Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Vyskakovací okno a.digitalcaptcha.top

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Black Prince
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 11 lis 2012 22:45

Vyskakovací okno a.digitalcaptcha.top

#1 Příspěvek od Black Prince »

Zdravím,
v počítači začalo vyskakovat okno pro zapnutí antivirové ochrany, viz. příloha.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-09-2021
Ran by Martina (administrator) on MARTINA-NB (LENOVO 3259TFG) (13-09-2021 12:58:40)
Running from C:\Users\Martina\Desktop
Loaded Profiles: Martina
Platform: Windows 8.1 Pro (Update) (X64) Language: Čeština (Česká republika)
Default browser: Vivaldi
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AuthenTec, Inc. -> ) C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
(AuthenTec, Inc. -> AuthenTec Inc.) C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe
(AuthenTec, Inc. -> AuthenTec, Inc) C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
(AuthenTec, Inc. -> AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe <2>
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files (x86)\totalcmd\TOTALCMD.EXE
(CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Mobile Wireless Group -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
(Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe
(Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Realtek Semiconductor Corp -> Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Ricoh co.,Ltd.) [File not signed] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATII4E.EXE
(Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-14] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [937328 2017-07-27] (Lenovo -> Lenovo)
HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [347216 2017-02-23] (Lenovo -> Lenovo Group Limited)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) [File not signed]
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7822648 2014-10-28] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [LMCSSTART1] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [LMCSSTART2] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [LMCSSTART3] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [132920 2013-05-31] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [64000 2012-08-10] (Ricoh co.,Ltd.) [File not signed]
HKLM-x32\...\Run: [vmware-tray] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [103536 2012-04-30] (VMware, Inc. -> VMware, Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [688184 2012-02-15] (Sony Corporation -> Sony Corporation)
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Run: [Vivaldi Update Notifier] => C:\Users\Martina\AppData\Local\Vivaldi\Application\update_notifier.exe [2997136 2021-08-20] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2014-07-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [11776 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpfpp70w: C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll [249856 2009-04-16] (Hewlett-Packard Corporation) [File not signed]
HKLM\...\Print\Monitors\EPSON L355 Series 64MonitorBE: C:\Windows\system32\E_YLMI4E.DLL [120320 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\hpf3l70w.dll: C:\Windows\system32\hpf3l70w.dll [136704 2009-04-16] (Hewlett-Packard Company) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\93.1.29.79\Installer\chrmstp.exe [2021-09-09] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2021-05-28] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {084471D3-D0CE-4866-B896-B387775C6D65} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {138762D8-2A4C-400C-9648-190C1EB6FCB2} - System32\Tasks\PMTask => C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
Task: {258BB9C9-5A32-4ADC-83C0-2BE6BB0113B7} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
Task: {305859D7-81F4-456A-8C81-D55A77B59623} - System32\Tasks\FreeFileSync\Synchronizace => C:\Program Files\FreeFileSync\FreeFileSync.exe [519728 2020-04-17] (Florian BAUER -> FreeFileSync.org) -> "C:\Users\Martina\Tomáš\FreeFileSync\SyncSettings.ffs_batch"
Task: {49B3C45E-A301-487F-9A82-A4CA595361A4} - System32\Tasks\{6C0DAF4B-458E-4A29-8143-E4B94968C29F} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\HP\Digital Imaging\{0AFFEA39-60AF-4C4F-BB47-4A1F7CB12129}\setup\hpzscr40.exe" -c -datfile hposcr46.dat -onestop -forcereboot
Task: {4E864FE1-7EC2-4B0C-92DB-EB7CBDC7A701} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd => C:\Windows\system32\GWX\GWX.exe
Task: {525D0499-E75C-4595-9AD6-70EBE939E0C5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {525D0499-E75C-4595-9AD6-70EBE939E0C5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [ [ ]]
Task: {584EDE5A-0669-4800-8652-039A8CD35FE4} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-07-13] (Lenovo -> )
Task: {5C2789A5-C85A-49B8-A40A-A3DFF22FFF4F} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {65373F37-46BD-4571-A4AA-E66C8E348A0B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {77ACAD3A-B575-48ED-8C7D-36B7552AB54A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => C:\Windows\system32\GWX\GWX.exe
Task: {846EC86E-C559-46DB-A0D6-693CF83E8C91} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {8613363B-ED8B-4D3A-B50F-274810E0370D} - System32\Tasks\VivaldiUpdateCheck-695cbe4d546049ec => C:\Users\Martina\AppData\Local\Vivaldi\Application\update_notifier.exe [2997136 2021-08-20] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
Task: {8A58BCBC-DA5D-499D-81FE-182F5B17BAD4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {98533973-C5D2-4B2C-AD60-6BA8CFBF1E5F} - System32\Tasks\Dolby => c:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
Task: {9C4EBFC9-A1D4-4D25-812D-6BF6AEA0EE94} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.EXE
Task: {9E54EAC0-E897-4846-9634-A2CB3FED1489} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo)
Task: {A3C1B812-8F19-4284-8AFE-16808E9EFD80} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9C205D8-747C-401A-8254-2962F68902EC} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {B23D019C-610E-4727-9284-9D8606F13E93} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3BBD494-D3F6-4CF0-B47C-A83B97609914} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => C:\Windows\system32\GWX\GWX.exe
Task: {BAD9DD48-5855-4FC9-85C7-8C0A5C610B07} - System32\Tasks\Lenovo\Lenovo Settings Power => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
Task: {BE659811-E53E-4C4C-ACF1-C3631CA71446} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-04-24] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {EAB5AE4A-E8D3-47A7-A683-C94302E76C6E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Time-5d => C:\Windows\system32\GWX\GWX.exe
Task: {EB23AF80-7A83-4CC9-8F2F-237D48CC6CB9} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => C:\Windows\system32\GWX\GWX.exe
Task: {EF9E09FA-8C1C-497C-B7CD-E22337430276} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5BE1D1D-5B8B-4D8D-B37B-E12442F8B8B2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F8AB76BB-3CBF-4BDE-968B-49FDCEF9376B} - System32\Tasks\Intel\Intel Service Manager => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
Task: {F8F70B82-753C-4A4D-A213-DBE715E82E5D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-07-13] (Lenovo -> )
Task: {FA800C21-B704-46A7-A3D9-A7DD09E5139A} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\Windows\System32\ibmpmsvc.exe [851800 2018-12-26] (Lenovo -> Lenovo.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208 2006-02-28] (Apple Computer, Inc.) [File not signed]
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{2AD5DB67-7909-4C5B-99FA-CFEB9E54A530}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{CDFEC878-1A59-44B3-A1B4-D73744399775}: [DhcpNameServer] 10.0.0.138

Edge:
=======
Edge Profile: C:\Users\Martina\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-21]

FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 [2021-09-13]
FF Homepage: Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 -> hxxps://www.seznam.cz/
FF Session Restore: Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 -> is enabled.
FF Extension: (Classic Theme Restorer) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2017-11-22] [Legacy]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\firefox@ghostery.com.xpi [2018-12-08]
FF Extension: (AVG SafePrice) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\sp@avg.com.xpi [2016-11-15] [UpdateUrl:hxxps://cmp.avg.com/ff/updates.json]
FF Extension: (Session Manager) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-02-07] [Legacy]
FF Extension: (FormApps Extension) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{69F080C9-A1D8-42F8-BD83-3D54D4BC81B3}.xpi [2017-10-26]
FF Extension: (Vývojové sestavení Adblock Plus) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-12-08]
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll [2012-08-31] (AuthenTec, Inc. -> AuthenTec, Inc)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [iokmdlapebooifaijckgcmncjdpojmjl] - C:\Program Files\Lenovo Fingerprint Reader\x86\tschrome.crx [2012-08-03]

Brave:
=======
BRA Profile: C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-04-04]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-04-04]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-04-04]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2021-04-04]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2020-12-18]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak)) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\omkkefoeihpbpebhhbhmjekpnegokpbj [2021-04-04]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-04-04]

Vivaldi:
=======
VIV Profile: C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default [2021-09-13]
VIV Notifications: Default -> hxxps://a.digitalcaptcha.top; hxxps://businesscenter.podnikatel.cz; hxxps://mail.protonmail.com
VIV HomePage: Default -> hxxps://www.seznam.cz
VIV Extension: (Adblock Plus - free ad blocker) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-02]
VIV Extension: (FormApps Extension) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-11-20]
VIV Extension: (Website Logon) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\iokmdlapebooifaijckgcmncjdpojmjl [2017-10-03]
VIV Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2021-07-08]
VIV Extension: (Chrome Media Router) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-31]
VIV Extension: (Download YouTube videos with different video quality: 1080P, 720P, 480P, 360p etc. Supports all formats Mp3, MP4, FLV, WebM, 3GP) - C:\Users\Martina\Programs [2019-07-14]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [559912 2017-08-18] (Lenovo -> Lenovo Corporation)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [873560 2019-12-19] (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
S3 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-03-10] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-08-16] (Macrovision Europe Ltd.) [File not signed]
R2 FPLService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2139496 2012-08-31] (AuthenTec, Inc. -> AuthenTec, Inc)
S2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [125168 2014-12-04] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2468496 2012-11-15] (Realtek Semiconductor Corp -> Realsil Microelectronics Inc.)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2024304 2017-07-21] (Lenovo -> Lenovo Group Limited)
S2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [624936 2017-08-18] (Lenovo -> Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [120400 2017-04-03] (Lenovo -> Lenovo Group Limited)
R2 LnvHotSpotSvc; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [473968 2017-07-27] (Lenovo -> Lenovo)
R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [470392 2017-06-15] (Lenovo -> )
S2 LPlatSvc; C:\Windows\System32\LPlatSvc.exe [892760 2018-12-26] (Lenovo -> Lenovo.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [7785656 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
R2 MSSQL$DUEL; C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [459832 2012-02-15] (Sony Corporation -> Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RapiMgr; C:\Windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$DUEL; C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13267752 2021-08-27] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401256 2012-07-16] (AuthenTec, Inc. -> AuthenTec, Inc.)
R2 VMAuthdService; C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [79872 2012-04-30] (VMware, Inc.) [File not signed]
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [11839488 2012-04-30] () [File not signed]
R2 WcesComm; C:\Windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 AMPPAL; C:\Windows\System32\drivers\AMPPAL.sys [165344 2013-05-21] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider)
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [141624 2014-10-28] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1448248 2014-11-26] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 LnvHIDHW; C:\Windows\System32\drivers\LnvHIDHW.sys [42544 2017-07-24] (Lenovo -> Lenovo)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210344 2021-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
R0 PMDRVS; C:\Windows\System32\drivers\pmdrvs.sys [44160 2018-12-26] (Lenovo -> Lenovo.)
R3 RCUVCAVS; C:\Windows\system32\DRIVERS\RCUVCAVS.sys [149632 2012-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288480 2012-12-13] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
R2 VMnetBridge; C:\Windows\system32\DRIVERS\vmnetbridge.sys [45680 2012-04-30] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
S3 pccsmcfd; \SystemRoot\system32\DRIVERS\pccsmcfdx64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-13 12:58 - 2021-09-13 12:59 - 000033125 _____ C:\Users\Martina\Desktop\FRST.txt
2021-09-13 12:58 - 2021-09-13 12:58 - 000000000 ____D C:\FRST
2021-09-13 12:57 - 2021-09-13 12:57 - 002303488 _____ (Farbar) C:\Users\Martina\Desktop\FRST64.exe
2021-09-13 12:06 - 2021-09-13 12:06 - 008553680 _____ (Malwarebytes) C:\Users\Martina\Downloads\AdwCleaner.exe
2021-09-13 11:26 - 2021-09-13 11:32 - 000000000 ____D C:\Users\Martina\AppData\LocalLow\IGDump
2021-09-13 11:07 - 2021-09-13 11:07 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-09-13 11:07 - 2021-09-13 11:07 - 000210344 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-09-13 11:07 - 2021-09-13 11:07 - 000001947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-09-12 13:28 - 2021-09-12 13:28 - 000172265 _____ C:\Users\Martina\Downloads\Jak se vyznat v rozměrech.pdf
2021-09-10 22:41 - 2021-09-10 22:41 - 000392848 _____ C:\Users\Martina\Documents\dru854.pdf
2021-09-09 18:45 - 2021-09-09 18:45 - 000647401 _____ C:\Users\Martina\Downloads\cenik-seat-arona.pdf
2021-09-07 14:25 - 2021-09-07 14:25 - 004583209 _____ C:\Users\Martina\Documents\sor853.pdf
2021-09-06 18:07 - 2021-09-06 18:07 - 000000000 ____D C:\Windows\LastGood.Tmp
2021-09-06 18:05 - 2021-09-06 18:05 - 000005143 _____ C:\Users\Martina\Downloads\DPHKH1-0027524302-20210906-180345-554815337-potvrzeni.p7s
2021-09-06 17:50 - 2021-09-06 17:50 - 000072931 _____ C:\Users\Martina\Downloads\priloha_944359530_0_00009999_khl_8330_2101453175.pdf
2021-09-02 12:36 - 2021-09-02 12:36 - 000480321 _____ C:\Users\Martina\Documents\lakat852.pdf
2021-09-02 12:34 - 2021-09-02 12:34 - 000655467 _____ C:\Users\Martina\Documents\lakat851.pdf
2021-09-02 07:47 - 2021-09-02 07:47 - 000099674 _____ C:\Users\Martina\Documents\dam850.pdf
2021-09-01 12:46 - 2021-09-01 12:46 - 000125084 _____ C:\Users\Martina\Documents\vzp849.pdf
2021-08-31 13:42 - 2021-08-31 13:42 - 000152485 _____ C:\Users\Martina\Documents\dru848.pdf
2021-08-31 10:15 - 2021-08-31 10:15 - 000003736 _____ C:\Windows\system32\Tasks\VivaldiUpdateCheck-695cbe4d546049ec
2021-08-30 09:56 - 2021-08-30 10:20 - 447872114 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E08.mp4
2021-08-29 11:20 - 2021-08-29 11:47 - 501503441 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E07.mp4
2021-08-29 10:23 - 2021-08-29 10:55 - 600518351 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E06.mp4
2021-08-29 08:45 - 2021-08-29 09:18 - 618122012 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E05.mp4
2021-08-29 08:05 - 2021-08-29 08:34 - 528092969 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E04.mp4
2021-08-28 18:23 - 2021-08-28 21:08 - 1821744820 _____ C:\Users\Martina\Downloads\Gentlemani The Gentlemen 2019 CZ dabing ripDVD.avi
2021-08-28 17:03 - 2021-08-28 18:23 - 1476438742 _____ C:\Users\Martina\Downloads\Popelka (2015) DVDRip CZ Dabing.avi
2021-08-28 16:08 - 2021-08-28 16:45 - 688852992 _____ C:\Users\Martina\Downloads\Zvonilka a ztraceny poklad (animovane, pohadka, 2009) CZdab.avi
2021-08-28 15:04 - 2021-08-28 15:44 - 734667750 _____ C:\Users\Martina\Downloads\Zvonilka 1 - (animovane, pohadka, 2008) CZdab.avi
2021-08-27 15:36 - 2021-08-27 16:20 - 805537792 _____ C:\Users\Martina\Downloads\Zvonilka Tajemstvi kridel (animovane, pohadka, 2012) CZdab.avi
2021-08-27 10:10 - 2021-08-27 10:10 - 000198137 _____ C:\Users\Martina\Documents\ergo847.pdf
2021-08-26 17:50 - 2021-08-26 17:50 - 000103028 _____ C:\Users\Martina\Downloads\priloha_941283545_0_zmenaDpnInfo_14779912.pdf
2021-08-26 17:46 - 2021-08-26 17:46 - 000022872 _____ C:\Users\Martina\Downloads\SESTAVA7.PDF
2021-08-26 17:45 - 2021-08-26 17:45 - 000759390 _____ C:\Users\Martina\Downloads\výpismzda842.pdf
2021-08-26 17:38 - 2021-08-26 17:38 - 000867933 _____ C:\Users\Martina\Downloads\marhold819.pdf
2021-08-26 17:38 - 2021-08-26 17:38 - 000072380 _____ C:\Users\Martina\Downloads\vnitpredpis846.pdf
2021-08-26 17:36 - 2021-08-26 17:36 - 000072380 _____ C:\Users\Martina\Documents\vnitpredpis846.pdf
2021-08-26 17:16 - 2021-08-26 17:16 - 000121656 _____ C:\Users\Martina\Documents\seznamzam845.pdf
2021-08-26 17:15 - 2021-08-26 17:15 - 000115954 _____ C:\Users\Martina\Documents\výpis844.pdf
2021-08-26 13:33 - 2021-08-26 13:33 - 001135437 _____ C:\Users\Martina\Documents\adresy843.pdf
2021-08-26 13:26 - 2021-08-26 13:26 - 000759390 _____ C:\Users\Martina\Documents\výpismzda842.pdf
2021-08-26 13:17 - 2021-08-26 13:17 - 000183402 _____ C:\Users\Martina\Documents\dochazka7841.pdf
2021-08-26 13:16 - 2021-08-26 13:16 - 000400825 _____ C:\Users\Martina\Documents\dochazka7840.pdf
2021-08-26 13:15 - 2021-08-26 13:15 - 000426119 _____ C:\Users\Martina\Documents\dochazka7839.pdf
2021-08-26 13:13 - 2021-08-26 13:13 - 000437826 _____ C:\Users\Martina\Documents\dochazka6837.pdf
2021-08-26 13:13 - 2021-08-26 13:13 - 000187694 _____ C:\Users\Martina\Documents\dochazka6838.pdf
2021-08-26 13:11 - 2021-08-26 13:11 - 000457335 _____ C:\Users\Martina\Documents\dochazka6836.pdf
2021-08-26 13:09 - 2021-08-26 13:09 - 000176307 _____ C:\Users\Martina\Documents\dochazka5835.pdf
2021-08-26 13:08 - 2021-08-26 13:08 - 000415259 _____ C:\Users\Martina\Documents\dochazka5834.pdf
2021-08-26 13:07 - 2021-08-26 13:07 - 000441805 _____ C:\Users\Martina\Documents\dochazka5833.pdf
2021-08-26 13:04 - 2021-08-26 13:04 - 000178304 _____ C:\Users\Martina\Documents\dochazka4832.pdf
2021-08-26 13:03 - 2021-08-26 13:03 - 000439241 _____ C:\Users\Martina\Documents\dochazka4831.pdf
2021-08-26 13:01 - 2021-08-26 13:01 - 000429993 _____ C:\Users\Martina\Documents\dochazka4830.pdf
2021-08-26 13:00 - 2021-08-26 13:00 - 000186114 _____ C:\Users\Martina\Documents\dochazka3829.pdf
2021-08-26 12:59 - 2021-08-26 12:59 - 000432165 _____ C:\Users\Martina\Documents\dochazka3828.pdf
2021-08-26 12:57 - 2021-08-26 12:57 - 000430785 _____ C:\Users\Martina\Documents\dochazka3827.pdf
2021-08-26 12:55 - 2021-08-26 12:55 - 000189448 _____ C:\Users\Martina\Documents\dochazka2826.pdf
2021-08-26 12:53 - 2021-08-26 12:53 - 000420068 _____ C:\Users\Martina\Documents\dochazka2825.pdf
2021-08-26 12:52 - 2021-08-26 12:52 - 000424418 _____ C:\Users\Martina\Documents\dochazka2824.pdf
2021-08-26 12:18 - 2021-08-26 12:18 - 000196446 _____ C:\Users\Martina\Documents\dochazka823.pdf
2021-08-26 12:13 - 2021-08-26 12:13 - 000423451 _____ C:\Users\Martina\Documents\dochazka822.pdf
2021-08-26 12:11 - 2021-08-26 12:11 - 000446097 _____ C:\Users\Martina\Documents\dochazka821.pdf
2021-08-24 21:06 - 2021-08-24 21:06 - 000099612 _____ C:\Users\Martina\Downloads\priloha_940043689_0_vznikDpnInfo_14722705.pdf
2021-08-24 17:18 - 2021-08-24 17:18 - 000867933 _____ C:\Users\Martina\Documents\marhold819.pdf
2021-08-23 21:51 - 2021-08-23 21:51 - 001274092 _____ C:\Users\Martina\Documents\mzdovevymery815.pdf
2021-08-23 21:37 - 2021-08-23 21:37 - 000531009 _____ C:\Users\Martina\Documents\marholdrozv814.pdf
2021-08-23 21:33 - 2021-08-23 21:33 - 002229349 _____ C:\Users\Martina\Documents\prsmlouy813.pdf
2021-08-23 11:02 - 2021-08-23 11:02 - 000093671 _____ C:\Users\Martina\Downloads\priloha_939899310_0_vznikDpnOznam_14716725.pdf
2021-08-18 21:51 - 2021-08-18 21:51 - 000198865 _____ C:\Users\Martina\Documents\vzp812.pdf
2021-08-18 20:16 - 2021-08-18 20:16 - 000234372 _____ C:\Users\Martina\Documents\sezn811.pdf
2021-08-18 14:47 - 2021-08-18 14:47 - 000099454 _____ C:\Users\Martina\Downloads\priloha_938742744_0_vznikDpnInfo_14674131.pdf
2021-08-18 14:46 - 2021-08-18 14:46 - 000103422 _____ C:\Users\Martina\Downloads\priloha_937435310_0_zmenaDpnInfo_14612708.pdf
2021-08-17 10:40 - 2021-08-17 10:40 - 000259727 _____ C:\Users\Martina\Documents\marh810.pdf
2021-08-17 08:02 - 2021-08-17 08:02 - 000268418 _____ C:\Users\Martina\Documents\hus809.pdf
2021-08-14 22:04 - 2021-08-14 22:04 - 000283873 _____ C:\Users\Martina\Documents\dru808.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-13 12:01 - 2013-11-14 14:39 - 002026444 _____ C:\Windows\system32\PerfStringBackup.INI
2021-09-13 12:01 - 2013-11-14 14:24 - 000835646 _____ C:\Windows\system32\perfh005.dat
2021-09-13 12:01 - 2013-11-14 14:24 - 000188690 _____ C:\Windows\system32\perfc005.dat
2021-09-13 12:01 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2021-09-13 12:00 - 2014-04-27 13:52 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-09-13 11:56 - 2015-07-08 15:04 - 000665088 ___SH C:\Users\Martina\Desktop\Thumbs.db
2021-09-13 11:55 - 2018-12-25 17:52 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2021-09-13 11:54 - 2014-03-15 14:25 - 000000000 ____D C:\Users\Martina\AppData\Roaming\ClassicShell
2021-09-13 11:53 - 2019-12-24 18:24 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2021-09-13 11:53 - 2019-12-24 18:21 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2021-09-13 11:53 - 2018-08-28 08:35 - 000003544 _____ C:\Windows\system32\Tasks\Lenovo Power Management Driver PnP Task
2021-09-13 11:53 - 2018-01-28 17:44 - 000000150 _____ C:\Windows\SysWOW64\winsevr.dat
2021-09-13 11:53 - 2013-09-07 16:14 - 000000000 ____D C:\Users\Martina\AppData\LocalLow\AuthenTec
2021-09-13 11:53 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-09-13 11:26 - 2013-09-09 13:49 - 000000000 ____D C:\Users\Martina\AppData\Local\CrashDumps
2021-09-13 11:13 - 2013-09-07 16:20 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1434038810-1081703228-4035633340-1004
2021-09-13 11:07 - 2019-05-25 14:20 - 000160176 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-09-12 14:48 - 2020-12-18 18:42 - 000000528 _____ C:\Users\Martina\.vivaldi_reporting_data
2021-09-11 17:57 - 2014-01-20 19:35 - 000000000 ____D C:\Users\Martina\AppData\Roaming\vlc
2021-09-11 08:35 - 2021-02-03 13:20 - 000000000 ____D C:\Users\Martina\AppData\Roaming\Telegram Desktop
2021-09-10 23:23 - 2021-02-02 15:43 - 000000000 ____D C:\STEREO30
2021-09-10 22:31 - 2015-05-14 13:35 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-09-09 23:21 - 2013-08-22 15:25 - 000524288 ___SH C:\Windows\system32\config\BBI
2021-09-09 08:50 - 2020-12-18 18:31 - 000002278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-09-09 08:50 - 2020-12-18 18:31 - 000002237 _____ C:\Users\Public\Desktop\Brave.lnk
2021-09-06 18:07 - 2021-01-06 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2021-09-02 08:47 - 2013-09-08 17:54 - 000000000 ____D C:\Users\Martina\Documents\Dokumenty Tulach
2021-08-31 10:14 - 2017-10-03 20:48 - 000002386 _____ C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2021-08-31 10:14 - 2017-10-03 20:48 - 000002349 _____ C:\Users\Martina\Desktop\Vivaldi.lnk
2021-08-31 10:14 - 2017-10-03 20:47 - 000000000 ____D C:\Users\Martina\AppData\Local\Vivaldi
2021-08-30 22:45 - 2014-07-08 21:23 - 000803176 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2021-08-29 10:14 - 2021-07-29 21:52 - 000000000 ____D C:\Users\Martina\Downloads\foto na tisk
2021-08-29 10:14 - 2021-07-28 20:45 - 000000000 ____D C:\Users\Martina\Downloads\Vlasta Redl pro Andělku
2021-08-29 10:14 - 2021-07-06 20:58 - 000000000 ____D C:\Users\Martina\Downloads\Telegram Desktop
2021-08-27 23:40 - 2021-02-18 18:40 - 000790288 _____ C:\Users\Martina\Documents\Příloha č. 1 Monitorovací dotazník 2021.xlsx
2021-08-15 16:04 - 2013-09-09 11:38 - 000000000 ____D C:\Users\Martina\AppData\Roaming\VMware
2021-08-15 16:04 - 2013-09-09 11:38 - 000000000 ____D C:\Users\Martina\AppData\Local\VMware

==================== Files in the root of some directories ========

2018-05-01 16:01 - 2018-05-01 16:05 - 205149616 _____ ( ) C:\Users\Martina\duelsetup-14-0-3-10000.exe
2018-02-14 10:11 - 2018-02-14 10:13 - 097348424 _____ (Ježek software s.r.o. ) C:\Users\Martina\STEREO27.exe
2013-09-07 16:15 - 2013-09-07 16:15 - 000000000 _____ () C:\Users\Martina\AppData\Roaming\AbsoluteReminder.xml
2013-12-15 14:55 - 2013-12-15 15:14 - 000000778 _____ () C:\Users\Martina\AppData\Local\Temp1.html
2013-12-15 15:14 - 2013-12-15 15:14 - 000002144 _____ () C:\Users\Martina\AppData\Local\Temp25.html
2013-12-15 15:13 - 2013-12-15 15:13 - 000002997 _____ () C:\Users\Martina\AppData\Local\Temp27.html
2013-12-15 15:14 - 2013-12-15 15:14 - 000001776 _____ () C:\Users\Martina\AppData\Local\Temp3.html
2013-12-15 14:56 - 2013-12-15 14:56 - 000002997 _____ () C:\Users\Martina\AppData\Local\Temp43.html
2013-09-08 15:23 - 2013-09-08 15:24 - 000025509 _____ () C:\Users\Martina\AppData\Local\WiDiSetupLog.20130908.152350.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2021-09-11 09:27
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-09-2021
Ran by Martina (13-09-2021 13:00:28)
Running from C:\Users\Martina\Desktop
Windows 8.1 Pro (Update) (X64) (2014-03-17 18:20:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1434038810-1081703228-4035633340-500 - Administrator - Disabled)
Guest (S-1-5-21-1434038810-1081703228-4035633340-501 - Limited - Enabled)
Martina (S-1-5-21-1434038810-1081703228-4035633340-1004 - Administrator - Enabled) => C:\Users\Martina
Tomas (S-1-5-21-1434038810-1081703228-4035633340-1042 - Administrator - Enabled) => C:\Users\Tomas

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.005.20060 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_4977c84bcdc298c444ccfbdcccb660d) (Version: 10.0 - Adobe Systems Incorporated)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 93.1.29.79 - Autoři prohlížeče Brave)
Classic Shell (HKLM\...\{2368907C-E8F6-4750-A023-254C3E2B5E8D}) (Version: 4.0.4 - IvoSoft)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Fingerprint Reader (HKLM\...\{1CACE706-D749-44CA-BBFE-AF60946D1B18}) (Version: 6.0.200.75 - AuthenTec, Inc.)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
FormApps Plug-in (HKLM-x32\...\{9a1d8d96-8b6f-4b5e-9281-abf022feb360}) (Version: 1.29.0.79 - Software602 a.s.)
FreeFileSync 10.23 (HKLM-x32\...\FreeFileSync_is1) (Version: 10.23 - FreeFileSync.org)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HBS STARLIFE version 1.0.0 (HKLM-x32\...\{F845D7E7-41F7-44F2-9692-4A325D4D04B9}_is1) (Version: 1.0.0 - STARLIFE s.r.o.)
Human Body Scanner (Cz) 3.9.0 (HKLM-x32\...\Human Body Scanner (Cz)) (Version: 3.9.0 - Quantum)
Integrated Camera Driver Installer Package Ver.1.0.0.26 (HKLM-x32\...\{F8754583-7893-4CD8-9E51-1A08F3D4C1A9}) (Version: 1.0.0.26 - RICOH)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Ježek software DUEL 16.0.4.10340 (HKLM-x32\...\JezekDUEL_is1) (Version: - Ježek software)
Ježek software STEREO 22 (HKLM-x32\...\Ježek software STEREO 22_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 23 (HKLM-x32\...\Ježek software STEREO 23_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 24 (HKLM-x32\...\Ježek software STEREO 24_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 26 (HKLM-x32\...\Ježek software STEREO 26_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 27 (HKLM-x32\...\Ježek software STEREO 27_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 28 (HKLM-x32\...\Ježek software STEREO 28_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 29 (HKLM-x32\...\Ježek software STEREO 29_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 30 (HKLM-x32\...\Ježek software STEREO 30_is1) (Version: - Ježek software s.r.o.)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.20 - Lenovo)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.21 - Lenovo)
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.86.25 - Lenovo)
Lenovo Patch Utility (HKLM-x32\...\{AD32F5E9-6BDD-480A-8B7B-95571D04691C}) (Version: 1.3.1.1 - Lenovo Group Limited)
Lenovo Patch Utility (HKLM-x32\...\{C6FB6B4A-1378-4CD3-9CD3-42BA69FCBD43}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{053ACA98-6B07-4DD0-9DB3-F51E3EB1780C}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}) (Version: 1.3.1.1 - Lenovo Group Limited)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.04.05 - ) Hidden
Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 2.4.0.23 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0127 - Lenovo)
Malwarebytes version 4.4.6.132 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.6.132 - Malwarebytes)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0008.00 - Lenovo Group Limited) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.50 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BF5ABBDB-D3AA-4BCB-8D10-FCD4A4BB7F93}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Backward compatibility (HKLM\...\{8909B8A7-CEAB-4772-BF29-1892C4E6603B}) (Version: 8.05.2309 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C7E2483C-10A4-41E3-A2F6-240186FE3E41}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
MPC-HC 1.9.2 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.9.2 - MPC-HC Team)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nebesky kalendar 4 verze 4.8 (HKLM-x32\...\{6F8B3EAA-4961-4997-A9DD-7A82005CC01E}_is1) (Version: 4.8 - Zdenek Pazdera - Wendys)
Nebeský kalendář verze 3.0 (HKLM-x32\...\{B3283535-E45A-4D8F-8B80-F6898E280CFB}_is1) (Version: 3.0 - Zdeněk Pazdera - Wendys)
PDF Settings (HKLM-x32\...\{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
PlayMemories Home (HKLM-x32\...\{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}) (Version: 6.0.02.14151 - Sony Corporation)
ProFact 4.0 (HKLM-x32\...\ProFact 4.0_is1) (Version: - eXmind)
PROFIT 2015.05 (HKLM-x32\...\{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1) (Version: - LPsoft)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.29048 - Realtek Semiconductor Corp.)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
Speccy (HKLM\...\Speccy) (Version: 1.25 - Piriform)
SQL Server 2014 Common Files (HKLM\...\{BD1CD96B-FE4B-4EAE-83D4-6EF55AB5779C}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM\...\{F7012F84-80F5-4C25-852E-B1BA03276FE6}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{17531BCD-C627-46A2-9F1E-7CC920E0E94A}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{5082A9F3-AEE5-4639-9BA7-C19661BA7331}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{ACC530B8-B6B4-40D6-B59B-152468CF47D0}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{D1B847A9-B06B-4264-9EF0-78E6E1571E65}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{6476DB81-F263-4C04-8574-AAD31136C304}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1026 - SUPERAntiSpyware.com)
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.21.6 - TeamViewer)
Telegram Desktop version 3.0.1 (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.0.1 - Telegram FZ-LLC)
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.7 - )
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vivaldi (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Vivaldi) (Version: 4.1.2369.21 - Vivaldi Technologies AS.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VmciSockets (HKLM\...\{2BE3C45C-B0E3-4061-A3C5-C6ED9639C813}) (Version: 9.1.54.1 - VMware, Inc.) Hidden
VMware Workstation (HKLM-x32\...\{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}) (Version: 8.0.3.29699 - VMware, Inc.) Hidden
VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 8.0.3.29699 - VMware, Inc)
WhoCrashed 5.00 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - Intel Corporation (iaStorA) HDC (08/16/2012 11.5.4.1001) (HKLM\...\5FAC453989A0F70D1125104F58B20CAA20CE7BC8) (Version: 08/16/2012 11.5.4.1001 - Intel Corporation)
Windows Driver Package - Lenovo 1.66.00.07 (08/15/2012 1.66.00.07) (HKLM\...\E56A6B34B44A7A597FFEBE0E14D81095E0FD4D73) (Version: 08/15/2012 1.66.00.07 - Lenovo)

Packages:
=========
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview_1.0.9431.0_neutral__8wekyb3d8bbwe [2014-04-27] (Rozšíření Microsoft Platform)
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.Preview.1_1.0.9345.0_neutral__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_1.0.0.7175_x86__4642shxvsv8s2 [2012-10-13] (LENOVO INCORPORATED.)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x64__8wekyb3d8bbwe [2014-04-27] (Microsoft Corporation)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x86__8wekyb3d8bbwe [2014-04-27] (Microsoft Corporation)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x64__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions Internal)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x86__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions Internal)
Microsoft Windows Library for JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview.Internal_1.0.9385.3_neutral__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions)
Výběr prohlížeče -> C:\WINDOWS\BrowserChoice [2014-03-17] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\Martina\AppData\Local\Vivaldi\Application\4.1.2369.21\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2014-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip32.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.VMnc] => C:\Windows\SysWOW64\vmnc.dll [252016 2012-04-30] (VMware, Inc. -> VMware, Inc.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Martina\Desktop\Ježek software STEREO 21.lnk -> C:\STEREO\STEREO21\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 22.lnk -> C:\STEREO22\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 23.lnk -> C:\STEREO23\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 24.lnk -> C:\STEREO24\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 26.lnk -> C:\STEREO26\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 27.lnk -> C:\STEREO27\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 28.lnk -> C:\STEREO28\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 29.lnk -> C:\STEREO29\S64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 30.lnk -> C:\STEREO30\S64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 28.lnk -> C:\STEREO28\U64.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 29.lnk -> C:\STEREO29\U64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 30.lnk -> C:\STEREO30\U64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Stereo 19.lnk -> C:\STEREO\STEREO19\S64.BAT (No File)
Shortcut: C:\Users\Martina\Desktop\Ostatní\Převod dat do STEREO 22.lnk -> C:\STEREO22\U64.BAT ()
Shortcut: C:\Users\Martina\Desktop\Ostatní\Převod dat do STEREO 23.lnk -> C:\STEREO23\U64.BAT ()

==================== Loaded Modules (Whitelisted) =============

2012-04-30 19:29 - 2012-04-30 19:29 - 001222656 _____ () [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2006-02-28 12:42 - 2006-02-28 12:42 - 000094208 _____ (Apple Computer, Inc.) [File not signed] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
2013-09-09 14:29 - 2009-04-16 12:47 - 000136704 _____ (Hewlett-Packard Company) [File not signed] C:\Windows\System32\hpf3l70w.dll
2014-03-17 19:51 - 2009-04-16 12:47 - 000249856 _____ (Hewlett-Packard Corporation) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\hpfpp70w.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2014-01-18 18:12 - 2014-01-18 18:12 - 002271424 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll
2018-01-10 15:08 - 2014-10-23 11:20 - 000276480 _____ (Lenovo) [File not signed] C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MHHelperDLL.dll
2014-03-17 20:01 - 2014-03-17 20:01 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
2020-01-08 19:47 - 2017-09-27 18:30 - 000489984 _____ (Newtonsoft) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\Newtonsoft.Json.dll
2012-04-30 19:40 - 2012-04-30 19:40 - 021270016 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\types.dll
2012-04-30 19:36 - 2012-04-30 19:36 - 003653632 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmacore.dll
2012-04-30 19:38 - 2012-04-30 19:38 - 002355712 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmomi.dll
2020-01-08 19:47 - 2018-01-26 18:08 - 000088064 _____ (Wondershare) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCollect.dll
2020-01-08 19:47 - 2018-01-26 18:08 - 000200192 _____ (Wondershare) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCommon.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={01D4527C-20F8-44F5-AD3D-042A6FD51958}&mid=bbc46b84689847d29d0c55ef8e209c8a-be26a817e37706961b48711a40dfbe36fc28a4af&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0816av&pr=fr&d=2016-07-26 07:55:07&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> {B9B77431-2737-4B76-B12B-91AE79488EE1} URL =
BHO: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2012-08-31] (AuthenTec, Inc. -> AuthenTec Inc.)
BHO: No Name -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> No File
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2012-08-31] (AuthenTec, Inc. -> AuthenTec Inc.)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - No Name - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - No File
IE Session Restore: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> is enabled.
DPF: HKLM-x32 {4FF78044-96B4-4312-A5B7-FDA3CB328095}
DPF: HKLM-x32 {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} hxxps://forms.celnisprava.cz/webfiller/page/activexcab/webff_cs.cab

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-01-04 10:02 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Lenovo Fingerprint Reader\;C:\Program Files\Lenovo Fingerprint Reader\x86\;C:\ProgramData\Lenovo\ReadyApps;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\AOMEI Backupper;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "cAudioFilterAgent"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "SmartAudio"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{57E8D505-2EA2-4DC4-B4BD-19B7F1EDE6DC}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{6C03F45B-C78A-4FF2-A8CB-DF1D06186A55}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{D65109C1-D806-4E47-9397-18BC3CE17D70}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Mobile Wireless Group -> )
FirewallRules: [UDP Query User{91ABEFF0-B740-44C9-A0E4-C831F12925F0}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{C3ACB859-EA44-4BFB-912C-2FE6CF4EDC0F}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{00496117-2C14-4936-BC19-E58C9388239B}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe () [File not signed]
FirewallRules: [{CE5595C8-744A-41F6-8C0A-2234ED78A691}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe () [File not signed]
FirewallRules: [{8B56B669-C5FA-4189-87D2-DDB392CC3013}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.) [File not signed]
FirewallRules: [{CFB0C154-1BFB-40A7-BF8E-1FF60817950C}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.) [File not signed]
FirewallRules: [UDP Query User{700F2B37-2A25-4E53-811E-4F0AAD39E64A}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{D7215C15-C8F5-4CDF-8497-5319B34979D5}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{0066CF3D-C273-4A2D-844E-943E0C21DBCA}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe (Intel Wireless Display -> Intel Corporation)
FirewallRules: [TCP Query User{F426A81E-CF4A-4877-8A20-B8C10C898C37}C:\program files (x86)\totalcmd\totalcmd.exe] => (Allow) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{D92C41F8-DEDA-48B3-B1EB-08095C4BBCCD}C:\program files (x86)\totalcmd\totalcmd.exe] => (Allow) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{3B757383-AA43-4B4F-97F2-51CD71D0D6E7}] => (Block) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{5911B8D7-9266-4808-884E-0DA55E1C583A}] => (Block) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{6A411443-6788-4F3F-B019-F8BF40D189F1}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [UDP Query User{E49CA04D-7012-4F15-8207-B58EF9AB7297}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{1A4E4F34-866D-4F9E-A8EA-3D6C69A4BF7B}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{AEAEAB56-D94F-47C3-B9DF-B4C95C0D383D}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{57994B6B-3625-4493-B194-7A30821E3378}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{1609E63F-9F5D-4FD6-B40B-750B304445E8}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{50E4B1B6-BF23-4ACF-A52E-BC0E3C053175}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{886CCDC5-DF39-4ACE-9447-1071108EB492}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{26AEE13B-A626-4001-91BA-FD9D2673672C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [TCP Query User{2C54E78F-FE8D-4A28-BE21-AD0C6FE84208}C:\program files (x86)\ježek software\duel\duel.exe] => (Allow) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [UDP Query User{D282DA67-BC9B-4BA1-BC8C-60150CE0BC78}C:\program files (x86)\ježek software\duel\duel.exe] => (Allow) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{2BD940E4-705D-4597-906A-53399AB61376}] => (Block) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{BB1DB165-869E-41DC-9B73-D2992014D178}] => (Block) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{93B5C562-487A-4DEB-8102-B2B5FA687BB2}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{74C3384E-2C93-4EA2-A986-174F3A6AC55A}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [TCP Query User{280D4CF5-1C47-42E5-87C1-959F8A301ECF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe => No File
FirewallRules: [UDP Query User{2A87DA6C-53C0-40A3-86E5-17290BFB8BDF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe => No File
FirewallRules: [TCP Query User{33135F8E-40B3-4F31-ABA1-3434B920B713}C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [UDP Query User{764EBB7A-DC7B-441F-8878-465C61B31E98}C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{83A4DB31-1893-4D16-9FDD-9C735697ABE0}] => (Block) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{78FDC989-C63F-4638-B0DE-CE0B89265266}] => (Block) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{A4A5459E-0191-454A-A77E-F4275AF5D801}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{8710209A-14EB-4329-AC0B-8214014E81A1}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{167A71CF-03A1-40BC-B3D2-22A730E70290}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B19E411C-741B-46F1-9614-FA0694DFB397}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DA3350C8-7464-4FC4-A7C9-B93BD025BEF5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7D0A6A9E-2C5F-422B-8FB9-5E81AD598850}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2480DBC4-8074-4826-9CE5-94E081E43A7A}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/13/2021 11:53:19 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.

Error: (09/13/2021 11:53:19 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/13/2021 11:26:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamtray.exe, verze: 4.0.0.1117, časové razítko: 0x61321f0b
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x603971ce
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219dc5
ID chybujícího procesu: 0x2464
Čas spuštění chybující aplikace: 0x01d7a87ed57acf4f
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: ac204e48-1474-11ec-8778-84a6c8c47579
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/12/2021 12:33:32 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (09/11/2021 10:17:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WbioSrvc, verze: 6.3.9600.17415, časové razítko: 0x54504177
Název chybujícího modulu: UPKBU.DLL, verze: 1.6.1.341, časové razítko: 0x502239a7
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000cccd7
ID chybujícího procesu: 0x6fc
Čas spuštění chybující aplikace: 0x01d7a6d3b49826cd
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\WINBIOPLUGINS\UPKBU.DLL
ID zprávy: b498ab05-12d8-11ec-8778-84a6c8c47579
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/11/2021 09:40:30 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (09/11/2021 09:07:22 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).

Error: (09/11/2021 08:10:31 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.


System errors:
=============
Error: (09/13/2021 11:55:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/13/2021 11:55:23 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) Management and Security Application Local Management Service bylo dosaženo časového limitu (60000 ms).

Error: (09/13/2021 09:16:52 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a45\??\C:\Windows\AppCompat\Programs\Amcache.hve

Error: (09/13/2021 08:52:04 AM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/13/2021 08:51:34 AM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/12/2021 12:32:03 PM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/12/2021 12:31:33 PM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/12/2021 12:26:13 PM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2021-09-13 08:51:37.520
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {BC5FE25D-4971-4C52-BFC9-3CD99719B8A5}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-12 12:25:28.071
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1964D335-B53E-43E7-A347-E5CFB1FD6EEE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-12 10:06:35.290
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {31303D30-6CD2-48CB-B556-B701A4D85022}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-11 09:08:22.925
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {75E63107-8005-4E74-8074-F302F9194D4E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-10 08:20:59.321
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {AD6710AA-6085-414A-A01D-9DC183641498}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-07 14:05:51.260
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.349.222.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18500.10
Kód chyby: 0x8024402f
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

==================== Memory info ===========================

BIOS: LENOVO H0ET98WW (2.58 ) 08/18/2016
Motherboard: LENOVO 3259TFG
Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 57%
Total physical RAM: 5989.89 MB
Available physical RAM: 2563 MB
Total Virtual: 12133.89 MB
Available Virtual: 9008.6 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:464.41 GB) (Free:33.9 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{5504ab96-f565-11e7-8313-84a6c8c47579}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 69677AFB)

Partition: GPT.

==================== End of Addition.txt =======================
Přílohy
Výstřižek.PNG
Výstřižek.PNG (58.55 KiB) Zobrazeno 2753 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118200
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Vyskakovací okno a.digitalcaptcha.top

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Black Prince
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 11 lis 2012 22:45

Re: Vyskakovací okno a.digitalcaptcha.top

#3 Příspěvek od Black Prince »

# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-09-09.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-13-2021
# Duration: 00:00:02
# OS: Windows 8.1 Pro
# Cleaned: 13
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\AVG SafeGuard toolbar
Deleted C:\Program Files (x86)\AVG Security Toolbar
Deleted C:\ProgramData\AVG Security Toolbar
Deleted C:\ProgramData\AVG_UPDATE_0215TB
Deleted C:\ProgramData\AVG_UPDATE_1114TB
Deleted C:\ProgramData\AVG_UPDATE_1214TB
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mysearch.avg.com
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Deleted HKLM\Software\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Deleted HKLM\Software\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [5731 octets] - [13/09/2021 14:56:14]
AdwCleaner[S01].txt - [5792 octets] - [13/09/2021 14:57:55]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118200
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Vyskakovací okno a.digitalcaptcha.top

#4 Příspěvek od Rudy »

OK. Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Black Prince
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 11 lis 2012 22:45

Re: Vyskakovací okno a.digitalcaptcha.top

#5 Příspěvek od Black Prince »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-09-2021
Ran by Martina (administrator) on MARTINA-NB (LENOVO 3259TFG) (13-09-2021 15:51:44)
Running from C:\Users\Martina\Desktop
Loaded Profiles: Martina
Platform: Windows 8.1 Pro (Update) (X64) Language: Čeština (Česká republika)
Default browser: Vivaldi
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AuthenTec, Inc. -> ) C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
(AuthenTec, Inc. -> AuthenTec Inc.) C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe
(AuthenTec, Inc. -> AuthenTec, Inc) C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
(AuthenTec, Inc. -> AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe <2>
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files (x86)\totalcmd\TOTALCMD.EXE
(CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Mobile Wireless Group -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
(Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe
(Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Realtek Semiconductor Corp -> Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Ricoh co.,Ltd.) [File not signed] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATII4E.EXE
(Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-14] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [937328 2017-07-27] (Lenovo -> Lenovo)
HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [347216 2017-02-23] (Lenovo -> Lenovo Group Limited)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) [File not signed]
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7822648 2014-10-28] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [LMCSSTART1] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [LMCSSTART2] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [LMCSSTART3] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [132920 2013-05-31] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [64000 2012-08-10] (Ricoh co.,Ltd.) [File not signed]
HKLM-x32\...\Run: [vmware-tray] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [103536 2012-04-30] (VMware, Inc. -> VMware, Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [688184 2012-02-15] (Sony Corporation -> Sony Corporation)
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Run: [Vivaldi Update Notifier] => C:\Users\Martina\AppData\Local\Vivaldi\Application\update_notifier.exe [2997136 2021-08-20] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2014-07-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [11776 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpfpp70w: C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll [249856 2009-04-16] (Hewlett-Packard Corporation) [File not signed]
HKLM\...\Print\Monitors\EPSON L355 Series 64MonitorBE: C:\Windows\system32\E_YLMI4E.DLL [120320 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\hpf3l70w.dll: C:\Windows\system32\hpf3l70w.dll [136704 2009-04-16] (Hewlett-Packard Company) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\93.1.29.79\Installer\chrmstp.exe [2021-09-09] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2021-05-28] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {084471D3-D0CE-4866-B896-B387775C6D65} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {09A93D60-45D2-4D3A-8CAA-46CC7CA16279} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\Windows\System32\ibmpmsvc.exe [851800 2018-12-26] (Lenovo -> Lenovo.)
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {138762D8-2A4C-400C-9648-190C1EB6FCB2} - System32\Tasks\PMTask => C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
Task: {258BB9C9-5A32-4ADC-83C0-2BE6BB0113B7} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
Task: {305859D7-81F4-456A-8C81-D55A77B59623} - System32\Tasks\FreeFileSync\Synchronizace => C:\Program Files\FreeFileSync\FreeFileSync.exe [519728 2020-04-17] (Florian BAUER -> FreeFileSync.org) -> "C:\Users\Martina\Tomáš\FreeFileSync\SyncSettings.ffs_batch"
Task: {49B3C45E-A301-487F-9A82-A4CA595361A4} - System32\Tasks\{6C0DAF4B-458E-4A29-8143-E4B94968C29F} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\HP\Digital Imaging\{0AFFEA39-60AF-4C4F-BB47-4A1F7CB12129}\setup\hpzscr40.exe" -c -datfile hposcr46.dat -onestop -forcereboot
Task: {4E864FE1-7EC2-4B0C-92DB-EB7CBDC7A701} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd => C:\Windows\system32\GWX\GWX.exe
Task: {525D0499-E75C-4595-9AD6-70EBE939E0C5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {525D0499-E75C-4595-9AD6-70EBE939E0C5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [ [ ]]
Task: {584EDE5A-0669-4800-8652-039A8CD35FE4} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-07-13] (Lenovo -> )
Task: {5C2789A5-C85A-49B8-A40A-A3DFF22FFF4F} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {65373F37-46BD-4571-A4AA-E66C8E348A0B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {77ACAD3A-B575-48ED-8C7D-36B7552AB54A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => C:\Windows\system32\GWX\GWX.exe
Task: {846EC86E-C559-46DB-A0D6-693CF83E8C91} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {8613363B-ED8B-4D3A-B50F-274810E0370D} - System32\Tasks\VivaldiUpdateCheck-695cbe4d546049ec => C:\Users\Martina\AppData\Local\Vivaldi\Application\update_notifier.exe [2997136 2021-08-20] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
Task: {8A58BCBC-DA5D-499D-81FE-182F5B17BAD4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {98533973-C5D2-4B2C-AD60-6BA8CFBF1E5F} - System32\Tasks\Dolby => c:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
Task: {9C4EBFC9-A1D4-4D25-812D-6BF6AEA0EE94} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.EXE
Task: {9E54EAC0-E897-4846-9634-A2CB3FED1489} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo)
Task: {A3C1B812-8F19-4284-8AFE-16808E9EFD80} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9C205D8-747C-401A-8254-2962F68902EC} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {B23D019C-610E-4727-9284-9D8606F13E93} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3BBD494-D3F6-4CF0-B47C-A83B97609914} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => C:\Windows\system32\GWX\GWX.exe
Task: {BAD9DD48-5855-4FC9-85C7-8C0A5C610B07} - System32\Tasks\Lenovo\Lenovo Settings Power => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
Task: {BE659811-E53E-4C4C-ACF1-C3631CA71446} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-04-24] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {EAB5AE4A-E8D3-47A7-A683-C94302E76C6E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Time-5d => C:\Windows\system32\GWX\GWX.exe
Task: {EB23AF80-7A83-4CC9-8F2F-237D48CC6CB9} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => C:\Windows\system32\GWX\GWX.exe
Task: {EF9E09FA-8C1C-497C-B7CD-E22337430276} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5BE1D1D-5B8B-4D8D-B37B-E12442F8B8B2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F8AB76BB-3CBF-4BDE-968B-49FDCEF9376B} - System32\Tasks\Intel\Intel Service Manager => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
Task: {F8F70B82-753C-4A4D-A213-DBE715E82E5D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-07-13] (Lenovo -> )

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208 2006-02-28] (Apple Computer, Inc.) [File not signed]
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{2AD5DB67-7909-4C5B-99FA-CFEB9E54A530}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{CDFEC878-1A59-44B3-A1B4-D73744399775}: [DhcpNameServer] 10.0.0.138

Edge:
=======
Edge Profile: C:\Users\Martina\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-21]

FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 [2021-09-13]
FF Homepage: Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 -> hxxps://www.seznam.cz/
FF Session Restore: Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 -> is enabled.
FF Extension: (Classic Theme Restorer) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2017-11-22] [Legacy]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\firefox@ghostery.com.xpi [2018-12-08]
FF Extension: (AVG SafePrice) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\sp@avg.com.xpi [2016-11-15] [UpdateUrl:hxxps://cmp.avg.com/ff/updates.json]
FF Extension: (Session Manager) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-02-07] [Legacy]
FF Extension: (FormApps Extension) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{69F080C9-A1D8-42F8-BD83-3D54D4BC81B3}.xpi [2017-10-26]
FF Extension: (Vývojové sestavení Adblock Plus) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-12-08]
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll [2012-08-31] (AuthenTec, Inc. -> AuthenTec, Inc)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [iokmdlapebooifaijckgcmncjdpojmjl] - C:\Program Files\Lenovo Fingerprint Reader\x86\tschrome.crx [2012-08-03]

Brave:
=======
BRA Profile: C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-04-04]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-04-04]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-04-04]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2021-04-04]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2020-12-18]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak)) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\omkkefoeihpbpebhhbhmjekpnegokpbj [2021-04-04]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-04-04]

Vivaldi:
=======
VIV Profile: C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default [2021-09-13]
VIV Notifications: Default -> hxxps://a.digitalcaptcha.top; hxxps://businesscenter.podnikatel.cz; hxxps://mail.protonmail.com
VIV HomePage: Default -> hxxps://www.seznam.cz
VIV Extension: (Adblock Plus - free ad blocker) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-02]
VIV Extension: (FormApps Extension) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-11-20]
VIV Extension: (Website Logon) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\iokmdlapebooifaijckgcmncjdpojmjl [2017-10-03]
VIV Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2021-07-08]
VIV Extension: (Chrome Media Router) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-31]
VIV Extension: (Download YouTube videos with different video quality: 1080P, 720P, 480P, 360p etc. Supports all formats Mp3, MP4, FLV, WebM, 3GP) - C:\Users\Martina\Programs [2019-07-14]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [559912 2017-08-18] (Lenovo -> Lenovo Corporation)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [873560 2019-12-19] (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
S3 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-03-10] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-08-16] (Macrovision Europe Ltd.) [File not signed]
R2 FPLService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2139496 2012-08-31] (AuthenTec, Inc. -> AuthenTec, Inc)
S2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [125168 2014-12-04] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2468496 2012-11-15] (Realtek Semiconductor Corp -> Realsil Microelectronics Inc.)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2024304 2017-07-21] (Lenovo -> Lenovo Group Limited)
S2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [624936 2017-08-18] (Lenovo -> Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [120400 2017-04-03] (Lenovo -> Lenovo Group Limited)
R2 LnvHotSpotSvc; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [473968 2017-07-27] (Lenovo -> Lenovo)
R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [470392 2017-06-15] (Lenovo -> )
S2 LPlatSvc; C:\Windows\System32\LPlatSvc.exe [892760 2018-12-26] (Lenovo -> Lenovo.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [7785656 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
R2 MSSQL$DUEL; C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [459832 2012-02-15] (Sony Corporation -> Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RapiMgr; C:\Windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$DUEL; C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13267752 2021-08-27] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401256 2012-07-16] (AuthenTec, Inc. -> AuthenTec, Inc.)
R2 VMAuthdService; C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [79872 2012-04-30] (VMware, Inc.) [File not signed]
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [11839488 2012-04-30] () [File not signed]
R2 WcesComm; C:\Windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 AMPPAL; C:\Windows\System32\drivers\AMPPAL.sys [165344 2013-05-21] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider)
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [141624 2014-10-28] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1448248 2014-11-26] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 LnvHIDHW; C:\Windows\System32\drivers\LnvHIDHW.sys [42544 2017-07-24] (Lenovo -> Lenovo)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210344 2021-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
R0 PMDRVS; C:\Windows\System32\drivers\pmdrvs.sys [44160 2018-12-26] (Lenovo -> Lenovo.)
R3 RCUVCAVS; C:\Windows\system32\DRIVERS\RCUVCAVS.sys [149632 2012-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288480 2012-12-13] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
R2 VMnetBridge; C:\Windows\system32\DRIVERS\vmnetbridge.sys [45680 2012-04-30] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
S3 pccsmcfd; \SystemRoot\system32\DRIVERS\pccsmcfdx64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-13 14:55 - 2021-09-13 14:58 - 000000000 ____D C:\AdwCleaner
2021-09-13 13:00 - 2021-09-13 13:01 - 000044105 _____ C:\Users\Martina\Desktop\Addition.txt
2021-09-13 12:58 - 2021-09-13 15:52 - 000033032 _____ C:\Users\Martina\Desktop\FRST.txt
2021-09-13 12:58 - 2021-09-13 15:51 - 000000000 ____D C:\FRST
2021-09-13 12:57 - 2021-09-13 12:57 - 002303488 _____ (Farbar) C:\Users\Martina\Desktop\FRST64.exe
2021-09-13 12:06 - 2021-09-13 12:06 - 008553680 _____ (Malwarebytes) C:\Users\Martina\Desktop\AdwCleaner.exe
2021-09-13 11:26 - 2021-09-13 11:32 - 000000000 ____D C:\Users\Martina\AppData\LocalLow\IGDump
2021-09-13 11:07 - 2021-09-13 11:07 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-09-13 11:07 - 2021-09-13 11:07 - 000210344 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-09-13 11:07 - 2021-09-13 11:07 - 000001947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-09-12 13:28 - 2021-09-12 13:28 - 000172265 _____ C:\Users\Martina\Downloads\Jak se vyznat v rozměrech.pdf
2021-09-10 22:41 - 2021-09-10 22:41 - 000392848 _____ C:\Users\Martina\Documents\dru854.pdf
2021-09-09 18:45 - 2021-09-09 18:45 - 000647401 _____ C:\Users\Martina\Downloads\cenik-seat-arona.pdf
2021-09-07 14:25 - 2021-09-07 14:25 - 004583209 _____ C:\Users\Martina\Documents\sor853.pdf
2021-09-06 18:07 - 2021-09-06 18:07 - 000000000 ____D C:\Windows\LastGood.Tmp
2021-09-06 18:05 - 2021-09-06 18:05 - 000005143 _____ C:\Users\Martina\Downloads\DPHKH1-0027524302-20210906-180345-554815337-potvrzeni.p7s
2021-09-06 17:50 - 2021-09-06 17:50 - 000072931 _____ C:\Users\Martina\Downloads\priloha_944359530_0_00009999_khl_8330_2101453175.pdf
2021-09-02 12:36 - 2021-09-02 12:36 - 000480321 _____ C:\Users\Martina\Documents\lakat852.pdf
2021-09-02 12:34 - 2021-09-02 12:34 - 000655467 _____ C:\Users\Martina\Documents\lakat851.pdf
2021-09-02 07:47 - 2021-09-02 07:47 - 000099674 _____ C:\Users\Martina\Documents\dam850.pdf
2021-09-01 12:46 - 2021-09-01 12:46 - 000125084 _____ C:\Users\Martina\Documents\vzp849.pdf
2021-08-31 13:42 - 2021-08-31 13:42 - 000152485 _____ C:\Users\Martina\Documents\dru848.pdf
2021-08-31 10:15 - 2021-08-31 10:15 - 000003736 _____ C:\Windows\system32\Tasks\VivaldiUpdateCheck-695cbe4d546049ec
2021-08-30 09:56 - 2021-08-30 10:20 - 447872114 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E08.mp4
2021-08-29 11:20 - 2021-08-29 11:47 - 501503441 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E07.mp4
2021-08-29 10:23 - 2021-08-29 10:55 - 600518351 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E06.mp4
2021-08-29 08:45 - 2021-08-29 09:18 - 618122012 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E05.mp4
2021-08-29 08:05 - 2021-08-29 08:34 - 528092969 _____ C:\Users\Martina\Downloads\Shadow and Bone 2021 HD CZ Dabing S01E04.mp4
2021-08-28 18:23 - 2021-08-28 21:08 - 1821744820 _____ C:\Users\Martina\Downloads\Gentlemani The Gentlemen 2019 CZ dabing ripDVD.avi
2021-08-28 17:03 - 2021-08-28 18:23 - 1476438742 _____ C:\Users\Martina\Downloads\Popelka (2015) DVDRip CZ Dabing.avi
2021-08-28 16:08 - 2021-08-28 16:45 - 688852992 _____ C:\Users\Martina\Downloads\Zvonilka a ztraceny poklad (animovane, pohadka, 2009) CZdab.avi
2021-08-28 15:04 - 2021-08-28 15:44 - 734667750 _____ C:\Users\Martina\Downloads\Zvonilka 1 - (animovane, pohadka, 2008) CZdab.avi
2021-08-27 15:36 - 2021-08-27 16:20 - 805537792 _____ C:\Users\Martina\Downloads\Zvonilka Tajemstvi kridel (animovane, pohadka, 2012) CZdab.avi
2021-08-27 10:10 - 2021-08-27 10:10 - 000198137 _____ C:\Users\Martina\Documents\ergo847.pdf
2021-08-26 17:50 - 2021-08-26 17:50 - 000103028 _____ C:\Users\Martina\Downloads\priloha_941283545_0_zmenaDpnInfo_14779912.pdf
2021-08-26 17:46 - 2021-08-26 17:46 - 000022872 _____ C:\Users\Martina\Downloads\SESTAVA7.PDF
2021-08-26 17:45 - 2021-08-26 17:45 - 000759390 _____ C:\Users\Martina\Downloads\výpismzda842.pdf
2021-08-26 17:38 - 2021-08-26 17:38 - 000867933 _____ C:\Users\Martina\Downloads\marhold819.pdf
2021-08-26 17:38 - 2021-08-26 17:38 - 000072380 _____ C:\Users\Martina\Downloads\vnitpredpis846.pdf
2021-08-26 17:36 - 2021-08-26 17:36 - 000072380 _____ C:\Users\Martina\Documents\vnitpredpis846.pdf
2021-08-26 17:16 - 2021-08-26 17:16 - 000121656 _____ C:\Users\Martina\Documents\seznamzam845.pdf
2021-08-26 17:15 - 2021-08-26 17:15 - 000115954 _____ C:\Users\Martina\Documents\výpis844.pdf
2021-08-26 13:33 - 2021-08-26 13:33 - 001135437 _____ C:\Users\Martina\Documents\adresy843.pdf
2021-08-26 13:26 - 2021-08-26 13:26 - 000759390 _____ C:\Users\Martina\Documents\výpismzda842.pdf
2021-08-26 13:17 - 2021-08-26 13:17 - 000183402 _____ C:\Users\Martina\Documents\dochazka7841.pdf
2021-08-26 13:16 - 2021-08-26 13:16 - 000400825 _____ C:\Users\Martina\Documents\dochazka7840.pdf
2021-08-26 13:15 - 2021-08-26 13:15 - 000426119 _____ C:\Users\Martina\Documents\dochazka7839.pdf
2021-08-26 13:13 - 2021-08-26 13:13 - 000437826 _____ C:\Users\Martina\Documents\dochazka6837.pdf
2021-08-26 13:13 - 2021-08-26 13:13 - 000187694 _____ C:\Users\Martina\Documents\dochazka6838.pdf
2021-08-26 13:11 - 2021-08-26 13:11 - 000457335 _____ C:\Users\Martina\Documents\dochazka6836.pdf
2021-08-26 13:09 - 2021-08-26 13:09 - 000176307 _____ C:\Users\Martina\Documents\dochazka5835.pdf
2021-08-26 13:08 - 2021-08-26 13:08 - 000415259 _____ C:\Users\Martina\Documents\dochazka5834.pdf
2021-08-26 13:07 - 2021-08-26 13:07 - 000441805 _____ C:\Users\Martina\Documents\dochazka5833.pdf
2021-08-26 13:04 - 2021-08-26 13:04 - 000178304 _____ C:\Users\Martina\Documents\dochazka4832.pdf
2021-08-26 13:03 - 2021-08-26 13:03 - 000439241 _____ C:\Users\Martina\Documents\dochazka4831.pdf
2021-08-26 13:01 - 2021-08-26 13:01 - 000429993 _____ C:\Users\Martina\Documents\dochazka4830.pdf
2021-08-26 13:00 - 2021-08-26 13:00 - 000186114 _____ C:\Users\Martina\Documents\dochazka3829.pdf
2021-08-26 12:59 - 2021-08-26 12:59 - 000432165 _____ C:\Users\Martina\Documents\dochazka3828.pdf
2021-08-26 12:57 - 2021-08-26 12:57 - 000430785 _____ C:\Users\Martina\Documents\dochazka3827.pdf
2021-08-26 12:55 - 2021-08-26 12:55 - 000189448 _____ C:\Users\Martina\Documents\dochazka2826.pdf
2021-08-26 12:53 - 2021-08-26 12:53 - 000420068 _____ C:\Users\Martina\Documents\dochazka2825.pdf
2021-08-26 12:52 - 2021-08-26 12:52 - 000424418 _____ C:\Users\Martina\Documents\dochazka2824.pdf
2021-08-26 12:18 - 2021-08-26 12:18 - 000196446 _____ C:\Users\Martina\Documents\dochazka823.pdf
2021-08-26 12:13 - 2021-08-26 12:13 - 000423451 _____ C:\Users\Martina\Documents\dochazka822.pdf
2021-08-26 12:11 - 2021-08-26 12:11 - 000446097 _____ C:\Users\Martina\Documents\dochazka821.pdf
2021-08-24 21:06 - 2021-08-24 21:06 - 000099612 _____ C:\Users\Martina\Downloads\priloha_940043689_0_vznikDpnInfo_14722705.pdf
2021-08-24 17:18 - 2021-08-24 17:18 - 000867933 _____ C:\Users\Martina\Documents\marhold819.pdf
2021-08-23 21:51 - 2021-08-23 21:51 - 001274092 _____ C:\Users\Martina\Documents\mzdovevymery815.pdf
2021-08-23 21:37 - 2021-08-23 21:37 - 000531009 _____ C:\Users\Martina\Documents\marholdrozv814.pdf
2021-08-23 21:33 - 2021-08-23 21:33 - 002229349 _____ C:\Users\Martina\Documents\prsmlouy813.pdf
2021-08-23 11:02 - 2021-08-23 11:02 - 000093671 _____ C:\Users\Martina\Downloads\priloha_939899310_0_vznikDpnOznam_14716725.pdf
2021-08-18 21:51 - 2021-08-18 21:51 - 000198865 _____ C:\Users\Martina\Documents\vzp812.pdf
2021-08-18 20:16 - 2021-08-18 20:16 - 000234372 _____ C:\Users\Martina\Documents\sezn811.pdf
2021-08-18 14:47 - 2021-08-18 14:47 - 000099454 _____ C:\Users\Martina\Downloads\priloha_938742744_0_vznikDpnInfo_14674131.pdf
2021-08-18 14:46 - 2021-08-18 14:46 - 000103422 _____ C:\Users\Martina\Downloads\priloha_937435310_0_zmenaDpnInfo_14612708.pdf
2021-08-17 10:40 - 2021-08-17 10:40 - 000259727 _____ C:\Users\Martina\Documents\marh810.pdf
2021-08-17 08:02 - 2021-08-17 08:02 - 000268418 _____ C:\Users\Martina\Documents\hus809.pdf
2021-08-14 22:04 - 2021-08-14 22:04 - 000283873 _____ C:\Users\Martina\Documents\dru808.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-13 15:04 - 2013-11-14 14:39 - 002026444 _____ C:\Windows\system32\PerfStringBackup.INI
2021-09-13 15:04 - 2013-11-14 14:24 - 000835646 _____ C:\Windows\system32\perfh005.dat
2021-09-13 15:04 - 2013-11-14 14:24 - 000188690 _____ C:\Windows\system32\perfc005.dat
2021-09-13 15:04 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2021-09-13 15:00 - 2019-12-24 18:24 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2021-09-13 15:00 - 2019-12-24 18:21 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2021-09-13 15:00 - 2018-12-25 17:52 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2021-09-13 15:00 - 2018-08-28 08:35 - 000003544 _____ C:\Windows\system32\Tasks\Lenovo Power Management Driver PnP Task
2021-09-13 15:00 - 2018-01-28 17:44 - 000000150 _____ C:\Windows\SysWOW64\winsevr.dat
2021-09-13 15:00 - 2014-04-27 13:52 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-09-13 15:00 - 2014-03-15 14:25 - 000000000 ____D C:\Users\Martina\AppData\Roaming\ClassicShell
2021-09-13 15:00 - 2013-09-07 16:14 - 000000000 ____D C:\Users\Martina\AppData\LocalLow\AuthenTec
2021-09-13 15:00 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-09-13 11:56 - 2015-07-08 15:04 - 000665088 ___SH C:\Users\Martina\Desktop\Thumbs.db
2021-09-13 11:26 - 2013-09-09 13:49 - 000000000 ____D C:\Users\Martina\AppData\Local\CrashDumps
2021-09-13 11:13 - 2013-09-07 16:20 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1434038810-1081703228-4035633340-1004
2021-09-13 11:07 - 2019-05-25 14:20 - 000160176 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-09-12 14:48 - 2020-12-18 18:42 - 000000528 _____ C:\Users\Martina\.vivaldi_reporting_data
2021-09-11 17:57 - 2014-01-20 19:35 - 000000000 ____D C:\Users\Martina\AppData\Roaming\vlc
2021-09-11 08:35 - 2021-02-03 13:20 - 000000000 ____D C:\Users\Martina\AppData\Roaming\Telegram Desktop
2021-09-10 23:23 - 2021-02-02 15:43 - 000000000 ____D C:\STEREO30
2021-09-10 22:31 - 2015-05-14 13:35 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-09-09 23:21 - 2013-08-22 15:25 - 000524288 ___SH C:\Windows\system32\config\BBI
2021-09-09 08:50 - 2020-12-18 18:31 - 000002278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-09-09 08:50 - 2020-12-18 18:31 - 000002237 _____ C:\Users\Public\Desktop\Brave.lnk
2021-09-06 18:07 - 2021-01-06 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2021-09-02 08:47 - 2013-09-08 17:54 - 000000000 ____D C:\Users\Martina\Documents\Dokumenty Tulach
2021-08-31 10:14 - 2017-10-03 20:48 - 000002386 _____ C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2021-08-31 10:14 - 2017-10-03 20:48 - 000002349 _____ C:\Users\Martina\Desktop\Vivaldi.lnk
2021-08-31 10:14 - 2017-10-03 20:47 - 000000000 ____D C:\Users\Martina\AppData\Local\Vivaldi
2021-08-30 22:45 - 2014-07-08 21:23 - 000803176 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2021-08-29 10:14 - 2021-07-29 21:52 - 000000000 ____D C:\Users\Martina\Downloads\foto na tisk
2021-08-29 10:14 - 2021-07-28 20:45 - 000000000 ____D C:\Users\Martina\Downloads\Vlasta Redl pro Andělku
2021-08-29 10:14 - 2021-07-06 20:58 - 000000000 ____D C:\Users\Martina\Downloads\Telegram Desktop
2021-08-27 23:40 - 2021-02-18 18:40 - 000790288 _____ C:\Users\Martina\Documents\Příloha č. 1 Monitorovací dotazník 2021.xlsx
2021-08-15 16:04 - 2013-09-09 11:38 - 000000000 ____D C:\Users\Martina\AppData\Roaming\VMware
2021-08-15 16:04 - 2013-09-09 11:38 - 000000000 ____D C:\Users\Martina\AppData\Local\VMware

==================== Files in the root of some directories ========

2018-05-01 16:01 - 2018-05-01 16:05 - 205149616 _____ ( ) C:\Users\Martina\duelsetup-14-0-3-10000.exe
2018-02-14 10:11 - 2018-02-14 10:13 - 097348424 _____ (Ježek software s.r.o. ) C:\Users\Martina\STEREO27.exe
2013-09-07 16:15 - 2013-09-07 16:15 - 000000000 _____ () C:\Users\Martina\AppData\Roaming\AbsoluteReminder.xml
2013-12-15 14:55 - 2013-12-15 15:14 - 000000778 _____ () C:\Users\Martina\AppData\Local\Temp1.html
2013-12-15 15:14 - 2013-12-15 15:14 - 000002144 _____ () C:\Users\Martina\AppData\Local\Temp25.html
2013-12-15 15:13 - 2013-12-15 15:13 - 000002997 _____ () C:\Users\Martina\AppData\Local\Temp27.html
2013-12-15 15:14 - 2013-12-15 15:14 - 000001776 _____ () C:\Users\Martina\AppData\Local\Temp3.html
2013-12-15 14:56 - 2013-12-15 14:56 - 000002997 _____ () C:\Users\Martina\AppData\Local\Temp43.html
2013-09-08 15:23 - 2013-09-08 15:24 - 000025509 _____ () C:\Users\Martina\AppData\Local\WiDiSetupLog.20130908.152350.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2021-09-11 09:27
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-09-2021
Ran by Martina (13-09-2021 15:53:23)
Running from C:\Users\Martina\Desktop
Windows 8.1 Pro (Update) (X64) (2014-03-17 18:20:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1434038810-1081703228-4035633340-500 - Administrator - Disabled)
Guest (S-1-5-21-1434038810-1081703228-4035633340-501 - Limited - Enabled)
Martina (S-1-5-21-1434038810-1081703228-4035633340-1004 - Administrator - Enabled) => C:\Users\Martina
Tomas (S-1-5-21-1434038810-1081703228-4035633340-1042 - Administrator - Enabled) => C:\Users\Tomas

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.005.20060 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_4977c84bcdc298c444ccfbdcccb660d) (Version: 10.0 - Adobe Systems Incorporated)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 93.1.29.79 - Autoři prohlížeče Brave)
Classic Shell (HKLM\...\{2368907C-E8F6-4750-A023-254C3E2B5E8D}) (Version: 4.0.4 - IvoSoft)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Fingerprint Reader (HKLM\...\{1CACE706-D749-44CA-BBFE-AF60946D1B18}) (Version: 6.0.200.75 - AuthenTec, Inc.)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
FormApps Plug-in (HKLM-x32\...\{9a1d8d96-8b6f-4b5e-9281-abf022feb360}) (Version: 1.29.0.79 - Software602 a.s.)
FreeFileSync 10.23 (HKLM-x32\...\FreeFileSync_is1) (Version: 10.23 - FreeFileSync.org)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HBS STARLIFE version 1.0.0 (HKLM-x32\...\{F845D7E7-41F7-44F2-9692-4A325D4D04B9}_is1) (Version: 1.0.0 - STARLIFE s.r.o.)
Human Body Scanner (Cz) 3.9.0 (HKLM-x32\...\Human Body Scanner (Cz)) (Version: 3.9.0 - Quantum)
Integrated Camera Driver Installer Package Ver.1.0.0.26 (HKLM-x32\...\{F8754583-7893-4CD8-9E51-1A08F3D4C1A9}) (Version: 1.0.0.26 - RICOH)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Ježek software DUEL 16.0.4.10340 (HKLM-x32\...\JezekDUEL_is1) (Version: - Ježek software)
Ježek software STEREO 22 (HKLM-x32\...\Ježek software STEREO 22_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 23 (HKLM-x32\...\Ježek software STEREO 23_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 24 (HKLM-x32\...\Ježek software STEREO 24_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 26 (HKLM-x32\...\Ježek software STEREO 26_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 27 (HKLM-x32\...\Ježek software STEREO 27_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 28 (HKLM-x32\...\Ježek software STEREO 28_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 29 (HKLM-x32\...\Ježek software STEREO 29_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 30 (HKLM-x32\...\Ježek software STEREO 30_is1) (Version: - Ježek software s.r.o.)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.20 - Lenovo)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.21 - Lenovo)
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.86.25 - Lenovo)
Lenovo Patch Utility (HKLM-x32\...\{AD32F5E9-6BDD-480A-8B7B-95571D04691C}) (Version: 1.3.1.1 - Lenovo Group Limited)
Lenovo Patch Utility (HKLM-x32\...\{C6FB6B4A-1378-4CD3-9CD3-42BA69FCBD43}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{053ACA98-6B07-4DD0-9DB3-F51E3EB1780C}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}) (Version: 1.3.1.1 - Lenovo Group Limited)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.04.05 - ) Hidden
Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 2.4.0.23 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0127 - Lenovo)
Malwarebytes version 4.4.6.132 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.6.132 - Malwarebytes)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0008.00 - Lenovo Group Limited) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.50 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BF5ABBDB-D3AA-4BCB-8D10-FCD4A4BB7F93}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Backward compatibility (HKLM\...\{8909B8A7-CEAB-4772-BF29-1892C4E6603B}) (Version: 8.05.2309 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C7E2483C-10A4-41E3-A2F6-240186FE3E41}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
MPC-HC 1.9.2 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.9.2 - MPC-HC Team)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nebesky kalendar 4 verze 4.8 (HKLM-x32\...\{6F8B3EAA-4961-4997-A9DD-7A82005CC01E}_is1) (Version: 4.8 - Zdenek Pazdera - Wendys)
Nebeský kalendář verze 3.0 (HKLM-x32\...\{B3283535-E45A-4D8F-8B80-F6898E280CFB}_is1) (Version: 3.0 - Zdeněk Pazdera - Wendys)
PDF Settings (HKLM-x32\...\{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
PlayMemories Home (HKLM-x32\...\{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}) (Version: 6.0.02.14151 - Sony Corporation)
ProFact 4.0 (HKLM-x32\...\ProFact 4.0_is1) (Version: - eXmind)
PROFIT 2015.05 (HKLM-x32\...\{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1) (Version: - LPsoft)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.29048 - Realtek Semiconductor Corp.)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
Speccy (HKLM\...\Speccy) (Version: 1.25 - Piriform)
SQL Server 2014 Common Files (HKLM\...\{BD1CD96B-FE4B-4EAE-83D4-6EF55AB5779C}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM\...\{F7012F84-80F5-4C25-852E-B1BA03276FE6}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{17531BCD-C627-46A2-9F1E-7CC920E0E94A}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{5082A9F3-AEE5-4639-9BA7-C19661BA7331}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{ACC530B8-B6B4-40D6-B59B-152468CF47D0}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{D1B847A9-B06B-4264-9EF0-78E6E1571E65}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{6476DB81-F263-4C04-8574-AAD31136C304}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1026 - SUPERAntiSpyware.com)
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.21.6 - TeamViewer)
Telegram Desktop version 3.0.1 (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.0.1 - Telegram FZ-LLC)
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.7 - )
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vivaldi (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Vivaldi) (Version: 4.1.2369.21 - Vivaldi Technologies AS.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VmciSockets (HKLM\...\{2BE3C45C-B0E3-4061-A3C5-C6ED9639C813}) (Version: 9.1.54.1 - VMware, Inc.) Hidden
VMware Workstation (HKLM-x32\...\{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}) (Version: 8.0.3.29699 - VMware, Inc.) Hidden
VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 8.0.3.29699 - VMware, Inc)
WhoCrashed 5.00 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - Intel Corporation (iaStorA) HDC (08/16/2012 11.5.4.1001) (HKLM\...\5FAC453989A0F70D1125104F58B20CAA20CE7BC8) (Version: 08/16/2012 11.5.4.1001 - Intel Corporation)
Windows Driver Package - Lenovo 1.66.00.07 (08/15/2012 1.66.00.07) (HKLM\...\E56A6B34B44A7A597FFEBE0E14D81095E0FD4D73) (Version: 08/15/2012 1.66.00.07 - Lenovo)

Packages:
=========
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview_1.0.9431.0_neutral__8wekyb3d8bbwe [2014-04-27] (Rozšíření Microsoft Platform)
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.Preview.1_1.0.9345.0_neutral__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_1.0.0.7175_x86__4642shxvsv8s2 [2012-10-13] (LENOVO INCORPORATED.)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x64__8wekyb3d8bbwe [2014-04-27] (Microsoft Corporation)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x86__8wekyb3d8bbwe [2014-04-27] (Microsoft Corporation)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x64__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions Internal)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x86__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions Internal)
Microsoft Windows Library for JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview.Internal_1.0.9385.3_neutral__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions)
Výběr prohlížeče -> C:\WINDOWS\BrowserChoice [2014-03-17] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\Martina\AppData\Local\Vivaldi\Application\4.1.2369.21\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2014-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip32.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.VMnc] => C:\Windows\SysWOW64\vmnc.dll [252016 2012-04-30] (VMware, Inc. -> VMware, Inc.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Martina\Desktop\Ježek software STEREO 21.lnk -> C:\STEREO\STEREO21\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 22.lnk -> C:\STEREO22\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 23.lnk -> C:\STEREO23\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 24.lnk -> C:\STEREO24\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 26.lnk -> C:\STEREO26\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 27.lnk -> C:\STEREO27\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 28.lnk -> C:\STEREO28\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 29.lnk -> C:\STEREO29\S64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 30.lnk -> C:\STEREO30\S64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 28.lnk -> C:\STEREO28\U64.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 29.lnk -> C:\STEREO29\U64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 30.lnk -> C:\STEREO30\U64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Stereo 19.lnk -> C:\STEREO\STEREO19\S64.BAT (No File)
Shortcut: C:\Users\Martina\Desktop\Ostatní\Převod dat do STEREO 22.lnk -> C:\STEREO22\U64.BAT ()
Shortcut: C:\Users\Martina\Desktop\Ostatní\Převod dat do STEREO 23.lnk -> C:\STEREO23\U64.BAT ()

==================== Loaded Modules (Whitelisted) =============

2012-04-30 19:29 - 2012-04-30 19:29 - 001222656 _____ () [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2006-02-28 12:42 - 2006-02-28 12:42 - 000094208 _____ (Apple Computer, Inc.) [File not signed] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
2013-09-09 14:29 - 2009-04-16 12:47 - 000136704 _____ (Hewlett-Packard Company) [File not signed] C:\Windows\System32\hpf3l70w.dll
2014-03-17 19:51 - 2009-04-16 12:47 - 000249856 _____ (Hewlett-Packard Corporation) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\hpfpp70w.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2014-01-18 18:12 - 2014-01-18 18:12 - 002271424 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll
2018-01-10 15:08 - 2014-10-23 11:20 - 000276480 _____ (Lenovo) [File not signed] C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MHHelperDLL.dll
2014-03-17 20:01 - 2014-03-17 20:01 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
2020-01-08 19:47 - 2017-09-27 18:30 - 000489984 _____ (Newtonsoft) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\Newtonsoft.Json.dll
2012-04-30 19:40 - 2012-04-30 19:40 - 021270016 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\types.dll
2012-04-30 19:36 - 2012-04-30 19:36 - 003653632 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmacore.dll
2012-04-30 19:38 - 2012-04-30 19:38 - 002355712 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmomi.dll
2020-01-08 19:47 - 2018-01-26 18:08 - 000088064 _____ (Wondershare) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCollect.dll
2020-01-08 19:47 - 2018-01-26 18:08 - 000200192 _____ (Wondershare) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCommon.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> {B9B77431-2737-4B76-B12B-91AE79488EE1} URL =
BHO: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2012-08-31] (AuthenTec, Inc. -> AuthenTec Inc.)
BHO: No Name -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> No File
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2012-08-31] (AuthenTec, Inc. -> AuthenTec Inc.)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - No Name - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - No File
IE Session Restore: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> is enabled.
DPF: HKLM-x32 {4FF78044-96B4-4312-A5B7-FDA3CB328095}
DPF: HKLM-x32 {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} hxxps://forms.celnisprava.cz/webfiller/page/activexcab/webff_cs.cab

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-01-04 10:02 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Lenovo Fingerprint Reader\;C:\Program Files\Lenovo Fingerprint Reader\x86\;C:\ProgramData\Lenovo\ReadyApps;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\AOMEI Backupper;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "cAudioFilterAgent"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "SmartAudio"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{57E8D505-2EA2-4DC4-B4BD-19B7F1EDE6DC}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{6C03F45B-C78A-4FF2-A8CB-DF1D06186A55}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{D65109C1-D806-4E47-9397-18BC3CE17D70}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Mobile Wireless Group -> )
FirewallRules: [UDP Query User{91ABEFF0-B740-44C9-A0E4-C831F12925F0}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{C3ACB859-EA44-4BFB-912C-2FE6CF4EDC0F}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{00496117-2C14-4936-BC19-E58C9388239B}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe () [File not signed]
FirewallRules: [{CE5595C8-744A-41F6-8C0A-2234ED78A691}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe () [File not signed]
FirewallRules: [{8B56B669-C5FA-4189-87D2-DDB392CC3013}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.) [File not signed]
FirewallRules: [{CFB0C154-1BFB-40A7-BF8E-1FF60817950C}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.) [File not signed]
FirewallRules: [UDP Query User{700F2B37-2A25-4E53-811E-4F0AAD39E64A}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{D7215C15-C8F5-4CDF-8497-5319B34979D5}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{0066CF3D-C273-4A2D-844E-943E0C21DBCA}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe (Intel Wireless Display -> Intel Corporation)
FirewallRules: [TCP Query User{F426A81E-CF4A-4877-8A20-B8C10C898C37}C:\program files (x86)\totalcmd\totalcmd.exe] => (Allow) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{D92C41F8-DEDA-48B3-B1EB-08095C4BBCCD}C:\program files (x86)\totalcmd\totalcmd.exe] => (Allow) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{3B757383-AA43-4B4F-97F2-51CD71D0D6E7}] => (Block) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{5911B8D7-9266-4808-884E-0DA55E1C583A}] => (Block) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{6A411443-6788-4F3F-B019-F8BF40D189F1}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [UDP Query User{E49CA04D-7012-4F15-8207-B58EF9AB7297}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{1A4E4F34-866D-4F9E-A8EA-3D6C69A4BF7B}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{AEAEAB56-D94F-47C3-B9DF-B4C95C0D383D}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{57994B6B-3625-4493-B194-7A30821E3378}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{1609E63F-9F5D-4FD6-B40B-750B304445E8}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{50E4B1B6-BF23-4ACF-A52E-BC0E3C053175}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{886CCDC5-DF39-4ACE-9447-1071108EB492}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{26AEE13B-A626-4001-91BA-FD9D2673672C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [TCP Query User{2C54E78F-FE8D-4A28-BE21-AD0C6FE84208}C:\program files (x86)\ježek software\duel\duel.exe] => (Allow) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [UDP Query User{D282DA67-BC9B-4BA1-BC8C-60150CE0BC78}C:\program files (x86)\ježek software\duel\duel.exe] => (Allow) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{2BD940E4-705D-4597-906A-53399AB61376}] => (Block) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{BB1DB165-869E-41DC-9B73-D2992014D178}] => (Block) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{93B5C562-487A-4DEB-8102-B2B5FA687BB2}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{74C3384E-2C93-4EA2-A986-174F3A6AC55A}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [TCP Query User{280D4CF5-1C47-42E5-87C1-959F8A301ECF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe => No File
FirewallRules: [UDP Query User{2A87DA6C-53C0-40A3-86E5-17290BFB8BDF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe => No File
FirewallRules: [TCP Query User{33135F8E-40B3-4F31-ABA1-3434B920B713}C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [UDP Query User{764EBB7A-DC7B-441F-8878-465C61B31E98}C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{83A4DB31-1893-4D16-9FDD-9C735697ABE0}] => (Block) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{78FDC989-C63F-4638-B0DE-CE0B89265266}] => (Block) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{A4A5459E-0191-454A-A77E-F4275AF5D801}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{8710209A-14EB-4329-AC0B-8214014E81A1}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{167A71CF-03A1-40BC-B3D2-22A730E70290}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B19E411C-741B-46F1-9614-FA0694DFB397}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DA3350C8-7464-4FC4-A7C9-B93BD025BEF5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7D0A6A9E-2C5F-422B-8FB9-5E81AD598850}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2480DBC4-8074-4826-9CE5-94E081E43A7A}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/13/2021 11:53:19 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.

Error: (09/13/2021 11:53:19 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/13/2021 11:26:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamtray.exe, verze: 4.0.0.1117, časové razítko: 0x61321f0b
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x603971ce
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219dc5
ID chybujícího procesu: 0x2464
Čas spuštění chybující aplikace: 0x01d7a87ed57acf4f
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: ac204e48-1474-11ec-8778-84a6c8c47579
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/12/2021 12:33:32 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (09/11/2021 10:17:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WbioSrvc, verze: 6.3.9600.17415, časové razítko: 0x54504177
Název chybujícího modulu: UPKBU.DLL, verze: 1.6.1.341, časové razítko: 0x502239a7
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000cccd7
ID chybujícího procesu: 0x6fc
Čas spuštění chybující aplikace: 0x01d7a6d3b49826cd
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\WINBIOPLUGINS\UPKBU.DLL
ID zprávy: b498ab05-12d8-11ec-8778-84a6c8c47579
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/11/2021 09:40:30 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (09/11/2021 09:07:22 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).

Error: (09/11/2021 08:10:31 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.


System errors:
=============
Error: (09/13/2021 03:02:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/13/2021 03:02:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) Management and Security Application Local Management Service bylo dosaženo časového limitu (60000 ms).

Error: (09/13/2021 03:00:08 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\IWMSSvc.dll

Error: (09/13/2021 03:00:08 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\IWMSSvc.dll

Error: (09/13/2021 03:00:06 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\IWMSSvc.dll

Error: (09/13/2021 02:58:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (09/13/2021 02:58:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) PROSet/Wireless Zero Configuration Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/13/2021 02:58:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) PROSet/Wireless Event Log byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================
Date: 2021-09-13 08:51:37.520
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {BC5FE25D-4971-4C52-BFC9-3CD99719B8A5}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-12 12:25:28.071
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1964D335-B53E-43E7-A347-E5CFB1FD6EEE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-12 10:06:35.290
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {31303D30-6CD2-48CB-B556-B701A4D85022}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-11 09:08:22.925
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {75E63107-8005-4E74-8074-F302F9194D4E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-10 08:20:59.321
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {AD6710AA-6085-414A-A01D-9DC183641498}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-07 14:05:51.260
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.349.222.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18500.10
Kód chyby: 0x8024402f
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

==================== Memory info ===========================

BIOS: LENOVO H0ET98WW (2.58 ) 08/18/2016
Motherboard: LENOVO 3259TFG
Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 38%
Total physical RAM: 5989.89 MB
Available physical RAM: 3680.13 MB
Total Virtual: 12133.89 MB
Available Virtual: 9581.13 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:464.41 GB) (Free:33.92 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{5504ab96-f565-11e7-8313-84a6c8c47579}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 69677AFB)

Partition: GPT.

==================== End of Addition.txt =======================

Black Prince
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 11 lis 2012 22:45

Re: Vyskakovací okno a.digitalcaptcha.top

#6 Příspěvek od Black Prince »

Nebude problém tento řadek, první adresa?
VIV Notifications: Default -> hxxps://a.digitalcaptcha.top; hxxps://businesscenter.podnikatel.cz; hxxps://mail.protonmail.com

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118200
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Vyskakovací okno a.digitalcaptcha.top

#7 Příspěvek od Rudy »

Možné to je, v každém případě ho sestřelíme. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
VIV Notifications: Default -> hxxps://a.digitalcaptcha.top; hxxps://businesscenter.podnikatel.cz; hxxps://mail.protonmail.com
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
SearchScopes: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> {B9B77431-2737-4B76-B12B-91AE79488EE1} URL =
BHO: No Name -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> No File
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - No Name - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - No File
DPF: HKLM-x32 {4FF78044-96B4-4312-A5B7-FDA3CB328095}
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\Wallpaper ->
FirewallRules: [TCP Query User{6A411443-6788-4F3F-B019-F8BF40D189F1}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [UDP Query User{E49CA04D-7012-4F15-8207-B58EF9AB7297}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{1A4E4F34-866D-4F9E-A8EA-3D6C69A4BF7B}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{AEAEAB56-D94F-47C3-B9DF-B4C95C0D383D}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{57994B6B-3625-4493-B194-7A30821E3378}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{1609E63F-9F5D-4FD6-B40B-750B304445E8}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{50E4B1B6-BF23-4ACF-A52E-BC0E3C053175}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{886CCDC5-DF39-4ACE-9447-1071108EB492}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{26AEE13B-A626-4001-91BA-FD9D2673672C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Black Prince
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 11 lis 2012 22:45

Re: Vyskakovací okno a.digitalcaptcha.top

#8 Příspěvek od Black Prince »

Fix result of Farbar Recovery Scan Tool (x64) Version: 13-09-2021
Ran by Martina (13-09-2021 17:04:56) Run:1
Running from C:\Users\Martina\Desktop
Loaded Profiles: Martina & Tomas
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
VIV Notifications: Default -> hxxps://a.digitalcaptcha.top; hxxps://businesscenter.podnikatel.cz; hxxps://mail.protonmail.com
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
SearchScopes: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> {B9B77431-2737-4B76-B12B-91AE79488EE1} URL =
BHO: No Name -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> No File
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - No Name - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - No File
DPF: HKLM-x32 {4FF78044-96B4-4312-A5B7-FDA3CB328095}
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\Wallpaper ->
FirewallRules: [TCP Query User{6A411443-6788-4F3F-B019-F8BF40D189F1}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [UDP Query User{E49CA04D-7012-4F15-8207-B58EF9AB7297}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{1A4E4F34-866D-4F9E-A8EA-3D6C69A4BF7B}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{AEAEAB56-D94F-47C3-B9DF-B4C95C0D383D}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe => No File
FirewallRules: [{57994B6B-3625-4493-B194-7A30821E3378}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{1609E63F-9F5D-4FD6-B40B-750B304445E8}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{50E4B1B6-BF23-4ACF-A52E-BC0E3C053175}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{886CCDC5-DF39-4ACE-9447-1071108EB492}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{26AEE13B-A626-4001-91BA-FD9D2673672C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"Vivaldi Notifications" => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B9B77431-2737-4B76-B12B-91AE79488EE1} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{4FF78044-96B4-4312-A5B7-FDA3CB328095} => removed successfully
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\Wallpaper -> => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6A411443-6788-4F3F-B019-F8BF40D189F1}C:\program files (x86)\epson software\event manager\eeventmanager.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E49CA04D-7012-4F15-8207-B58EF9AB7297}C:\program files (x86)\epson software\event manager\eeventmanager.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1A4E4F34-866D-4F9E-A8EA-3D6C69A4BF7B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AEAEAB56-D94F-47C3-B9DF-B4C95C0D383D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{57994B6B-3625-4493-B194-7A30821E3378}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1609E63F-9F5D-4FD6-B40B-750B304445E8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50E4B1B6-BF23-4ACF-A52E-BC0E3C053175}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{886CCDC5-DF39-4ACE-9447-1071108EB492}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{26AEE13B-A626-4001-91BA-FD9D2673672C}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 36189692 B
Java, Flash, Steam htmlcache => 1622 B
Windows/system/drivers => 9919655 B
Edge => 0 B
Brave => 18619602 B
Vivaldi => 845008805 B
Firefox => 25101846 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 43614 B
systemprofile32 => 43742 B
LocalService => 252070 B
NetworkService => 318072 B
Martina => 1212418729 B
Tomas => 1213257146 B

RecycleBin => 59497249 B
EmptyTemp: => 3.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:05:50 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118200
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Vyskakovací okno a.digitalcaptcha.top

#9 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Black Prince
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 11 lis 2012 22:45

Re: Vyskakovací okno a.digitalcaptcha.top

#10 Příspěvek od Black Prince »

Okno zatím nevyskočilo, takže to vypadá ok.

Děkuji, děkuji

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118200
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Vyskakovací okno a.digitalcaptcha.top

#11 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno