Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-10-2020
Ran by admin (18-10-2020 13:14:58)
Running from C:\Users\admin\OneDrive - edrive\Desktop
Windows 10 Home Version 2004 19041.572 (X64) (2020-07-20 09:52:03)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

admin (S-1-5-21-2003990707-279457667-3181234942-1002 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-2003990707-279457667-3181234942-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2003990707-279457667-3181234942-503 - Limited - Disabled)
Guest (S-1-5-21-2003990707-279457667-3181234942-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2003990707-279457667-3181234942-1004 - Limited - Enabled)
Marta (S-1-5-21-2003990707-279457667-3181234942-1001 - Limited - Enabled) => C:\Users\Marta
WDAGUtilityAccount (S-1-5-21-2003990707-279457667-3181234942-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\uTorrent) (Version: 3.4.1.31139 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.445 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.445 - Adobe)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.5.205 - Adobe, Inc.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{86A08212-D8D0-62C3-6BC5-BCFBC4A8DEBB}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
Application Mover (x64) (HKLM\...\Application Mover (x64 Shareware)_is1) (Version: 4.5 - Funduc Software Inc.)
Ashampoo Burning Studio 2020 (HKLM-x32\...\{91B33C97-77F2-9216-B29B-12D7D670E817}_is1) (Version: 1.21.3 - Ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 21 (HKLM-x32\...\{91B33C97-3390-FD9A-8E0F-3F6BA7865E46}_is1) (Version: 21.5.0 - Ashampoo GmbH & Co. KG)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Avidemux 2.7 - 64 bits (HKLM-x32\...\Avidemux 2.7 - 64 bits (64-bit)) (Version: 2.7.0.170814 - )
Avidemux VC++ 64bits (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\{e4a715f5-dfee-451c-9951-abfc447c8828}) (Version: 2.7.5 - Mean)
Backup and Sync from Google (HKLM\...\{B109BD68-709A-485B-97E6-651FEB234AC9}) (Version: 3.51.3307.8076 - Google, Inc.)
Bad CD DVD Reader 1.0 (HKLM-x32\...\Bad CD DVD Reader_is1) (Version:  - Aiv Software)
BadCopy Pro (HKLM-x32\...\BadCopy Pro) (Version:  - )
Balíček ovladače systému Windows - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Balíček ovladače systému Windows - Lenovo LenovoVhid  (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
Bino (HKLM-x32\...\Bino) (Version: 1.4.4 - The Bino developers)
BitMeter (HKLM-x32\...\BitMeter) (Version:  - )
Bratrstvo Vikingů (HKLM-x32\...\Bratrstvo Vikingů) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.2.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MX720 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX720_series) (Version: 1.01 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.69 - Piriform)
CD Recovery Toolbox Free 2.2 (HKLM-x32\...\CD Recovery Toolbox Free_is1) (Version:  - File Master LLC)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Contents (HKLM-x32\...\{F6A76E9C-C299-4CFA-AD2A-57FE9DD68B70}) (Version: 1.6.0.272 - Corel Corporation) Hidden
Corel VideoStudio Pro X3 (HKLM-x32\...\_{F072CA07-A781-45E4-9975-C033A73019CF}) (Version: 1.6.0.272 - Corel Corporation)
CrystalDiskMark 7.0.0g (HKLM\...\CrystalDiskMark7_is1) (Version: 7.0.0g - Crystal Dew World)
CUT100 verze 7.18 Demo (HKLM-x32\...\CUT100 demo csy_is1) (Version:  - Ecru Software)
CZShare Manager (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\7f4182272b52fd8f) (Version: 0.0.1.35 - CZShare)
DAEMON Tools Pro (HKLM\...\DAEMON Tools Pro) (Version: 8.2.1.0709 - Disc Soft Ltd)
Data Lifeguard Diagnostic version 1.36 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version:  - Western Digital Corporation)
Dědictví: Čarodějný ostrov (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\Dědictví: Čarodějný ostrov) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
DeviceIO (HKLM-x32\...\{F4E9851F-765E-40B7-9859-237C2724E62C}) (Version: 1.6.0.272 - Corel Corporation) Hidden
Digital Guitar Tuner 2.3 (HKLM-x32\...\Digital Guitar Tuner 2.3_is1) (Version:  - )
DLL Suite 2014 (HKLM-x32\...\{885843E7-6CAC-4791-B7BF-1CD516017954}_is1) (Version:  - )
Driver Booster 8 (HKLM-x32\...\Driver Booster_is1) (Version: 8.0.1 - IObit)
Duplicate Photo Finder (HKLM-x32\...\{82BAA379-A0B8-4637-8286-0A9AD146453F}}_is1) (Version: 1.6.5.0 - Ashisoft)
DVDFab 11.1.0.0 (29/07/2020) (HKLM-x32\...\DVDFab 11) (Version: 11.1.0.0 - DVDFab Software Inc.)
DVDStyler v2.1 (HKLM-x32\...\DVDStyler_is1) (Version:  - )
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version:  - EaseUS)
EaseUS Partition Master 12.0 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version:  - EaseUS)
Easy Photo Denoise 2.0 (HKLM-x32\...\Easy Photo Denoise_is1) (Version: 2.0 - SoftOrbits)
Easy Photo Unblur 2.0 (HKLM-x32\...\Easy Photo Unblur_is1) (Version: 2.0 - SoftOrbits)
Energy Management (HKLM-x32\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.2.1 - Lenovo) Hidden
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.2.1 - Lenovo)
Energy Manager (HKLM-x32\...\{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.0.31 - Lenovo) Hidden
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.0.31 - Lenovo)
ESET Security (HKLM\...\{3EB22EED-2263-4174-9F36-09BD15A7AEF8}) (Version: 13.2.18.0 - ESET, spol. s r.o.)
FastShare.cz verze 2.0 (HKLM-x32\...\FastShare.cz_is1) (Version: 2.0 - )
File Magic (HKLM\...\File Magic_is1) (Version: 1.9.8.19 - Solvusoft Corporation)
FileZilla Client 3.47.2.1 (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\FileZilla Client) (Version: 3.47.2.1 - Tim Kosse)
Find.Same.Images.OK (HKLM\...\Find.Same.Images.OK) (Version:  - )
FlashGet3.7 (HKLM-x32\...\FlashGet3.7) (Version: 3.7.0.1203 - hxxp://www.FlashGet.com)
Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.38.7312 - FreeDownloadManager.ORG)
FreeFileSync 11.1 (HKLM-x32\...\FreeFileSync_is1) (Version: 11.1 - FreeFileSync.org)
Furniture Studio (HKLM-x32\...\Furniture Studio) (Version: 16.12.29.4 - Nikodem software)
GetRight (HKLM-x32\...\GetRight_is1) (Version:  - Headlight Software, Inc.)
GIMP 2.10.20 (HKLM\...\GIMP-2_is1) (Version: 2.10.20 - The GIMP Team)
Gnomes Garden (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\Gnomes Garden) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.75 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8301}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version:  - EFD Software)
Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)
HideAway (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\HideAway) (Version: 4.11.0 - Firetrust Limited)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.0.510 - )
ChargeMaster2 (HKLM-x32\...\{9F626FC2-3FDE-4947-BAA4-EC7FC3AFAEBB}) (Version: 2.0.4 - SkyRC)
Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version:  - Cheat Engine)
ICA (HKLM-x32\...\{F072CA07-A781-45E4-9975-C033A73019CF}) (Version: 1.6.0.272 - Corel Corporation) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.10.0 - Intel)
Intel(R) Computing Improvement Program (HKLM\...\{D98C2DF9-C731-4322-A5F0-D897300216EE}) (Version: 2.4.05718 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000050-0210-1029-84C8-B8D95FA3C8C3}) (Version: 21.50.0.1 - Intel Corporation)
IPM_VS_Pro (HKLM-x32\...\{FD67D9F3-FED6-4A2E-9D6C-8C8C44DEF8FF}) (Version: 13.0 - Corel Corporation) Hidden
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
Java(TM) SE Development Kit 13.0.2 (64-bit) (HKLM\...\{606493F9-D1F1-5355-BB8A-F0E30F1AFFED}) (Version: 13.0.2.0 - Oracle Corporation)
JavaFX 2.2.21 (HKLM-x32\...\{1111706F-666A-4037-7777-222103264D10}) (Version: 2.2.21 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2-1) (Version: 2.0 - AppWork GmbH)
KingRoot version 3.5.0.1157 (HKLM-x32\...\{FA3B7324-9EB4-4ADC-84D0-5461BE113832}_is1) (Version: 3.5.0.1157 - KingRoot)
K-Lite Mega Codec Pack 15.6.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.0 - KLCP)
Královská obrana (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\Královská obrana) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.7600 - Broadcom Corporation)
Lenovo Diagnostics Tool  (HKLM\...\{01ADF966-E3BA-40DC-9037-E90BBA9ED50E}) (Version: 4.31.1 - Lenovo)
Lenovo EasyCamera (HKLM-x32\...\{4BB1DCED-84D3-47F9-B718-5947E904593E}) (Version: 6.64.1703.03 - Lenovo EasyCamera)
Lenovo EE Boot Optimizer (HKLM\...\Lenovo EE Boot Optimizer) (Version: 0.0.1.9 - Lenovo)
Lenovo LePhone Driver (HKLM-x32\...\{6B1BB251-9192-486C-A207-B252916E5963}) (Version: 2.0.3.0 - Lenovo)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0.2525 - CyberLink Corp.) Hidden
Lenovo Smart Assistant 1.03 (HKLM-x32\...\VibeRomFlash) (Version: 1.03.0.0 - Lenovo)
Lenovo YouCam (HKLM-x32\...\{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.3728 - CyberLink Corp.) Hidden
MacDrive 8 (HKLM\...\{8F6D780C-53B8-4385-98BC-62F78F9E4C38}) (Version: 8.0.5.31 - Mediafour Corporation)
Malware Hunter 1.98.0.687 (HKLM-x32\...\Malware Hunter) (Version: 1.98.0.687 - Glarysoft Ltd)
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
ManicTime (HKLM-x32\...\{30BC5E79-87A6-43E7-9327-CB62683A148C}) (Version: 2.5.0.4 - Finkit d.o.o.)
ManicTime (HKLM-x32\...\{FCE7FCF0-82A4-4559-96E6-1072F7CAC053}) (Version: 4.3.5.0 - Finkit d.o.o.)
MCLAB (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\MCLAB) (Version: MCLAB 2017.3.1 - Computer MCL Brno, spol. s.r.o.)
MediaInfo 20.03 (HKLM\...\MediaInfo) (Version: 20.03 - MediaArea.net)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.43 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.49 - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 12.181.137.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.13231.20390 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\OneDriveSetup.exe) (Version: 20.169.0823.0006 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.13231.20390 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visio - cs-cz (HKLM\...\VisioProRetail - cs-cz) (Version: 16.0.13231.20390 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.21.27702 (HKLM-x32\...\{f4220b74-9edd-4ded-bc8b-0342c1e164d8}) (Version: 14.21.27702.2 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ Run Time  Lib Setup (HKLM-x32\...\{AAF4238F-7C29-451D-9925-C753271A5728}) (Version: 1.0.0 - Microsoft)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MiniTool Partition Wizard Free 11 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Software Limited)
MKVToolNix 38.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 38.0.0 - Moritz Bunkus)
MLE (HKLM-x32\...\{7E4CB404-F1E4-4E81-A1CB-2CBB310481D1}) (Version: 1.0.0.18 - Corel Corporation) Hidden
Moai: Postav si svůj sen (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\Moai: Postav si svůj sen) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 75.0 - Mozilla)
Mozilla Thunderbird 79.0 (x64 cs) (HKLM\...\Mozilla Thunderbird 79.0 (x64 cs)) (Version: 79.0 - Mozilla)
Mp3tag v3.02 (HKLM-x32\...\Mp3tag) (Version: 3.02 - Florian Heidenreich)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Multi Data Rescue 2.1 (HKLM-x32\...\Multi Data Rescue_is1) (Version: 1.1 - )
Multi Password Recovery (HKLM-x32\...\Multi Password Recovery) (Version:  - )
Nowy Rozkrój wersja 6.2.4 (HKLM-x32\...\Nowy Rozkrój_is1) (Version: 6.2.4 - Ecru Oprogramowanie)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
O&O DiskImage Professional (HKLM\...\{56F8EF3C-D9A0-4728-95D5-DC05A72931F5}) (Version: 7.81.16 - O&O Software GmbH)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
One Click Root (HKLM-x32\...\{6EAD0BE5-D1CF-4BE8-A66F-53FE9B8D89CC}) (Version: 1.0.0.5 - One Click Root)
Onekey Theater (HKLM-x32\...\{D4B060B9-AD4A-4152-9D99-28B93C615AFE}) (Version: 2.0.2.8 - Lenovo) Hidden
Onekey Theater (HKLM-x32\...\InstallShield_{D4B060B9-AD4A-4152-9D99-28B93C615AFE}) (Version: 2.0.2.8 - Lenovo)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Optimik (HKLM-x32\...\Optimik_is1) (Version:  - Rastislav Korytár - RK Software)
Optimik Exporter (HKLM-x32\...\Optimik Exporter_is1) (Version:  - Rastislav Korytár - RK Software)
Osadníci Západu (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\Osadníci Západu) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
Ovladače videa společnosti Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
PcCloneEX (HKLM-x32\...\PcCloneEX) (Version:  - )
PDFCreator (HKLM\...\{00010FEF-82A2-497E-983A-7105A0167FA7}) (Version: 4.0.3 - pdfforge GmbH)
pdfforge Images2PDF 0.9.6.930 (HKLM\...\{00120495-F25C-4F44-9DC7-2D812D025DBA}) (Version: 0.9.6.930 - pdfforge GbR)
Photo Stamp Remover 11.0 (HKLM-x32\...\Photo Stamp Remover_is1) (Version: 11.0 - SoftOrbits)
PhotoScissors 4.1 (HKLM\...\{664FCCAE-8187-4EC5-B191-758C040C999C}_is1) (Version:  - teorex)
Pinnacle Studio 15 (HKLM-x32\...\{1362E602-9625-42D3-B57F-CDA9D26F9DA8}) (Version: 15.0.0.7593 - Pinnacle Systems)
Pirátská kronika. Sběratelská edice (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\Pirátská kronika. Sběratelská edice) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
PL2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.20.00 - Prolific Technology INC)
PornHub Video Downloader 3.25 (HKLM-x32\...\PornHub Video Downloader_is1) (Version:  - DownloadToolz, Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.7 - Power Software Ltd)
PRO100 (HKLM-x32\...\{B3DBB43D-9451-45D0-B5A9-6413C98D091B}) (Version: 1.0.0 - Ecru)
Product Key Explorer 3.2.5 (HKLM-x32\...\Product Key Explorer_is1) (Version:  - Nsasoft, LLC.)
PureHD (HKLM-x32\...\{F8423392-2296-4748-9B66-344432459632}) (Version: 1.6.0.272 - Corel Corporation) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.1 - Qualcomm Atheros)
Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 1.2.0.36 - Ralink)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31233 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.89.716.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8934.1 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10008 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.0180 - REALTEK Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
remove.bg (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\remove) (Version: 1.1.1 - Kaleido AI GmbH)
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (HKLM-x32\...\{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
Samsung Story Album Viewer (HKLM-x32\...\InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.17.0 - Samsung Electronics Co., Ltd.)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
SDÍLEJ.CZ Manager (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\69f070f18ade444c) (Version: 0.0.1.42 - SDÍLEJ.CZ)
Seagate Dashboard (HKLM-x32\...\{EA266F00-A8E7-43A0-8DED-FBFE3F076934}) (Version: 4.9.2.0 - Seagate)
SeaTools for Windows 1.4.0.7 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.7 - Seagate Technology)
Setup (HKLM-x32\...\{F069C491-69E6-4D9B-9A0C-B7894A1FA97C}) (Version: 1.6.0.272 - Corel Corporation) Hidden
Share (HKLM-x32\...\{F909BD3C-8684-4ACF-B7C3-33F4F9F901B7}) (Version: 1.6.0.272 - Corel Corporation) Hidden
Share64 (HKLM\...\{F6246243-CF06-4E40-8A37-C3B537695C36}) (Version: 1.6.0.272 - Corel Corporation) Hidden
SharewareOnSale Notifier (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\SharewareOnSale Notifier) (Version: 20 - SharewareOnSale)
Služba Lenovo Vantage (HKLM-x32\...\VantageSRV_is1) (Version: 3.3.115.0 - Lenovo Group Ltd.)
SmartSound Common Data (HKLM-x32\...\{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Common Data (HKLM-x32\...\InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (HKLM-x32\...\{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.5 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.5 - SmartSound Software Inc.)
Soft Organizer verze 8.10 (HKLM\...\Soft Organizer_is1) (Version: 8.10 - ChemTable Software)
SoftOrbits Background Remover 5.0 (HKLM-x32\...\SoftOrbits Background Remover_is1) (Version: 5.0 - SoftOrbits)
SoftOrbits Photo Retoucher 5.0 (HKLM-x32\...\SoftOrbits Photo Retoucher_is1) (Version: 5.0 - SoftOrbits)
Software Update Pro 5.52.0.51 (HKLM-x32\...\Software Update Pro) (Version: 5.52.0.51 - Glarysoft Ltd)
SRS Control Panel (HKLM\...\{F3C66EC8-2F33-452D-9CFF-E8C886B3ECC4}) (Version: 1.11.0900 - SRS Labs, Inc.)
Sticky Password 8.2.3.43 (HKLM-x32\...\Sticky Password_is1) (Version: 8.2 - Lamantine Software)
StreamDown 6.8.0.0 (HKLM-x32\...\{78F2282B-9AC8-49AA-B34F-6FD68E8E4362}_is1) (Version:  - CoCSoft Computing, Inc.)
StreamTransport version: 1.0.2.2171 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version:  - )
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1226 - SUPERAntiSpyware.com)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
SyncBackPro x64 (HKLM-x32\...\SyncBackPro64_is1_is1) (Version: 9.4.2.15 - 2BrightSparks)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.10.5 - TeamViewer)
TNod User & Password Finder (HKLM\...\TNod) (Version: 1.7.0.0 - Tukero[X]Team)
Total Commander Ultima Prime 7.6 (HKLM-x32\...\TC UP) (Version: 7.6.2019.03 - TC UP Team)
Trpasličí obránci: Ocel & Dřevo! (HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\Trpasličí obránci: Ocel & Dřevo!) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateStar (HKLM-x32\...\{074CBAD4-DB6D-4AD8-8A4B-C14B07C48531}) (Version: 11.0.1297 - UpdateStar GmbH)
UserGuide (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.6 - Lenovo) Hidden
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.6 - Lenovo)
VIO (HKLM-x32\...\{F95C8C1F-25BB-44EC-A7E6-5C17ABC6BC71}) (Version: 1.6.0.272 - Corel Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN)
VMware ThinApp (HKLM-x32\...\{058D59A3-ACB0-4D70-A6C3-41C10F739C51}) (Version: 5.1.13023 - VMware, Inc.)
VSClassic (HKLM-x32\...\{FB0B6DDD-DF3E-4CD6-927C-724AB854E322}) (Version: 1.6.0.272 - Corel Corporation) Hidden
VSO ConvertXToDVD 7 (HKLM-x32\...\{A021D003-6933-4EA4-B582-F1D0C3E52409}_is1) (Version: 7.0.0.68 - VSO Software)
VSPro (HKLM-x32\...\{F206FEC3-F5DD-43FD-A8CF-9C46B8A6A92C}) (Version: 1.6.0.272 - Corel Corporation) Hidden
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Driver Package - Lenovo (ACPIVPC) System  (12/02/2010 6.1.0.1) (HKLM\...\EA12B1FB53CE4E387C31A85236C41EF559B5E392) (Version: 12/02/2010 6.1.0.1 - Lenovo)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version:  - )
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinHTTrack Website Copier 3.49-2 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version:  - )
WinUtilities Professional Edition 15.74 (HKLM-x32\...\{FC274982-5AAD-4C20-848D-4424A5043009}_is1) (Version: 15.74 - YL Computing, Inc)
Wise Care 365 5.56 (HKLM-x32\...\Wise Care 365_is1) (Version: 5.56 - WiseCleaner.com, Inc.)
Wise Memory Optimizer 3.6.6 (HKLM-x32\...\Wise Memory Optimizer_is1) (Version: 3.6.6 - WiseCleaner.com, Inc.)
Wise Program Uninstaller 2.3.8 (HKLM-x32\...\Wise Program Uninstaller_is1) (Version: 2.3.8 - WiseCleaner.com, Inc.)
Wondershare Video Editor(Build 3.1.1) (HKLM-x32\...\Wondershare Video Editor_is1) (Version:  - Wondershare Software)
XenArmor WindowsProductKeyFinder Personal Edition 2019 (HKLM-x32\...\WindowsProductKeyFinder Personal Edition 2019) (Version: 2019 - XenArmor)
Zoner Photo Studio 16 - Obálky a šablony (HKLM\...\ZonerPhotoStudio16_Templates_CZ_is1) (Version: 16.0.1.2 - ZONER software)
Zoner Photo Studio 16 (HKLM\...\ZonerPhotoStudio16_CZ_is1) (Version: 16.0.1.5 - ZONER software)
Zoner Photo Studio X (HKLM\...\ZonerPhotoStudioX_CZ_is1) (Version: 19.1610.2.7 - ZONER software)

Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-15] (Canon Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-01-16] (Microsoft Corporation)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2009.18.0_x64__k1h2ywk1493x8 [2020-09-27] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-22] (Microsoft Studios) [MS Ad]
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2015-11-12] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2003990707-279457667-3181234942-1002_Classes\CLSID\{04271989-C4D2-9BC0-55A5-F9DF99A3F0D3} -> [OneDrive - edrive] => C:\Users\admin\OneDrive - edrive [2020-07-18 10:45]
CustomCLSID: HKU\S-1-5-21-2003990707-279457667-3181234942-1002_Classes\CLSID\{869C14C8-1830-491F-B575-5F9AB40D2B42}\InprocServer32 -> C:\Video\MediaInfo\MediaInfo_InfoTip.dll (MediaArea.net -> MediaArea.net)
CustomCLSID: HKU\S-1-5-21-2003990707-279457667-3181234942-1002_Classes\CLSID\{A82DB166-8CDF-4CEB-879B-E1CE1BE5682F} -> [Fotky] => C:\Stazeno\OziBox\SurDoc Universal Sync\Fotky [2017-11-19 18:55]
CustomCLSID: HKU\S-1-5-21-2003990707-279457667-3181234942-1002_Classes\CLSID\{EF706AB3-1E0E-4C5B-A40F-023F0FA36E12}\localserver32 -> C:\Program Files\Soft Organizer\Notifications.dll (Konstantin Polyakov IP -> )
SSODL: EldosMountNotificator-cbfs4 - {30889C74-A86F-4159-9C3D-51497C926E7E} - C:\windows\system32\cbfsMntNtf4.dll (EldoS Corporation -> EldoS Corporation)
SSODL-x32: EldosMountNotificator-cbfs4 - {30889C74-A86F-4159-9C3D-51497C926E7E} - C:\windows\SysWOW64\cbfsMntNtf4.dll (EldoS Corporation -> EldoS Corporation)
ShellServiceObjects: Virtual Storage Mount Notification -> {30889C74-A86F-4159-9C3D-51497C926E7E} => C:\windows\system32\cbfsMntNtf4.dll [2012-12-24] (EldoS Corporation -> EldoS Corporation)
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {30889C74-A86F-4159-9C3D-51497C926E7E} => C:\windows\SysWOW64\cbfsMntNtf4.dll [2012-12-24] (EldoS Corporation -> EldoS Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2020-10-11] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2020-10-11] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2020-10-11] (Mega Limited -> )
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-09-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-09-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-09-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs4] -> {3A24B33E-70E7-4048-86FF-4B92D2841607} => C:\windows\system32\cbfsMntNtf4.dll [2012-12-24] (EldoS Corporation -> EldoS Corporation)
ShellIconOverlayIdentifiers: [OODIIcon] -> {14A94384-BBED-47ed-86C0-6BF63FD892D0} => C:\Program Files\OO Software\DiskImage\oodishi.dll [2014-05-28] (O&O Software GmbH -> O&O Software GmbH)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2020-10-11] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2020-10-11] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2020-10-11] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs4] -> {3A24B33E-70E7-4048-86FF-4B92D2841607} => C:\windows\system32\cbfsMntNtf4.dll [2012-12-24] (EldoS Corporation -> EldoS Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-09-09] (Google LLC -> Google)
ContextMenuHandlers1: [Glarysoft MalwareHunter] -> {EA847F47-97F1-4D78-AB99-C63CA1C327F0} => C:\Program Files (x86)\Glarysoft\Malware Hunter\x64\MHContextHandlerx64.dll [2020-02-17] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2020-10-11] (Mega Limited -> )
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2019-11-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => C:\Vypalovani\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Pakovace\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Pakovace\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDrive] -> {A5415364-784A-41A5-B47A-D452909CA8FF} => C:\Vypalovani\DAEMON Tools Pro\DTShl64.dll [2018-01-19] (Disc Soft Ltd -> Disc Soft Ltd)
ContextMenuHandlers2: [Glarysoft MalwareHunter] -> {EA847F47-97F1-4D78-AB99-C63CA1C327F0} => C:\Program Files (x86)\Glarysoft\Malware Hunter\x64\MHContextHandlerx64.dll [2020-02-17] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [File not signed]
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Vypalovani\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers3: [DaemonShellExtImage] -> {40966797-8FFE-46C8-9EF8-7003F33CCF0F} => C:\Vypalovani\DAEMON Tools Pro\DTShl64.dll [2018-01-19] (Disc Soft Ltd -> Disc Soft Ltd)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2020-10-11] (Mega Limited -> )
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-09-09] (Google LLC -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2020-10-11] (Mega Limited -> )
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Pakovace\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Glarysoft MalwareHunter] -> {EA847F47-97F1-4D78-AB99-C63CA1C327F0} => C:\Program Files (x86)\Glarysoft\Malware Hunter\x64\MHContextHandlerx64.dll [2020-02-17] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Vypalovani\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Pakovace\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Pakovace\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.X264] => C:\WINDOWS\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\WINDOWS\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\WINDOWS\system32\xvidvfw.dll [310784 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.dvacm] => C:\Program Files (x86)\Common Files\Ulead Systems\VIO\DVACM.acm [20480 2009-12-17] (Corel TW Corp.) [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
Shortcut: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 11\DVDFab Online.lnk -> hxxp://www.dvdfab.cn/?s=dvdfab11&v=11.1.0.
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\TeamViewer.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=oooiobdokpcfdlahlmcddobejikcmkfo

==================== Loaded Modules (Whitelisted) =============

2020-03-24 22:31 - 2019-11-18 12:56 - 001398272 _____ () [File not signed] C:\Program Files (x86)\Sticky Password\DLLs\_hashlib.pyd
2014-02-11 07:08 - 2014-02-11 07:08 - 000817152 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2015-08-21 22:09 - 2015-08-21 22:09 - 000214528 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2015-08-21 22:09 - 2015-08-21 22:09 - 000127488 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 003650560 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2019-12-01 16:08 - 2012-08-31 11:30 - 000313344 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_CSY.DLL
2009-07-14 03:20 - 2009-07-14 03:40 - 000267776 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNBLM4.DLL
2012-03-18 16:36 - 2007-04-16 06:00 - 000258560 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMLM93.DLL
2017-03-06 17:25 - 2012-07-31 09:48 - 000359936 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2012-03-17 13:02 - 2009-07-14 03:40 - 000084992 _____ (CANON INC.) [File not signed] C:\WINDOWS\system32\spool\PRTPROCS\x64\CNBPP4.DLL
2018-01-19 13:13 - 2017-02-25 07:34 - 005067264 _____ (Disc Soft Ltd) [File not signed] C:\Vypalovani\DAEMON Tools Pro\Engine.dll
2020-07-11 11:28 - 2020-07-11 11:28 - 000398336 _____ (Florian Heidenreich) [File not signed] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll
2009-03-31 17:21 - 2009-03-31 17:21 - 000093184 _____ (Mediafour Corporation) [File not signed] C:\Program Files\Mediafour\MacDrive 8\MACDRAPI.DLL
2010-02-03 16:27 - 2010-02-03 16:27 - 000238080 _____ (Mediafour Corporation) [File not signed] C:\Program Files\Mediafour\MacDrive 8\MDShell.dll
2009-06-23 12:03 - 2009-06-23 12:03 - 000151552 _____ (Mediafour Corporation) [File not signed] C:\Program Files\Mediafour\MacDrive 8\MDVolumeIcons.dll
2019-09-30 16:23 - 2019-09-30 16:23 - 000116736 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
2020-08-12 15:39 - 2020-05-30 20:04 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\x64\SQLite.Interop.dll
2020-09-11 08:47 - 2020-05-30 19:58 - 001280000 _____ (Robert Simpson, et al.) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\SQLite.Interop.dll
2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
2020-07-11 09:42 - 2020-04-09 09:17 - 000944840 _____ (SQLite Development Team) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll
2017-02-12 02:28 - 2015-09-28 20:08 - 000255488 _____ (Sysprogs OU) [File not signed] C:\Vypalovani\WinCDEmu\x64\WinCDEmuContextMenu.dll
2020-10-16 02:04 - 2020-10-16 02:04 - 000120320 _____ (Zumero, LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SQLitePCLRaw.core\bdef828604759e67bde7ab56edfc589e\SQLitePCLRaw.core.ni.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
AlternateDataStreams: C:\ProgramData\Temp:0E5CFA74 [116]
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F [134]
AlternateDataStreams: C:\ProgramData\Temp:689AB7E9 [134]
AlternateDataStreams: C:\ProgramData\Temp:87C79266 [134]
AlternateDataStreams: C:\ProgramData\Temp:C5760A8B [290]
AlternateDataStreams: C:\ProgramData\Temp:C8B702FF [149]
AlternateDataStreams: C:\ProgramData\Temp:F6E5C7FB [111]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2003990707-279457667-3181234942-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.cz/
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-2003990707-279457667-3181234942-1002 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_csCZ474
SearchScopes: HKU\S-1-5-21-2003990707-279457667-3181234942-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2003990707-279457667-3181234942-1002 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENN_csCZ474
BHO: No Name -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-09-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-09-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-08-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: FlashGetBHO -> {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} -> C:\Users\admin\AppData\Roaming\FlashGetBHO\FlashGetBHO.dll [2012-01-06] (Trend Media Corporation Limited -> Trend Media Group)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-08-30] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKU\S-1-5-21-2003990707-279457667-3181234942-1002 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2004-01-29] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2004-01-29] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2004-01-29] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2004-01-29] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2004-01-29] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2004-01-29] (Microsoft Corporation) [File not signed]
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-03] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\mojebanka.cz -> hxxps://etrading.mojebanka.cz
IE trusted site: HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\sharepoint.com -> hxxps://cgsuthm-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2020-08-22 20:16 - 000001206 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 http://www.driver-soft.com
127.0.0.1 www.driver-soft.com
127.0.0.1 v1.ff.avast.com 
127.0.0.1 vlcproxy.ff.avast.com 
127.0.0.1         app.drivereasy.com
127.0.0.1         cdn.drivereasy.com
149.202.196.40         dow0.drivereasy.com
149.202.196.40         dow1.drivereasy.com
0.0.0.0 serius.mwbsys.com
0.0.0.0 keystone.mwbsys.com127.0.0.1 reg.wisecleaner.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Lenovo\Bluetooth Software\;C:\Program Files\Lenovo\Bluetooth Software\syswow64;C:\Program Files (x86)\Common Files\Ulead Systems\MPEG;C:\Program Files (x86)\Pinnacle\Shared Files\;C:\Video\MKVToolNix;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 1) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupfolder: C:^Users^admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^TornTvDownloader.lnk => C:\windows\pss\TornTvDownloader.lnk.Startup
MSCONFIG\startupreg: DriverUpdaterPro => 
MSCONFIG\startupreg: EaseUS EPM tray => 
MSCONFIG\startupreg: Getting started with MacDrive 8 => "C:\Program Files\Mediafour\MacDrive 8\MDGetStarted.exe" /auto
MSCONFIG\startupreg: MacDrive 8 application => "C:\Program Files\Mediafour\MacDrive 8\MacDrive.exe"
MSCONFIG\startupreg: Zoner Photo Studio Autoupdate => "C:\Grafika\Photo Studio 16\Program32\ZPSTRAY.EXE"
HKLM\...\StartupApproved\Run: => "OODITRAY.EXE"
HKLM\...\StartupApproved\Run: => "Reflect UI"
HKLM\...\StartupApproved\Run32: => "DBAgent"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "UpdatePRCShortCut"
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKLM\...\StartupApproved\Run32: => "Standby"
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\StartupApproved\Run: => "swg"
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\StartupApproved\Run: => "ToolwizCareFree"
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\StartupApproved\Run: => "Uploader"
HKU\S-1-5-21-2003990707-279457667-3181234942-1002\...\StartupApproved\Run: => "Skype for Desktop"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{780493E8-D6E5-4D3F-871A-545A3E2DA458}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CC9E4B40-1231-497C-A4FD-3D40BC26FAE0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E77CFA9A-68E3-4B95-A147-72A15A4E33A8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3F9E0F71-C90B-4F41-B5DF-186AEEB4266B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{82740B71-1847-41BA-A07C-D05DF1B88D44}] => (Allow) C:\ProgramData\Programs\AAct Network v1.1.0 Portable\AAct_Network_x64.exe => No File
FirewallRules: [{5964BEF4-56D7-404F-B0F6-1BF698B045FE}] => (Allow) C:\ProgramData\Programs\AAct Network v1.1.0 Portable\AAct_Network_x64.exe => No File
FirewallRules: [{32F26E00-4C11-40AA-916A-C3CCFC71B7EC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{26C5D9C8-F79C-4DAA-A2D8-F45FBF5D1ED6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{15003BCE-40FF-445C-BEE3-6AA2A9F61753}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7209BD79-29DF-42FA-88F5-D4B06D5EAD30}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E2EE9EA4-985F-4923-B89E-AD133EE4857C}] => (Allow) C:\Driver\DriverEasy\DriverEasy.exe => No File
FirewallRules: [{47247A4B-B1B9-4315-A768-5F4B0586305A}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{4F5ECDAC-D7A5-4D8D-82EF-96E5E59F4172}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{519789B3-C941-4A65-ACE0-F838F228F2FD}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{E4BE5DC7-0A5B-4AA7-9B5A-081EB1E83A24}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{6BCB9513-F318-43BF-97B8-01A2EE6940E2}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{FF6D0C99-38B2-490E-A339-084F2E1854BF}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{CB4E883A-CCA7-4A8D-BF38-9738AE601B39}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => No File
FirewallRules: [{37EA091B-F800-460C-ADBA-583751FE2A37}] => (Allow) C:\Internet\Free Download Manager\fdm.exe (FreeDownloadManager.org) [File not signed]
FirewallRules: [{3F324264-2019-4E58-AAE0-A4EF73CD74D6}] => (Allow) C:\Internet\Free Download Manager\fdm.exe (FreeDownloadManager.org) [File not signed]
FirewallRules: [{000FD551-096A-42C4-B7E8-A2DA76AA9F01}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [File not signed]
FirewallRules: [{0D778980-CFC4-4FF7-A96F-D373BEFEA49B}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [File not signed]
FirewallRules: [{E7E6C125-EC03-428F-A4D7-04D32C2AD801}] => (Allow) LPort=8888
FirewallRules: [{3D938F11-B2F1-4518-9290-35C917128C87}] => (Allow) C:\Program Files (x86)\Alawarhry.cz\Pirate Chronicles Collectors Edition\Pirate Chronicles CE.exe (Alawar Entertainment Inc -> )
FirewallRules: [{FBD8CD1C-267E-4FC7-8115-0F245E62E980}] => (Allow) C:\Program Files (x86)\Alawarhry.cz\Gnomes Garden\GnomesGarden.wrp.exe () [File not signed]
FirewallRules: [{FC1177CE-8C08-473D-A758-67B16841ECF3}] => (Allow) C:\Program Files (x86)\Alawarhry.cz\Gnomes Garden\GnomesGarden.exe (Alawar Entertainment Inc -> )
FirewallRules: [{DFA4F73E-622B-4AB7-BBE1-948CCE718AB4}] => (Allow) C:\Program Files (x86)\Alawarhry.cz\Royal Defense\rd.wrp.exe () [File not signed]
FirewallRules: [{B7EB8E3D-C415-451A-BF32-A7FEC22B1F15}] => (Allow) C:\Program Files (x86)\Alawarhry.cz\Royal Defense\rd.exe (Alawar Entertainment Inc -> )
FirewallRules: [{09308A53-0447-496C-9962-2F42C23A32AB}] => (Block) LPort=445
FirewallRules: [{0167EAB9-F743-4A98-8481-825F8C176C90}] => (Block) LPort=445
FirewallRules: [{A02DF0AE-4F07-4CF7-8F5F-0EC1A3B91D0D}] => (Allow) C:\Program Files (x86)\Alawarhry.cz\Moai Build Your Dream\moai.wrp.exe () [File not signed]
FirewallRules: [{39985C65-873B-4FEA-B6A9-55142B10F646}] => (Allow) C:\Program Files (x86)\Alawarhry.cz\Moai Build Your Dream\moai.exe (Alawar Entertainment Inc -> )
FirewallRules: [{AFC68FB1-572E-4C75-B929-FF77936E40EA}] => (Allow) C:\Program Files (x86)\Alawarhry.cz\Moai Build Your Dream\moai.wrp.exe () [File not signed]
FirewallRules: [{B515CD86-1C2F-4D13-9053-99357B1FAD8A}] => (Allow) C:\Program Files (x86)\Alawarhry.cz\Moai Build Your Dream\moai.exe (Alawar Entertainment Inc -> )
FirewallRules: [{1E18C231-3996-492B-A8AF-8F8B3B57C2BD}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe => No File
FirewallRules: [{B7A0B4CC-191A-40FA-A9B5-7BB5D57D26BC}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe => No File
FirewallRules: [{9022533E-666F-48BE-AFA3-72EDE068A4A8}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe => No File
FirewallRules: [{0F7BED60-962F-463A-BED6-569A025E55F6}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe => No File
FirewallRules: [{1BF50C85-63D1-41F1-AA7B-60BC77182743}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{DB95BE6B-2FE1-4885-A65F-93EC9DB1178E}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{FA8B5032-7E3C-4665-B54D-EDD6A76032E1}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{73260BDC-5A9D-4C19-8B25-7E060C76069B}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{3C023CD8-97FC-4702-BED2-D9DAFC213BFA}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{2894425C-FF9E-456C-A462-A4067E8A4784}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe (Avid Technology, Inc. -> Pinnacle Systems)
FirewallRules: [{3AE76F9F-7658-4389-9BAF-1A3911568FF4}] => (Allow) C:\Prehravace\PowerDVD\PowerDVD12\PowerDVD12.exe => No File
FirewallRules: [{01089DFF-820D-406C-B004-6DC539575FB7}] => (Allow) C:\Prehravace\PowerDVD\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe => No File
FirewallRules: [{6921FF52-3DD5-452F-B4FF-DE46563F3F2A}] => (Allow) C:\Prehravace\PowerDVD\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe => No File
FirewallRules: [{73620CE9-A109-4810-B34E-10441487FB0C}] => (Allow) C:\Prehravace\PowerDVD\PowerDVD12\PowerDVD12Agent.exe => No File
FirewallRules: [{01F68136-4238-4B52-979A-5E09AE720EEE}] => (Allow) C:\Prehravace\PowerDVD\PowerDVD12\PowerDVD12ML.exe => No File
FirewallRules: [{216DE3B1-9D48-45FB-9A14-E14C4AD1357C}] => (Allow) C:\Prehravace\PowerDVD\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe => No File
FirewallRules: [{9F8ACB4B-59DA-42F2-8181-AEF46DAC77D4}] => (Allow) C:\Program Files (x86)\Nsasoft\ProductKeyExplorer\ProductKeyExplorer_zaloha.exe (Nsasoft US LLC -> Nsasoft LLC.)
FirewallRules: [{D475FA49-48AA-4D49-8B07-4C111BAE8272}] => (Allow) C:\Program Files (x86)\Nsasoft\ProductKeyExplorer\ProductKeyExplorer_zaloha.exe (Nsasoft US LLC -> Nsasoft LLC.)
FirewallRules: [{B7987C35-FE1B-470C-A5B3-4EF3631A085E}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{2C304A9B-F9BE-4F90-BDF0-301FE6AC0591}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{528D7BAE-8E9D-4EB2-A05E-DB9B52C9DDCD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D77F2DF8-8663-4EFD-A33F-C02B2DCF4D35}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AE92A3C0-F71B-4149-984A-3B4355FA7F88}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A995642D-B9E8-4859-B4EC-AA1FA0D964E2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1592C546-6F15-4E02-AAB9-4B874344C7ED}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FFEB7475-60F6-40EB-BF35-E0EF66365F55}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A889F5C3-6EEC-4180-B827-6CFEB322FB0B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{003B74E8-A4CC-4C8B-B1DD-7016195F5447}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{25640DE2-8585-49C9-BE9B-AFBC0902FE0D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F13F1702-D913-438D-962D-95DEA289C592}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{EE6ACB25-B04B-4B39-BA50-E36C80E4D9E9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{CA33F403-6ACA-4BED-9730-E1869F7FA404}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6DFF5F01-9046-458D-80A5-7ACD0B129F8A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{175EC625-EBA3-4DB5-81BC-3E5D52BB4701}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
StandardProfile\AuthorizedApplications: [C:\Internet\Orbit downloader\orbitdm.exe] => Enabled:Orbit
StandardProfile\AuthorizedApplications: [C:\Internet\Orbit downloader\orbitnet.exe] => Enabled:Orbit
StandardProfile\AuthorizedApplications: [C:\Internet\FlashGet 3\FlashGet3.exe] => Enabled:Flashget3

==================== Restore Points =========================

15-10-2020 17:56:43 Installed Macrium Reflect Free Edition
16-10-2020 23:00:22 Removed Macrium Reflect Free Edition

==================== Faulty Device Manager Devices ============

Name: DAEMON Tools Pro Virtual SCSI Bus
Description: DAEMON Tools Pro Virtual SCSI Bus
Class Guid: {4d36e97b-e325-11ce-bfc1-08002be10318}
Manufacturer: Disc Soft Ltd
Service: dtproscsibus
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: ========================

Application errors:
==================
Error: (10/17/2020 11:16:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamtray.exe, verze: 4.0.0.814, časové razítko: 0x5f7e3e2e
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x5e8272e4
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219d05
ID chybujícího procesu: 0x2db4
Čas spuštění chybující aplikace: 0x01d6a4ca7b5d6f14
Cesta k chybující aplikaci: C:\Udrzba\Malwarebytes Anti-Malware\mbamtray.exe
Cesta k chybujícímu modulu: C:\Udrzba\Malwarebytes Anti-Malware\Qt5Core.dll
ID zprávy: dce6e3c0-b6c2-46cb-8928-586b2c97c080
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (10/17/2020 06:42:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SyncBackPro.exe, verze: 9.4.2.15, časové razítko: 0x5f7ac04b
Název chybujícího modulu: SyncBackPro.exe, verze: 9.4.2.15, časové razítko: 0x5f7ac04b
Kód výjimky: 0xc000041d
Posun chyby: 0x000000000239a26a
ID chybujícího procesu: 0xbd0
Čas spuštění chybující aplikace: 0x01d6a478f0593d6d
Cesta k chybující aplikaci: C:\Zaloha\SyncBackPro\SyncBackPro.exe
Cesta k chybujícímu modulu: C:\Zaloha\SyncBackPro\SyncBackPro.exe
ID zprávy: dbd6b6d9-5cb2-457e-9744-602ae3ed29f4
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (10/17/2020 06:42:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SyncBackPro.exe, verze: 9.4.2.15, časové razítko: 0x5f7ac04b
Název chybujícího modulu: SyncBackPro.exe, verze: 9.4.2.15, časové razítko: 0x5f7ac04b
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000239a26a
ID chybujícího procesu: 0xbd0
Čas spuštění chybující aplikace: 0x01d6a478f0593d6d
Cesta k chybující aplikaci: C:\Zaloha\SyncBackPro\SyncBackPro.exe
Cesta k chybujícímu modulu: C:\Zaloha\SyncBackPro\SyncBackPro.exe
ID zprávy: 16aeebe3-99a3-439d-b29b-259e128ddc3a
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (10/16/2020 11:00:32 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (10/16/2020 06:18:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DTShellHlp.exe, verze: 8.2.1.709, časové razítko: 0x5a61d32c
Název chybujícího modulu: Engine.dll, verze: 8.1.1.666, časové razítko: 0x58932759
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001f3b10
ID chybujícího procesu: 0x19fc
Čas spuštění chybující aplikace: 0x01d6a3d0f3dc61a8
Cesta k chybující aplikaci: C:\Vypalovani\DAEMON Tools Pro\DTShellHlp.exe
Cesta k chybujícímu modulu: C:\Vypalovani\DAEMON Tools Pro\Engine.dll
ID zprávy: 3ffbadb4-de4b-412a-822a-7d99fa69baa9
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (10/16/2020 04:34:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DTShellHlp.exe, verze: 8.2.1.709, časové razítko: 0x5a61d32c
Název chybujícího modulu: Engine.dll, verze: 8.1.1.666, časové razítko: 0x58932759
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001f3b10
ID chybujícího procesu: 0xc44
Čas spuštění chybující aplikace: 0x01d6a3c5c10ec2ef
Cesta k chybující aplikaci: C:\Vypalovani\DAEMON Tools Pro\DTShellHlp.exe
Cesta k chybujícímu modulu: C:\Vypalovani\DAEMON Tools Pro\Engine.dll
ID zprávy: 375edb13-cbcd-4eb9-95c9-1057b18fcba1
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (10/15/2020 07:19:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (10/15/2020 07:19:03 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]


System errors:
=============
Error: (10/18/2020 12:32:31 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR2.

Error: (10/18/2020 12:01:24 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba LenovoSN neuspěla při spuštění v důsledku následující chyby: 
Načtení tohoto ovladače je blokováno.

Error: (10/18/2020 12:01:24 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\drivers\OneKey Recovery\Setup\Lenovo\x86\LenovoSN.sys

Error: (10/16/2020 11:32:34 PM) (Source: DCOM) (EventID: 10010) (User: Marta-notebook)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/16/2020 11:32:34 PM) (Source: DCOM) (EventID: 10010) (User: Marta-notebook)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/16/2020 11:26:53 PM) (Source: DCOM) (EventID: 10000) (User: Marta-notebook)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě: 
2147942767
při provádění příkazu: 
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (10/16/2020 06:48:34 PM) (Source: DCOM) (EventID: 10010) (User: Marta-notebook)
Description: Server microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/16/2020 06:48:34 PM) (Source: DCOM) (EventID: 10010) (User: Marta-notebook)
Description: Server Microsoft.Windows.Search_1.14.0.19041_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX49we79s9ab0xp8xpjb6t6g31ep03r71y.mca se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2020-10-17 21:56:27.7490000Z
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {38721B3B-CB4F-47AA-886F-8B0FEE292577}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-10-17 18:29:39.5520000Z
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Ymacco.ABC0&threatid=2147757678&enterprise=0
Name: Trojan:Win32/Ymacco.ABC0
ID: 2147757678
Severity: Vážné
Category: Trojský kůň
Path: file:_H:\Na vypaleni\Password\MessenPass 1.26_ukaze heslo pod hvezdickami.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\TC UP\TOTALCMD64.EXE
Security intelligence Version: AV: 1.325.922.0, AS: 1.325.922.0, NIS: 1.325.922.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-10-17 18:28:20.3690000Z
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Ymacco.ABC0&threatid=2147757678&enterprise=0
Name: Trojan:Win32/Ymacco.ABC0
ID: 2147757678
Severity: Vážné
Category: Trojský kůň
Path: file:_H:\Na vypaleni\Password\MessenPass 1.26_ukaze heslo pod hvezdickami.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\TC UP\TOTALCMD64.EXE
Security intelligence Version: AV: 1.325.922.0, AS: 1.325.922.0, NIS: 1.325.922.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-10-17 18:26:36.0420000Z
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Ymacco.ABC0&threatid=2147757678&enterprise=0
Name: Trojan:Win32/Ymacco.ABC0
ID: 2147757678
Severity: Vážné
Category: Trojský kůň
Path: file:_H:\Na vypaleni\Password\MessenPass 1.26_ukaze heslo pod hvezdickami.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\TC UP\TOTALCMD64.EXE
Security intelligence Version: AV: 1.325.922.0, AS: 1.325.922.0, NIS: 1.325.922.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-10-17 18:26:33.9510000Z
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Passview!MTB&threatid=2147756742&enterprise=0
Name: HackTool:Win32/Passview!MTB
ID: 2147756742
Severity: Vysoké
Category: Nástroj
Path: file:_H:\Na vypaleni\Password\Asterisk Key 10.0_zjisti heslo pod hvezdickami.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\TC UP\TOTALCMD64.EXE
Security intelligence Version: AV: 1.325.922.0, AS: 1.325.922.0, NIS: 1.325.922.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-10-13 21:03:14.0780000Z
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.325.586.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.17500.4
Error code: 0x80070102
Error description: Vypršel časový limit operace čekání. 

Date: 2020-10-11 19:28:32.6170000Z
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.325.462.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.17500.4
Error code: 0x80070102
Error description: Vypršel časový limit operace čekání. 

Date: 2020-10-08 22:04:46.8050000Z
Description: 
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Behavior Monitoring
Error Code: 0x80004005
Error description: Nespecifikovaná chyba 
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2020-08-23 16:27:46.5140000Z
Description: 
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: Tuto službu nelze spustit v nouzovém režimu.  
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2020-07-30 09:49:33.4700000Z
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.319.2163.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.17200.2
Error code: 0x80070102
Error description: Vypršel časový limit operace čekání. 

CodeIntegrity:
===================================

Date: 2020-10-18 12:21:44.1570000Z
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-10-18 12:21:44.1220000Z
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-10-18 10:18:23.5710000Z
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-10-18 10:18:23.5370000Z
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-10-18 10:08:17.7480000Z
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-10-18 10:08:17.7200000Z
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-10-18 10:06:19.9460000Z
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-10-18 10:06:18.8820000Z
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

BIOS: LENOVO 54CN18WW 07/20/2011
Motherboard: LENOVO Torpedo
Processor: AMD A6-3400M APU with Radeon(tm) HD Graphics
Percentage of memory in use: 87%
Total physical RAM: 3558.11 MB
Available physical RAM: 432.45 MB
Total Virtual: 7142.11 MB
Available Virtual: 2799.16 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.57 GB) (Free:138.43 GB) NTFS
Drive h: (TOSHIBA EXT) (Fixed) (Total:666.41 GB) (Free:339.51 GB) NTFS
Drive k: (TOSHIBA XBO) (Fixed) (Total:32.22 GB) (Free:0 GB) FAT32
Drive z: () (Fixed) (Total:0.2 GB) (Free:0.15 GB) NTFS ==>[system with boot components (obtained from drive)]


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 00652A50)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.6 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 698.6 GB) (Disk ID: 46E08CF2)
Partition 1: (Not Active) - (Size=666.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=32.2 GB) - (Type=0C)

==================== End of Addition.txt =======================