05 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-08-05 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-08-05 09:05 - 2020-10-03 13:50 - 000000000 ____D C:\Users\Vilem
2022-08-01 12:41 - 2016-02-05 23:18 - 000000000 ____D C:\Users\Vilem\AppData\Local\ElevatedDiagnostics
2022-08-01 11:58 - 2021-01-21 20:43 - 000000000 ____D C:\ProgramData\HP
==================== Files in the root of some directories ========
2019-03-20 22:37 - 2019-03-20 22:37 - 005242880 _____ () C:\Program Files (x86)\PicosmosTools.part1.rar
2019-03-20 22:37 - 2019-03-20 22:37 - 005242880 _____ () C:\Program Files (x86)\PicosmosTools.part2.rar
2019-03-20 22:37 - 2019-03-20 22:37 - 001703959 _____ () C:\Program Files (x86)\PicosmosTools.part3.rar
2016-04-08 21:24 - 2016-04-08 21:24 - 000099384 _____ () C:\Users\Vilem\AppData\Roaming\ezpinst.exe
2016-11-03 22:44 - 2020-11-04 10:14 - 000099384 _____ () C:\Users\Vilem\AppData\Roaming\inst.exe
2016-04-08 21:24 - 2020-11-04 10:14 - 000007859 _____ () C:\Users\Vilem\AppData\Roaming\pcouffin.cat
2016-04-08 21:24 - 2020-11-04 10:14 - 000001167 _____ () C:\Users\Vilem\AppData\Roaming\pcouffin.inf
2015-11-28 22:17 - 2020-11-04 10:14 - 000000055 _____ () C:\Users\Vilem\AppData\Roaming\pcouffin.log
2016-04-08 21:24 - 2020-11-04 10:14 - 000082816 _____ (VSO Software) C:\Users\Vilem\AppData\Roaming\pcouffin.sys
2019-12-19 19:47 - 2020-03-30 11:24 - 000005632 _____ () C:\Users\Vilem\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-12-29 16:10 - 2020-12-29 16:10 - 000000000 _____ () C:\Users\Vilem\AppData\Local\oobelibMkey.log
2019-10-15 19:18 - 2021-04-04 20:23 - 000007622 _____ () C:\Users\Vilem\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-08-2022
Ran by Vilem (18-08-2022 19:49:26)
Running from C:\Users\Vilem\Desktop
Microsoft Windows 10 Home Version 21H2 19044.1889 (X64) (2020-10-03 12:27:21)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-341233860-2387372215-3518537327-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-341233860-2387372215-3518537327-503 - Limited - Disabled)
Guest (S-1-5-21-341233860-2387372215-3518537327-501 - Limited - Disabled)
Vilem (S-1-5-21-341233860-2387372215-3518537327-1001 - Administrator - Enabled) => C:\Users\Vilem
WDAGUtilityAccount (S-1-5-21-341233860-2387372215-3518537327-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus (Disabled - Out of date) {D5E94967-2F1B-E136-4D3B-25723F3E3632}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {EDD2C842-6574-E06E-6664-8C47C1ED7149}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
7-Zip 19.01 alpha (x64) (HKLM\...\7-Zip) (Version: 19.01 alpha - Igor Pavlov)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.002.20191 - Adobe)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 7.7.0.35 - Adobe Inc.)
Adobe Photoshop 7.0 CE (HKLM-x32\...\Adobe Photoshop 7.0 CE) (Version: 7.0 CE - Adobe Systems, Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Advanced IP Scanner 2.5 (HKLM-x32\...\{12830D25-D77C-46B1-902E-2CAD8878CE95}) (Version: 2.5.3499 - Famatech)
Any Video Converter 7.1.5 (HKLM-x32\...\Any Video Converter) (Version: 7.1.5 - Anvsoft)
Ashampoo Burning Studio FREE (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.21.5 - Ashampoo GmbH & Co. KG)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS)
ASUS Wireless Router Device Discovery Utility (HKLM-x32\...\{09CDCA35-23FF-4ED6-AFDA-BBD55235CE4B}) (Version: 1.4.7.2 - ASUS)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1189.1 - AVAST Software) Hidden
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 26.0.1.231 - Bitdefender)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 22.0.1.1 - Bitdefender)
Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 25.5.5.5 - Bitdefender)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.76.1090 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 6.01 - Piriform)
CDSM Designer (HKLM-x32\...\CDSM_CDSM Designer) (Version: - )
Codec Pack - All In 1 6.0.3.0 (HKLM-x32\...\Cool's_Codec_pack_4.12) (Version: - )
DVDFab Platinum 3.0.8.6 (HKLM-x32\...\DVDFab Platinum_is1) (Version: - Fengtao Software Inc.)
FastStone Image Viewer 5.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.5 - FastStone Soft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 104.0.5112.81 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.500 - Huawei Technologies Co., Ltd.)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4252 - Intel Corporation)
InterVideo DeviceService (HKLM-x32\...\{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}) (Version: 1.0.0 - InterVideo)
K-Lite Codec Pack 16.9.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 16.9.0 - KLCP)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.2.2.56 - PandoraTV)
Kodi (HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\Kodi) (Version: 19.3.0.0 - XBMC Foundation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
LG Mobile Drivers (HKLM-x32\...\{D8D0327A-72B4-4C79-9883-1B6B6C20ED2B}) (Version: 4.0.3 - LG Electronics)
LibreOffice 5.0.4.2 (HKLM-x32\...\{14B5DDCF-61C4-4F1E-A621-844685D60B5A}) (Version: 5.0.4.2 - The Document Foundation)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.0.78 - McAfee, LLC.)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30133 (HKLM\...\{E699E009-1C3C-4E50-9B57-2B39F0954C7F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30133 (HKLM\...\{6CD9E9ED-906D-4196-8DC3-F987D2F6615F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 (HKLM-x32\...\{86BE78D9-65A1-4E69-86F8-C1F5281F8553}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 (HKLM-x32\...\{00AC3934-26B4-406E-807C-1692AC7329EC}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.31.1 - Nikon Corporation)
NirSoft ProduKey (HKLM-x32\...\NirSoft ProduKey) (Version: - )
Ovladače videa společnosti Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
Pinnacle Studio 14 (HKLM-x32\...\{AADD1C8F-D59F-4D55-A726-768C71A205A8}) (Version: 14.0.0.7255 - Pinnacle Systems)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7514 - Realtek Semiconductor Corp.)
Recover Files 3.26 (HKLM-x32\...\Recover Files_is1) (Version: - Undelete & Unerase, Inc.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Super DVD Ripper (remove only) (HKLM-x32\...\x2VCD) (Version: - )
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.6.7 - TeamViewer)
True Image 2013 (HKLM-x32\...\{903BAE11-EAE6-476C-801D-D75BAADE0920}) (Version: 16.0.6514 - Acronis) Hidden
True Image 2013 (HKLM-x32\...\{903BAE11-EAE6-476C-801D-D75BAADE0920}Visible) (Version: 16.0.6514 - Acronis)
Ulead VideoStudio 11 (HKLM-x32\...\InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}) (Version: 11.0.0.0000 - InterVideo Digital Technology Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
VSO ConvertXToDVD 6 (HKLM-x32\...\{8FC36FA6-C508-44FB-B137-1CB46D8258B2}_is1) (Version: 6.0.0.71 - VSO Software)
WhatsApp (HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\WhatsApp) (Version: 2.2202.12 - WhatsApp)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
XnView 2.34 (HKLM-x32\...\XnView_is1) (Version: 2.34 - Gougelet Pierre-e)
Zoner Photo Studio 15 (HKLM\...\ZonerPhotoStudio15_CZ_is1) (Version: 15.0.1.3 - ZONER software)
Packages:
=========
ASUS Welcome -> C:\Program Files\WindowsApps\B9ECED6F.ASUSWelcome_1.0.1.0_x64__qmba6cd70vzyy [2016-02-05] (ASUSTeK COMPUTER INC.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-31] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6 [2022-08-05] (HP Inc.)
Media Player -> C:\Program Files\WindowsApps\9FD20106.MediaPlayerQueen_1.2.5.0_x64__nwhm06f2kfry2 [2016-11-25] (Digital Cloud Technologies Global)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-341233860-2387372215-3518537327-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-04-18] (Acronis International GmbH -> Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-04-18] (Acronis International GmbH -> Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-04-18] (Acronis International GmbH -> Acronis)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\x64\versions_page.dll [2013-04-18] (Acronis International GmbH -> Acronis)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2-x32: [Ulead UDF Driver] -> {DBD8E168-244D-448C-9922-25508950D1DC} => C:\Program Files (x86)\Common Files\Ulead Systems\DVD\USIShex.dll [2007-03-03] (Ulead Systems, Inc. -> Ulead Systems, Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-08-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\x64\versions_page.dll [2013-04-18] (Acronis International GmbH -> Acronis)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.dvacm] => C:\Program Files (x86)\Common Files\Ulead Systems\VIO\DVACM.acm [20992 2007-03-02] (InterVideo Digital Technology Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.MPEGacm] => C:\Program Files (x86)\Common Files\Ulead Systems\MPEG\MPEGACM.acm [69632 2006-04-17] (Ulead Systems, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.ulmp3acm] => C:\Program Files (x86)\Common Files\Ulead Systems\MPEG\ulmp3acm.acm [319488 2006-01-23] (Ulead systems) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Vilem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Helium Backup.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gpglbgbpeobllokpmeagpoagjbfknanl
==================== Loaded Modules (Whitelisted) =============
2020-09-24 20:13 - 2012-10-09 13:21 - 001323008 ____R (Acronis) [File not signed] C:\Program Files (x86)\Common Files\Acronis\Home\libcrypto10.dll
2020-11-06 12:33 - 2019-09-05 07:00 - 000076800 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-10-03 13:53 - 2020-10-03 13:53 - 000097280 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
2016-02-15 21:02 - 2006-09-14 17:40 - 000045056 ____N (Pinnacle Systems, Inc.) [File not signed] C:\Program Files (x86)\Pinnacle\Shared Files\Filter\FileCaptureSource.ax
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {0D53A732-8758-4423-B0AD-C5D7C759AC33} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {23605601-D6F5-49BA-AF32-B8F8E4D6FF22} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {5332AFBC-241E-4DBC-9E8C-084743D3406C} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {64B1FD19-21BF-4271-8330-7EE8D1262635} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {A441246E-EE91-4A20-8D71-235F1FC30790} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {AC716E7E-AAFB-4298-AE6F-B595F9984E7B} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {ADDF374F-043D-4289-8955-1BB9C4AB8A1D} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {B2325E6C-AB58-489E-BFE1-C06284AE13E3} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_37180
SearchScopes: HKU\S-1-5-21-341233860-2387372215-3518537327-1001 -> {B49EDD39-FD5E-42B8-98CC-D470A668FA13} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_37180
BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll [2022-04-02] (Bitdefender SRL -> Bitdefender)
BHO-x32: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll [2022-04-02] (Bitdefender SRL -> Bitdefender)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-08-23 19:26 - 2022-08-18 19:38 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts
2017-04-19 21:00 - 2018-12-31 20:04 - 000000466 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 d
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Vilem\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\asus.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "BdVpnApp"
HKLM\...\StartupApproved\Run: => "Služba Acronis Scheduler2"
HKLM\...\StartupApproved\Run32: => "UVS11 Preload"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\StartupApproved\Run: => "LaunchList"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\StartupApproved\Run: => "Picosmos"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-341233860-2387372215-3518537327-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{5D396F3E-70F8-48A9-8319-AB571C40544A}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> Acronis)
FirewallRules: [{5B0AD119-4105-4058-8B6E-3381A2C59F36}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> Acronis)
FirewallRules: [{19B09C52-DE4F-44FE-A4E5-784998484F36}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F217B1E1-C0C6-47CE-BE2A-163F940F5011}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{EA5CB871-1470-4C0D-9E84-D02740C8990B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{38BF349C-520E-4AFB-89E4-A218A555994E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DEA3B2F4-018E-4A58-9CEF-6F56B769702A}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe (ASUSTeK COMPUTER INC.) [File not signed]
FirewallRules: [{6CD0E4B2-C063-480B-81A1-15E01001B6F6}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe (ASUSTeK COMPUTER INC.) [File not signed]
FirewallRules: [{CA0C52EB-68CC-4CBE-9AF2-4E3BF9835CDB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{03A55787-F0A1-4797-88E5-9386276EC7F8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9B3F2063-BA19-4489-A0D9-25E1FBA456FB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AF0964AB-F8E3-40EE-828D-382E70B538B9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{72D678E2-4390-43DF-9443-628DF4735FCB}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{B1B6D063-D532-450F-8249-7C48D15FD7E5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{FE0AD32C-7080-4EC9-A325-41E2A4B0E8F0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{9C566CFB-AD9E-4092-AD8D-937C3A660576}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [TCP Query User{729C1443-2A98-41F5-8C71-D485C0CEB4B1}C:\program files (x86)\pinnacle\studio 14\programs\studio.exe] => (Block) C:\program files (x86)\pinnacle\studio 14\programs\studio.exe (Pinnacle Systems, Inc. -> Pinnacle Systems)
FirewallRules: [UDP Query User{C45DB0D4-0290-4A31-BC6D-0F665C37E6D3}C:\program files (x86)\pinnacle\studio 14\programs\studio.exe] => (Block) C:\program files (x86)\pinnacle\studio 14\programs\studio.exe (Pinnacle Systems, Inc. -> Pinnacle Systems)
FirewallRules: [TCP Query User{AD3C466B-6999-4A1B-9083-68680CC9D792}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{03776741-1790-411A-8A80-7D5F0494A173}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{297889A3-83D0-4B42-B151-0DE663570B87}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{19849377-4E18-4F26-A7CE-023AAC7A58E9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D4EBA98B-7FE9-45B2-BFB9-78C9A49C2D1F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{65B442F0-C647-4BDC-99F9-56E2A06C5C35}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4691BEA0-D287-4394-8F60-603B91472191}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/18/2022 07:38:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FreemakeUtilsService.exe, verze: 1.0.0.0, časové razítko: 0x5df073cc
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1889, časové razítko: 0xdc0d8494
Kód výjimky: 0xe0434352
Posun chyby: 0x0012ca42
ID chybujícího procesu: 0x15a0
Čas spuštění chybující aplikace: 0x01d8b3295f301581
Cesta k chybující aplikaci: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 7cf397c3-c198-4a75-aecb-ab4a71bc5fce
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2022 07:38:48 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FreemakeUtilsService.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.FileNotFoundException
na FreemakeUtilsService.Program.Main(System.String[])
Error: (08/18/2022 06:36:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ADelRCP.exe, verze: 22.1.20142.0, časové razítko: 0x629bce6a
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.789, časové razítko: 0x2bd748bf
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000071208
ID chybujícího procesu: 0x2d24
Čas spuštění chybující aplikace: 0x01d8b3209f46b663
Cesta k chybující aplikaci: C:\Program Files\Adobe\Acrobat DC\Acrobat\ADelRCP.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: f1bd7789-4c78-4ef6-af13-27d476c9ac4a
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2022 06:10:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FreemakeUtilsService.exe, verze: 1.0.0.0, časové razítko: 0x5df073cc
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1889, časové razítko: 0xdc0d8494
Kód výjimky: 0xe0434352
Posun chyby: 0x0012ca42
ID chybujícího procesu: 0x12cc
Čas spuštění chybující aplikace: 0x01d8b31d071edc25
Cesta k chybující aplikaci: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 30588a5c-731b-4680-b8b8-4ebccc989465
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2022 06:10:26 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FreemakeUtilsService.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.FileNotFoundException
na FreemakeUtilsService.Program.Main(System.String[])
Error: (08/18/2022 05:56:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FreemakeUtilsService.exe, verze: 1.0.0.0, časové razítko: 0x5df073cc
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1889, časové razítko: 0xdc0d8494
Kód výjimky: 0xe0434352
Posun chyby: 0x0012ca42
ID chybujícího procesu: 0x14d0
Čas spuštění chybující aplikace: 0x01d8b31b14431665
Cesta k chybující aplikaci: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: f41bc411-1eb1-4784-a6b7-acdaf91c1111
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2022 05:56:29 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FreemakeUtilsService.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.FileNotFoundException
na FreemakeUtilsService.Program.Main(System.String[])
Error: (08/17/2022 05:16:28 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1852_none_7de3b01c7cacf858\TiWorker.exe -Embedding; Popis = Instalační služba modulů systému Windows; Chyba = 0x80070422).
System errors:
=============
Error: (08/18/2022 07:39:12 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/18/2022 07:38:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Freemake Improver neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (08/18/2022 07:38:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Freemake Improver bylo dosaženo časového limitu (45000 ms).
Error: (08/18/2022 07:31:34 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXeb42j1vh6rk395pm0vmcx57dxqjhej5d.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/18/2022 07:31:32 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXg58n4jqcxjfvb6epaz8mmvfjtq8mhj65.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/18/2022 07:30:42 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXeb42j1vh6rk395pm0vmcx57dxqjhej5d.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/18/2022 07:30:40 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXg58n4jqcxjfvb6epaz8mmvfjtq8mhj65.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/18/2022 07:29:52 PM) (Source: DCOM) (EventID: 10001) (User: DEDA)
Description: Nelze spustit server DCOM: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXeb42j1vh6rk395pm0vmcx57dxqjhej5d.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147942402
při provádění příkazu:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
CodeIntegrity:
===============
Date: 2021-11-14 14:40:14
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-11-14 14:39:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. X553MA.209 08/08/2014
Motherboard: ASUSTeK COMPUTER INC. X553MA
Processor: Intel(R) Pentium(R) CPU N3540 @ 2.16GHz
Percentage of memory in use: 72%
Total physical RAM: 3982.56 MB
Available physical RAM: 1076.03 MB
Total Virtual: 4686.56 MB
Available Virtual: 1537.96 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:185.74 GB) (Free:60.08 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:258.35 GB) (Free:20.34 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS
\\?\Volume{9a95f04b-28af-455d-b4da-d5339d74b097}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.59 GB) NTFS
\\?\Volume{428dac14-d9f3-4ae2-9577-00385acce128}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS
\\?\Volume{a8743280-3264-45dc-85de-7b6aba284dac}\ (Restore) (Fixed) (Total:20.01 GB) (Free:9.14 GB) NTFS
\\?\Volume{f77c8be7-842b-4689-8bc3-db3b32013dcc}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 61561CB3)
Partition: GPT.
==================== End of Addition.txt =======================
