v počítači začalo vyskakovat okno pro zapnutí antivirové ochrany, viz. příloha.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-09-2021
Ran by Martina (administrator) on MARTINA-NB (LENOVO 3259TFG) (13-09-2021 12:58:40)
Running from C:\Users\Martina\Desktop
Loaded Profiles: Martina
Platform: Windows 8.1 Pro (Update) (X64) Language: Čeština (Česká republika)
Default browser: Vivaldi
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AuthenTec, Inc. -> ) C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
(AuthenTec, Inc. -> AuthenTec Inc.) C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe
(AuthenTec, Inc. -> AuthenTec, Inc) C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
(AuthenTec, Inc. -> AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe <2>
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files (x86)\totalcmd\TOTALCMD.EXE
(CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Mobile Wireless Group -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
(Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe
(Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Realtek Semiconductor Corp -> Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Ricoh co.,Ltd.) [File not signed] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATII4E.EXE
(Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-14] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [937328 2017-07-27] (Lenovo -> Lenovo)
HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [347216 2017-02-23] (Lenovo -> Lenovo Group Limited)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) [File not signed]
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7822648 2014-10-28] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [LMCSSTART1] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [LMCSSTART2] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [LMCSSTART3] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [132920 2013-05-31] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [64000 2012-08-10] (Ricoh co.,Ltd.) [File not signed]
HKLM-x32\...\Run: [vmware-tray] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [103536 2012-04-30] (VMware, Inc. -> VMware, Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [688184 2012-02-15] (Sony Corporation -> Sony Corporation)
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Run: [Vivaldi Update Notifier] => C:\Users\Martina\AppData\Local\Vivaldi\Application\update_notifier.exe [2997136 2021-08-20] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2014-07-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [11776 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpfpp70w: C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll [249856 2009-04-16] (Hewlett-Packard Corporation) [File not signed]
HKLM\...\Print\Monitors\EPSON L355 Series 64MonitorBE: C:\Windows\system32\E_YLMI4E.DLL [120320 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\hpf3l70w.dll: C:\Windows\system32\hpf3l70w.dll [136704 2009-04-16] (Hewlett-Packard Company) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\93.1.29.79\Installer\chrmstp.exe [2021-09-09] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2021-05-28] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {084471D3-D0CE-4866-B896-B387775C6D65} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {138762D8-2A4C-400C-9648-190C1EB6FCB2} - System32\Tasks\PMTask => C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
Task: {258BB9C9-5A32-4ADC-83C0-2BE6BB0113B7} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
Task: {305859D7-81F4-456A-8C81-D55A77B59623} - System32\Tasks\FreeFileSync\Synchronizace => C:\Program Files\FreeFileSync\FreeFileSync.exe [519728 2020-04-17] (Florian BAUER -> FreeFileSync.org) -> "C:\Users\Martina\Tomáš\FreeFileSync\SyncSettings.ffs_batch"
Task: {49B3C45E-A301-487F-9A82-A4CA595361A4} - System32\Tasks\{6C0DAF4B-458E-4A29-8143-E4B94968C29F} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\HP\Digital Imaging\{0AFFEA39-60AF-4C4F-BB47-4A1F7CB12129}\setup\hpzscr40.exe" -c -datfile hposcr46.dat -onestop -forcereboot
Task: {4E864FE1-7EC2-4B0C-92DB-EB7CBDC7A701} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd => C:\Windows\system32\GWX\GWX.exe
Task: {525D0499-E75C-4595-9AD6-70EBE939E0C5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {525D0499-E75C-4595-9AD6-70EBE939E0C5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [ [ ]]
Task: {584EDE5A-0669-4800-8652-039A8CD35FE4} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-07-13] (Lenovo -> )
Task: {5C2789A5-C85A-49B8-A40A-A3DFF22FFF4F} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {65373F37-46BD-4571-A4AA-E66C8E348A0B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {77ACAD3A-B575-48ED-8C7D-36B7552AB54A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => C:\Windows\system32\GWX\GWX.exe
Task: {846EC86E-C559-46DB-A0D6-693CF83E8C91} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {8613363B-ED8B-4D3A-B50F-274810E0370D} - System32\Tasks\VivaldiUpdateCheck-695cbe4d546049ec => C:\Users\Martina\AppData\Local\Vivaldi\Application\update_notifier.exe [2997136 2021-08-20] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
Task: {8A58BCBC-DA5D-499D-81FE-182F5B17BAD4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {98533973-C5D2-4B2C-AD60-6BA8CFBF1E5F} - System32\Tasks\Dolby => c:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
Task: {9C4EBFC9-A1D4-4D25-812D-6BF6AEA0EE94} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.EXE
Task: {9E54EAC0-E897-4846-9634-A2CB3FED1489} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo)
Task: {A3C1B812-8F19-4284-8AFE-16808E9EFD80} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9C205D8-747C-401A-8254-2962F68902EC} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {B23D019C-610E-4727-9284-9D8606F13E93} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3BBD494-D3F6-4CF0-B47C-A83B97609914} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => C:\Windows\system32\GWX\GWX.exe
Task: {BAD9DD48-5855-4FC9-85C7-8C0A5C610B07} - System32\Tasks\Lenovo\Lenovo Settings Power => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
Task: {BE659811-E53E-4C4C-ACF1-C3631CA71446} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-04-24] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {EAB5AE4A-E8D3-47A7-A683-C94302E76C6E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Time-5d => C:\Windows\system32\GWX\GWX.exe
Task: {EB23AF80-7A83-4CC9-8F2F-237D48CC6CB9} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => C:\Windows\system32\GWX\GWX.exe
Task: {EF9E09FA-8C1C-497C-B7CD-E22337430276} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5BE1D1D-5B8B-4D8D-B37B-E12442F8B8B2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F8AB76BB-3CBF-4BDE-968B-49FDCEF9376B} - System32\Tasks\Intel\Intel Service Manager => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
Task: {F8F70B82-753C-4A4D-A213-DBE715E82E5D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-07-13] (Lenovo -> )
Task: {FA800C21-B704-46A7-A3D9-A7DD09E5139A} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\Windows\System32\ibmpmsvc.exe [851800 2018-12-26] (Lenovo -> Lenovo.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208 2006-02-28] (Apple Computer, Inc.) [File not signed]
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{2AD5DB67-7909-4C5B-99FA-CFEB9E54A530}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{CDFEC878-1A59-44B3-A1B4-D73744399775}: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge Profile: C:\Users\Martina\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-21]
FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 [2021-09-13]
FF Homepage: Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 -> hxxps://www.seznam.cz/
FF Session Restore: Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 -> is enabled.
FF Extension: (Classic Theme Restorer) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2017-11-22] [Legacy]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\firefox@ghostery.com.xpi [2018-12-08]
FF Extension: (AVG SafePrice) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\sp@avg.com.xpi [2016-11-15] [UpdateUrl:hxxps://cmp.avg.com/ff/updates.json]
FF Extension: (Session Manager) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-02-07] [Legacy]
FF Extension: (FormApps Extension) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{69F080C9-A1D8-42F8-BD83-3D54D4BC81B3}.xpi [2017-10-26]
FF Extension: (Vývojové sestavení Adblock Plus) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-12-08]
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll [2012-08-31] (AuthenTec, Inc. -> AuthenTec, Inc)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [iokmdlapebooifaijckgcmncjdpojmjl] - C:\Program Files\Lenovo Fingerprint Reader\x86\tschrome.crx [2012-08-03]
Brave:
=======
BRA Profile: C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-04-04]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-04-04]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-04-04]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2021-04-04]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2020-12-18]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak)) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\omkkefoeihpbpebhhbhmjekpnegokpbj [2021-04-04]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-04-04]
Vivaldi:
=======
VIV Profile: C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default [2021-09-13]
VIV Notifications: Default -> hxxps://a.digitalcaptcha.top; hxxps://businesscenter.podnikatel.cz; hxxps://mail.protonmail.com
VIV HomePage: Default -> hxxps://www.seznam.cz
VIV Extension: (Adblock Plus - free ad blocker) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-02]
VIV Extension: (FormApps Extension) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-11-20]
VIV Extension: (Website Logon) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\iokmdlapebooifaijckgcmncjdpojmjl [2017-10-03]
VIV Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2021-07-08]
VIV Extension: (Chrome Media Router) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-31]
VIV Extension: (Download YouTube videos with different video quality: 1080P, 720P, 480P, 360p etc. Supports all formats Mp3, MP4, FLV, WebM, 3GP) - C:\Users\Martina\Programs [2019-07-14]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [559912 2017-08-18] (Lenovo -> Lenovo Corporation)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [873560 2019-12-19] (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
S3 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-03-10] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-08-16] (Macrovision Europe Ltd.) [File not signed]
R2 FPLService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2139496 2012-08-31] (AuthenTec, Inc. -> AuthenTec, Inc)
S2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [125168 2014-12-04] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2468496 2012-11-15] (Realtek Semiconductor Corp -> Realsil Microelectronics Inc.)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2024304 2017-07-21] (Lenovo -> Lenovo Group Limited)
S2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [624936 2017-08-18] (Lenovo -> Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [120400 2017-04-03] (Lenovo -> Lenovo Group Limited)
R2 LnvHotSpotSvc; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [473968 2017-07-27] (Lenovo -> Lenovo)
R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [470392 2017-06-15] (Lenovo -> )
S2 LPlatSvc; C:\Windows\System32\LPlatSvc.exe [892760 2018-12-26] (Lenovo -> Lenovo.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [7785656 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
R2 MSSQL$DUEL; C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [459832 2012-02-15] (Sony Corporation -> Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RapiMgr; C:\Windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$DUEL; C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13267752 2021-08-27] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401256 2012-07-16] (AuthenTec, Inc. -> AuthenTec, Inc.)
R2 VMAuthdService; C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [79872 2012-04-30] (VMware, Inc.) [File not signed]
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [11839488 2012-04-30] () [File not signed]
R2 WcesComm; C:\Windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 AMPPAL; C:\Windows\System32\drivers\AMPPAL.sys [165344 2013-05-21] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider)
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [141624 2014-10-28] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1448248 2014-11-26] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 LnvHIDHW; C:\Windows\System32\drivers\LnvHIDHW.sys [42544 2017-07-24] (Lenovo -> Lenovo)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210344 2021-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
R0 PMDRVS; C:\Windows\System32\drivers\pmdrvs.sys [44160 2018-12-26] (Lenovo -> Lenovo.)
R3 RCUVCAVS; C:\Windows\system32\DRIVERS\RCUVCAVS.sys [149632 2012-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288480 2012-12-13] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
R2 VMnetBridge; C:\Windows\system32\DRIVERS\vmnetbridge.sys [45680 2012-04-30] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
S3 pccsmcfd; \SystemRoot\system32\DRIVERS\pccsmcfdx64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-09-13 12:58 - 2021-09-13 12:59 - 000033125 _____ C:\Users\Martina\Desktop\FRST.txt
2021-09-13 12:58 - 2021-09-13 12:58 - 000000000 ____D C:\FRST
2021-09-13 12:57 - 2021-09-13 12:57 - 002303488 _____ (Farbar) C:\Users\Martina\Desktop\FRST64.exe
2021-09-13 12:06 - 2021-09-13 12:06 - 008553680 _____ (Malwarebytes) C:\Users\Martina\Downloads\AdwCleaner.exe
2021-09-13 11:26 - 2021-09-13 11:32 - 000000000 ____D C:\Users\Martina\AppData\LocalLow\IGDump
2021-09-13 11:07 - 2021-09-13 11:07 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-09-13 11:07 - 2021-09-13 11:07 - 000210344 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-09-13 11:07 - 2021-09-13 11:07 - 000001947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-09-12 13:28 - 2021-09-12 13:28 - 000172265 _____ C:\Users\Martina\Downloads\Jak se vyznat v rozměrech.pdf
2021-09-10 22:41 - 2021-09-10 22:41 - 000392848 _____ C:\Users\Martina\Documents\dru854.pdf
2021-09-09 18:45 - 2021-09-09 18:45 - 000647401 _____ C:\Users\Martina\Downloads\cenik-seat-arona.pdf
2021-09-07 14:25 - 2021-09-07 14:25 - 004583209 _____ C:\Users\Martina\Documents\sor853.pdf
2021-09-06 18:07 - 2021-09-06 18:07 - 000000000 ____D C:\Windows\LastGood.Tmp
2021-09-06 18:05 - 2021-09-06 18:05 - 000005143 _____ C:\Users\Martina\Downloads\DPHKH1-0027524302-20210906-180345-554815337-potvrzeni.p7s
2021-09-06 17:50 - 2021-09-06 17:50 - 000072931 _____ C:\Users\Martina\Downloads\priloha_944359530_0_00009999_khl_8330_2101453175.pdf
2021-09-02 12:36 - 2021-09-02 12:36 - 000480321 _____ C:\Users\Martina\Documents\lakat852.pdf
2021-09-02 12:34 - 2021-09-02 12:34 - 000655467 _____ C:\Users\Martina\Documents\lakat851.pdf
2021-09-02 07:47 - 2021-09-02 07:47 - 000099674 _____ C:\Users\Martina\Documents\dam850.pdf
2021-09-01 12:46 - 2021-09-01 12:46 - 000125084 _____ C:\Users\Martina\Documents\vzp849.pdf
2021-08-31 13:42 - 2021-08-31 13:42 - 000152485 _____ C:\Users\Martina\Documents\dru848.pdf
2021-08-31 10:15 - 2021-08-31 10:15 - 000003736 _____ C:\Windows\system32\Tasks\VivaldiUpdateCheck-695cbe4d546049ec
2021-08-30 09:56 - 2021-08-30 10:20 - 447872114 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E08.mp4
2021-08-29 11:20 - 2021-08-29 11:47 - 501503441 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E07.mp4
2021-08-29 10:23 - 2021-08-29 10:55 - 600518351 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E06.mp4
2021-08-29 08:45 - 2021-08-29 09:18 - 618122012 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E05.mp4
2021-08-29 08:05 - 2021-08-29 08:34 - 528092969 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E04.mp4
2021-08-28 18:23 - 2021-08-28 21:08 - 1821744820 _____ C:\Users\Martina\Downloads\Gentlemani The Gentlemen 2019 CZ dabing ripDVD.avi
2021-08-28 17:03 - 2021-08-28 18:23 - 1476438742 _____ C:\Users\Martina\Downloads\Popelka (2015) DVDRip CZ Dabing.avi
2021-08-28 16:08 - 2021-08-28 16:45 - 688852992 _____ C:\Users\Martina\Downloads\Zvonilka a ztraceny poklad (animovane, pohadka, 2009) CZdab.avi
2021-08-28 15:04 - 2021-08-28 15:44 - 734667750 _____ C:\Users\Martina\Downloads\Zvonilka 1 - (animovane, pohadka, 2008) CZdab.avi
2021-08-27 15:36 - 2021-08-27 16:20 - 805537792 _____ C:\Users\Martina\Downloads\Zvonilka Tajemstvi kridel (animovane, pohadka, 2012) CZdab.avi
2021-08-27 10:10 - 2021-08-27 10:10 - 000198137 _____ C:\Users\Martina\Documents\ergo847.pdf
2021-08-26 17:50 - 2021-08-26 17:50 - 000103028 _____ C:\Users\Martina\Downloads\priloha_941283545_0_zmenaDpnInfo_14779912.pdf
2021-08-26 17:46 - 2021-08-26 17:46 - 000022872 _____ C:\Users\Martina\Downloads\SESTAVA7.PDF
2021-08-26 17:45 - 2021-08-26 17:45 - 000759390 _____ C:\Users\Martina\Downloads\výpismzda842.pdf
2021-08-26 17:38 - 2021-08-26 17:38 - 000867933 _____ C:\Users\Martina\Downloads\marhold819.pdf
2021-08-26 17:38 - 2021-08-26 17:38 - 000072380 _____ C:\Users\Martina\Downloads\vnitpredpis846.pdf
2021-08-26 17:36 - 2021-08-26 17:36 - 000072380 _____ C:\Users\Martina\Documents\vnitpredpis846.pdf
2021-08-26 17:16 - 2021-08-26 17:16 - 000121656 _____ C:\Users\Martina\Documents\seznamzam845.pdf
2021-08-26 17:15 - 2021-08-26 17:15 - 000115954 _____ C:\Users\Martina\Documents\výpis844.pdf
2021-08-26 13:33 - 2021-08-26 13:33 - 001135437 _____ C:\Users\Martina\Documents\adresy843.pdf
2021-08-26 13:26 - 2021-08-26 13:26 - 000759390 _____ C:\Users\Martina\Documents\výpismzda842.pdf
2021-08-26 13:17 - 2021-08-26 13:17 - 000183402 _____ C:\Users\Martina\Documents\dochazka7841.pdf
2021-08-26 13:16 - 2021-08-26 13:16 - 000400825 _____ C:\Users\Martina\Documents\dochazka7840.pdf
2021-08-26 13:15 - 2021-08-26 13:15 - 000426119 _____ C:\Users\Martina\Documents\dochazka7839.pdf
2021-08-26 13:13 - 2021-08-26 13:13 - 000437826 _____ C:\Users\Martina\Documents\dochazka6837.pdf
2021-08-26 13:13 - 2021-08-26 13:13 - 000187694 _____ C:\Users\Martina\Documents\dochazka6838.pdf
2021-08-26 13:11 - 2021-08-26 13:11 - 000457335 _____ C:\Users\Martina\Documents\dochazka6836.pdf
2021-08-26 13:09 - 2021-08-26 13:09 - 000176307 _____ C:\Users\Martina\Documents\dochazka5835.pdf
2021-08-26 13:08 - 2021-08-26 13:08 - 000415259 _____ C:\Users\Martina\Documents\dochazka5834.pdf
2021-08-26 13:07 - 2021-08-26 13:07 - 000441805 _____ C:\Users\Martina\Documents\dochazka5833.pdf
2021-08-26 13:04 - 2021-08-26 13:04 - 000178304 _____ C:\Users\Martina\Documents\dochazka4832.pdf
2021-08-26 13:03 - 2021-08-26 13:03 - 000439241 _____ C:\Users\Martina\Documents\dochazka4831.pdf
2021-08-26 13:01 - 2021-08-26 13:01 - 000429993 _____ C:\Users\Martina\Documents\dochazka4830.pdf
2021-08-26 13:00 - 2021-08-26 13:00 - 000186114 _____ C:\Users\Martina\Documents\dochazka3829.pdf
2021-08-26 12:59 - 2021-08-26 12:59 - 000432165 _____ C:\Users\Martina\Documents\dochazka3828.pdf
2021-08-26 12:57 - 2021-08-26 12:57 - 000430785 _____ C:\Users\Martina\Documents\dochazka3827.pdf
2021-08-26 12:55 - 2021-08-26 12:55 - 000189448 _____ C:\Users\Martina\Documents\dochazka2826.pdf
2021-08-26 12:53 - 2021-08-26 12:53 - 000420068 _____ C:\Users\Martina\Documents\dochazka2825.pdf
2021-08-26 12:52 - 2021-08-26 12:52 - 000424418 _____ C:\Users\Martina\Documents\dochazka2824.pdf
2021-08-26 12:18 - 2021-08-26 12:18 - 000196446 _____ C:\Users\Martina\Documents\dochazka823.pdf
2021-08-26 12:13 - 2021-08-26 12:13 - 000423451 _____ C:\Users\Martina\Documents\dochazka822.pdf
2021-08-26 12:11 - 2021-08-26 12:11 - 000446097 _____ C:\Users\Martina\Documents\dochazka821.pdf
2021-08-24 21:06 - 2021-08-24 21:06 - 000099612 _____ C:\Users\Martina\Downloads\priloha_940043689_0_vznikDpnInfo_14722705.pdf
2021-08-24 17:18 - 2021-08-24 17:18 - 000867933 _____ C:\Users\Martina\Documents\marhold819.pdf
2021-08-23 21:51 - 2021-08-23 21:51 - 001274092 _____ C:\Users\Martina\Documents\mzdovevymery815.pdf
2021-08-23 21:37 - 2021-08-23 21:37 - 000531009 _____ C:\Users\Martina\Documents\marholdrozv814.pdf
2021-08-23 21:33 - 2021-08-23 21:33 - 002229349 _____ C:\Users\Martina\Documents\prsmlouy813.pdf
2021-08-23 11:02 - 2021-08-23 11:02 - 000093671 _____ C:\Users\Martina\Downloads\priloha_939899310_0_vznikDpnOznam_14716725.pdf
2021-08-18 21:51 - 2021-08-18 21:51 - 000198865 _____ C:\Users\Martina\Documents\vzp812.pdf
2021-08-18 20:16 - 2021-08-18 20:16 - 000234372 _____ C:\Users\Martina\Documents\sezn811.pdf
2021-08-18 14:47 - 2021-08-18 14:47 - 000099454 _____ C:\Users\Martina\Downloads\priloha_938742744_0_vznikDpnInfo_14674131.pdf
2021-08-18 14:46 - 2021-08-18 14:46 - 000103422 _____ C:\Users\Martina\Downloads\priloha_937435310_0_zmenaDpnInfo_14612708.pdf
2021-08-17 10:40 - 2021-08-17 10:40 - 000259727 _____ C:\Users\Martina\Documents\marh810.pdf
2021-08-17 08:02 - 2021-08-17 08:02 - 000268418 _____ C:\Users\Martina\Documents\hus809.pdf
2021-08-14 22:04 - 2021-08-14 22:04 - 000283873 _____ C:\Users\Martina\Documents\dru808.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-09-13 12:01 - 2013-11-14 14:39 - 002026444 _____ C:\Windows\system32\PerfStringBackup.INI
2021-09-13 12:01 - 2013-11-14 14:24 - 000835646 _____ C:\Windows\system32\perfh005.dat
2021-09-13 12:01 - 2013-11-14 14:24 - 000188690 _____ C:\Windows\system32\perfc005.dat
2021-09-13 12:01 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2021-09-13 12:00 - 2014-04-27 13:52 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-09-13 11:56 - 2015-07-08 15:04 - 000665088 ___SH C:\Users\Martina\Desktop\Thumbs.db
2021-09-13 11:55 - 2018-12-25 17:52 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2021-09-13 11:54 - 2014-03-15 14:25 - 000000000 ____D C:\Users\Martina\AppData\Roaming\ClassicShell
2021-09-13 11:53 - 2019-12-24 18:24 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2021-09-13 11:53 - 2019-12-24 18:21 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2021-09-13 11:53 - 2018-08-28 08:35 - 000003544 _____ C:\Windows\system32\Tasks\Lenovo Power Management Driver PnP Task
2021-09-13 11:53 - 2018-01-28 17:44 - 000000150 _____ C:\Windows\SysWOW64\winsevr.dat
2021-09-13 11:53 - 2013-09-07 16:14 - 000000000 ____D C:\Users\Martina\AppData\LocalLow\AuthenTec
2021-09-13 11:53 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-09-13 11:26 - 2013-09-09 13:49 - 000000000 ____D C:\Users\Martina\AppData\Local\CrashDumps
2021-09-13 11:13 - 2013-09-07 16:20 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1434038810-1081703228-4035633340-1004
2021-09-13 11:07 - 2019-05-25 14:20 - 000160176 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-09-12 14:48 - 2020-12-18 18:42 - 000000528 _____ C:\Users\Martina\.vivaldi_reporting_data
2021-09-11 17:57 - 2014-01-20 19:35 - 000000000 ____D C:\Users\Martina\AppData\Roaming\vlc
2021-09-11 08:35 - 2021-02-03 13:20 - 000000000 ____D C:\Users\Martina\AppData\Roaming\Telegram Desktop
2021-09-10 23:23 - 2021-02-02 15:43 - 000000000 ____D C:\STEREO30
2021-09-10 22:31 - 2015-05-14 13:35 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-09-09 23:21 - 2013-08-22 15:25 - 000524288 ___SH C:\Windows\system32\config\BBI
2021-09-09 08:50 - 2020-12-18 18:31 - 000002278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-09-09 08:50 - 2020-12-18 18:31 - 000002237 _____ C:\Users\Public\Desktop\Brave.lnk
2021-09-06 18:07 - 2021-01-06 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2021-09-02 08:47 - 2013-09-08 17:54 - 000000000 ____D C:\Users\Martina\Documents\Dokumenty Tulach
2021-08-31 10:14 - 2017-10-03 20:48 - 000002386 _____ C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2021-08-31 10:14 - 2017-10-03 20:48 - 000002349 _____ C:\Users\Martina\Desktop\Vivaldi.lnk
2021-08-31 10:14 - 2017-10-03 20:47 - 000000000 ____D C:\Users\Martina\AppData\Local\Vivaldi
2021-08-30 22:45 - 2014-07-08 21:23 - 000803176 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2021-08-29 10:14 - 2021-07-29 21:52 - 000000000 ____D C:\Users\Martina\Downloads\foto na tisk
2021-08-29 10:14 - 2021-07-28 20:45 - 000000000 ____D C:\Users\Martina\Downloads\Vlasta Redl pro Andělku
2021-08-29 10:14 - 2021-07-06 20:58 - 000000000 ____D C:\Users\Martina\Downloads\Telegram Desktop
2021-08-27 23:40 - 2021-02-18 18:40 - 000790288 _____ C:\Users\Martina\Documents\Příloha č. 1 Monitorovací dotazník 2021.xlsx
2021-08-15 16:04 - 2013-09-09 11:38 - 000000000 ____D C:\Users\Martina\AppData\Roaming\VMware
2021-08-15 16:04 - 2013-09-09 11:38 - 000000000 ____D C:\Users\Martina\AppData\Local\VMware
==================== Files in the root of some directories ========
2018-05-01 16:01 - 2018-05-01 16:05 - 205149616 _____ ( ) C:\Users\Martina\duelsetup-14-0-3-10000.exe
2018-02-14 10:11 - 2018-02-14 10:13 - 097348424 _____ (Ježek software s.r.o. ) C:\Users\Martina\STEREO27.exe
2013-09-07 16:15 - 2013-09-07 16:15 - 000000000 _____ () C:\Users\Martina\AppData\Roaming\AbsoluteReminder.xml
2013-12-15 14:55 - 2013-12-15 15:14 - 000000778 _____ () C:\Users\Martina\AppData\Local\Temp1.html
2013-12-15 15:14 - 2013-12-15 15:14 - 000002144 _____ () C:\Users\Martina\AppData\Local\Temp25.html
2013-12-15 15:13 - 2013-12-15 15:13 - 000002997 _____ () C:\Users\Martina\AppData\Local\Temp27.html
2013-12-15 15:14 - 2013-12-15 15:14 - 000001776 _____ () C:\Users\Martina\AppData\Local\Temp3.html
2013-12-15 14:56 - 2013-12-15 14:56 - 000002997 _____ () C:\Users\Martina\AppData\Local\Temp43.html
2013-09-08 15:23 - 2013-09-08 15:24 - 000025509 _____ () C:\Users\Martina\AppData\Local\WiDiSetupLog.20130908.152350.txt
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2021-09-11 09:27
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-09-2021
Ran by Martina (13-09-2021 13:00:28)
Running from C:\Users\Martina\Desktop
Windows 8.1 Pro (Update) (X64) (2014-03-17 18:20:11)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1434038810-1081703228-4035633340-500 - Administrator - Disabled)
Guest (S-1-5-21-1434038810-1081703228-4035633340-501 - Limited - Enabled)
Martina (S-1-5-21-1434038810-1081703228-4035633340-1004 - Administrator - Enabled) => C:\Users\Martina
Tomas (S-1-5-21-1434038810-1081703228-4035633340-1042 - Administrator - Enabled) => C:\Users\Tomas
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.005.20060 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_4977c84bcdc298c444ccfbdcccb660d) (Version: 10.0 - Adobe Systems Incorporated)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 93.1.29.79 - Autoři prohlížeče Brave)
Classic Shell (HKLM\...\{2368907C-E8F6-4750-A023-254C3E2B5E8D}) (Version: 4.0.4 - IvoSoft)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Fingerprint Reader (HKLM\...\{1CACE706-D749-44CA-BBFE-AF60946D1B18}) (Version: 6.0.200.75 - AuthenTec, Inc.)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
FormApps Plug-in (HKLM-x32\...\{9a1d8d96-8b6f-4b5e-9281-abf022feb360}) (Version: 1.29.0.79 - Software602 a.s.)
FreeFileSync 10.23 (HKLM-x32\...\FreeFileSync_is1) (Version: 10.23 - FreeFileSync.org)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HBS STARLIFE version 1.0.0 (HKLM-x32\...\{F845D7E7-41F7-44F2-9692-4A325D4D04B9}_is1) (Version: 1.0.0 - STARLIFE s.r.o.)
Human Body Scanner (Cz) 3.9.0 (HKLM-x32\...\Human Body Scanner (Cz)) (Version: 3.9.0 - Quantum)
Integrated Camera Driver Installer Package Ver.1.0.0.26 (HKLM-x32\...\{F8754583-7893-4CD8-9E51-1A08F3D4C1A9}) (Version: 1.0.0.26 - RICOH)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Ježek software DUEL 16.0.4.10340 (HKLM-x32\...\JezekDUEL_is1) (Version: - Ježek software)
Ježek software STEREO 22 (HKLM-x32\...\Ježek software STEREO 22_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 23 (HKLM-x32\...\Ježek software STEREO 23_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 24 (HKLM-x32\...\Ježek software STEREO 24_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 26 (HKLM-x32\...\Ježek software STEREO 26_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 27 (HKLM-x32\...\Ježek software STEREO 27_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 28 (HKLM-x32\...\Ježek software STEREO 28_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 29 (HKLM-x32\...\Ježek software STEREO 29_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 30 (HKLM-x32\...\Ježek software STEREO 30_is1) (Version: - Ježek software s.r.o.)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.20 - Lenovo)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.21 - Lenovo)
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.86.25 - Lenovo)
Lenovo Patch Utility (HKLM-x32\...\{AD32F5E9-6BDD-480A-8B7B-95571D04691C}) (Version: 1.3.1.1 - Lenovo Group Limited)
Lenovo Patch Utility (HKLM-x32\...\{C6FB6B4A-1378-4CD3-9CD3-42BA69FCBD43}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{053ACA98-6B07-4DD0-9DB3-F51E3EB1780C}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}) (Version: 1.3.1.1 - Lenovo Group Limited)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.04.05 - ) Hidden
Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 2.4.0.23 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0127 - Lenovo)
Malwarebytes version 4.4.6.132 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.6.132 - Malwarebytes)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0008.00 - Lenovo Group Limited) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.50 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BF5ABBDB-D3AA-4BCB-8D10-FCD4A4BB7F93}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Backward compatibility (HKLM\...\{8909B8A7-CEAB-4772-BF29-1892C4E6603B}) (Version: 8.05.2309 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C7E2483C-10A4-41E3-A2F6-240186FE3E41}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
MPC-HC 1.9.2 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.9.2 - MPC-HC Team)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nebesky kalendar 4 verze 4.8 (HKLM-x32\...\{6F8B3EAA-4961-4997-A9DD-7A82005CC01E}_is1) (Version: 4.8 - Zdenek Pazdera - Wendys)
Nebeský kalendář verze 3.0 (HKLM-x32\...\{B3283535-E45A-4D8F-8B80-F6898E280CFB}_is1) (Version: 3.0 - Zdeněk Pazdera - Wendys)
PDF Settings (HKLM-x32\...\{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
PlayMemories Home (HKLM-x32\...\{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}) (Version: 6.0.02.14151 - Sony Corporation)
ProFact 4.0 (HKLM-x32\...\ProFact 4.0_is1) (Version: - eXmind)
PROFIT 2015.05 (HKLM-x32\...\{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1) (Version: - LPsoft)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.29048 - Realtek Semiconductor Corp.)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
Speccy (HKLM\...\Speccy) (Version: 1.25 - Piriform)
SQL Server 2014 Common Files (HKLM\...\{BD1CD96B-FE4B-4EAE-83D4-6EF55AB5779C}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM\...\{F7012F84-80F5-4C25-852E-B1BA03276FE6}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{17531BCD-C627-46A2-9F1E-7CC920E0E94A}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{5082A9F3-AEE5-4639-9BA7-C19661BA7331}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{ACC530B8-B6B4-40D6-B59B-152468CF47D0}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{D1B847A9-B06B-4264-9EF0-78E6E1571E65}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{6476DB81-F263-4C04-8574-AAD31136C304}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1026 - SUPERAntiSpyware.com)
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.21.6 - TeamViewer)
Telegram Desktop version 3.0.1 (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.0.1 - Telegram FZ-LLC)
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.7 - )
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vivaldi (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Vivaldi) (Version: 4.1.2369.21 - Vivaldi Technologies AS.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VmciSockets (HKLM\...\{2BE3C45C-B0E3-4061-A3C5-C6ED9639C813}) (Version: 9.1.54.1 - VMware, Inc.) Hidden
VMware Workstation (HKLM-x32\...\{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}) (Version: 8.0.3.29699 - VMware, Inc.) Hidden
VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 8.0.3.29699 - VMware, Inc)
WhoCrashed 5.00 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - Intel Corporation (iaStorA) HDC (08/16/2012 11.5.4.1001) (HKLM\...\5FAC453989A0F70D1125104F58B20CAA20CE7BC8) (Version: 08/16/2012 11.5.4.1001 - Intel Corporation)
Windows Driver Package - Lenovo 1.66.00.07 (08/15/2012 1.66.00.07) (HKLM\...\E56A6B34B44A7A597FFEBE0E14D81095E0FD4D73) (Version: 08/15/2012 1.66.00.07 - Lenovo)
Packages:
=========
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview_1.0.9431.0_neutral__8wekyb3d8bbwe [2014-04-27] (Rozšíření Microsoft Platform)
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.Preview.1_1.0.9345.0_neutral__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_1.0.0.7175_x86__4642shxvsv8s2 [2012-10-13] (LENOVO INCORPORATED.)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x64__8wekyb3d8bbwe [2014-04-27] (Microsoft Corporation)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x86__8wekyb3d8bbwe [2014-04-27] (Microsoft Corporation)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x64__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions Internal)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x86__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions Internal)
Microsoft Windows Library for JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview.Internal_1.0.9385.3_neutral__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions)
Výběr prohlížeče -> C:\WINDOWS\BrowserChoice [2014-03-17] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\Martina\AppData\Local\Vivaldi\Application\4.1.2369.21\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2014-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip32.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.VMnc] => C:\Windows\SysWOW64\vmnc.dll [252016 2012-04-30] (VMware, Inc. -> VMware, Inc.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Martina\Desktop\Ježek software STEREO 21.lnk -> C:\STEREO\STEREO21\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 22.lnk -> C:\STEREO22\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 23.lnk -> C:\STEREO23\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 24.lnk -> C:\STEREO24\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 26.lnk -> C:\STEREO26\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 27.lnk -> C:\STEREO27\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 28.lnk -> C:\STEREO28\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 29.lnk -> C:\STEREO29\S64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 30.lnk -> C:\STEREO30\S64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 28.lnk -> C:\STEREO28\U64.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 29.lnk -> C:\STEREO29\U64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 30.lnk -> C:\STEREO30\U64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Stereo 19.lnk -> C:\STEREO\STEREO19\S64.BAT (No File)
Shortcut: C:\Users\Martina\Desktop\Ostatní\Převod dat do STEREO 22.lnk -> C:\STEREO22\U64.BAT ()
Shortcut: C:\Users\Martina\Desktop\Ostatní\Převod dat do STEREO 23.lnk -> C:\STEREO23\U64.BAT ()
==================== Loaded Modules (Whitelisted) =============
2012-04-30 19:29 - 2012-04-30 19:29 - 001222656 _____ () [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2006-02-28 12:42 - 2006-02-28 12:42 - 000094208 _____ (Apple Computer, Inc.) [File not signed] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
2013-09-09 14:29 - 2009-04-16 12:47 - 000136704 _____ (Hewlett-Packard Company) [File not signed] C:\Windows\System32\hpf3l70w.dll
2014-03-17 19:51 - 2009-04-16 12:47 - 000249856 _____ (Hewlett-Packard Corporation) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\hpfpp70w.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2014-01-18 18:12 - 2014-01-18 18:12 - 002271424 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll
2018-01-10 15:08 - 2014-10-23 11:20 - 000276480 _____ (Lenovo) [File not signed] C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MHHelperDLL.dll
2014-03-17 20:01 - 2014-03-17 20:01 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
2020-01-08 19:47 - 2017-09-27 18:30 - 000489984 _____ (Newtonsoft) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\Newtonsoft.Json.dll
2012-04-30 19:40 - 2012-04-30 19:40 - 021270016 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\types.dll
2012-04-30 19:36 - 2012-04-30 19:36 - 003653632 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmacore.dll
2012-04-30 19:38 - 2012-04-30 19:38 - 002355712 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmomi.dll
2020-01-08 19:47 - 2018-01-26 18:08 - 000088064 _____ (Wondershare) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCollect.dll
2020-01-08 19:47 - 2018-01-26 18:08 - 000200192 _____ (Wondershare) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCommon.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={01D4527C-20F8-44F5-AD3D-042A6FD51958}&mid=bbc46b84689847d29d0c55ef8e209c8a-be26a817e37706961b48711a40dfbe36fc28a4af&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0816av&pr=fr&d=2016-07-26 07:55:07&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> {B9B77431-2737-4B76-B12B-91AE79488EE1} URL =
BHO: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2012-08-31] (AuthenTec, Inc. -> AuthenTec Inc.)
BHO: No Name -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> No File
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2012-08-31] (AuthenTec, Inc. -> AuthenTec Inc.)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - No Name - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - No File
IE Session Restore: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> is enabled.
DPF: HKLM-x32 {4FF78044-96B4-4312-A5B7-FDA3CB328095}
DPF: HKLM-x32 {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} hxxps://forms.celnisprava.cz/webfiller/page/activexcab/webff_cs.cab
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 15:25 - 2019-01-04 10:02 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Lenovo Fingerprint Reader\;C:\Program Files\Lenovo Fingerprint Reader\x86\;C:\ProgramData\Lenovo\ReadyApps;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\AOMEI Backupper;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "cAudioFilterAgent"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "SmartAudio"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{57E8D505-2EA2-4DC4-B4BD-19B7F1EDE6DC}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{6C03F45B-C78A-4FF2-A8CB-DF1D06186A55}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{D65109C1-D806-4E47-9397-18BC3CE17D70}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Mobile Wireless Group -> )
FirewallRules: [UDP Query User{91ABEFF0-B740-44C9-A0E4-C831F12925F0}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{C3ACB859-EA44-4BFB-912C-2FE6CF4EDC0F}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{00496117-2C14-4936-BC19-E58C9388239B}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe () [File not signed]
FirewallRules: [{CE5595C8-744A-41F6-8C0A-2234ED78A691}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe () [File not signed]
FirewallRules: [{8B56B669-C5FA-4189-87D2-DDB392CC3013}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.) [File not signed]
FirewallRules: [{CFB0C154-1BFB-40A7-BF8E-1FF60817950C}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.) [File not signed]
FirewallRules: [UDP Query User{700F2B37-2A25-4E53-811E-4F0AAD39E64A}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{D7215C15-C8F5-4CDF-8497-5319B34979D5}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{0066CF3D-C273-4A2D-844E-943E0C21DBCA}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe (Intel Wireless Display -> Intel Corporation)
FirewallRules: [TCP Query User{F426A81E-CF4A-4877-8A20-B8C10C898C37}C:\program files (x86)\totalcmd\totalcmd.exe] => (Allow) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{D92C41F8-DEDA-48B3-B1EB-08095C4BBCCD}C:\program files (x86)\totalcmd\totalcmd.exe] => (Allow) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{3B757383-AA43-4B4F-97F2-51CD71D0D6E7}] => (Block) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{5911B8D7-9266-4808-884E-0DA55E1C583A}] => (Block) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{6A411443-6788-4F3F-B019-F8BF40D189F1}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [UDP Query User{E49CA04D-7012-4F15-8207-B58EF9AB7297}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{1A4E4F34-866D-4F9E-A8EA-3D6C69A4BF7B}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{AEAEAB56-D94F-47C3-B9DF-B4C95C0D383D}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{57994B6B-3625-4493-B194-7A30821E3378}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{1609E63F-9F5D-4FD6-B40B-750B304445E8}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{50E4B1B6-BF23-4ACF-A52E-BC0E3C053175}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{886CCDC5-DF39-4ACE-9447-1071108EB492}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{26AEE13B-A626-4001-91BA-FD9D2673672C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [TCP Query User{2C54E78F-FE8D-4A28-BE21-AD0C6FE84208}C:\program files (x86)\ježek software\duel\duel.exe] => (Allow) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [UDP Query User{D282DA67-BC9B-4BA1-BC8C-60150CE0BC78}C:\program files (x86)\ježek software\duel\duel.exe] => (Allow) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{2BD940E4-705D-4597-906A-53399AB61376}] => (Block) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{BB1DB165-869E-41DC-9B73-D2992014D178}] => (Block) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{93B5C562-487A-4DEB-8102-B2B5FA687BB2}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{74C3384E-2C93-4EA2-A986-174F3A6AC55A}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [TCP Query User{280D4CF5-1C47-42E5-87C1-959F8A301ECF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe => No File
FirewallRules: [UDP Query User{2A87DA6C-53C0-40A3-86E5-17290BFB8BDF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe => No File
FirewallRules: [TCP Query User{33135F8E-40B3-4F31-ABA1-3434B920B713}C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [UDP Query User{764EBB7A-DC7B-441F-8878-465C61B31E98}C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{83A4DB31-1893-4D16-9FDD-9C735697ABE0}] => (Block) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{78FDC989-C63F-4638-B0DE-CE0B89265266}] => (Block) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{A4A5459E-0191-454A-A77E-F4275AF5D801}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{8710209A-14EB-4329-AC0B-8214014E81A1}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{167A71CF-03A1-40BC-B3D2-22A730E70290}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B19E411C-741B-46F1-9614-FA0694DFB397}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DA3350C8-7464-4FC4-A7C9-B93BD025BEF5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7D0A6A9E-2C5F-422B-8FB9-5E81AD598850}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2480DBC4-8074-4826-9CE5-94E081E43A7A}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (09/13/2021 11:53:19 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.
Error: (09/13/2021 11:53:19 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (09/13/2021 11:26:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamtray.exe, verze: 4.0.0.1117, časové razítko: 0x61321f0b
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x603971ce
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219dc5
ID chybujícího procesu: 0x2464
Čas spuštění chybující aplikace: 0x01d7a87ed57acf4f
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: ac204e48-1474-11ec-8778-84a6c8c47579
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/12/2021 12:33:32 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (09/11/2021 10:17:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WbioSrvc, verze: 6.3.9600.17415, časové razítko: 0x54504177
Název chybujícího modulu: UPKBU.DLL, verze: 1.6.1.341, časové razítko: 0x502239a7
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000cccd7
ID chybujícího procesu: 0x6fc
Čas spuštění chybující aplikace: 0x01d7a6d3b49826cd
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\WINBIOPLUGINS\UPKBU.DLL
ID zprávy: b498ab05-12d8-11ec-8778-84a6c8c47579
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/11/2021 09:40:30 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (09/11/2021 09:07:22 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).
Error: (09/11/2021 08:10:31 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.
System errors:
=============
Error: (09/13/2021 11:55:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (09/13/2021 11:55:23 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) Management and Security Application Local Management Service bylo dosaženo časového limitu (60000 ms).
Error: (09/13/2021 09:16:52 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a45\??\C:\Windows\AppCompat\Programs\Amcache.hve
Error: (09/13/2021 08:52:04 AM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.
Error: (09/13/2021 08:51:34 AM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.
Error: (09/12/2021 12:32:03 PM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.
Error: (09/12/2021 12:31:33 PM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.
Error: (09/12/2021 12:26:13 PM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2021-09-13 08:51:37.520
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {BC5FE25D-4971-4C52-BFC9-3CD99719B8A5}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-09-12 12:25:28.071
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1964D335-B53E-43E7-A347-E5CFB1FD6EEE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-09-12 10:06:35.290
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {31303D30-6CD2-48CB-B556-B701A4D85022}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-09-11 09:08:22.925
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {75E63107-8005-4E74-8074-F302F9194D4E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-09-10 08:20:59.321
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {AD6710AA-6085-414A-A01D-9DC183641498}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-09-07 14:05:51.260
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.349.222.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18500.10
Kód chyby: 0x8024402f
Popis chyby ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
==================== Memory info ===========================
BIOS: LENOVO H0ET98WW (2.58 ) 08/18/2016
Motherboard: LENOVO 3259TFG
Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 57%
Total physical RAM: 5989.89 MB
Available physical RAM: 2563 MB
Total Virtual: 12133.89 MB
Available Virtual: 9008.6 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:464.41 GB) (Free:33.9 GB) NTFS ==>[system with boot components (obtained from drive)]
\\?\Volume{5504ab96-f565-11e7-8313-84a6c8c47579}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 69677AFB)
Partition: GPT.
==================== End of Addition.txt =======================