Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-09-2020
Ran by kesik (19-09-2020 12:51:52)
Running from C:\Users\kesik\Contacts\Desktop
Windows 10 Home Version 2004 19041.508 (X64) (2020-09-05 16:48:35)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3729220341-2067861530-8973585-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3729220341-2067861530-8973585-503 - Limited - Disabled)
Guest (S-1-5-21-3729220341-2067861530-8973585-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3729220341-2067861530-8973585-1004 - Limited - Enabled)
kesik (S-1-5-21-3729220341-2067861530-8973585-1000 - Administrator - Enabled) => C:\Users\kesik
WDAGUtilityAccount (S-1-5-21-3729220341-2067861530-8973585-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.012.20043 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.433 - Adobe)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.1.151 - Adobe Systems, Inc.)
Ashampoo Burning Studio 6 FREE v.6.82 (HKLM-x32\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.8.2 - Ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Balíček ovladače systému Windows - Sony Ericsson (s1018bus) USB  (03/19/2009 4.50.3.8) (HKLM\...\FCCEA9CB401AFFF1FD9C03E20273628B00BCF2C2) (Version: 03/19/2009 4.50.3.8 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1018mdm) Modem  (03/19/2009 4.50.3.8) (HKLM\...\17D02EE7FF8F690E06CF9A7708F544AB0D4180D0) (Version: 03/19/2009 4.50.3.8 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1018mgmt) Ports  (03/19/2009 4.50.3.8) (HKLM\...\DE63012B1E5F3E285AE7085001B9FAA11C715ABC) (Version: 03/19/2009 4.50.3.8 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1018nd5) Net  (03/19/2009 4.50.3.8) (HKLM\...\E797F532099E0E303F01468443198C5B5CABBDD5) (Version: 03/19/2009 4.50.3.8 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1018obex) Ports  (03/19/2009 4.50.3.8) (HKLM\...\4289980582B5E07F22B397BAD84B50FCA3917D22) (Version: 03/19/2009 4.50.3.8 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1018unic) USB  (03/19/2009 4.50.3.8) (HKLM\...\81F81A8A63F4CC87AE4982DB853BC382E55C1A4C) (Version: 03/19/2009 4.50.3.8 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1029bus) USB  (05/20/2009 4.50.7.1) (HKLM\...\26DB22792BE9F17888E8A0D8584AF75CFF65475C) (Version: 05/20/2009 4.50.7.1 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1029mdm) Modem  (05/20/2009 4.50.7.1) (HKLM\...\A48268F8402FB24EA6170A60F5983FB76490F8AA) (Version: 05/20/2009 4.50.7.1 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1029mgmt) Ports  (05/20/2009 4.50.7.1) (HKLM\...\17204220872ED111F51F90FAB365F56414167791) (Version: 05/20/2009 4.50.7.1 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1029nd5) Net  (05/20/2009 4.50.7.1) (HKLM\...\262CB07C47460C8CEC34D6ECDCE2976E9AFF7229) (Version: 05/20/2009 4.50.7.1 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1029obex) Ports  (05/20/2009 4.50.7.1) (HKLM\...\AAA1C5FD85F0DB2A12BC54F4F54474B941E09678) (Version: 05/20/2009 4.50.7.1 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1029unic) USB  (05/20/2009 4.50.7.1) (HKLM\...\B435435D376F485661EFD193425286C49D67E5C3) (Version: 05/20/2009 4.50.7.1 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1039bus) USB  (03/05/2010 5.02.0.2) (HKLM\...\CA4B4019807155E4031A3E9EA29D8D3B29E9AED3) (Version: 03/05/2010 5.02.0.2 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1039mdm) Modem  (03/05/2010 5.02.0.2) (HKLM\...\9242EC6DBC52A93FDA84B5FE2B02653CEA3D98AE) (Version: 03/05/2010 5.02.0.2 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1039mgmt) Ports  (03/05/2010 5.02.0.2) (HKLM\...\ADA4E68BF676A857D1E0709BB35F7F6429668027) (Version: 03/05/2010 5.02.0.2 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1039nd5) Net  (03/05/2010 5.02.0.2) (HKLM\...\24546D57DA8218560E59BF3347D1351FDEBB50B7) (Version: 03/05/2010 5.02.0.2 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1039obex) Ports  (03/05/2010 5.02.0.2) (HKLM\...\AA95F906B038B74C48CE136D1E4807F7CAC19AE4) (Version: 03/05/2010 5.02.0.2 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson (s1039unic) USB  (03/05/2010 5.02.0.2) (HKLM\...\3C49648B12294915EBBBCB55F616F7A041FC1D18) (Version: 03/05/2010 5.02.0.2 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson Image  (03/15/2010 1.0.1039.4) (HKLM\...\39E83E1A16EC99A3551A9B7EE249E49CF43461B8) (Version: 03/15/2010 1.0.1039.4 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson Image  (03/25/2009 1.0.1018.7) (HKLM\...\CA03B33EE331A54BD1E0401C924B76C6BE073CE5) (Version: 03/25/2009 1.0.1018.7 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson Image  (05/25/2009 1.0.1029.2) (HKLM\...\96AED80AC6A53E68E8699AB48F8AF24C84C7615C) (Version: 05/25/2009 1.0.1029.2 - Sony Ericsson)
Balíček ovladače systému Windows - Sony Ericsson Mobile Communications AB (usbser) Modem  (10/28/2009 1.0.5.1) (HKLM\...\F4268692E420234745EDD92C0DC1C84D4C2066FC) (Version: 10/28/2009 1.0.5.1 - Sony Ericsson Mobile Communications AB)
Balíček ovladače systému Windows - Sony Ericsson Mobile Communications AB Image  (10/28/2009 1.0.5.1) (HKLM\...\DBDCD462675537E6100CD8C8CF596F8719E36722) (Version: 10/28/2009 1.0.5.1 - Sony Ericsson Mobile Communications AB)
Bandicut (HKLM-x32\...\Bandicut) (Version: 3.5.0.594 - Bandicam.com)
Blackmagic RAW Common Components (HKLM\...\{C569CAEE-D0BF-45DE-833E-E97988B5CB8B}) (Version: 1.8 - Blackmagic Design)
Bontia Studio 4.5 (HKLM-x32\...\{69EBB61F-8A46-4CF7-A6B3-0FB2A734074D}) (Version: 4.5.4232.0 - Exec a.s.)
Canon Utilities Digital Photo Professional 4 (HKLM-x32\...\Digital Photo Professional 4 (x64)) (Version: 4.11.0.2 - Canon Inc.)
Canon Utilities Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.11.0.0 - Canon Inc.)
CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version:  - )
ConvertHelper 2.2 (HKLM-x32\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1) (Version:  - DownloadHelper)
CrystalDiskInfo 6.0.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.0.1 - Crystal Dew World)
darktable (HKLM\...\darktable) (Version: 3.2.1 - the darktable project)
DidaktaCZ 1.0.0 (HKLM-x32\...\7e81f6ca-38af-5207-b03c-2ecbe5f1ce8e) (Version: 1.0.0 - SILCOM Multimedia, s.r.o.)
DraftSight 2018 SP2.1 x64 (HKLM\...\{360A3249-75D2-4EBD-930B-5D22A2F0F779}) (Version: 18.2.0118 - Dassault Systemes)
FormatFactory 4.9.5.0 (HKLM-x32\...\FormatFactory) (Version: 4.9.5.0 - Free Time)
GIMP 2.10.20 (HKLM\...\GIMP-2_is1) (Version: 2.10.20 - The GIMP Team)
Google Earth (HKLM-x32\...\{1B30DAC0-DE51-11E2-9A5B-B8AC6F98CCE3}) (Version: 7.1.1.1871 - Google)
Inkscape 0.48 (HKLM-x32\...\Inkscape) (Version: 0.48 - Partha Bagchi)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.35 - Irfan Skiljan)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
LibreOffice 6.3.5.2 (HKLM\...\{9FEFBA80-8687-4AC1-83F7-3CD3E9BAF275}) (Version: 6.3.5.2 - The Document Foundation)
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Malwarebytes Anti-Malware verze 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
MediaInfo 18.12 (HKLM\...\MediaInfo) (Version: 18.12 - MediaArea.net)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.51 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft Image Composite Editor (HKLM\...\{B821CDAA-34DE-46FD-87C9-E6EE7158DB5D}) (Version: 1.4.4 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 20.143.0716.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3729220341-2067861530-8973585-1000\...\Teams) (Version: 1.3.00.13565 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
MKVToolNix 34.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 34.0.0 - Moritz Bunkus)
Mozilla Firefox 80.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 80.0.1 (x64 cs)) (Version: 80.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 80.0.1.7548 - Mozilla)
Mozilla Thunderbird 68.12.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 68.12.0 (x86 cs)) (Version: 68.12.0 - Mozilla)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.7 - F.J. Wechselberger)
Nokia Connectivity Cable Driver (HKLM-x32\...\{6FE12C01-2FBC-42E2-AEB9-4CA2238C462F}) (Version: 7.1.101.0 - Nokia)
Nokia Suite (HKLM-x32\...\{E3A0C45A-7EDB-48EB-AB86-2445E74FBFBB}) (Version: 3.7.22.0 - Nokia) Hidden
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.7.22.0 - Nokia)
Ochrana koncového bodu Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.2004.84 - Trusteer)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenShot Video Editor verze 2.5.1 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.5.1 - OpenShot Studios, LLC)
PC Connectivity Solution (HKLM-x32\...\{6B722793-E77B-41F5-BAB3-6C9832274E75}) (Version: 12.0.76.0 - Nokia)
PDF reDirect (remove only) (HKLM-x32\...\PDF reDirect) (Version: v2.5.2 - EXP Systems LLC)
PingPlotter 5 (HKLM-x32\...\{2572B5EB-4E2F-474E-8EC1-48A9EF0DBEF6}) (Version: 5.8.11.5782 - Pingman Tools, LLC) Hidden
PingPlotter 5 (HKLM-x32\...\PingPlotter 5 5.8.11.5782) (Version: 5.8.11.5782 - Pingman Tools, LLC)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Hidden
Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.2004.84 - Trusteer) Hidden
RawTherapee verze 5.8 (HKLM\...\RawTherapee5.8_is1) (Version: 5.8 - rawtherapee.com)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.15.0 - SAMSUNG Electronics Co., Ltd.)
Služba Xperia Companion (HKLM\...\{62A561E8-3F7C-4363-AAC0-6390476CE334}) (Version: 1.5.12.0 - Sony) Hidden
Software602 Form Filler (HKLM-x32\...\{00160B3F-653A-4EA7-947E-4000D3551E9E}) (Version: 4.60 - Software602 a.s.)
SpeechRedist (HKLM-x32\...\{8795CBED-55E2-4693-9F14-84EC446935BE}) (Version: 1.0.0 - Epic Games Inc.)
Sweet Home 3D version 6.2 (HKLM\...\Sweet Home 3D_is1) (Version: 6.2 - eTeks)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.2.2756 - TeamViewer)
TL-WN881ND Driver (HKLM-x32\...\{B512F025-E992-44D0-B1F4-D6E1D3339C80}) (Version: 1.0.0 - TP-LINK)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Unreal Tournament 2004 (HKLM-x32\...\UT2004) (Version:  - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.10 - VideoLAN)
Xperia Companion (HKLM-x32\...\{44263da6-788d-4cd9-be25-ba05829e3fb4}) (Version: 1.5.12.0 - Sony)
Xperia Companion (HKLM-x32\...\{DE803B8F-8EFE-4018-AFD1-D0F708A75D50}) (Version: 1.5.12.0 - Sony) Hidden
Zoner Callisto 5 FREE (HKLM-x32\...\ZonerCallisto5_CZ_is1) (Version: 5.0.5000.16 - ZONER software)
Zvidava zviratka (HKLM-x32\...\{F329FA56-382E-4C63-903E-CDEEB40D2272}) (Version: 1.0.0 - TAKTIK)

Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.12.4.0_x86__kgqvnymyfvs32 [2020-08-23] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.43.3.0_x86__kgqvnymyfvs32 [2020-09-16] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-06-03] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-06-03] (Microsoft Corporation)
IBM Trusteer Rapport -> C:\Program Files\WindowsApps\IBMTrusteer.IBMTrusteerRapport_1.1.34.0_x64__756wk15nt3n8e [2020-06-03] (IBM Trusteer)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-06-03] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-06-03] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-23] (Microsoft Studios) [MS Ad]
Raw Image Extension -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_1.0.30761.0_x64__8wekyb3d8bbwe [2020-06-03] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.142.622.0_x86__zpdnekdrzrea0 [2020-09-18] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3729220341-2067861530-8973585-1000_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\kesik\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3729220341-2067861530-8973585-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3729220341-2067861530-8973585-1000_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\kesik\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers1-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\Program Files (x86)\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger) [File not signed]
ContextMenuHandlers1: [PDFConv] -> {919CF7F5-9A8E-40B9-9588-2BECA5927D98} => C:\Program Files (x86)\Software602\602XML\xmlcore\CtxSign64.dll [2013-07-16] (Software602 a. s. -> Software602)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.143.0716.0003\amd64\FileSyncShell64.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-07-18 15:27 - 2018-07-18 15:27 - 000747520 _____ () [File not signed] C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2017-07-10 20:22 - 2016-10-04 16:51 - 000076800 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2013-01-18 18:11 - 2012-03-27 02:12 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2018-04-06 20:29 - 2018-04-06 20:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 20:29 - 2018-04-06 20:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
2018-05-15 06:22 - 2018-05-15 06:22 - 005584896 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\Qt5Core.dll
2018-05-15 06:22 - 2018-05-15 06:22 - 001065472 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\Qt5Network.dll
2018-05-15 06:22 - 2018-05-15 06:22 - 000193536 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\Qt5Xml.dll
2016-04-01 21:45 - 2014-02-05 13:51 - 000036864 _____ (Windows (R) Win 7 DDK provider) [File not signed] C:\WINDOWS\System32\602localmon.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-3729220341-2067861530-8973585-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.cz/advanced_search?
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-21] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\PC Connectivity Solution\;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3729220341-2067861530-8973585-1000\Control Panel\Desktop\\Wallpaper -> C:\20200410185128_IMG_0775.JPG
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-3729220341-2067861530-8973585-1000\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{A11DB733-6A19-4E7A-997F-A36B87F1834F}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe => No File
FirewallRules: [TCP Query User{A8339EFA-CEBB-4596-B57D-EBD3019B5B2B}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe => No File
FirewallRules: [{BAE0F6F5-92E0-4879-8C0A-8CD0F505B7CA}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe => No File
FirewallRules: [{92F75C43-C996-493A-AF2F-56C06662E52B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe => No File
FirewallRules: [{3633F2FF-274A-48D5-A7A7-DFBFF11B73E7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe => No File
FirewallRules: [{14F82ED8-1963-4F0C-9865-18797AF3676E}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{C9DD8D66-4CA1-4A8A-B065-72E7791E8D98}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{9B70152F-7878-4698-AE13-AFA112CE32BD}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{D0CC6B9F-2231-4021-B4BD-A8746DC9B812}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{96AC5E8F-A858-40EC-AF3D-6B4BD39C2CB0}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{7E70B01F-E6FC-44B6-AFCB-0E75765338A8}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{6562BF5F-6D82-4DDC-A75A-CEB3BFF23CC3}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [UDP Query User{D9E1193C-3766-4059-B17E-86C6B9E2F2E3}C:\users\kesik\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\kesik\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{2C3DCD0B-A6B8-4755-B3A9-9042C6FE7809}C:\users\kesik\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\kesik\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D6E85D05-CA20-42BC-A91F-544F8B5A25B0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A97C0D7B-0D86-4906-8FFF-EF21AF18B294}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4A281963-73CC-4348-82C5-339E57FF50E0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4EF6B79F-2FD0-49E5-B8F9-F9E077119E31}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [UDP Query User{610E9ECF-21BC-4442-84AA-5F99C06F7B90}C:\program files\openshot video editor\openshot-qt.exe] => (Allow) C:\program files\openshot video editor\openshot-qt.exe (OpenShot Studios, LLC) [File not signed]
FirewallRules: [TCP Query User{1E3346A2-957C-452A-934E-125A304C84FB}C:\program files\openshot video editor\openshot-qt.exe] => (Allow) C:\program files\openshot video editor\openshot-qt.exe (OpenShot Studios, LLC) [File not signed]
FirewallRules: [{C980A683-452A-4865-B128-B39D793CFE43}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [TCP Query User{21D5D3F7-EFB6-4C80-8A17-A669F247BD0C}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger)
FirewallRules: [UDP Query User{8EB7987F-146C-41B6-A088-C2420AE63615}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger)
FirewallRules: [TCP Query User{32702F01-F05F-4342-A4B1-2107400936E4}C:\ut2004\system\ut2004.exe] => (Block) C:\ut2004\system\ut2004.exe () [File not signed]
FirewallRules: [UDP Query User{B82E0698-ECC1-478C-B578-A96F4282CE96}C:\ut2004\system\ut2004.exe] => (Block) C:\ut2004\system\ut2004.exe () [File not signed]
FirewallRules: [{B678BFE8-9005-477E-8CE0-4451295ED8AA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{73DDDA1C-8673-46D9-8DA5-FA4797E15C02}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8873DC8D-F84F-4DA0-9601-FFA1F5C9E26D}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{8D3A682C-608D-4816-B730-A0AC7E989067}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{F0678C32-02E9-4350-B36B-059F5BABAB18}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony) [File not signed]
FirewallRules: [TCP Query User{3FA48A99-F5B7-4C2E-8027-5CE2BAF27021}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{712F3D7A-5871-4984-98A7-2CB0C2C23C24}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{095AAF1B-48EC-4A44-838D-665FB0F8EC3B}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{C5C78493-7EE8-432B-9570-D12AAEBC9069}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{CD1BFD8E-AE3A-4940-9280-C31C62F8DF59}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe => No File
FirewallRules: [UDP Query User{FF6B07FB-4155-47BE-A83C-22C22597FEB2}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe => No File
FirewallRules: [{981AEFD9-B2FA-4906-86AC-265BB29CBEFE}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{5F52E82B-8BB0-4089-842E-A946D5C639CD}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{B9B0C3D0-8022-4BA7-95DF-77F513F1B2EB}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{42F3E465-595E-48C3-912E-681ADD64237E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{FE3C6418-59D0-4E30-B13B-1BD35A0C2C39}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{3744C593-11EC-4386-8507-FEA1C434C3DF}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{7A614597-C1FC-42A2-8267-80C07EE4F873}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{FEC7D76D-28F6-42E2-81EB-83E8EB44AF09}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{DB64ACCA-9113-4442-9260-E16938EF57A7}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{ACAB63EE-131A-431D-8172-1A658DAC85C3}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{6FEA1572-1F5F-418B-96DF-D8DB0A6D9B2C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5B5646E-B696-43B9-820E-17CFC12ADC0A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0E2B3EF5-376B-4B42-882D-451BEF19CAFE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F52D16B6-B605-4315-966A-E9A2B4BB17A2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8BE5C919-2B6B-429D-9C13-565CE45CEA1B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.142.622.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9FB61CBC-9010-4750-890A-EFBE4BED59DA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.142.622.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B3E435C4-52F8-45A6-90CE-83588D2D1A4C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.142.622.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C20D27E2-73F2-466B-AC86-0591F923FA1E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.142.622.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{703941C9-3A13-4F87-965E-70D5B049F8B6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.142.622.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1D3377D2-C55B-4155-8C1B-2C0D0F5A5BC2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.142.622.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{31E6198A-D58B-4FF5-ACC1-EE774780526D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.142.622.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E2843AC8-C35C-4F9D-9F6F-DD56ABDFA82C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.142.622.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

18-09-2020 19:09:05 Naplánovaný kontrolní bod
19-09-2020 11:24:48 AdwCleaner_BeforeCleaning_19/09/2020_11:24:47

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/18/2020 06:51:24 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (09/18/2020 06:51:19 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (09/16/2020 07:25:14 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
   Spouštění asynchronní operace

Kontext:
   Aktuální stav: DoSnapshotSet

Error: (09/13/2020 06:51:20 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na systém (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (09/13/2020 06:22:38 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (09/13/2020 06:22:35 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (09/13/2020 06:12:41 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (09/13/2020 06:12:38 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)


System errors:
=============
Error: (09/19/2020 11:25:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba VIA Karaoke digital mixer Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/19/2020 11:25:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/19/2020 11:25:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba Xperia Companion byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/19/2020 11:25:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management and Security Application User Notification Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/19/2020 11:25:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (09/19/2020 11:25:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Řízení front zpráv byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (09/19/2020 11:25:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/19/2020 11:25:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba DraftSight API Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
===================================
Date: 2020-09-18 19:05:09.2390000Z
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/CandyOpen&threatid=213956&enterprise=0
Název: PUA:Win32/CandyOpen
ID: 213956
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: clsid:_HKLM\SOFTWARE\Wow6432Node\CLASSES\CLSID\{5298F3F8-EE5A-4BD7-B31B-E6E4C7DFA871}; file:_C:\Program Files (x86)\MyPhoneExplorer\DLL\mpe_gadget_connector.dll; interface:_HKLM\SOFTWARE\CLASSES\INTERFACE\{330420B1-BAF0-436B-8132-46475B28E6C8}; interface:_HKLM\SOFTWARE\CLASSES\INTERFACE\{CC5880D5-5A7F-4C6B-AFB3-2F382698B1AB}; interface:_HKLM\SOFTWARE\Wow6432Node\CLASSES\INTERFACE\{330420B1-BAF0-436B-8132-46475B28E6C8}; interface:_HKLM\SOFTWARE\Wow6432Node\CLASSES\INTERFACE\{CC5880D5-5A7F-4C6B-AFB3-2F382698B1AB}; regkey:_HKLM\SOFTWARE\CLASSES\INTERFACE\{330420B1-BAF0-436B-8132-46475B28E6C8}; regkey:_HKLM\SOFTWARE\CLASSES\INTERFACE\{CC5880D5-5A7F-4C6B-AFB3-2F382698B1AB}; regkey:_HKLM\SOFTWARE\CLASSES\TYPELIB\{896843C9-68C8-4E93-AE78-3667C24266FA}\54.0; regkey:_HKLM\SOFTWARE\Wow6432Node\CLASSES\CLSID\{5298F3F8-EE5A-4BD7-B31B-E6E4C7DFA871}; regkey:_HKLM\SOFTWARE\Wow6432Node\CLASSES\INTERFACE\{330420B1-BAF0-436B-8132-46475B28E6C8}; regkey:_HKLM\SOFTWARE\Wow6432Node\CLASSES\INTERFACE\{CC5880D5-5A7F-4C6B-AFB3-2F382
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.323.1415.0, AS: 1.323.1415.0, NIS: 1.323.1415.0
Verze modulu: AM: 1.1.17400.5, NIS: 1.1.17400.5

Date: 2020-09-18 19:04:03.9790000Z
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/CandyOpen&threatid=213956&enterprise=0
Název: PUA:Win32/CandyOpen
ID: 213956
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: clsid:_HKLM\SOFTWARE\Wow6432Node\CLASSES\CLSID\{5298F3F8-EE5A-4BD7-B31B-E6E4C7DFA871}; file:_C:\Program Files (x86)\MyPhoneExplorer\DLL\mpe_gadget_connector.dll; regkey:_HKLM\SOFTWARE\CLASSES\TYPELIB\{896843C9-68C8-4E93-AE78-3667C24266FA}\54.0; regkey:_HKLM\SOFTWARE\Wow6432Node\CLASSES\CLSID\{5298F3F8-EE5A-4BD7-B31B-E6E4C7DFA871}; regkey:_HKLM\SOFTWARE\Wow6432Node\CLASSES\TYPELIB\{896843C9-68C8-4E93-AE78-3667C24266FA}\54.0; typelib:_HKLM\SOFTWARE\CLASSES\TYPELIB\{896843C9-68C8-4E93-AE78-3667C24266FA}; typelib:_HKLM\SOFTWARE\Wow6432Node\CLASSES\TYPELIB\{896843C9-68C8-4E93-AE78-3667C24266FA}; typelibversion:_HKLM\SOFTWARE\CLASSES\TYPELIB\{896843C9-68C8-4E93-AE78-3667C24266FA}\54.0; typelibversion:_HKLM\SOFTWARE\Wow6432Node\CLASSES\TYPELIB\{896843C9-68C8-4E93-AE78-3667C24266FA}\54.0
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.323.1415.0, AS: 1.323.1415.0, NIS: 1.323.1415.0
Verze modulu: AM: 1.1.17400.5, NIS: 1.1.17400.5

Date: 2020-09-16 20:21:37.3290000Z
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {80A1716E-4240-4BB4-8CF6-8AC0C4A8995C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-09-16 20:01:02.0810000Z
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7AA3881D-7488-450A-86AE-6EA4A76E46BE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-09-15 19:08:03.6150000Z
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5C4842CC-8C25-4CDE-9753-7C276FAD536C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===================================

Date: 2020-09-11 11:47:19.8380000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\PingPlotter 5\System.ValueTuple.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-11 11:47:19.3260000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\PingPlotter 5\System.ValueTuple.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-09 18:16:24.1280000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\PingPlotter 5\System.ValueTuple.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-09 18:16:23.8060000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\PingPlotter 5\System.ValueTuple.dll that did not meet the Microsoft signing level requirements.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. F7 07/20/2012
Motherboard: Gigabyte Technology Co., Ltd. H77M-D3H
Processor: Intel(R) Core(TM) i3-3225 CPU @ 3.30GHz
Percentage of memory in use: 46%
Total physical RAM: 8086.3 MB
Available physical RAM: 4332.13 MB
Total Virtual: 16278.3 MB
Available Virtual: 11892.75 MB

==================== Drives ================================

Drive c: (systém) (Fixed) (Total:930.85 GB) (Free:850.38 GB) NTFS
Drive d: (data) (Fixed) (Total:931.51 GB) (Free:201.27 GB) NTFS

\\?\Volume{d796b0a6-6182-11e2-b947-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{dd33b458-0000-0000-0000-80bce8000000}\ () (Fixed) (Total:0.57 GB) (Free:0.13 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: DD33B458)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=579 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 88063EA4)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================