Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-01-2021
Ran by sense (11-01-2021 21:30:43)
Running from C:\Users\sense\Desktop
Windows 10 Pro Version 2004 19041.685 (X64) (2020-07-11 10:03:50)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2683855831-3151673362-2466717934-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2683855831-3151673362-2466717934-503 - Limited - Disabled)
Guest (S-1-5-21-2683855831-3151673362-2466717934-501 - Limited - Disabled)
sense (S-1-5-21-2683855831-3151673362-2466717934-1001 - Administrator - Enabled) => C:\Users\sense
WDAGUtilityAccount (S-1-5-21-2683855831-3151673362-2466717934-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
Active Directory Authentication Library for SQL Server (HKLM\...\{6BF11ECE-3CE8-4FBA-991A-1F55AA6BE5BF}) (Version: 15.0.1300.359 - Microsoft Corporation) Hidden
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_1_3) (Version: 24.1.3 - Adobe Inc.)
AIMP (HKLM-x32\...\AIMP) (Version: v4.70.2221, 07.07.2020 - AIMP DevTeam)
Azure Data Studio (HKLM\...\{6591F69E-6588-4980-81ED-C8FCBD7EC4B8}_is1) (Version: 1.23.0 - Microsoft Corporation)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
Browser for SQL Server 2019 (HKLM-x32\...\{5E366957-8D78-4BB5-A790-96F97A9766BD}) (Version: 15.0.2000.5 - Microsoft Corporation)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{0243F145-076D-423A-8F77-218DC8840261}) (Version: 4.8.04119 - Microsoft Corporation) Hidden
Clipdiary 5.51 (HKLM-x32\...\Clipdiary) (Version: 5.51 - Tiushkov Nikolay)
DiagnosticsHub_CollectionService (HKLM\...\{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 - Microsoft Corporation) Hidden
Docker Desktop (HKLM\...\Docker Desktop) (Version: 3.0.4 - Docker Inc.)
Entity Framework 6.2.0 Tools  for Visual Studio 2019 (HKLM-x32\...\{7C2070BF-8E07-4B5F-A182-FADB0B95AB39}) (Version: 6.2.0.0 - Microsoft Corporation) Hidden
f.lux (HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Flux) (Version:  - f.lux Software LLC)
GDR 2070 for SQL Server 2019 (KB4517790) (64-bit) (HKLM\...\KB4517790) (Version: 15.0.2070.41 - Microsoft Corporation)
Git version 2.24.1.2 (HKLM\...\Git_is1) (Version: 2.24.1.2 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
icecap_collection_neutral (HKLM-x32\...\{7C703135-98AC-4EB9-86C0-0C3169C99649}) (Version: 16.8.30509 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{7C914878-C64B-4CA6-8E41-91308877A586}) (Version: 16.8.30509 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{CDD0EC5B-EBEE-4822-B994-78AD30D90874}) (Version: 16.8.30607 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{8A64881A-8735-4C75-91BE-BCE0A45BCDB0}) (Version: 16.8.30530 - Microsoft Corporation) Hidden
IIS 10.0 Express (HKLM\...\{0307C98E-AE82-4A4F-A950-A72FBD805338}) (Version: 10.0.04403 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version:  - ) Hidden
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version:  - ) Hidden
Integration Services (HKLM-x32\...\{1BA4F809-5F3E-4882-8481-861A05921A1A}) (Version: 15.0.2000.128 - Microsoft Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4624 - Intel Corporation)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{7563302D-BD6B-4153-BA7D-3E3432E7C22D}) (Version: 7.5.6 - Intel Corporation)
IntelliTraceProfilerProxy (HKLM-x32\...\{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 - Microsoft Corporation) Hidden
JetBrains ETW Service (HKLM-x32\...\{D573F562-F23B-4DD2-A471-97504505CAC2}) (Version: 202.15.20.0 - JetBrains s.r.o) Hidden
JetBrains Rider 2020.2.4 (HKLM-x32\...\JetBrains Rider 2020.2.4) (Version: 202.7660.16 - JetBrains s.r.o.)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
Microsoft .NET SDK 5.0.100 (x64) from Visual Studio (HKLM\...\{16D58CBE-8F79-46C3-821C-7534E7218D29}) (Version: 5.1.20.52605 - Microsoft Corporation)
Microsoft .NET SDK 5.0.101 (x64) (HKLM-x32\...\{44b789a2-838e-418d-b519-b8d0d1c43cef}) (Version: 5.1.120.60105 - Microsoft Corporation)
Microsoft ASP.NET Core 5.0.1 - Shared Framework (HKLM-x32\...\{4e869544-1ce2-4e0c-81d8-98f4c9609822}) (Version: 5.0.1.20601 - Microsoft Corporation)
Microsoft Azure Authoring Tools - v2.9.6 (HKLM\...\{EDADFA19-7F96-4075-A4AB-2209910626C5}) (Version: 2.9.8899.26 - Microsoft Corporation)
Microsoft Azure Compute Emulator - v2.9.6 (HKLM\...\Microsoft Azure Compute Emulator - v2.9.6) (Version: 2.9.8899.26 - Microsoft Corporation)
Microsoft Azure Libraries for .NET – v2.9 (HKLM\...\{C5C91AA6-3E83-430E-8B7A-6B790083F28D}) (Version: 3.0.0127.060 - Microsoft Corporation)
Microsoft Azure Storage Emulator - v5.10 (HKLM-x32\...\Microsoft Azure Storage Emulator - v5.10) (Version: 5.10.19227.2113 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.75 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Help Viewer 2.3 (HKLM-x32\...\Microsoft Help Viewer 2.3) (Version: 2.3.28107 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 13.221.137.0 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{E36FFC78-D25E-4962-872B-9CE0E50E62CD}) (Version: 17.5.1.1 - Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM\...\{74A97B61-DE37-40DF-9E00-B302E5D3C4CE}) (Version: 18.3.0.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 - Microsoft Corporation)
Microsoft SQL Server 2016 LocalDB  (HKLM\...\{9097BF1A-13A0-4A4A-A1F8-473E2A669863}) (Version: 13.1.4001.0 - Microsoft Corporation)
Microsoft SQL Server 2019 (64-bit) (HKLM\...\Microsoft SQL Server SQL2019) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2019 Setup (English) (HKLM\...\{17DCED0E-5B27-453A-B2B4-E487B869B28A}) (Version: 15.0.4013.40 - Microsoft Corporation)
Microsoft SQL Server 2019 T-SQL Language Service  (HKLM\...\{31D27B41-A051-49D8-907A-62E0F4A2188C}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft SQL Server Management Studio - 18.7.1 (HKLM-x32\...\{a83fd35c-47e3-4877-b7aa-427fc7de02c7}) (Version: 15.0.18358.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM\...\{8D7CE3B0-5379-46FE-9F4B-A65D9F4CC1F1}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM-x32\...\{725CC962-98BD-42C7-87D8-51C680FB1779}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Teams) (Version: 1.3.00.30866 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29016 (HKLM-x32\...\{1aaa01ad-3069-4288-9c6f-37a140a8f6c7}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.51.1 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.8.3074.1022 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 (HKLM-x32\...\{f895a2f1-ae3f-4212-8af1-7fa1f8c212ea}) (Version: 15.0.27520 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2019 (HKLM\...\{2C33F4D4-E9A5-4DE1-ACFE-3A13464E6703}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Web Deploy 4.0 (HKLM\...\{2EC26D34-FB67-4C58-AC20-235697551222}) (Version: 10.0.3802 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 5.0.1 (x86) (HKLM-x32\...\{d98282c8-a827-4d57-8067-156b6672b229}) (Version: 5.0.1.29530 - Microsoft Corporation)
MPC-HC 1.7.9 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.9 - MPC-HC Team)
Node.js (HKLM\...\{2DFAC857-A66A-4D1A-900C-B36DC56C2E76}) (Version: 14.15.1 - Node.js Foundation)
NVIDIA Grafický ovládač 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation)
OpenOffice 4.1.8 (HKLM-x32\...\{D00D3099-365F-4B6D-8512-F393994DB3D1}) (Version: 4.18.9803 - Apache Software Foundation)
Ovládací panel NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7525 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
SQL Server 2019 Batch Parser (HKLM\...\{D459615B-83B0-408F-8F39-6CC07C277BA6}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{0FB552DD-543E-48E7-A6F4-2F8D82723C6A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{5E4344C9-8B97-4ED9-8760-57E221C240F4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{99B940D5-1A49-4B6C-B26C-6A88B2C061CA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{FD730873-33D1-4D1F-9AE0-E259586F8827}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{A60B3D8E-5311-4BF1-AF7A-D1AC15F9152E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{E3E84B2C-FCF6-469F-9FE7-5E8934DB69AD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{619F0B6C-C802-422A-B4E5-294E61F68473}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{DE5B7937-D5B5-4157-BC30-BB87F021CFF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{814D5077-C93F-42E2-B875-717007C186B9}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{FC8DC283-4A85-467F-8D0E-2FE4606DCCA1}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{6213D6CB-D258-47A3-B1A0-EE1E5C080DCF}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{A8581199-F913-443B-B058-8E8BF317E71C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{8DDAEBCA-4267-4E16-9FE0-D87F21D36891}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{C7E6D4B7-CB10-4239-BA04-D9339B39D0BD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 SQL Diagnostics (HKLM\...\{28ED6838-D8E5-454C-A813-12C5EB447CAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{2129312E-5204-4F3A-9039-B6D34DBB00FB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{228C3DC2-695E-4FC7-87E4-6A9CE905DA9B}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{66C26B42-AE10-45D8-A105-3DACBE959F3A}) (Version: 15.0.18358.0 - Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM\...\{E98F3E26-D9C6-41B7-9004-90E06D45807B}) (Version: 15.0.18358.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Analysis Services (HKLM\...\{690C4976-A775-41F7-88B1-F67677DE05F1}) (Version: 15.0.18358.0 - Microsoft Corporation) Hidden
SQL Server Management Studio for Reporting Services (HKLM\...\{1A77173C-B256-4063-9EC1-CCBD9C42DF64}) (Version: 15.0.18358.0 - Microsoft Corporation) Hidden
SSMS Post Install Tasks (HKLM\...\{1E3117FE-AB81-4155-8CA1-58C467652C79}) (Version: 15.0.18358.0 - Microsoft Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.5 - Synaptics Incorporated)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.10.5 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
TypeScript SDK (HKLM-x32\...\{873B2737-D587-4FC9-993D-086DBF507461}) (Version: 4.0.3.0 - Microsoft Corporation) Hidden
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.7.0 - Unified Intents AB)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32\...\{FA8CFD78-09DF-4244-996E-F21542026EC2}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
Visual Studio Community 2019 (HKLM-x32\...\a301f47f) (Version: 16.8.30709.132 - Microsoft Corporation)
VS Immersive Activate Helper (HKLM-x32\...\{A71406B5-E487-4B01-8E59-D466841350F5}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{C7E8A4F2-EF09-42A8-B892-69D5ED99D965}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM\...\{A4272808-82F5-410F-A5F9-1BF6F63F6B9A}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32\...\{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32\...\{78696386-A4B6-4F69-B558-2667CD3A579D}) (Version: 16.8.30530 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32\...\{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32\...\{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{DEB11EB7-B61A-4883-8CB0-99013A4873AB}) (Version: 16.8.30608 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{95E79BBC-97FD-4FEB-91B5-CC0231324812}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{E9439DB7-BF01-4820-8CB1-80957150AB86}) (Version: 16.8.30530 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{8990F1B6-F880-4E73-A2D9-7A611F4C38A1}) (Version: 16.8.30530 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{3C4B2ED3-2296-4203-A420-AC042BE8484D}) (Version: 16.8.30509 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{08AF5DA9-F3BD-4B59-8D99-C47CC4D53CAD}) (Version: 16.8.30530 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{DE982ACB-A44E-44A5-BEA5-F0816490312C}) (Version: 16.8.30530 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{E1FD1D9D-0611-4DE5-826F-37FAC17706AC}) (Version: 16.8.30615 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_vswebprotocolselectormsi (HKLM-x32\...\{BEEB2E56-91DB-4AFB-AC88-8E98B18DD889}) (Version: 16.8.30509 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WinDjView 2.1 (HKLM\...\WinDjView) (Version: 2.1 - Andrew Zhezherun)
Windows Subsystem for Linux Update (HKLM\...\{18E72D39-392C-419D-9B86-C4C633B4CED9}) (Version: 4.19.128 - Microsoft Corporation)
WinRAR 5.71 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

Packages:
=========
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_830.5.128.0_x64__8xx8rvfyw5nnt [2020-12-18] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-07-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-07-13] (Microsoft Corporation) [MS Ad]
Microsoft Remote Desktop -> C:\Program Files\WindowsApps\Microsoft.RemoteDesktop_10.2.1535.0_x64__8wekyb3d8bbwe [2020-10-31] (Microsoft Corporation)
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.34.33581.0_x64__8wekyb3d8bbwe [2020-12-31] (Microsoft Corporation) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2683855831-3151673362-2466717934-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\sense\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20275.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2683855831-3151673362-2466717934-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> "C:\Users\sense\AppData\Local\Microsoft\OneDrive\20.201.1005.0009\MicrosoftListSync.exe" => No File
CustomCLSID: HKU\S-1-5-21-2683855831-3151673362-2466717934-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> "C:\Users\sense\AppData\Local\Microsoft\OneDrive\20.201.1005.0009\MicrosoftListSync.exe" => No File
CustomCLSID: HKU\S-1-5-21-2683855831-3151673362-2466717934-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\sense\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2020-07-11] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2020-07-11] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\20.201.1005.0009\amd64\FileSyncShell64.dll [2020-12-13] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-04-23] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\sense\Desktop\Personal - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\sense\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Postman.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=fhbjgbiflinjbdggehcddcbncdddomop
ShortcutWithArgument: C:\Users\sense\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\188f5ec9d11ded56\Profile 2 - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2021-01-11 21:15 - 2021-01-11 21:15 - 000114176 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\_ctypes.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000172544 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\_elementtree.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 002255872 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\_hashlib.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000032256 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\_multiprocessing.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000046080 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\_psutil_windows.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000047616 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\_socket.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 002824704 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\_ssl.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000026112 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\_yappi.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000080896 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\bz2.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000016384 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\common.time34.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000007680 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\hashobjs_ext.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000301568 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\PIL._imaging.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000168448 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\pyexpat.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 001084416 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\pysqlite2._sqlite.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000548864 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\pythoncom27.dll
2021-01-11 21:15 - 2021-01-11 21:15 - 000137728 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\pywintypes27.dll
2021-01-11 21:15 - 2021-01-11 21:15 - 000010752 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\select.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000020992 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\thumbnails_ext.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000689664 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\unicodedata.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000119808 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\usb_ext.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000128512 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32api.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000438784 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32com.shell.shell.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000011776 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32crypt.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000023040 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32event.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000149504 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32file.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000223232 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32gui.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000048128 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32inet.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000029696 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32pdh.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000027648 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32pipe.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000044032 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32process.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000020480 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32profile.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000136192 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32security.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000026624 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\win32ts.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000034816 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\windows.conditional.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000038400 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\windows.connectivity.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000071680 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\windows.device_monitor.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000109056 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\windows.volumes.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000020480 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\windows.winwrap.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 001325056 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wx._controls_.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 001489408 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wx._core_.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 001007104 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wx._gdi_.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000103424 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wx._html2.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 000916992 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wx._misc_.pyd
2021-01-11 21:15 - 2021-01-11 21:15 - 001039872 _____ () [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wx._windows_.pyd
2020-12-15 11:08 - 2020-12-15 11:08 - 000009728 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Owin\c91a54075127c1ad8a2e26d5d5e7b438\Owin.ni.dll
2020-12-15 11:10 - 2020-12-15 11:10 - 003923456 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Newtonsoft.Json\4bf71fb309cb5907f2b120094a7c81d4\Newtonsoft.Json.ni.dll
2020-07-11 10:14 - 2016-12-29 12:29 - 000339072 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\_nvstapisvr64.dll
2021-01-11 21:15 - 2021-01-11 21:15 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\python27.dll
2020-07-11 20:49 - 2016-10-10 04:27 - 000556544 _____ (Soft Service Company) [File not signed] C:\Program Files (x86)\Unified Remote 3\wcl.dll
2020-07-11 20:49 - 2016-09-23 13:08 - 001283584 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\LIBEAY32MD.dll
2020-07-11 20:49 - 2016-09-23 13:08 - 000255488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\SSLEAY32MD.dll
2021-01-11 21:15 - 2021-01-11 21:15 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wxbase30u_net_vc90_x64.dll
2021-01-11 21:15 - 2021-01-11 21:15 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wxbase30u_vc90_x64.dll
2021-01-11 21:15 - 2021-01-11 21:15 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wxmsw30u_adv_vc90_x64.dll
2021-01-11 21:15 - 2021-01-11 21:15 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wxmsw30u_core_vc90_x64.dll
2021-01-11 21:15 - 2021-01-11 21:15 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wxmsw30u_html_vc90_x64.dll
2021-01-11 21:15 - 2021-01-11 21:15 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\sense\AppData\Local\Temp\_MEI131602\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\sharepoint.com -> hxxps://tomasherceg-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 09:14 - 2020-12-27 16:56 - 000001054 _____ C:\WINDOWS\system32\drivers\etc\hosts
192.168.1.4 host.docker.internal
192.168.1.4 gateway.docker.internal
127.0.0.1 kubernetes.docker.internal

2020-11-28 14:22 - 2021-01-11 21:18 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
172.18.128.1 DESKTOP-OIFKNOO.mshome.net # 2026 1 6 10 21 18 19 124

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sense\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg
HKU\S-1-5-80-1768481418-4243586691-1349411104-1299650809-3159321943\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-374725556-3612212497-2365472278-3259944318-2763227505\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\StartupApproved\StartupFolder: => "kms.vbs"
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\StartupApproved\StartupFolder: => "Odoslanie do aplikácie OneNote.lnk"
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\StartupApproved\Run: => "Docker Desktop"
HKU\S-1-5-21-2683855831-3151673362-2466717934-1001\...\StartupApproved\Run: => "5A3624FE223D41BDA791B4F4E7BFA848398B50D8._service_run"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A1F3B1EC-C5D2-4A3F-9597-964571830AB3}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.) [File not signed]
FirewallRules: [{A95E194B-9578-4F53-8ABF-69CE7A68A39A}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.) [File not signed]
FirewallRules: [{0FD527DC-40DA-493D-A956-BE7F5BB5A1B7}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{DA96F8DD-8276-4451-96C0-20F3A613EB1B}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [TCP Query User{46D2434D-9B19-4636-A6F2-DE8104EEF6AF}C:\users\sense\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\sense\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D9D91715-6E39-401B-A641-57B18109051A}C:\users\sense\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\sense\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{93340743-0842-4F7E-A7A4-B6E0521A0354}C:\program files\windowsapps\facebook.317180b0bb486_640.5.121.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_640.5.121.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File
FirewallRules: [UDP Query User{3AD58930-F83E-4F41-A2EC-648A5B90073B}C:\program files\windowsapps\facebook.317180b0bb486_640.5.121.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_640.5.121.0_x64__8xx8rvfyw5nnt\app\messenger.exe => No File
FirewallRules: [{7FEE8B16-0AEB-4D12-9356-FA262F797018}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7B089710-4E5B-437D-A40E-47F31B9186A8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{70D5B0B2-BAF9-4303-8FC5-199CAB479DC4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7FF0F559-C1A1-4DBF-98FC-9824B374A8EB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{16FF58B9-61CE-4CD5-8785-EEAAA1981668}C:\users\sense\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sense\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{C0780181-050B-42BB-B8BE-DC71BCC1CCBE}C:\users\sense\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sense\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{E930115A-5DE9-4D07-9005-F13DE816493F}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (OpenJS Foundation -> Node.js)
FirewallRules: [UDP Query User{B3AB279C-D0B0-48A9-802F-21639DFA1B96}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (OpenJS Foundation -> Node.js)
FirewallRules: [{0BECE5B8-9F2D-4605-9C31-789856477701}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe => No File
FirewallRules: [{E4FA9EF4-96F9-439B-9CB0-D92C1EAA3F1E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe => No File
FirewallRules: [{786B116A-87F7-4B21-9EBF-EB68265DED1E}] => (Allow) C:\Users\sense\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{3716D431-5E64-4DCF-83ED-6A994BDF24CA}] => (Allow) C:\Users\sense\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{5CF22A3C-8635-44B4-9AA0-0226C3E435A2}] => (Allow) C:\Users\sense\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{2E9543ED-642C-4969-BE29-C2F092159B35}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2C5327CC-B9A5-415B-855B-6F28CDF74084}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BC417814-8196-4AFF-BC1D-A578709CE646}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{60424EA2-AA72-4267-85F5-0A2AFCD8C0DB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EE53C313-A9F3-4F65-918E-7F632CAF32DD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

31-12-2020 10:22:53 Scheduled Checkpoint
01-01-2021 18:23:25 Windows Modules Installer
09-01-2021 11:46:21 Scheduled Checkpoint
11-01-2021 21:01:45 Windows Modules Installer

==================== Faulty Device Manager Devices ============

Name: Realtek PCIe GBE Family Controller
Description: Realtek PCIe GBE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: rt640x64
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: ========================

Application errors:
==================
Error: (01/10/2021 10:20:52 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-OIFKNOO)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (01/10/2021 10:20:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: StandardCollector.Service.exe, version: 16.1.28901.1, time stamp: 0x5cc938aa
Faulting module name: ntdll.dll, version: 10.0.19041.662, time stamp: 0x27bfa5f0
Exception code: 0xc0000005
Fault offset: 0x00000000000a30e0
Faulting process id: 0x2aac
Faulting application start time: 0x01d6e79ed7ea113b
Faulting application path: C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: 7c491b0d-e340-4702-afaf-497fc8cb94a5
Faulting package full name: 
Faulting package-relative application ID:

Error: (01/10/2021 10:04:31 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-OIFKNOO)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (01/09/2021 07:51:29 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-OIFKNOO)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (01/09/2021 05:02:45 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-OIFKNOO)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (01/09/2021 03:50:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: StandardCollector.Service.exe, version: 16.1.28901.1, time stamp: 0x5cc938aa
Faulting module name: ntdll.dll, version: 10.0.19041.662, time stamp: 0x27bfa5f0
Exception code: 0xc0000005
Fault offset: 0x00000000000a30d5
Faulting process id: 0x360c
Faulting application start time: 0x01d6e69efc55e846
Faulting application path: C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: 0c50b4c6-3ea8-4918-adbb-cfb0f2d874c7
Faulting package full name: 
Faulting package-relative application ID:

Error: (01/09/2021 03:49:27 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-OIFKNOO)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (01/09/2021 02:10:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: uTorrent.exe, version: 2.2.1.25534, time stamp: 0x4e4594ce
Faulting module name: GDI32.dll, version: 10.0.19041.685, time stamp: 0x1baae673
Exception code: 0xc000041d
Fault offset: 0x00005d67
Faulting process id: 0x2308
Faulting application start time: 0x01d6e67e831bb8b7
Faulting application path: C:\Program Files (x86)\uTorrent\uTorrent.exe
Faulting module path: C:\WINDOWS\System32\GDI32.dll
Report Id: 161836e7-1173-4bf8-b7ed-d9fe654a38d9
Faulting package full name: 
Faulting package-relative application ID:


System errors:
=============
Error: (01/11/2021 09:16:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Docker Desktop Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/11/2021 09:14:20 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{C5DF4C54-64D2-4BDA-89B4-9E5E4B9B79FA} because another computer on the network has the same name.  The server could not start.

Error: (01/11/2021 09:14:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The IntelHaxm service failed to start due to the following error: 
A device attached to the system is not functioning.

Error: (01/11/2021 09:14:08 PM) (Source: IntelHaxm) (EventID: 3) (User: )
Description: HAXM Failed to init VMX

Error: (01/11/2021 09:14:08 PM) (Source: IntelHaxm) (EventID: 6) (User: )
Description: HAXM can't work on system without VT support

Error: (01/11/2021 09:14:08 PM) (Source: APPHOSTSVC) (EventID: 9010) (User: )
Description: The Application Host Helper Service encountered an error trying to access the root history directory 'C:\inetpub\history'.  The directory either doesn't exist or the permissions on it don't allow the history service to access it. The config history feature is disabled for now and will be re-enabled after the issue is resolved. To resolve this issue, please ensure that the directory exists and that the Administrators group have read and write access to it.  The data field contains the error number.

Error: (01/11/2021 07:43:16 PM) (Source: disk) (EventID: 154) (User: )
Description: The IO operation at logical block address 0xf90d7b0 for Disk 0 (PDO name: \Device\00000036) failed due to a hardware error.

Error: (01/09/2021 11:35:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The IntelHaxm service failed to start due to the following error: 
A device attached to the system is not functioning.


Windows Defender:
===================================
Date: 2021-01-11 12:51:56.6160000Z
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {393CBFCB-2E57-4910-94B2-ACD989196E67}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-01-10 12:49:03.0360000Z
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {35BC8E24-723D-4AB0-9415-8FB820F7CF8C}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-12-08 14:40:58.6370000Z
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Script/Wacatac.B!ml&threatid=2147735503&enterprise=0
Name: Trojan:Script/Wacatac.B!ml
ID: 2147735503
Severity: Závažná
Category: Trójsky kôň
Path: file:_C:\Users\sense\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\kms.vbs; startup:_C:\Users\sense\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\kms.vbs
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: Unknown
Security intelligence Version: AV: 1.327.2245.0, AS: 1.327.2245.0, NIS: 1.327.2245.0
Engine Version: AM: 1.1.17600.5, NIS: 1.1.17600.5

Date: 2020-12-08 13:57:18.4420000Z
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Script/Wacatac.B!ml&threatid=2147735503&enterprise=0
Name: Trojan:Script/Wacatac.B!ml
ID: 2147735503
Severity: Závažná
Category: Trójsky kôň
Path: file:_C:\Users\sense\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\kms.vbs; startup:_C:\Users\sense\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\kms.vbs
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: Unknown
Security intelligence Version: AV: 1.327.2245.0, AS: 1.327.2245.0, NIS: 1.327.2245.0
Engine Version: AM: 1.1.17600.5, NIS: 1.1.17600.5

Date: 2020-12-08 13:49:20.4290000Z
Description: 
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Script/Wacatac.B!ml&threatid=2147735503&enterprise=0
Name: Trojan:Script/Wacatac.B!ml
ID: 2147735503
Severity: Závažná
Category: Trójsky kôň
Path: file:_C:\Users\sense\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\kms.vbs; startup:_C:\Users\sense\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\kms.vbs
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: Unknown
Security intelligence Version: AV: 1.327.2245.0, AS: 1.327.2245.0, NIS: 1.327.2245.0
Engine Version: AM: 1.1.17600.5, NIS: 1.1.17600.5

Date: 2020-12-08 14:07:05.6840000Z
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.327.2245.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.17600.5
Error code: 0x8007043c
Error description: This service cannot be started in Safe Mode 

Date: 2020-12-08 13:57:04.0730000Z
Description: 
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode 
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2020-12-08 13:49:06.5300000Z
Description: 
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode 
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2020-12-08 13:46:43.1490000Z
Description: 
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode 
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2020-12-08 13:42:35.5580000Z
Description: 
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode 
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

CodeIntegrity:
===================================

Date: 2021-01-11 21:14:04.5390000Z
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\uvhid.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2021-01-09 11:35:08.8600000Z
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\uvhid.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2021-01-09 11:31:17.4410000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-09 11:31:15.4190000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-09 11:31:13.4000000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-09 11:31:11.3710000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-09 11:30:32.7020000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-09 11:30:32.6600000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

==================== Memory info =========================== 

BIOS: LENOVO 9ECN36WW(V2.00) 01/12/2015
Motherboard: LENOVO Lenovo Y50-70
Processor: Intel(R) Core(TM) i7-4720HQ CPU @ 2.60GHz
Percentage of memory in use: 40%
Total physical RAM: 16296.27 MB
Available physical RAM: 9634.01 MB
Total Virtual: 18728.27 MB
Available Virtual: 11358.48 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.14 GB) (Free:82.67 GB) NTFS

\\?\Volume{0793f47b-941f-43e9-a765-675fee5605cd}\ (Obnovenie) (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS
\\?\Volume{3260cb60-2245-4212-8aa1-6f8fc6f5dae8}\ () (Fixed) (Total:0.77 GB) (Free:0.33 GB) NTFS
\\?\Volume{a8246b70-1a16-4c34-ad78-2a014e7ea940}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================