Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola po prolomení emailu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Black Prince
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 11 lis 2012 22:45

Kontrola po prolomení emailu

#1 Příspěvek od Black Prince »

Dobrý den,
dostal jsem následující email a projistotu bych prosil o kontrolu počítače.
Hey xxx@seznam.cz,

I have to share bad news with you.

Approximately few months ago I have gained access to your devices, which you use for internet browsing.
After that, I have started tracking your internet activities.
Some time ago I hacked you and got access to your email accounts xxx@seznam.cz .
Obviously, I have easily hack to log in to your email.

Your password: xxx

One week later, I have already installed Trojan virus to Operating Systems of all the devices that you use to access your email.
In fact, it was not really hard at all (since you were following the links from your inbox emails).
All ingenious is simple. =)
This software provides me with access to all the controllers of your devices (e.g., your microphone, video camera and keyboard).
I have downloaded all your information, data, photos, web browsing history to my servers.
I have access to all your messengers, social networks, emails, chat history and contacts list.
My virus continuously refreshes the signatures (it is driver-based), and hence remains invisible for antivirus software.
atd.......

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-06-2022
Ran by Martina (administrator) on MARTINA-NB (LENOVO 3259TFG) (23-06-2022 22:14:30)
Running from C:\Users\Martina\Desktop
Loaded Profiles: Martina
Platform: Microsoft Windows 8.1 Pro (Update) (X64) Language: Čeština (Česká republika)
Default browser: Brave
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AuthenTec, Inc. -> ) C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
(C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe ->) (Lenovo -> ) C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe ->) (AuthenTec, Inc. -> AuthenTec Inc.) C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe
(C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe ->) (Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe
(C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe ->) (Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe
(C:\Program Files\Lenovo\HOTKEY\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(C:\Program Files\Lenovo\HOTKEY\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(C:\Program Files\Lenovo\HOTKEY\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(C:\Program Files\Lenovo\HOTKEY\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(explorer.exe ->) (Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files (x86)\totalcmd\TOTALCMD.EXE
(explorer.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(explorer.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(explorer.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(explorer.exe ->) (Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(explorer.exe ->) (Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\Martina\AppData\Roaming\Telegram Desktop\Telegram.exe
(explorer.exe ->) (Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\Martina\AppData\Local\Vivaldi\Application\vivaldi.exe <17>
(Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Ricoh co.,Ltd.) [File not signed] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(services.exe ->) () [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AuthenTec, Inc. -> AuthenTec, Inc) C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
(services.exe ->) (AuthenTec, Inc. -> AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe <2>
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(services.exe ->) (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(services.exe ->) (Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(services.exe ->) (Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(services.exe ->) (Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation-Mobile Wireless Group -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(services.exe ->) (Lenovo -> ) C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(services.exe ->) (Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
(services.exe ->) (Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\cammute.exe
(services.exe ->) (Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
(services.exe ->) (Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(services.exe ->) (Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(services.exe ->) (Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(services.exe ->) (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(services.exe ->) (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe
(Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(svchost.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-14] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [937328 2017-07-27] (Lenovo -> Lenovo)
HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [347216 2017-02-23] (Lenovo -> Lenovo Group Limited)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) [File not signed]
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7822648 2014-10-28] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [LMCSSTART1] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [LMCSSTART2] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [LMCSSTART3] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [29480 2017-08-18] (Lenovo -> Lenovo Corporation)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" (No File)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [132920 2013-05-31] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [64000 2012-08-10] (Ricoh co.,Ltd.) [File not signed]
HKLM-x32\...\Run: [vmware-tray] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [103536 2012-04-30] (VMware, Inc. -> VMware, Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [688184 2012-02-15] (Sony Corporation -> Sony Corporation)
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [11776 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpfpp70w: C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll [249856 2009-04-16] (Hewlett-Packard Corporation) [File not signed]
HKLM\...\Print\Monitors\EPSON L355 Series 64MonitorBE: C:\Windows\system32\E_YLMI4E.DLL [120320 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\hpf3l70w.dll: C:\Windows\system32\hpf3l70w.dll [136704 2009-04-16] (Hewlett-Packard Company) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\103.1.40.105\Installer\chrmstp.exe [2022-06-22] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2022-03-02] (Adobe Inc. -> Adobe Systems, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {084471D3-D0CE-4866-B896-B387775C6D65} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {138762D8-2A4C-400C-9648-190C1EB6FCB2} - System32\Tasks\PMTask => C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe (No File)
Task: {258BB9C9-5A32-4ADC-83C0-2BE6BB0113B7} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe (No File)
Task: {305859D7-81F4-456A-8C81-D55A77B59623} - System32\Tasks\FreeFileSync\Synchronizace => C:\Program Files\FreeFileSync\FreeFileSync.exe [622856 2022-03-07] (Florian BAUER -> FreeFileSync.org) -> "C:\Users\Martina\Tomáš\FreeFileSync\SyncSettings.ffs_batch"
Task: {49B3C45E-A301-487F-9A82-A4CA595361A4} - System32\Tasks\{6C0DAF4B-458E-4A29-8143-E4B94968C29F} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\HP\Digital Imaging\{0AFFEA39-60AF-4C4F-BB47-4A1F7CB12129}\setup\hpzscr40.exe" -c -datfile hposcr46.dat -onestop -forcereboot
Task: {4E4EC5C6-5CB8-4D8E-A476-FEAD8A80EC36} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1897824 2022-03-09] (Lenovo -> )
Task: {4E864FE1-7EC2-4B0C-92DB-EB7CBDC7A701} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd => C:\Windows\system32\GWX\GWX.exe /event:11 (No File)
Task: {525D0499-E75C-4595-9AD6-70EBE939E0C5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {525D0499-E75C-4595-9AD6-70EBE939E0C5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [ [ ]]
Task: {5BC3309A-696D-44F1-8FA8-1EFEF5CAB1EF} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\Windows\System32\ibmpmsvc.exe [851800 2018-12-26] (Lenovo -> Lenovo.)
Task: {5C2789A5-C85A-49B8-A40A-A3DFF22FFF4F} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe (No File)
Task: {65373F37-46BD-4571-A4AA-E66C8E348A0B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {77ACAD3A-B575-48ED-8C7D-36B7552AB54A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => C:\Windows\system32\GWX\GWX.exe /event:9 (No File)
Task: {794233C1-42B5-4245-9315-EA08B2BCDAB0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {846EC86E-C559-46DB-A0D6-693CF83E8C91} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe (No File)
Task: {8613363B-ED8B-4D3A-B50F-274810E0370D} - System32\Tasks\VivaldiUpdateCheck-695cbe4d546049ec => C:\Users\Martina\AppData\Local\Vivaldi\Application\update_notifier.exe [3323792 2022-06-22] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {944CF0B5-9F41-4212-BB50-9EBE648A482F} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1897824 2022-03-09] (Lenovo -> )
Task: {98533973-C5D2-4B2C-AD60-6BA8CFBF1E5F} - System32\Tasks\Dolby => c:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe -autostart (No File)
Task: {9C4EBFC9-A1D4-4D25-812D-6BF6AEA0EE94} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.EXE (No File)
Task: {9E54EAC0-E897-4846-9634-A2CB3FED1489} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo)
Task: {A3C1B812-8F19-4284-8AFE-16808E9EFD80} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9C205D8-747C-401A-8254-2962F68902EC} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {B23D019C-610E-4727-9284-9D8606F13E93} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3BBD494-D3F6-4CF0-B47C-A83B97609914} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => C:\Windows\system32\GWX\GWX.exe /event:8 (No File)
Task: {BAD9DD48-5855-4FC9-85C7-8C0A5C610B07} - System32\Tasks\Lenovo\Lenovo Settings Power => "C:\Windows\system32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
Task: {BE659811-E53E-4C4C-ACF1-C3631CA71446} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-04-24] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {EAB5AE4A-E8D3-47A7-A683-C94302E76C6E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Time-5d => C:\Windows\system32\GWX\GWX.exe /event:10 (No File)
Task: {EB23AF80-7A83-4CC9-8F2F-237D48CC6CB9} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => C:\Windows\system32\GWX\GWX.exe /event:7 (No File)
Task: {EF9E09FA-8C1C-497C-B7CD-E22337430276} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5BE1D1D-5B8B-4D8D-B37B-E12442F8B8B2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F8AB76BB-3CBF-4BDE-968B-49FDCEF9376B} - System32\Tasks\Intel\Intel Service Manager => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208 2006-02-28] (Apple Computer, Inc.) [File not signed]
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{2AD5DB67-7909-4C5B-99FA-CFEB9E54A530}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{CDFEC878-1A59-44B3-A1B4-D73744399775}: [DhcpNameServer] 10.0.0.138

Edge:
=======
Edge Profile: C:\Users\Martina\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-21]

FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 [2021-09-13]
FF Homepage: Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 -> hxxps://www.seznam.cz/
FF Session Restore: Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579 -> is enabled.
FF Extension: (Classic Theme Restorer) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2017-11-22] [Legacy]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\firefox@ghostery.com.xpi [2018-12-08]
FF Extension: (AVG SafePrice) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\sp@avg.com.xpi [2016-11-15] [UpdateUrl:hxxps://cmp.avg.com/ff/updates.json]
FF Extension: (Session Manager) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-02-07] [Legacy]
FF Extension: (FormApps Extension) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{69F080C9-A1D8-42F8-BD83-3D54D4BC81B3}.xpi [2017-10-26]
FF Extension: (Vývojové sestavení Adblock Plus) - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\mlk9dvd9.default-1454923461579\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-12-08]
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll [2012-08-31] (AuthenTec, Inc. -> AuthenTec, Inc)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [iokmdlapebooifaijckgcmncjdpojmjl] - C:\Program Files\Lenovo Fingerprint Reader\x86\tschrome.crx [2012-08-03]

Brave:
=======
BRA Profile: C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-06-23]
BRA DefaultSearchURL: Default -> hxxps://search.brave.com/search?q={searchTerms}&source=desktop
BRA DefaultSearchKeyword: Default -> :br
BRA DefaultSuggestURL: Default -> hxxps://search.brave.com/api/suggest?q={searchTerms}
BRA Extension: (Překladač Google) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-25]
BRA Extension: (FormApps Extension) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2022-06-23]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-06-15]
BRA Extension: (Brave NTP background images) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-03-25]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-06-23]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-06-23]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2022-04-03]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2022-06-23]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-25]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak)) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\omkkefoeihpbpebhhbhmjekpnegokpbj [2022-06-23]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Martina\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-06-23]

Vivaldi:
=======
VIV Profile: C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default [2022-06-23]
VIV Notifications: Default -> hxxps://www.facebook.com
VIV HomePage: Default -> hxxps://www.seznam.cz
VIV DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}&t=vivaldi
VIV DefaultSearchKeyword: Default -> d
VIV DefaultSuggestURL: Default -> hxxps://ac.duckduckgo.com/ac/?q={searchTerms}&type=list
VIV Extension: (uBlock Origin) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-06-19]
VIV Extension: (FormApps Extension) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-11-20]
VIV Extension: (Website Logon) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\iokmdlapebooifaijckgcmncjdpojmjl [2017-10-03]
VIV Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Martina\AppData\Local\Vivaldi\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2022-06-11]
VIV Extension: (Download YouTube videos with different video quality: 1080P, 720P, 480P, 360p etc. Supports all formats Mp3, MP4, FLV, WebM, 3GP) - C:\Users\Martina\Programs\YouTube Video Downloader - 16.2.0 [2019-07-14]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [559912 2017-08-18] (Lenovo -> Lenovo Corporation)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [873560 2019-12-19] (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
S3 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-18] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-03-10] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-08-16] (Macrovision Europe Ltd.) [File not signed]
R2 FPLService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2139496 2012-08-31] (AuthenTec, Inc. -> AuthenTec, Inc)
S2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [125168 2014-12-04] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2468496 2012-11-15] (Realtek Semiconductor Corp -> Realsil Microelectronics Inc.)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2024304 2017-07-21] (Lenovo -> Lenovo Group Limited)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [624936 2017-08-18] (Lenovo -> Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [120400 2017-04-03] (Lenovo -> Lenovo Group Limited)
R2 LnvHotSpotSvc; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [473968 2017-07-27] (Lenovo -> Lenovo)
R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [470392 2017-06-15] (Lenovo -> )
S2 LPlatSvc; C:\Windows\System32\LPlatSvc.exe [892760 2018-12-26] (Lenovo -> Lenovo.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [7785656 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
R2 MSSQL$DUEL; C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [459832 2012-02-15] (Sony Corporation -> Sony Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RapiMgr; C:\Windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$DUEL; C:\Program Files\Microsoft SQL Server\MSSQL12.DUEL\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [14583272 2022-05-11] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401256 2012-07-16] (AuthenTec, Inc. -> AuthenTec, Inc.)
R2 VMAuthdService; C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [79872 2012-04-30] (VMware, Inc.) [File not signed]
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [11839488 2012-04-30] () [File not signed]
R2 WcesComm; C:\Windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 AMPPAL; C:\Windows\System32\drivers\AMPPAL.sys [165344 2013-05-21] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider)
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [141624 2014-10-28] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1448248 2014-11-26] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 LnvHIDHW; C:\Windows\System32\drivers\LnvHIDHW.sys [42544 2017-07-24] (Lenovo -> Lenovo)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210344 2021-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-09-13] (Malwarebytes Inc -> Malwarebytes)
R3 MpKslb8080d62; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CF8473E7-02E2-49CE-BAA6-79D3EDFBC525}\MpKslDrv.sys [50440 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R0 PMDRVS; C:\Windows\System32\drivers\pmdrvs.sys [44160 2018-12-26] (Lenovo -> Lenovo.)
R3 RCUVCAVS; C:\Windows\system32\DRIVERS\RCUVCAVS.sys [149632 2012-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288480 2012-12-13] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
R0 vmci; C:\Windows\System32\drivers\vmci.sys [104888 2021-11-30] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R2 VMnetBridge; C:\Windows\system32\DRIVERS\vmnetbridge.sys [45680 2012-04-30] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
S3 pccsmcfd; \SystemRoot\system32\DRIVERS\pccsmcfdx64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-06-23 22:14 - 2022-06-23 22:15 - 000036453 _____ C:\Users\Martina\Desktop\FRST.txt
2022-06-23 22:00 - 2022-06-23 22:01 - 002369024 _____ (Farbar) C:\Users\Martina\Desktop\FRST64.exe
2022-06-23 21:45 - 2022-06-23 21:45 - 000315706 _____ C:\Users\Martina\Documents\dru956.pdf
2022-06-23 20:59 - 2022-06-23 20:59 - 001049569 _____ C:\Users\Martina\Documents\celni955.pdf
2022-06-23 18:10 - 2022-06-23 18:10 - 000306863 _____ C:\Users\Martina\Documents\sor954.pdf
2022-06-22 15:29 - 2022-06-22 15:29 - 000878103 _____ C:\Users\Martina\Documents\spp953.pdf
2022-06-21 10:04 - 2022-06-21 10:04 - 000342626 _____ C:\Users\Martina\Documents\dru952.pdf
2022-06-20 20:02 - 2022-06-20 20:22 - 364077056 _____ C:\Users\Martina\Downloads\015 Lovci zlocincu S01E15 BRrip CZDAB.avi
2022-06-20 08:43 - 2022-06-20 08:43 - 000095289 _____ C:\Users\Martina\Downloads\priloha_1051246061_0_ukonceniDpnInfo_25716526.pdf
2022-06-14 09:48 - 2022-06-14 09:48 - 000238976 _____ C:\Users\Martina\Downloads\priloha_1049839184_0_PD_380_Holubova_Irena_ZAM.pdf
2022-06-14 09:18 - 2022-06-14 09:18 - 000326544 _____ C:\Users\Martina\Documents\dru951.pdf
2022-06-13 22:47 - 2022-06-13 22:47 - 000095710 _____ C:\Users\Martina\Downloads\priloha_1049066080_0_ukonceniDpnInfo_25606880.pdf
2022-06-13 22:47 - 2022-06-13 22:47 - 000008070 _____ C:\Users\Martina\Downloads\priloha_1049200326_1_CSSZ_Protokol_o_zpracovani_e-Podani_CSSZ_PVPOJ-61467532E7A24E1B97BFD8158D233FF6-1048511872.html
2022-06-13 22:46 - 2022-06-13 22:46 - 000006935 _____ C:\Users\Martina\Downloads\priloha_1049241069_1_CSSZ_Protokol_o_zpracovani_e-Podani_CSSZ_PVPOJ-20CB74682EF74CD798C0E35429BF9598-1048939378.html
2022-06-12 11:46 - 2022-06-12 11:46 - 000598675 _____ C:\Users\Martina\Documents\SHRNUJÍCÍ ASTRO TABULKA.xls - Tabulky Google.html
2022-06-12 11:44 - 2022-06-12 11:46 - 000000000 ____D C:\Users\Martina\Documents\SHRNUJÍCÍ ASTRO TABULKA.xls - Tabulky Google_files
2022-06-10 12:45 - 2022-06-10 12:45 - 000147890 _____ C:\Users\Martina\Downloads\Vypis_z_uctu_414-1189015349_z_20220531.pdf
2022-06-09 14:08 - 2022-06-09 14:08 - 000307621 _____ C:\Users\Martina\Documents\vzp950.pdf
2022-06-09 13:59 - 2022-06-09 13:59 - 000052281 _____ C:\Users\Martina\Downloads\prehled-o-platbe-pojistneho-zamestnavatele.pdf
2022-06-09 12:13 - 2022-06-09 12:13 - 000001244 _____ C:\Users\Martina\Downloads\priloha_1040785997_0_PVPOJ.xml
2022-06-07 15:06 - 2022-06-07 15:06 - 000100285 _____ C:\Users\Martina\Downloads\priloha_1047138746_0_vznikDpnInfo_25525796.pdf
2022-06-07 15:06 - 2022-06-07 15:06 - 000093977 _____ C:\Users\Martina\Downloads\priloha_1046962334_0_vznikDpnOznam_25506057 (1).pdf
2022-06-07 15:04 - 2022-06-07 15:04 - 000093977 _____ C:\Users\Martina\Downloads\priloha_1046962334_0_vznikDpnOznam_25506057.pdf
2022-06-07 14:58 - 2022-06-07 14:58 - 000334470 _____ C:\Users\Martina\Documents\dru949.pdf
2022-06-07 14:52 - 2022-06-07 14:52 - 000005167 _____ C:\Users\Martina\Downloads\DPHKH1-0027524302-20220607-145130-22106536-potvrzeni.p7s
2022-06-07 14:32 - 2022-06-07 14:32 - 000072708 _____ C:\Users\Martina\Downloads\priloha_1047553540_0_00009999_khl_8330_2201179020.pdf
2022-06-07 14:12 - 2022-06-07 14:12 - 000295935 _____ C:\Users\Martina\Documents\sor948.pdf
2022-06-06 09:05 - 2022-06-06 09:05 - 000351126 _____ C:\Users\Martina\Documents\dru947.pdf
2022-06-05 20:17 - 2022-06-05 22:46 - 1645797207 _____ C:\Users\Martina\Downloads\Potvora (2017) CZtit (720p_25fps_H264-128kbit_AAC).mkv
2022-06-02 09:27 - 2022-06-02 09:27 - 000170451 _____ C:\Users\Martina\Downloads\Vypis_z_uctu_1189015349_z_20220531.pdf
2022-06-01 11:50 - 2022-06-01 11:50 - 000317849 _____ C:\Users\Martina\Documents\sor946.pdf
2022-06-01 11:49 - 2022-06-01 11:49 - 000105221 _____ C:\Users\Martina\Documents\sor945.pdf
2022-05-30 15:12 - 2022-05-30 15:12 - 000722652 _____ C:\Users\Martina\Documents\yello944.pdf
2022-05-26 19:03 - 2022-05-26 19:03 - 000340486 _____ C:\Users\Martina\Documents\dru943.pdf
2022-05-25 13:23 - 2022-05-25 13:23 - 000291189 _____ C:\Users\Martina\Documents\vzp942.pdf
2022-05-25 13:03 - 2022-05-25 13:03 - 000340917 _____ C:\Users\Martina\Documents\dru941.pdf
2022-05-25 09:55 - 2022-05-25 09:55 - 000343049 _____ C:\Users\Martina\Documents\dru940.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-06-23 22:14 - 2021-09-13 12:58 - 000000000 ____D C:\FRST
2022-06-23 21:47 - 2022-02-07 11:28 - 000000000 ____D C:\STEREO31
2022-06-23 18:23 - 2017-10-03 20:47 - 000000000 ____D C:\Users\Martina\AppData\Local\Vivaldi
2022-06-23 08:39 - 2013-09-07 16:20 - 000003600 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1434038810-1081703228-4035633340-1004
2022-06-23 08:37 - 2020-12-18 18:42 - 000000528 _____ C:\Users\Martina\.vivaldi_reporting_data
2022-06-23 08:25 - 2017-10-03 20:48 - 000002345 _____ C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2022-06-23 08:25 - 2017-10-03 20:48 - 000002308 _____ C:\Users\Martina\Desktop\Vivaldi.lnk
2022-06-23 08:10 - 2017-02-01 10:22 - 000000000 ____D C:\Users\Martina\AppData\Roaming\FreeFileSync
2022-06-23 07:51 - 2013-09-07 16:14 - 000000000 ____D C:\Users\Martina\AppData\LocalLow\AuthenTec
2022-06-22 23:06 - 2014-03-15 14:25 - 000000000 ____D C:\Users\Martina\AppData\Roaming\ClassicShell
2022-06-22 20:31 - 2013-09-08 17:56 - 000000000 ___RD C:\Users\Martina\Filmy
2022-06-22 19:06 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2022-06-22 14:19 - 2020-12-18 18:31 - 000002278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2022-06-22 14:19 - 2020-12-18 18:31 - 000002237 _____ C:\Users\Public\Desktop\Brave.lnk
2022-06-22 08:22 - 2021-02-03 13:20 - 000000000 ____D C:\Users\Martina\AppData\Roaming\Telegram Desktop
2022-06-20 12:08 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache
2022-06-20 08:11 - 2013-11-14 14:39 - 002026444 _____ C:\Windows\system32\PerfStringBackup.INI
2022-06-20 08:11 - 2013-11-14 14:24 - 000835646 _____ C:\Windows\system32\perfh005.dat
2022-06-20 08:11 - 2013-11-14 14:24 - 000188690 _____ C:\Windows\system32\perfc005.dat
2022-06-20 08:05 - 2014-04-27 13:52 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-06-20 08:03 - 2019-12-24 18:24 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2022-06-20 08:03 - 2019-12-24 18:21 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2022-06-20 08:03 - 2018-08-28 08:35 - 000003544 _____ C:\Windows\system32\Tasks\Lenovo Power Management Driver PnP Task
2022-06-20 08:03 - 2018-01-28 17:44 - 000000150 _____ C:\Windows\SysWOW64\winsevr.dat
2022-06-20 08:03 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-06-19 09:54 - 2013-08-22 16:44 - 002350760 _____ C:\Windows\system32\FNTCACHE.DAT
2022-06-19 09:53 - 2013-08-22 17:36 - 000000000 ___RD C:\Windows\ToastData
2022-06-19 09:53 - 2013-08-22 15:25 - 000524288 ___SH C:\Windows\system32\config\BBI
2022-06-17 08:21 - 2013-09-08 17:54 - 000000000 ____D C:\Users\Martina\Documents\Dokumenty Tulach
2022-06-16 08:35 - 2012-07-26 09:59 - 000000000 ____D C:\Windows\CbsTemp
2022-06-15 23:34 - 2013-09-08 16:10 - 000000000 ____D C:\Windows\system32\MRT
2022-06-15 23:31 - 2015-07-16 08:20 - 145918784 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-06-09 13:29 - 2013-09-09 11:38 - 000000000 ____D C:\Users\Martina\AppData\Roaming\VMware
2022-06-09 13:29 - 2013-09-09 11:38 - 000000000 ____D C:\Users\Martina\AppData\Local\VMware

==================== Files in the root of some directories ========

2018-05-01 16:01 - 2018-05-01 16:05 - 205149616 _____ ( ) C:\Users\Martina\duelsetup-14-0-3-10000.exe
2018-02-14 10:11 - 2018-02-14 10:13 - 097348424 _____ (Ježek software s.r.o. ) C:\Users\Martina\STEREO27.exe
2013-09-07 16:15 - 2013-09-07 16:15 - 000000000 _____ () C:\Users\Martina\AppData\Roaming\AbsoluteReminder.xml
2022-04-10 15:03 - 2022-04-10 15:49 - 000000128 _____ () C:\Users\Martina\AppData\Local\PUTTY.RND
2013-12-15 14:55 - 2013-12-15 15:14 - 000000778 _____ () C:\Users\Martina\AppData\Local\Temp1.html
2013-12-15 15:14 - 2013-12-15 15:14 - 000002144 _____ () C:\Users\Martina\AppData\Local\Temp25.html
2013-12-15 15:13 - 2013-12-15 15:13 - 000002997 _____ () C:\Users\Martina\AppData\Local\Temp27.html
2013-12-15 15:14 - 2013-12-15 15:14 - 000001776 _____ () C:\Users\Martina\AppData\Local\Temp3.html
2013-12-15 14:56 - 2013-12-15 14:56 - 000002997 _____ () C:\Users\Martina\AppData\Local\Temp43.html
2013-09-08 15:23 - 2013-09-08 15:24 - 000025509 _____ () C:\Users\Martina\AppData\Local\WiDiSetupLog.20130908.152350.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2022-06-20 09:07
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-06-2022
Ran by Martina (23-06-2022 22:16:07)
Running from C:\Users\Martina\Desktop
Microsoft Windows 8.1 Pro (Update) (X64) (2014-03-17 18:20:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1434038810-1081703228-4035633340-500 - Administrator - Disabled)
Guest (S-1-5-21-1434038810-1081703228-4035633340-501 - Limited - Disabled)
Martina (S-1-5-21-1434038810-1081703228-4035633340-1004 - Administrator - Enabled) => C:\Users\Martina
Tomas (S-1-5-21-1434038810-1081703228-4035633340-1042 - Administrator - Enabled) => C:\Users\Tomas
tv (S-1-5-21-1434038810-1081703228-4035633340-1044 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 22.001.20117 - Adobe Systems Incorporated)
Adobe Anchor Service CS3 (HKLM-x32\...\{90176341-0A8B-4CCC-A78D-F862228A6B95}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Asset Services CS3 (HKLM-x32\...\{6D12B99F-EAAA-49D8-8E2F-74FA7459CCB2}) (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS3 (HKLM-x32\...\{9C9824D9-9000-4373-A6A5-D0E5D4831394}) (Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Bridge Start Meeting (HKLM-x32\...\{08B32819-6EEF-4057-AEDA-5AB681A36A23}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Camera Raw 4.0 (HKLM-x32\...\{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}) (Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps (HKLM-x32\...\{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific (HKLM-x32\...\{A2D81E70-2A98-4A08-A628-94388B063C5E}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color Common Settings (HKLM-x32\...\{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Recommended Settings (HKLM-x32\...\{BD087F50-46B2-43E4-BD73-5DB3DC20B47C}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings (HKLM-x32\...\{D92B72E2-C854-4738-8ED6-4C3661CC17AE}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Extra Settings (HKLM-x32\...\{6179A7D2-A668-4F1D-BC9A-DCC6A10C7871}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Default Language CS3 (HKLM-x32\...\{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS3 (HKLM-x32\...\{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit 2 (HKLM-x32\...\{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Fonts All (HKLM-x32\...\{6ABE0BEE-D572-4FE8-B434-9E72A289431B}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Help Viewer CS3 (HKLM-x32\...\{04AF207D-9A77-465A-8B76-991F6AB66245}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS3 (HKLM-x32\...\{54793AA1-5001-42F4-ABB6-C364617C6078}) (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files (HKLM-x32\...\{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}) (Version: 8.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS3 (HKLM-x32\...\{5178C1BB-1EB1-4468-894B-7DE964DDCAA2}) (Version: 10 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_4977c84bcdc298c444ccfbdcccb660d) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Adobe Setup (HKLM-x32\...\{0901FCE8-5415-4499-BBC8-1AA106DD66E2}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Stock Photos CS3 (HKLM-x32\...\{29E5EA97-5F74-4A57-B8B2-D4F169117183}) (Version: 1.5 - Adobe Systems Incorporated) Hidden
Adobe Type Support (HKLM-x32\...\{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Client (HKLM-x32\...\{D0DFF92A-492E-4C40-B862-A74A173C25C5}) (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin (HKLM-x32\...\{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS3 (HKLM-x32\...\{802771A9-A856-4A41-ACF7-1450E523C923}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 103.1.40.105 - Autoři prohlížeče Brave)
Classic Shell (HKLM\...\{2368907C-E8F6-4750-A023-254C3E2B5E8D}) (Version: 4.0.4 - IvoSoft)
Electrum (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Electrum) (Version: 4.1.5 - Electrum Technologies GmbH)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
FileZilla Client 3.59.0 (HKLM-x32\...\FileZilla Client) (Version: 3.59.0 - Tim Kosse)
Fingerprint Reader (HKLM\...\{1CACE706-D749-44CA-BBFE-AF60946D1B18}) (Version: 6.0.200.75 - AuthenTec, Inc.)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
FormApps Plug-in (HKLM-x32\...\{9a1d8d96-8b6f-4b5e-9281-abf022feb360}) (Version: 1.29.0.79 - Software602 a.s.)
FormApps Signing Extension (HKLM-x32\...\{35C42D1D-32DC-404F-8978-A30B0D64DD26}) (Version: 2.24.0.43 - Software602 a.s.)
FreeFileSync (HKLM-x32\...\FreeFileSync_is1) (Version: 11.18 - FreeFileSync.org)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HBS STARLIFE version 1.0.0 (HKLM-x32\...\{F845D7E7-41F7-44F2-9692-4A325D4D04B9}_is1) (Version: 1.0.0 - STARLIFE s.r.o.)
Human Body Scanner (Cz) 3.9.0 (HKLM-x32\...\Human Body Scanner (Cz)) (Version: 3.9.0 - Quantum)
Integrated Camera Driver Installer Package Ver.1.0.0.26 (HKLM-x32\...\{F8754583-7893-4CD8-9E51-1A08F3D4C1A9}) (Version: 1.0.0.26 - RICOH)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (HKLM\...\{7288D4E1-8050-4B81-B9EC-F812D17AD693}) (Version: 16.1.1.0084 - Intel Corporation) Hidden
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{D61F48DA-627B-404E-9315-32A651B18B64}) (Version: 16.01.5000.0269 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (HKLM\...\{977D1ABF-4089-4CA7-BA33-CC75808B7ACE}) (Version: 1.24.738.1 - Intel Corporation) Hidden
Ježek software DUEL 16.0.4.10340 (HKLM-x32\...\JezekDUEL_is1) (Version: - Ježek software)
Ježek software STEREO 22 (HKLM-x32\...\Ježek software STEREO 22_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 23 (HKLM-x32\...\Ježek software STEREO 23_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 24 (HKLM-x32\...\Ježek software STEREO 24_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 26 (HKLM-x32\...\Ježek software STEREO 26_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 27 (HKLM-x32\...\Ježek software STEREO 27_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 28 (HKLM-x32\...\Ježek software STEREO 28_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 29 (HKLM-x32\...\Ježek software STEREO 29_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 30 (HKLM-x32\...\Ježek software STEREO 30_is1) (Version: - Ježek software s.r.o.)
Ježek software STEREO 31 (HKLM-x32\...\Ježek software STEREO 31_is1) (Version: - Ježek software s.r.o.)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.20 - Lenovo)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.21 - Lenovo)
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.86.25 - Lenovo)
Lenovo Patch Utility (HKLM-x32\...\{AD32F5E9-6BDD-480A-8B7B-95571D04691C}) (Version: 1.3.1.1 - Lenovo Group Limited)
Lenovo Patch Utility (HKLM-x32\...\{C6FB6B4A-1378-4CD3-9CD3-42BA69FCBD43}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{053ACA98-6B07-4DD0-9DB3-F51E3EB1780C}) (Version: 1.4.0.4 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}) (Version: 1.3.1.1 - Lenovo Group Limited)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.04.05 - ) Hidden
Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 2.4.0.23 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0136 - Lenovo)
Malwarebytes version 4.4.6.132 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.6.132 - Malwarebytes)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0008.00 - Lenovo Group Limited) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.50 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BF5ABBDB-D3AA-4BCB-8D10-FCD4A4BB7F93}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Backward compatibility (HKLM\...\{8909B8A7-CEAB-4772-BF29-1892C4E6603B}) (Version: 8.05.2309 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 RsFx Driver (HKLM\...\{655A4169-5BB6-44B0-A9BA-4CBE23A412AA}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C7E2483C-10A4-41E3-A2F6-240186FE3E41}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x64 (HKLM\...\{680EDA59-9266-44B4-949E-0C24F65DFF82}) (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (HKLM-x32\...\{E3B64CC5-C011-40C0-92BC-7316CD5E5688}) (Version: 10.0.40219.1 - Nokia) Hidden
MPC-HC 1.9.2 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.9.2 - MPC-HC Team)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nebesky kalendar 4 verze 4.8 (HKLM-x32\...\{6F8B3EAA-4961-4997-A9DD-7A82005CC01E}_is1) (Version: 4.8 - Zdenek Pazdera - Wendys)
Nebeský kalendář verze 3.0 (HKLM-x32\...\{B3283535-E45A-4D8F-8B80-F6898E280CFB}_is1) (Version: 3.0 - Zdeněk Pazdera - Wendys)
PDF Settings (HKLM-x32\...\{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
PlayMemories Home (HKLM-x32\...\{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}) (Version: 6.0.02.14151 - Sony Corporation)
ProFact 4.0 (HKLM-x32\...\ProFact 4.0_is1) (Version: - eXmind)
PROFIT 2015.05 (HKLM-x32\...\{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1) (Version: - LPsoft)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.29048 - Realtek Semiconductor Corp.)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
Speccy (HKLM\...\Speccy) (Version: 1.25 - Piriform)
SQL Server 2014 Common Files (HKLM\...\{BD1CD96B-FE4B-4EAE-83D4-6EF55AB5779C}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM\...\{F7012F84-80F5-4C25-852E-B1BA03276FE6}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{17531BCD-C627-46A2-9F1E-7CC920E0E94A}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{5082A9F3-AEE5-4639-9BA7-C19661BA7331}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{ACC530B8-B6B4-40D6-B59B-152468CF47D0}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{D1B847A9-B06B-4264-9EF0-78E6E1571E65}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{6476DB81-F263-4C04-8574-AAD31136C304}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1026 - SUPERAntiSpyware.com)
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.30.3 - TeamViewer)
Telegram Desktop version 3.7.3 (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.7.3 - Telegram FZ-LLC)
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.7 - )
tools-freebsd (HKLM-x32\...\{003BFBBD-6C67-419E-A24D-0DCAFC3A5249}) (Version: 8.8.2.703057 - VMware, Inc.) Hidden
tools-linux (HKLM-x32\...\{D102611A-6466-4101-A51D-51069303AC65}) (Version: 8.8.2.703057 - VMware, Inc.) Hidden
tools-netware (HKLM-x32\...\{197597A7-AD33-4898-9D8E-73066818B464}) (Version: 8.8.2.703057 - VMware, Inc.) Hidden
tools-solaris (HKLM-x32\...\{AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}) (Version: 8.8.2.703057 - VMware, Inc.) Hidden
tools-windows (HKLM-x32\...\{FFD9383C-01D5-4897-A954-43AF599AED30}) (Version: 8.8.2.703057 - VMware, Inc.) Hidden
tools-winPre2k (HKLM-x32\...\{AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}) (Version: 8.8.2.703057 - VMware, Inc.) Hidden
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vivaldi (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Vivaldi) (Version: 5.3.2679.61 - Vivaldi Technologies AS.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VmciSockets (HKLM\...\{2BE3C45C-B0E3-4061-A3C5-C6ED9639C813}) (Version: 9.1.54.1 - VMware, Inc.) Hidden
VMware Workstation (HKLM-x32\...\{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}) (Version: 8.0.3.29699 - VMware, Inc.) Hidden
VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 8.0.3.29699 - VMware, Inc)
WhoCrashed 5.00 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - Intel Corporation (iaStorA) HDC (08/16/2012 11.5.4.1001) (HKLM\...\5FAC453989A0F70D1125104F58B20CAA20CE7BC8) (Version: 08/16/2012 11.5.4.1001 - Intel Corporation)
Windows Driver Package - Lenovo 1.66.00.07 (08/15/2012 1.66.00.07) (HKLM\...\E56A6B34B44A7A597FFEBE0E14D81095E0FD4D73) (Version: 08/15/2012 1.66.00.07 - Lenovo)

Packages:
=========
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview_1.0.9431.0_neutral__8wekyb3d8bbwe [2014-04-27] (Rozšíření Microsoft Platform)
Knihovna Microsoft Windows pro jazyk JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.Preview.1_1.0.9345.0_neutral__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_1.0.0.7175_x86__4642shxvsv8s2 [2012-10-13] (LENOVO INCORPORATED.)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x64__8wekyb3d8bbwe [2014-04-27] (Microsoft Corporation)
Microsoft PlayReady -> C:\Program Files\WindowsApps\Microsoft.Internal.Media.PlayReadyClient_2.3.1678.1_x86__8wekyb3d8bbwe [2014-04-27] (Microsoft Corporation)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x64__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions Internal)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Preview.Internal_12.0.20222.2_x86__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions Internal)
Microsoft Windows Library for JavaScript -> C:\Program Files\WindowsApps\Microsoft.WinJS.2.0.Preview.Internal_1.0.9385.3_neutral__8wekyb3d8bbwe [2014-04-27] (Microsoft Platform Extensions)
Výběr prohlížeče -> C:\WINDOWS\BrowserChoice [2014-03-17] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\Martina\AppData\Local\Vivaldi\Application\5.3.2679.61\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2014-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip32.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.VMnc] => C:\Windows\SysWOW64\vmnc.dll [252016 2012-04-30] (VMware, Inc. -> VMware, Inc.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Martina\Desktop\Ježek software STEREO 21.lnk -> C:\STEREO\STEREO21\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 22.lnk -> C:\STEREO22\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 23.lnk -> C:\STEREO23\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 24.lnk -> C:\STEREO24\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 26.lnk -> C:\STEREO26\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 27.lnk -> C:\STEREO27\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 28.lnk -> C:\STEREO28\S64.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 29.lnk -> C:\STEREO29\S64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 30.lnk -> C:\STEREO30\S64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\JežekSW STEREO 31.lnk -> C:\STEREO31\S64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 28.lnk -> C:\STEREO28\U64.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 29.lnk -> C:\STEREO29\U64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 30.lnk -> C:\STEREO30\U64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Převod dat STEREO 31.lnk -> C:\STEREO31\U64V.BAT ()
Shortcut: C:\Users\Martina\Desktop\Stereo 19.lnk -> C:\STEREO\STEREO19\S64.BAT (No File)
Shortcut: C:\Users\Martina\Desktop\Ostatní\Převod dat do STEREO 22.lnk -> C:\STEREO22\U64.BAT ()
Shortcut: C:\Users\Martina\Desktop\Ostatní\Převod dat do STEREO 23.lnk -> C:\STEREO23\U64.BAT ()

==================== Loaded Modules (Whitelisted) =============

2012-04-30 19:29 - 2012-04-30 19:29 - 001222656 _____ () [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2012-10-13 15:59 - 2016-09-06 16:21 - 002085888 _____ () [File not signed] C:\Program Files\Lenovo\Communications Utility\cv210.dll
2012-10-13 15:59 - 2016-09-06 16:21 - 002201088 _____ () [File not signed] C:\Program Files\Lenovo\Communications Utility\cxcore210.dll
2006-02-28 12:42 - 2006-02-28 12:42 - 000094208 _____ (Apple Computer, Inc.) [File not signed] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
2013-09-09 14:29 - 2009-04-16 12:47 - 000136704 _____ (Hewlett-Packard Company) [File not signed] C:\Windows\System32\hpf3l70w.dll
2014-03-17 19:51 - 2009-04-16 12:47 - 000249856 _____ (Hewlett-Packard Corporation) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\hpfpp70w.dll
2014-01-18 18:12 - 2014-01-18 18:12 - 002271424 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll
2014-01-18 18:12 - 2014-01-18 18:12 - 000283840 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\WINDOWS\System32\StartMenuHelper64.dll
2018-01-10 15:08 - 2014-10-23 11:20 - 000276480 _____ (Lenovo) [File not signed] C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MHHelperDLL.dll
2014-03-17 20:01 - 2014-03-17 20:01 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
2020-01-08 19:47 - 2017-09-27 18:30 - 000489984 _____ (Newtonsoft) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\Newtonsoft.Json.dll
2012-04-30 19:40 - 2012-04-30 19:40 - 021270016 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\types.dll
2012-04-30 19:36 - 2012-04-30 19:36 - 003653632 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmacore.dll
2012-04-30 19:38 - 2012-04-30 19:38 - 002355712 _____ (VMware, Inc.) [File not signed] C:\Program Files (x86)\VMware\VMware Workstation\vmomi.dll
2020-01-08 19:47 - 2018-01-26 18:08 - 000088064 _____ (Wondershare) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCollect.dll
2020-01-08 19:47 - 2018-01-26 18:08 - 000200192 _____ (Wondershare) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCommon.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> {B9B77431-2737-4B76-B12B-91AE79488EE1} URL =
BHO: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2012-08-31] (AuthenTec, Inc. -> AuthenTec Inc.)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: TrueSuite Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2012-08-31] (AuthenTec, Inc. -> AuthenTec Inc.)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [File not signed]
IE Session Restore: HKU\S-1-5-21-1434038810-1081703228-4035633340-1004 -> is enabled.
DPF: HKLM-x32 {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} hxxps://forms.celnisprava.cz/webfiller/page/activexcab/webff_cs.cab

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-01-04 10:02 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Lenovo Fingerprint Reader\;C:\Program Files\Lenovo Fingerprint Reader\x86\;C:\ProgramData\Lenovo\ReadyApps;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\AOMEI Backupper;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\Microsoft SQL Server\120\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\
HKU\S-1-5-21-1434038810-1081703228-4035633340-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-1434038810-1081703228-4035633340-1042\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "cAudioFilterAgent"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "SmartAudio"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{57E8D505-2EA2-4DC4-B4BD-19B7F1EDE6DC}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{6C03F45B-C78A-4FF2-A8CB-DF1D06186A55}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{D65109C1-D806-4E47-9397-18BC3CE17D70}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Mobile Wireless Group -> )
FirewallRules: [UDP Query User{91ABEFF0-B740-44C9-A0E4-C831F12925F0}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{C3ACB859-EA44-4BFB-912C-2FE6CF4EDC0F}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{00496117-2C14-4936-BC19-E58C9388239B}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe () [File not signed]
FirewallRules: [{CE5595C8-744A-41F6-8C0A-2234ED78A691}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe () [File not signed]
FirewallRules: [{8B56B669-C5FA-4189-87D2-DDB392CC3013}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.) [File not signed]
FirewallRules: [{CFB0C154-1BFB-40A7-BF8E-1FF60817950C}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.) [File not signed]
FirewallRules: [UDP Query User{700F2B37-2A25-4E53-811E-4F0AAD39E64A}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{D7215C15-C8F5-4CDF-8497-5319B34979D5}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{0066CF3D-C273-4A2D-844E-943E0C21DBCA}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe (Intel Wireless Display -> Intel Corporation)
FirewallRules: [TCP Query User{F426A81E-CF4A-4877-8A20-B8C10C898C37}C:\program files (x86)\totalcmd\totalcmd.exe] => (Allow) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{D92C41F8-DEDA-48B3-B1EB-08095C4BBCCD}C:\program files (x86)\totalcmd\totalcmd.exe] => (Allow) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{3B757383-AA43-4B4F-97F2-51CD71D0D6E7}] => (Block) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{5911B8D7-9266-4808-884E-0DA55E1C583A}] => (Block) C:\program files (x86)\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{2C54E78F-FE8D-4A28-BE21-AD0C6FE84208}C:\program files (x86)\ježek software\duel\duel.exe] => (Allow) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [UDP Query User{D282DA67-BC9B-4BA1-BC8C-60150CE0BC78}C:\program files (x86)\ježek software\duel\duel.exe] => (Allow) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{2BD940E4-705D-4597-906A-53399AB61376}] => (Block) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{BB1DB165-869E-41DC-9B73-D2992014D178}] => (Block) C:\program files (x86)\ježek software\duel\duel.exe () [File not signed]
FirewallRules: [{93B5C562-487A-4DEB-8102-B2B5FA687BB2}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{74C3384E-2C93-4EA2-A986-174F3A6AC55A}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [TCP Query User{280D4CF5-1C47-42E5-87C1-959F8A301ECF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe => No File
FirewallRules: [UDP Query User{2A87DA6C-53C0-40A3-86E5-17290BFB8BDF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe => No File
FirewallRules: [TCP Query User{33135F8E-40B3-4F31-ABA1-3434B920B713}C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [UDP Query User{764EBB7A-DC7B-441F-8878-465C61B31E98}C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{83A4DB31-1893-4D16-9FDD-9C735697ABE0}] => (Block) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{78FDC989-C63F-4638-B0DE-CE0B89265266}] => (Block) C:\users\martina\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{022FBF7E-38DB-40BA-AE46-FDD8A1E09781}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{55ECC8F3-A621-41D5-BB47-191074A2364F}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{6B7801D2-80FC-4370-B441-5571F3637FCA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9B4055FA-5C75-47EE-B831-3D4344F2E26E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6B2B5075-D750-4F02-B0EA-D4FEBAD862C6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{ED4DDF56-72DC-44AA-9F05-E3AA87F9FF5F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{713E1698-12FA-4832-AEC9-B47855FB8071}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/22/2022 05:03:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WbioSrvc, verze: 6.3.9600.20300, časové razítko: 0x620bf04d
Název chybujícího modulu: UPKBU.DLL, verze: 1.6.1.341, časové razítko: 0x502239a7
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000cccd7
ID chybujícího procesu: 0x2e1c
Čas spuštění chybující aplikace: 0x01d885604e85b674
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\WINBIOPLUGINS\UPKBU.DLL
ID zprávy: 86850345-f23c-11ec-87e2-84a6c8c47579
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/21/2022 11:36:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WbioSrvc, verze: 6.3.9600.20300, časové razítko: 0x620bf04d
Název chybujícího modulu: UPKBU.DLL, verze: 1.6.1.341, časové razítko: 0x502239a7
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000cccd7
ID chybujícího procesu: 0x2e60
Čas spuštění chybující aplikace: 0x01d884c67393aab9
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\WINBIOPLUGINS\UPKBU.DLL
ID zprávy: add04d03-f145-11ec-87e2-84a6c8c47579
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/21/2022 10:18:17 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (06/21/2022 10:14:48 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).

Error: (06/21/2022 09:10:23 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).

Error: (06/20/2022 01:02:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WbioSrvc, verze: 6.3.9600.20300, časové razítko: 0x620bf04d
Název chybujícího modulu: UPKBU.DLL, verze: 1.6.1.341, časové razítko: 0x502239a7
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000cccd7
ID chybujícího procesu: 0x6f4
Čas spuštění chybující aplikace: 0x01d8846b72c0788e
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\WINBIOPLUGINS\UPKBU.DLL
ID zprávy: 73338c4b-f088-11ec-87e2-84a6c8c47579
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/20/2022 12:08:10 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (06/20/2022 09:07:45 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).


System errors:
=============
Error: (06/23/2022 10:20:51 PM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/23/2022 10:18:51 PM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {1ECCA34C-E88A-44E3-8D6A-8921BDE9E452} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/23/2022 08:25:12 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a45\??\C:\Windows\AppCompat\Programs\Amcache.hve

Error: (06/23/2022 08:03:00 AM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/23/2022 08:02:30 AM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/22/2022 05:03:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Biometrická služba systému Windows byla neočekávaně ukončena. Tento stav nastal již 3krát.

Error: (06/22/2022 08:47:37 AM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/22/2022 08:47:07 AM) (Source: DCOM) (EventID: 10010) (User: MARTINA-NB)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2022-06-21 09:13:34.073
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {F002C231-A43D-4DBA-9987-DBF2FB1073A1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-06-20 10:10:25.455
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {91AF600E-5713-44C7-A1D2-8FCD27016BD5}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-06-20 09:11:54.899
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {06ECC0E7-1AC0-436B-9743-A52C98A5358A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-06-17 08:21:40.287
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {81EA4506-DF5F-47D9-9D81-9271E12D35A4}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-06-09 10:01:51.491
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {B422D5B0-6104-4E4D-92E8-E92BD36EEDF6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2022-06-07 08:13:05.818
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 119.0.0.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Systém kontroly sítě
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 2.1.14600.4
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2022-06-07 08:13:05.811
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.367.1070.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19200.6
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2022-06-07 08:13:05.811
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.367.1070.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19200.6
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2022-06-07 08:13:05.775
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.367.1070.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19200.6
Kód chyby: 0x8024402c
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2022-06-02 23:02:14.008
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 119.0.0.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Systém kontroly sítě
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 2.1.14600.4
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

==================== Memory info ===========================

BIOS: LENOVO H0ET98WW (2.58 ) 08/18/2016
Motherboard: LENOVO 3259TFG
Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 61%
Total physical RAM: 8037.89 MB
Available physical RAM: 3093.71 MB
Total Virtual: 16229.89 MB
Available Virtual: 9926.95 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:464.41 GB) (Free:36.81 GB) (Model: Samsung SSD 850 EVO 500GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{5504ab96-f565-11e7-8313-84a6c8c47579}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 69677AFB)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15185
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Kontrola po prolomení emailu

#2 Příspěvek od JaRon »

ahoj,
myslim, ze ide o bezny vydieracsky mail
Preventivne vycisti PC s CCleanerom, vcetne registrov - restart a prescanuj PC s ADWCleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Black Prince
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 11 lis 2012 22:45

Re: Kontrola po prolomení emailu

#3 Příspěvek od Black Prince »

Počítač jsem vyčistil a zkontroloval AdwCleanerem a nic to nenašlo.

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15185
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Kontrola po prolomení emailu

#4 Příspěvek od JaRon »

Bezne chodia taketo maily, treba len zmazat
Ak je PC ciste no stress 😀
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Odpovědět