Zdravím, mojmu NTB trvá velmi dlho pokým sa po zadaní prihlasovacích údajov zobrazí pracovná plocha (aj 3-4 minuty). Prosím o kontrolu logov:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-07-2020 01
Ran by zember (administrator) on LENOVOB590 (LENOVO 20206) (13-07-2020 11:04:56)
Running from C:\Users\zembe\Desktop
Loaded Profiles: zember
Platform: Windows 10 Home Version 1909 18363.900 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AlcorMicro, Corp. -> Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Disig a.s. -> Disig a.s.) C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_57c0cedf358ad293\driver\tphkload.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\zembe\AppData\Local\Microsoft\Teams\current\Teams.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(uTorrent.CZ -> BitTorrent, Inc.) [File not signed] C:\Users\zembe\AppData\Roaming\uTorrent\utorrent.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2985712 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [179536 2019-10-31] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [548864 2013-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2013-07-12] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\zembe\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [uTorrent] => C:\Users\zembe\AppData\Roaming\uTorrent\utorrent.exe [414656 2018-10-25] (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\zembe\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48594832 2020-06-15] (Google LLC -> )
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-17] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [Opera Browser Assistant] => C:\Users\zembe\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3004440 2020-05-13] (Opera Software AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Web Signer.lnk [2019-07-24]
ShortcutTarget: Web Signer.lnk -> C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe (Disig a.s. -> Disig a.s.)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0927A769-2CFF-49B6-AE43-4D4C6EE92853} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-12] (Adobe Inc. -> Adobe)
Task: {1288CE4C-2485-4330-8800-66BFF8A60410} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {256A2A53-2C28-4D49-904C-5F8D8113F302} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {27A1ECD5-7F3D-43C2-BB8F-26E2D256C829} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe [59776 2019-11-12] (Lenovo -> )
Task: {31B3E1D0-7273-43A3-8A1B-258899A3B9C5} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758648 2020-03-31] (Lenovo -> )
Task: {400CE9EC-5367-4C80-84D6-56AAD4032ADF} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2985712 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {467A1818-5F1D-4FA2-BD5E-A4897D5E9B21} - System32\Tasks\update-S-1-5-21-1540107938-3102307928-580545200-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {47073ECB-03AF-402C-8CB9-98920B1EBDC2} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {50300EC7-8741-4A2D-BFBC-938AD294242A} - System32\Tasks\Opera scheduled Autoupdate 1562361389 => C:\Users\zembe\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-13] (Opera Software AS -> Opera Software)
Task: {57F198EA-06F7-4C9C-9541-08560709BBEA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {58BE4D60-E483-4AB6-B706-ABBC5B75B77E} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [851800 2018-12-26] (Lenovo -> Lenovo.)
Task: {6A4EB032-09CD-4EA5-BC62-048AB2F09E0D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758648 2020-03-31] (Lenovo -> )
Task: {6C005699-4DC7-45B8-B08D-81211C2E4110} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [688128 2019-01-30] (FreeDownloadManager.org) [File not signed]
Task: {724CCF86-624D-43AD-892E-7C3903A593E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-17] (Piriform Software Ltd -> Piriform Ltd)
Task: {73E68DB1-F831-4D1D-9572-119E957089EF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {B2E3F344-94FE-4850-8BEC-411E5FF3025E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
Task: {B9BD8D84-6F91-40A5-B6B8-E9E67D11C3A9} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [113024 2019-11-12] (Lenovo -> Lenovo)
Task: {C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {D7253912-0F5F-4895-A95B-5ACB56F194BD} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1540107938-3102307928-580545200-1001 => C:\Users\zembe\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [122344 2019-04-04] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {E018D74D-2107-4BB9-A14D-C744B74702D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {F00D895E-E643-4914-9946-BF3EB9072691} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F589A27C-2F20-485F-BCF1-CC7742DF56E7} - System32\Tasks\Opera scheduled assistant Autoupdate 1582730253 => C:\Users\zembe\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-13] (Opera Software AS -> Opera Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-1540107938-3102307928-580545200-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9535daab-06d5-4de2-bb28-e62b8c6eb29a}: [NameServer] 192.168.1.1,8.8.4.4
Tcpip\..\Interfaces\{9535daab-06d5-4de2-bb28-e62b8c6eb29a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{957a2ed0-2633-4a85-afcc-279840f892d8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b1fa505a-2c3f-4e7f-a8ca-f0ebd47b5f39}: [DhcpNameServer] 10.10.10.1
Internet Explorer:
==================
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\zembe\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-12]
Edge Notifications: Default -> hxxps://teams.microsoft.com; hxxps://www.youtube.com
Edge HomePage: Default -> chrome://apps/
Edge DefaultSearchURL: Default -> hxxps://blobs.officehome.msocdn.com/versionless/webmanifestimages/OfficeDesktop_192.png
Edge Session Restore: Default -> is enabled.
Edge Extension: (Office) - C:\Users\zembe\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2020-04-15]
FireFox:
========
FF DefaultProfile: e1mgl8rl.default
FF ProfilePath: C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default [2020-07-12]
FF Notifications: Mozilla\Firefox\Profiles\e1mgl8rl.default -> hxxps://www.facebook.com
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\sp@avast.com.xpi [2020-05-06]
FF Extension: (LastPass: Free Password Manager) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\support@lastpass.com.xpi [2020-05-06]
FF Extension: (Avast Online Security) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\wrc@avast.com.xpi [2020-05-06]
FF Extension: (Video DownloadHelper) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-04-07]
FF Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\{ddc62400-f22d-4dd3-8b4a-05837de53c2e}.xpi [2020-05-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~1.DLL [2019-03-06] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\PROGRA~2\Ditec\DViewer\NPDITE~1.DLL [2020-03-18] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~2.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~3.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~1.DLL [2020-03-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~2.DLL [2020-03-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin HKU\S-1-5-21-1540107938-3102307928-580545200-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\zembe\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-03] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-07-13]
Chrome:
=======
CHR Profile: C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default [2020-07-13]
CHR Notifications: Default -> hxxps://dennikn.sk; hxxps://isport.blesk.cz; hxxps://live.ifortuna.sk; hxxps://meet.google.com; hxxps://mnamky-recepty.webnoviny.sk; hxxps://naszosie.pl; hxxps://promuze.blesk.cz; hxxps://road.cc; hxxps://sk.mall.tv; hxxps://sport.aktuality.sk; hxxps://sport.pravda.sk; hxxps://sportowefakty.wp.pl; hxxps://strategie-hnonline.os.tc; hxxps://teams.microsoft.com; hxxps://vzdelavame.os.tc; hxxps://www.apkonline.net; hxxps://www.blesk.cz; hxxps://www.chess.com; hxxps://www.dreamstime.com; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.joj.sk; hxxps://www.letour.fr; hxxps://www.sport.cz; hxxps://www.svetandroida.cz; hxxps://www.ta3.com; hxxps://www.topky.sk; hxxps://www.tyzden.sk; hxxps://www.youtube.com
CHR HomePage: Default -> chrome://apps/
CHR StartupUrls: Default -> "hxxps://imo.im/new/","hxxps://mail.google.com/mail/u/0/#all","hxxp://www.gmail.com/","file:///usr/share/doc/ ... google.sk/"
CHR DefaultSearchURL: Default -> hxxp://www.zive.cz/Client.Images/favicon.ico
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prekladač Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-19]
CHR Extension: (Prezentácie) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-13]
CHR Extension: (Dokumenty) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-13]
CHR Extension: (Disk Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-13]
CHR Extension: (YouTube) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-13]
CHR Extension: (Facebook) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2019-03-13]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-07-03]
CHR Extension: (Screen capture, screenshot share/save) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjbjepchlgclmpinlbbeinajphohgfod [2019-03-13]
CHR Extension: (Týden Živě: Microsoft vypne svůj nejz...) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnblcnmjaaakjjebecpefncfajnpebgk [2020-07-13]
CHR Extension: (TeX equation editor) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggdddnmjoomglnkjhcpcnjbieiojini [2019-03-13]
CHR Extension: (Tabuľky) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-13]
CHR Extension: (Star Atlas) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gheikhdfflhlbemfmhcfpeblehemeklp [2019-03-13]
CHR Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdhinadidafjejdhmfkjgnolgimiaplp [2020-07-04]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2020-07-03]
CHR Extension: (Picture-in-Picture Extension (by Google)) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgfoiooedgoejojocmhlaklaeopbecg [2020-04-01]
CHR Extension: (Music Player for Google Drive) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfeekfpnjbdmelcapngdgkjnhgijjkh [2019-03-13]
CHR Extension: (Pixlr Editor) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2019-03-13]
CHR Extension: (Audio Joiner) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihiafjkopgiakbmihgoieodihjcblfbk [2019-03-13]
CHR Extension: (Imagus) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\immpkjjlgappgfkkfieppnmlhakdmaab [2020-04-17]
CHR Extension: (Twitter) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi [2020-04-20]
CHR Extension: (Mapy Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jofhmakmcmhjkgbkaknehpglphepfmii [2020-02-16]
CHR Extension: (ShiftEdit) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcgmndephhjcabhhjfcmncnhbmgbkpij [2019-03-13]
CHR Extension: (Webcam Toy) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2019-03-13]
CHR Extension: (Mapy Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-03-13]
CHR Extension: (Žive.sk) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfkdibdekaipckjaaeaklehcmngjhiah [2020-04-19]
CHR Extension: (Merge PDF - Split PDF - Sejda.com) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhcknfplofcnpdjalbhnjognbpncojbi [2019-03-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Office) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2020-05-10]
CHR Extension: (Disig Web Signer 1.0.7) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbdbcaekkgabdfaabepfjgiooilmaoe [2019-07-24]
CHR Extension: (Outlook.com) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2019-03-13]
CHR Extension: (Gmail) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-31]
CHR HKU\S-1-5-21-1540107938-3102307928-580545200-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [odbdbcaekkgabdfaabepfjgiooilmaoe]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [File not signed]
S2 dLauncherLoopback; C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe [154960 2019-08-02] (DITEC, a.s. -> )
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55424 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892760 2018-12-26] (Lenovo -> Lenovo.)
R2 RemoteServerWin; C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3186264 2019-08-04] (Unified Intents AB -> Unified Intents AB)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_57c0cedf358ad293\driver\TPHKLOAD.exe [425352 2019-01-17] (Lenovo -> Lenovo Group Limited)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-12] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [149944 2019-10-31] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186832 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [77176 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [114640 2019-10-31] (ESET, spol. s r.o. -> ESET)
S3 fiddrv64; no ImagePath
S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2019-03-19] (Microsoft Windows -> MediaTek Inc.)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [44160 2018-12-26] (Lenovo -> Lenovo.)
S3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [18952 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33008 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2019-08-04] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [1049984 2013-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-13 11:04 - 2020-07-13 11:08 - 000029981 _____ C:\Users\zembe\Desktop\FRST.txt
2020-07-13 10:57 - 2020-07-13 11:07 - 000000000 ____D C:\FRST
2020-07-13 10:56 - 2020-07-13 10:55 - 002292736 _____ (Farbar) C:\Users\zembe\Desktop\FRST64.exe
2020-07-13 10:55 - 2020-07-13 10:55 - 002292736 _____ (Farbar) C:\Users\zembe\Downloads\FRST64.exe
2020-07-12 16:29 - 2020-07-12 16:49 - 000000000 ____D C:\Users\zembe\Desktop\fotky na stranku
2020-07-10 10:02 - 2020-07-10 10:02 - 000513238 _____ C:\Users\zembe\Downloads\5220182232.pdf
2020-07-08 15:41 - 2020-07-08 15:41 - 000185770 _____ C:\Users\zembe\Downloads\VM_ucitel pre nizsie stred_vzdel MAT v ZSsMS Nitrianska Blatnica.pdf
2020-07-08 15:41 - 2020-07-08 15:41 - 000184262 _____ C:\Users\zembe\Downloads\VM_ucitel pre primarne vzdelavanie v ZSsMS Nitrianska Blatnica.pdf
2020-07-08 15:39 - 2020-07-08 15:39 - 000194486 _____ C:\Users\zembe\Downloads\VM_ucitel_1_stupen_ZS_Tribecska_22_Topolcany.pdf
2020-07-08 15:39 - 2020-07-08 15:39 - 000189182 _____ C:\Users\zembe\Downloads\VM_vychovavatel v SKD v SSI_Tovarnicka 1632_Topolcany.pdf
2020-07-08 15:38 - 2020-07-08 15:38 - 000174549 _____ C:\Users\zembe\Downloads\VM_ZS_Scasneho 22_Nitra-ucitelka pre II_stupen ZS aprobacia MAT.pdf
2020-07-08 15:37 - 2020-07-08 15:37 - 000209385 _____ C:\Users\zembe\Downloads\VM_ZS_Hajske_ucitelka pre nizsie stredne vzdelavanie aprobacia bio_fyz_chem.pdf
2020-07-08 15:37 - 2020-07-08 15:37 - 000205922 _____ C:\Users\zembe\Downloads\VM_ZS_Ucitel pre primarne vzdelavanie.pdf
2020-07-07 16:20 - 2020-07-07 16:21 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (8)
2020-07-07 16:20 - 2020-07-07 16:20 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (7)
2020-07-07 16:19 - 2020-07-07 16:19 - 000024471 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E09_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-07-06 22:07 - 2020-07-06 22:07 - 000121899 _____ C:\Users\zembe\Downloads\V_1152339016_6_20200630_C1_P0.pdf
2020-07-06 18:05 - 2020-07-06 18:05 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (6)
2020-07-06 18:05 - 2020-07-06 18:05 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (5)
2020-07-06 16:35 - 2020-07-06 16:35 - 000446066 _____ C:\Users\zembe\Downloads\faktury 30.06.2020.pdf
2020-07-05 14:23 - 2020-07-05 14:23 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (4)
2020-07-05 14:22 - 2020-07-05 14:22 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (3)
2020-07-02 23:24 - 2020-07-02 23:24 - 000183597 _____ C:\Users\zembe\Downloads\VM_ucitel MAT v ZS Skultetyho 1 Nitra.pdf
2020-07-01 21:27 - 2020-07-01 21:27 - 000020941 _____ C:\Users\zembe\Downloads\[CzT]Avengers_Age_of_Ultron_2015_CZ_.torrent
2020-06-30 16:29 - 2020-06-30 16:29 - 000016505 _____ C:\Users\zembe\Downloads\ZS_SP_100005121 (1).xlsx
2020-06-30 16:25 - 2020-06-30 16:25 - 000016720 _____ C:\Users\zembe\Downloads\dochádzka excel.xlsx
2020-06-30 16:22 - 2020-06-30 16:22 - 000017152 _____ C:\Users\zembe\Downloads\dochádzka 1.A (1).xlsx
2020-06-30 16:12 - 2020-06-30 16:12 - 000016895 _____ C:\Users\zembe\Downloads\Sociálna poisťovňa.xlsx
2020-06-30 16:12 - 2020-06-30 16:12 - 000016695 _____ C:\Users\zembe\Downloads\Tabulka pre SP 4.A.xlsx
2020-06-30 16:11 - 2020-06-30 16:12 - 000016560 _____ C:\Users\zembe\Downloads\ZS_SP_100005121.xlsx
2020-06-29 16:47 - 2020-06-29 16:47 - 000016795 _____ C:\Users\zembe\Downloads\dochádzka 1.A.xlsx
2020-06-29 16:19 - 2020-06-29 16:19 - 000027450 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E08_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-29 16:18 - 2020-06-29 16:18 - 000029217 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_S02E10_TvRip_1080p_.torrent
2020-06-29 14:37 - 2020-06-29 14:37 - 000442530 _____ C:\Users\zembe\Downloads\HNN182223447.pdf
2020-06-29 12:28 - 2020-06-29 12:28 - 000045502 _____ C:\Users\zembe\Downloads\22b12142f3dbcda5.xls
2020-06-28 21:02 - 2020-07-01 13:33 - 000000000 ____D C:\Users\zembe\Desktop\Rada školy
2020-06-28 21:00 - 2020-06-28 21:05 - 000000000 ____D C:\Users\zembe\Desktop\Materiály na odovzdanie ku koncu šk. roka 2019-2020
2020-06-28 13:49 - 2020-06-28 13:49 - 007209564 _____ C:\Users\zembe\Downloads\Fyzika pre 6. ročník ZŠ a 1. ročník gymnázií s osemročným štúdiom.pdf
2020-06-27 21:12 - 2020-06-27 21:12 - 000028243 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E07_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-27 21:12 - 2020-06-27 21:12 - 000014681 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E09_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-26 14:55 - 2020-06-26 15:25 - 000547114 _____ C:\Users\zembe\Downloads\Zápisný lístok - školské obedy.pdf
2020-06-26 14:18 - 2020-06-26 14:18 - 000123067 _____ C:\Users\zembe\Downloads\Zápisný lístok ZŠ 2020-21.pdf
2020-06-24 20:05 - 2020-06-24 20:05 - 000225455 _____ C:\Users\zembe\Downloads\preberanie funkcie.pdf
2020-06-24 19:54 - 2020-06-24 19:54 - 000321405 _____ C:\Users\zembe\Downloads\ševt - objednávka tlačivá - jún 2020.pdf
2020-06-24 19:12 - 2020-06-24 19:12 - 000026304 _____ C:\Users\zembe\Downloads\X5406021.dbf
2020-06-24 18:04 - 2020-06-24 18:50 - 000016596 _____ C:\Users\zembe\Downloads\deviataci zs_sp_100005121.xlsx
2020-06-23 16:44 - 2020-06-23 16:44 - 000175104 _____ C:\Users\zembe\Downloads\Počet AU od 1.9.2019 do 31.12.2019 (1).xls
2020-06-23 16:15 - 2020-06-23 16:15 - 000917439 _____ C:\Users\zembe\Downloads\15057.zip
2020-06-23 16:12 - 2020-06-23 16:12 - 000122503 _____ C:\Users\zembe\Downloads\16086.zip
2020-06-23 16:08 - 2020-06-23 16:08 - 000082250 _____ C:\Users\zembe\Downloads\Faktúra.pdf
2020-06-23 15:56 - 2020-06-23 15:56 - 000114013 _____ C:\Users\zembe\Downloads\Objednávka pre mš 2020-21_Sestava 1.pdf
2020-06-23 15:46 - 2020-06-23 15:46 - 000365547 _____ C:\Users\zembe\Downloads\objednavka tlaciv (1).pdf
2020-06-23 15:38 - 2020-06-23 15:38 - 000365547 _____ C:\Users\zembe\Downloads\objednavka tlaciv.pdf
2020-06-22 18:29 - 2020-06-22 18:37 - 224559784 _____ (The GIMP Team ) C:\Users\zembe\Downloads\gimp-2.10.20-setup-1.exe
2020-06-22 16:19 - 2020-06-22 16:19 - 000001186 _____ C:\Users\Public\Desktop\Fotopak.lnk
2020-06-22 16:19 - 2020-06-22 16:19 - 000001186 _____ C:\ProgramData\Desktop\Fotopak.lnk
2020-06-22 16:19 - 2020-06-22 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fotopak
2020-06-22 16:19 - 2020-06-22 16:19 - 000000000 ____D C:\Program Files (x86)\FOTOPAK s.r.o
2020-06-22 16:04 - 2020-06-22 16:04 - 001795000 _____ C:\Users\zembe\Downloads\orez3.pdf
2020-06-22 16:00 - 2020-06-22 16:00 - 001155084 _____ C:\Users\zembe\Downloads\orez2.pdf
2020-06-22 15:58 - 2020-06-22 15:59 - 000767180 _____ C:\Users\zembe\Downloads\orez1.pdf
2020-06-22 12:47 - 2020-06-22 12:47 - 000035929 _____ C:\Users\zembe\Downloads\ef09de9a7770d227.xls
2020-06-22 12:41 - 2020-06-22 12:41 - 000035929 _____ C:\Users\zembe\Downloads\dd5d589ebf9fec8a.xls
2020-06-21 16:43 - 2020-06-21 16:43 - 000071116 _____ C:\Users\zembe\Downloads\[CzT]Most_Bron_1_3_serie_CZ_TvRip_.torrent
2020-06-21 16:36 - 2020-06-21 16:36 - 000073544 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_1_serie_CZ_WebRip_720p_.torrent
2020-06-21 16:18 - 2020-06-21 16:18 - 000013937 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_S01E01_CZ_WebRip_720p_.torrent
2020-06-20 14:04 - 2020-06-20 14:04 - 000057344 _____ C:\Users\zembe\Downloads\VL OK MO Z5 Z9 ZS TO 2020 (2).xls
2020-06-19 16:49 - 2020-06-30 16:55 - 000017532 _____ C:\Users\zembe\Desktop\ZS_SP_100005121.xlsx
2020-06-19 16:37 - 2020-06-19 16:37 - 000009300 _____ C:\Users\zembe\Downloads\ZS_SP_100005121 (1).csv
2020-06-19 16:34 - 2020-06-19 16:34 - 000012898 _____ C:\Users\zembe\Downloads\Tabuľka pre SP.xlsx
2020-06-18 23:30 - 2020-06-18 23:30 - 000024854 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E06_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-18 14:16 - 2020-06-18 14:16 - 000282883 _____ C:\Users\zembe\Downloads\Test 4.pdf
2020-06-17 15:00 - 2020-06-17 15:00 - 000403591 _____ C:\Users\zembe\Downloads\Test 3.pdf
2020-06-17 14:03 - 2020-06-17 14:03 - 000008936 _____ C:\Users\zembe\Downloads\ZS_SP_100005121.csv
2020-06-16 13:38 - 2020-06-16 13:38 - 000224240 _____ C:\Users\zembe\Downloads\Test 2.pdf
2020-06-15 15:05 - 2020-06-15 15:05 - 000205185 _____ C:\Users\zembe\Downloads\Test 1.pdf
2020-06-15 13:40 - 2020-06-24 16:01 - 000000000 ____D C:\Users\zembe\Desktop\fotky kolaž deviataci
2020-06-14 23:14 - 2020-06-14 23:14 - 000288768 _____ C:\Users\zembe\Downloads\Rada skoly a vyberove konanie 4_2019 (3).ppt
2020-06-14 16:02 - 2020-06-14 16:02 - 000017161 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E08_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-14 16:02 - 2020-06-14 16:02 - 000012781 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E07_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-14 14:17 - 2020-06-14 14:18 - 000992969 _____ C:\Users\zembe\Downloads\Deviatacka štatistika (1).pptx
2020-06-14 14:15 - 2020-06-14 14:15 - 000992969 _____ C:\Users\zembe\Downloads\Deviatacka štatistika.pptx
2020-06-14 13:43 - 2020-06-14 13:43 - 000624921 _____ C:\Users\zembe\Downloads\Zo života zvierat.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-13 11:14 - 2019-04-22 13:57 - 000000000 ____D C:\Users\zembe\AppData\Roaming\uTorrent
2020-07-13 11:08 - 2019-03-13 21:05 - 000000000 ___HD C:\Users\zembe\Desktop\.tmp.drivedownload
2020-07-13 10:51 - 2019-06-23 22:02 - 000000000 ___RD C:\Users\zembe\Disk Google (fotky2.zsobdokovce@gmail.com)
2020-07-13 10:50 - 2019-03-13 21:02 - 000000000 ___RD C:\Users\zembe\Disk Google
2020-07-13 10:47 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-12 16:35 - 2019-03-13 20:38 - 000000000 ____D C:\Users\zembe\AppData\LocalLow\Mozilla
2020-07-12 12:48 - 2020-01-16 00:03 - 000003574 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-12 12:48 - 2020-01-16 00:03 - 000003450 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-11 22:50 - 2019-08-30 00:56 - 001853932 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-11 22:50 - 2019-08-30 00:49 - 000707862 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-11 22:50 - 2019-08-30 00:49 - 000145112 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-11 22:50 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-11 22:50 - 2019-03-13 23:06 - 000145248 _____ C:\WINDOWS\system32\perfh01B.dat
2020-07-11 22:50 - 2019-03-13 23:06 - 000032280 _____ C:\WINDOWS\system32\perfc01B.dat
2020-07-11 22:50 - 2019-03-13 20:20 - 000000000 ____D C:\Users\zembe\AppData\Roaming\vlc
2020-07-11 14:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-10 23:39 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-10 20:46 - 2019-08-30 00:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-09 09:43 - 2020-01-16 00:05 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-09 09:43 - 2020-01-16 00:05 - 000002265 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-07-09 09:43 - 2020-01-16 00:05 - 000002265 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-07-08 17:43 - 2019-08-30 01:09 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-08 17:43 - 2019-03-13 20:36 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-07-06 17:55 - 2019-03-13 20:09 - 000000000 ____D C:\Users\zembe\AppData\Local\Packages
2020-07-05 18:10 - 2019-03-13 23:50 - 000000000 ____D C:\Users\zembe\AppData\Local\CrashDumps
2020-07-05 18:01 - 2019-03-13 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-07-02 17:45 - 2019-05-06 16:54 - 000000643 _____ C:\Users\zembe\Desktop\aScAgenda.lnk
2020-07-01 14:07 - 2020-04-24 00:17 - 000000000 ____D C:\Users\zembe\Documents\Lightshot
2020-07-01 14:07 - 2019-03-13 21:30 - 000000000 ___HD C:\Users\zembe\Documents\.tmp.drivedownload
2020-06-29 22:21 - 2019-04-10 13:36 - 000000000 ____D C:\Users\zembe\AppData\Local\LenovoServiceBridge
2020-06-27 14:37 - 2019-09-26 22:02 - 000000000 ____D C:\SVS_Proforient ZS
2020-06-24 19:03 - 2019-09-26 22:01 - 000043867 _____ C:\Users\zembe\Downloads\export.csv
2020-06-22 20:32 - 2019-03-13 20:17 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-22 20:32 - 2019-03-13 20:17 - 000002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-06-22 20:32 - 2019-03-13 20:17 - 000002272 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-06-22 08:19 - 2019-08-30 01:09 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-06-21 23:51 - 2020-05-01 23:35 - 000000000 ____D C:\Program Files (x86)\SMART Technologies
2020-06-21 13:21 - 2020-05-01 23:36 - 000000000 ____D C:\ProgramData\SMART Technologies
2020-06-21 13:08 - 2019-03-13 20:35 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-06-21 12:49 - 2020-05-03 14:33 - 000000000 ____D C:\Users\zembe\AppData\Local\Deployment
2020-06-20 09:42 - 2019-12-11 19:46 - 000000000 ____D C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome
2020-06-18 10:16 - 2020-04-07 23:26 - 000000000 ____D C:\Users\zembe\AppData\Local\OpenBoard
2020-06-18 06:33 - 2019-03-13 20:15 - 000000000 ____D C:\Users\zembe\AppData\Local\PlaceholderTileLogoFolder
==================== Files in the root of some directories ========
2020-04-23 08:51 - 2020-04-23 08:51 - 000000003 _____ () C:\Users\zembe\AppData\Local\updater.log
2020-04-23 08:51 - 2020-04-23 08:51 - 000000424 _____ () C:\Users\zembe\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by zember (13-07-2020 11:14:25)
Running from C:\Users\zembe\Desktop
Windows 10 Home Version 1909 18363.900 (X64) (2019-08-29 23:10:30)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1540107938-3102307928-580545200-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1540107938-3102307928-580545200-503 - Limited - Disabled)
Guest (S-1-5-21-1540107938-3102307928-580545200-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1540107938-3102307928-580545200-504 - Limited - Disabled)
zember (S-1-5-21-1540107938-3102307928-580545200-1001 - Administrator - Enabled) => C:\Users\zembe
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.371 - Adobe)
Alcor Micro USB Card Reader (HKLM-x32\...\{AE63FFAC-B71A-4B73-BF9C-DB00C78BD9BD}) (Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.17.3042.73586 - Alcor Micro Corp.)
Alf (HKLM-x32\...\Alf) (Version: 3.4 - PcProfi s.r.o.)
aSc TimeTables (HKLM-x32\...\aScTimeTables) (Version: 2020 - aSc Applied Software Consultants s.r.o)
aScAgenda (HKLM-x32\...\ImageMaker) (Version: - )
Asistent pri aktualizácii na Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
Backup and Sync from Google (HKLM\...\{01D33BEA-673C-439C-A7C7-DE5B236DB842}) (Version: 3.50.3166.0017 - Google, Inc.)
Balík softvéru eID (HKLM-x32\...\{27fcb623-2a19-4570-ab03-96077bc85e1d}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Balík softvéru eID (HKLM-x32\...\{ada2b0d4-ff66-4697-86d1-676a81f20d74}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Bit4id - miniLector (HKLM-x32\...\Bit4id - miniLector) (Version: 3.7 - Bit4id)
Brother MFL-Pro Suite DCP-1610W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
D.Launcher (x86) (HKLM-x32\...\{BB9946A5-07FE-4CC5-8D74-BDF7594DAE62}) (Version: 1.2.0.2 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{7F16A5CF-C9B8-4A75-B11F-32DFDA997F92}) (Version: 4.0.20 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{DE521A09-F131-4B2C-B2FE-25EE3E451A9D}) (Version: 4.0.13 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{469b40e4-942f-4580-b185-4ea063723bb6}) (Version: 1.0.22 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{5B3EEED0-8E1D-47EA-8B20-66086AB09DBA}) (Version: 4.0.2029 - DITEC, a.s.)
Disig Web Signer 1.0.7 (HKLM-x32\...\{21859B7E-5E38-4892-A480-FA8B180ADE72}) (Version: 1.1.8 - Disig)
DLL knižnice (HKLM-x32\...\DLL knižnice_is1) (Version: - Školské výpočtové stredisko Michalovce)
EAC MW klient (HKLM-x32\...\{92879DFD-B281-447B-AC54-ED065B0BBB17}) (Version: 3.3.0 - Ministerstvo vnútra Slovenskej republiky)
ESET Endpoint Security (HKLM\...\{96402769-F07F-4636-9D99-E2782BA22484}) (Version: 7.2.2055.0 - ESET, spol. s r.o.)
Fotopak (HKLM\...\{1B50488E-9DE1-471E-B370-8B5D9802E269}) (Version: 2.0.18.0 - FOTOPAK s.r.o.)
Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.38.7312 - FreeDownloadManager.ORG)
GemPcCCID (HKLM\...\{C2C14C20-A217-4FCA-B668-89B6C70B6EFF}) (Version: 2.0.7 - Gemalto)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HWiNFO64 Version 6.14 (HKLM\...\HWiNFO64_is1) (Version: 6.14 - Martin Malik - REALiX)
Integrated Camera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 5.13.415.31 - Vimicro)
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Lenovo Diagnostics Tool (HKLM\...\{C7DB8EA5-C9C1-468F-B90C-CA206CA5C6BE}) (Version: 4.26.1 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.7 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0096 - Lenovo)
LibreOffice 6.4.3.2 (HKLM\...\{E95546E2-BAB2-4E42-97AB-BC7D497D405F}) (Version: 6.4.3.2 - The Document Foundation)
Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
Microsoft Azure Information Protection Viewer (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\{a8406147-34a4-4193-a552-ddf4fc68a707}) (Version: 1.54.59.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.61 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office 2016 Professional Plus (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\OneDriveSetup.exe) (Version: 19.012.0121.0011 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Teams) (Version: 1.3.00.13565 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 76.0 (x64 sk) (HKLM\...\Mozilla Firefox 76.0 (x64 sk)) (Version: 76.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0.2 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM-x32\...\{90160000-001F-0405-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM-x32\...\{90160000-001F-041B-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Office (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\ccb4df306c8d1bb267155a2207fb3946) (Version: 1.0 - Office)
OpenBoard (1.5.4.240) (HKLM-x32\...\{8CCA6AC7-BBF9-4DD2-8E70-A907E0FCA38F}}_is1) (Version: 1.5.4.240 - Open Education Foundation)
Opera Stable 68.0.3618.104 (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Opera 68.0.3618.104) (Version: 68.0.3618.104 - Opera Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.6.4.13 - Synaptics Incorporated)
ŠVS Proforient 2020.03 ZŠ (HKLM-x32\...\ŠVS Proforient ZŠ_is1) (Version: - Školské výpočtové stredisko Michalovce)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
Testovanie žiakov 2019.06 ZŠ (HKLM-x32\...\Testovanie žiakov ZŠ_is1) (Version: - Školské výpočtové stredisko Michalovce)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.7.0 - Unified Intents AB)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
version 5.13.415.31/1.0.0.27/3.4.5.11(H1C307WW) (HKLM-x32\...\{4AD4461B-8BD4-4354-805C-E97E7A404906}_is1) (Version: - Lenovo Group Limited)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WinCITY Registratúra - preinštalácia (HKLM-x32\...\WinCITY Registratúra - preinštalácia) (Version: V.2018.2 - TOPSET Solutions s.r.o.)
Ziacik v2.7 (HKLM-x32\...\Ziacik v2.7) (Version: - )
Zoom (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-18] (Dolby Laboratories)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-07-07] (Microsoft Corporation)
GeoGebra Geometrie -> C:\Program Files\WindowsApps\18FD273D.GeoGebraGeometry_6.0.562.0_neutral__1f5eszzrqmqpy [2019-10-21] (Internationales GeoGebra Institut)
GeoGebra grafický kalkulátor -> C:\Program Files\WindowsApps\18FD273D.GeoGebraGraphingCalculator_6.0.573.0_neutral__1f5eszzrqmqpy [2020-02-13] (Internationales GeoGebra Institut)
GeoGebra Klasik -> C:\Program Files\WindowsApps\18FD273D.GeoGebra_6.0.562.0_neutral__1f5eszzrqmqpy [2019-10-21] (Internationales GeoGebra Institut)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-05] (Instagram)
Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_18.7.500.0_x64__4n2hpmxwrvr6p [2020-05-24] (XBMC Foundation)
Messenger (Beta) -> C:\Program Files\WindowsApps\Facebook.FacebookMessenger_600.1.119.0_x64__8xx8rvfyw5nnt [2020-07-10] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-04] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.10615.5289.0_x64__8wekyb3d8bbwe [2020-07-01] (Microsoft Corporation)
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c [2020-06-27] (Skype) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\zembe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\zembe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Office.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=ocdlmjhbenodhlknglojajgokahchlkk
ShortcutWithArgument: C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Mapy Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jofhmakmcmhjkgbkaknehpglphepfmii
==================== Loaded Modules (Whitelisted) =============
2019-03-13 22:23 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2019-03-13 22:24 - 2018-01-18 15:39 - 000519168 _____ () [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2019-03-13 22:24 - 2017-12-22 12:53 - 000180224 _____ () [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2019-03-13 22:25 - 2018-01-18 15:39 - 000208896 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2019-03-13 22:25 - 2018-01-18 15:39 - 001720832 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2019-03-13 22:24 - 2017-11-07 19:55 - 000137728 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2019-03-13 22:24 - 2017-08-18 11:23 - 000087552 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2019-03-13 22:24 - 2017-08-18 11:23 - 017974784 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2019-03-13 22:24 - 2017-11-07 20:04 - 000090624 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLSvk.dll
2019-04-13 15:41 - 2017-11-07 19:55 - 000440832 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\Track.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_ctypes.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_elementtree.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_hashlib.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_multiprocessing.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_psutil_windows.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_socket.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_ssl.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_yappi.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\bz2.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\common.time34.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\hashobjs_ext.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\PIL._imaging.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pyexpat.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pysqlite2._sqlite.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pythoncom27.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pywintypes27.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\select.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\thumbnails_ext.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\unicodedata.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\usb_ext.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32api.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32com.shell.shell.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32crypt.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32event.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32file.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32gui.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32inet.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32pdh.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32pipe.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32process.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32profile.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32security.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32ts.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.conditional.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.connectivity.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.device_monitor.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.volumes.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.winwrap.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._controls_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._core_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._gdi_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._html2.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._misc_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._windows_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_ctypes.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_elementtree.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_hashlib.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_multiprocessing.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_psutil_windows.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_socket.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_ssl.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_yappi.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\bz2.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\common.time34.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\hashobjs_ext.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\PIL._imaging.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pyexpat.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pysqlite2._sqlite.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pythoncom27.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pywintypes27.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\select.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\thumbnails_ext.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\unicodedata.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\usb_ext.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32api.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32com.shell.shell.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32crypt.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32event.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32file.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32gui.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32inet.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32pdh.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32pipe.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32process.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32profile.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32security.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32ts.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.conditional.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.connectivity.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.device_monitor.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.volumes.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.winwrap.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._controls_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._core_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._gdi_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._html2.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._misc_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._windows_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_ctypes.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_elementtree.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_hashlib.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_multiprocessing.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_psutil_windows.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_socket.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_ssl.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_yappi.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\bz2.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\common.time34.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\hashobjs_ext.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\PIL._imaging.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pyexpat.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pysqlite2._sqlite.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pythoncom27.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pywintypes27.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\select.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\thumbnails_ext.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\unicodedata.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\usb_ext.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32api.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32com.shell.shell.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32crypt.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32event.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32file.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32gui.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32inet.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32pdh.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32pipe.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32process.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32profile.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32security.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32ts.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.conditional.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.connectivity.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.device_monitor.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.volumes.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.winwrap.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._controls_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._core_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._gdi_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._html2.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._misc_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._windows_.pyd
2019-03-13 22:24 - 2015-12-01 09:22 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2019-03-13 22:24 - 2015-12-01 09:22 - 000087040 _____ (Brother Industries, Ltd.) [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2019-03-13 20:34 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\python27.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\python27.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\python27.dll
2019-09-09 21:02 - 2016-10-10 06:27 - 000556544 _____ (Soft Service Company) [File not signed] C:\Program Files (x86)\Unified Remote 3\wcl.dll
2019-09-09 21:02 - 2016-09-23 15:08 - 001283584 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\LIBEAY32MD.dll
2019-09-09 21:02 - 2016-09-23 15:08 - 000255488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\SSLEAY32MD.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxbase30u_net_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxbase30u_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_adv_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_core_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_html_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_webview_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxbase30u_net_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxbase30u_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_adv_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_core_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_html_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_webview_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxbase30u_net_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxbase30u_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_adv_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_core_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_html_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\sharepoint.com -> hxxps://edusk-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.1.1 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "SMART Board Service"
HKLM\...\StartupApproved\Run32: => "SMART Ink"
HKLM\...\StartupApproved\Run32: => "SMART Tray Tools"
HKLM\...\StartupApproved\Run32: => "SMARTNotification"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_8375AD1315402FA46ABD1F971EFE392F"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{1347B276-4615-4DB9-B7D3-40326D83A9DA}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{76582B40-E804-4799-B920-78DB160D7055}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B9C2BF5A-0218-4445-9EE2-60A44E84AB8F}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{0520E1F2-0803-40DD-A0F8-92BF94DDF8C7}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{DDF85FB7-0D01-410B-949C-B922E8B81672}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{98BD30E6-70A5-4CCA-8D47-8F58A1C322D6}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{7B3A91E7-9F64-468C-A90F-6486A0CB7771}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B46B3DCB-9C5A-4F65-8CD7-27CB79FAB7B2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{65782CEB-AD1E-420F-80DA-60EDF8B6B14E}] => (Allow) C:\SVS_Proforient ZS\opppt.exe () [File not signed]
FirewallRules: [{32335E0C-33D3-4048-9FDD-13E6E2C1DFA5}] => (Allow) C:\SVS_Proforient ZS\opppt.exe () [File not signed]
FirewallRules: [TCP Query User{ADDCE602-3102-4716-9300-9BF5E1F5FD81}C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{D4231660-7158-4672-BEBE-46D9FC053BA5}C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [TCP Query User{E921BA23-2840-41EC-8D6F-2D00E0A5AE2D}C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{17D4653C-E23D-447D-86B9-E16901962160}C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [{9F92766C-11D4-4C6B-8672-20A7845C3EC8}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1CEEB159-1E5B-4E98-B443-A7A2873966A3}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1DEABCCA-D9E8-47FC-AF01-BCE1FFD942E7}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{815FABFB-0670-499C-A1F9-6C0E0FD15D36}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AC13C5F3-27CE-49FD-8C60-0A54ACA0A508}] => (Allow) C:\Users\zembe\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1C8ADB29-D151-451A-9F85-67732B9BC822}] => (Allow) C:\Users\zembe\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{04D5D9B3-7E1F-4965-84E2-97CEFEDFA6D4}C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D560E3D1-32EC-466E-BA73-62F08826A5B5}C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9C54C989-BDC5-4E03-9B5E-0B739EE03E00}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{4D84F1F6-B6E6-415F-B0E1-B53E7A5C7782}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{69636EAA-2AC2-4BEA-9CB4-9D68D544CD02}] => (Allow) C:\SVS_Proforient ZS\oppp.exe (MICHALOVCE) [File not signed]
FirewallRules: [{629CF4F8-43D2-464F-9004-1F3F30CF4113}] => (Allow) C:\SVS_Proforient ZS\oppp.exe (MICHALOVCE) [File not signed]
FirewallRules: [{32D58F6C-3B2C-49BC-B3E6-E3783D006641}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FE23DCD1-E9CC-4904-96A7-AC6995E29650}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{13CFD1C7-D128-451D-B1AD-19AF8C867A03}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4B5C2740-133C-42DB-899C-209A9D70DF90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F48EF430-CA43-4118-B8B9-AAF63DAEEED3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
22-06-2020 16:18:17 Nainštalované Fotopak
30-06-2020 17:42:53 Scheduled Checkpoint
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/13/2020 10:55:50 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (33680,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 09:43:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (49552,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 01:45:14 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (25300,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 01:06:11 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (26424,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/11/2020 09:43:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (27840,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/11/2020 02:16:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (51876,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/10/2020 11:44:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (62840,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/10/2020 09:43:37 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (39380,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (07/13/2020 11:05:42 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {0134A8B2-3407-4B45-AD25-E9F7C92A80BC} did not register with DCOM within the required timeout.
Error: (07/13/2020 10:55:38 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {0134A8B2-3407-4B45-AD25-E9F7C92A80BC} did not register with DCOM within the required timeout.
Error: (07/13/2020 10:52:01 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/13/2020 10:47:18 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:48 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {7160A13D-73DA-4CEA-95B9-37356478588A} did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:48 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {7160A13D-73DA-4CEA-95B9-37356478588A} did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:47 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220!App.AppXtzbhf6k67jn9be72jwc3zje4rv3bb4am.mca did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:45 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220!App.AppXtzbhf6k67jn9be72jwc3zje4rv3bb4am.mca did not register with DCOM within the required timeout.
CodeIntegrity:
===================================
Date: 2020-07-13 10:42:57.852
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.846
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.835
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.829
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.378
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-12 12:48:48.533
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-12 12:48:48.527
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-12 12:48:48.515
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO H9ET81WW(1.18) 12/05/2013
Motherboard: LENOVO 20206
Processor: Intel(R) Celeron(R) CPU 1005M @ 1.90GHz
Percentage of memory in use: 84%
Total physical RAM: 6736.54 MB
Available physical RAM: 1065.86 MB
Total Virtual: 12409.14 MB
Available Virtual: 2745.68 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:194.73 GB) (Free:109.69 GB) NTFS
Drive d: (DATA) (Fixed) (Total:269.91 GB) (Free:122.25 GB) NTFS
Drive e: () (Removable) (Total:0.95 GB) (Free:0.14 GB) FAT
\\?\Volume{c7125d87-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{c7125d87-0000-0000-0000-40d130000000}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C7125D87)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=194.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=593 MB) - (Type=27)
Partition 4: (Not Active) - (Size=269.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Size: 968.8 MB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Dlhé prihlasovanie sa do PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Dlhé prihlasovanie sa do PC
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Dlhé prihlasovanie sa do PC
# -------------------------------
# Malwarebytes AdwCleaner 8.0.6.0
# -------------------------------
# Build: 06-24-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-13-2020
# Duration: 00:00:18
# OS: Windows 10 Home
# Cleaned: 13
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.LenovoEasyCamera Folder C:\Program Files (x86)\USB CAMERA
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}
Deleted Preinstalled.LenovoHotkeyManager Folder C:\Program Files\LENOVO\HOTKEY
Deleted Preinstalled.LenovoHotkeyManager Registry HKLM\Software\Classes\CLSID\{A48CA1A4-C36B-44f2-8090-19E08DF4365E}
Deleted Preinstalled.LenovoPowerManager Folder C:\Windows\SysWOW64\LENOVO\POWERMGR
Deleted Preinstalled.LenovoPowerManager Folder C:\Windows\System32\LENOVO\POWERMGR
Deleted Preinstalled.LenovoServiceBridge Folder C:\Users\zembe\AppData\Local\PROGRAMS\LENOVO\LENOVO SERVICE BRIDGE
Deleted Preinstalled.LenovoServiceBridge Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1
Deleted Preinstalled.LenovoUpdate Folder C:\Program Files (x86)\LENOVO\SYSTEM UPDATE
Deleted Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{03C6CC92-68F2-4961-9A73-CAECA350BD08}
Deleted Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\TVSU_is1
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [3269 octets] - [13/07/2020 16:02:02]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 8.0.6.0
# -------------------------------
# Build: 06-24-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-13-2020
# Duration: 00:00:18
# OS: Windows 10 Home
# Cleaned: 13
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.LenovoEasyCamera Folder C:\Program Files (x86)\USB CAMERA
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}
Deleted Preinstalled.LenovoHotkeyManager Folder C:\Program Files\LENOVO\HOTKEY
Deleted Preinstalled.LenovoHotkeyManager Registry HKLM\Software\Classes\CLSID\{A48CA1A4-C36B-44f2-8090-19E08DF4365E}
Deleted Preinstalled.LenovoPowerManager Folder C:\Windows\SysWOW64\LENOVO\POWERMGR
Deleted Preinstalled.LenovoPowerManager Folder C:\Windows\System32\LENOVO\POWERMGR
Deleted Preinstalled.LenovoServiceBridge Folder C:\Users\zembe\AppData\Local\PROGRAMS\LENOVO\LENOVO SERVICE BRIDGE
Deleted Preinstalled.LenovoServiceBridge Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1
Deleted Preinstalled.LenovoUpdate Folder C:\Program Files (x86)\LENOVO\SYSTEM UPDATE
Deleted Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{03C6CC92-68F2-4961-9A73-CAECA350BD08}
Deleted Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\TVSU_is1
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [3269 octets] - [13/07/2020 16:02:02]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Dlhé prihlasovanie sa do PC
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Dlhé prihlasovanie sa do PC
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-07-2020 01
Ran by zember (administrator) on LENOVOB590 (LENOVO 20206) (13-07-2020 17:14:40)
Running from C:\Users\zembe\Desktop
Loaded Profiles: zember
Platform: Windows 10 Home Version 1909 18363.900 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AlcorMicro, Corp. -> Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Disig a.s. -> Disig a.s.) C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe
(DITEC, a.s. -> ) C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <40>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_57c0cedf358ad293\driver\tphkload.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCE7C~1.INF\driver\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCE7C~1.INF\driver\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCE7C~1.INF\driver\tposd.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\zembe\AppData\Local\Microsoft\Teams\current\Teams.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(uTorrent.CZ -> BitTorrent, Inc.) [File not signed] C:\Users\zembe\AppData\Roaming\uTorrent\utorrent.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2985712 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [179536 2019-10-31] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2013-07-12] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\zembe\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [uTorrent] => C:\Users\zembe\AppData\Roaming\uTorrent\utorrent.exe [414656 2018-10-25] (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\zembe\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48594832 2020-06-15] (Google LLC -> )
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-17] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [Opera Browser Assistant] => C:\Users\zembe\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3004440 2020-05-13] (Opera Software AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Web Signer.lnk [2019-07-24]
ShortcutTarget: Web Signer.lnk -> C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe (Disig a.s. -> Disig a.s.)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0927A769-2CFF-49B6-AE43-4D4C6EE92853} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-12] (Adobe Inc. -> Adobe)
Task: {1288CE4C-2485-4330-8800-66BFF8A60410} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {256A2A53-2C28-4D49-904C-5F8D8113F302} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {27A1ECD5-7F3D-43C2-BB8F-26E2D256C829} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe
Task: {31B3E1D0-7273-43A3-8A1B-258899A3B9C5} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {400CE9EC-5367-4C80-84D6-56AAD4032ADF} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2985712 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {467A1818-5F1D-4FA2-BD5E-A4897D5E9B21} - System32\Tasks\update-S-1-5-21-1540107938-3102307928-580545200-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {46C8E21E-971A-48CE-A762-E5B093E0EF48} - System32\Tasks\AdwCleaner_onReboot => C:\Users\zembe\Desktop\adwcleaner_8.0.6.exe [8420016 2020-07-13] (Malwarebytes Inc -> Malwarebytes)
Task: {47073ECB-03AF-402C-8CB9-98920B1EBDC2} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {50300EC7-8741-4A2D-BFBC-938AD294242A} - System32\Tasks\Opera scheduled Autoupdate 1562361389 => C:\Users\zembe\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-13] (Opera Software AS -> Opera Software)
Task: {57F198EA-06F7-4C9C-9541-08560709BBEA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A4EB032-09CD-4EA5-BC62-048AB2F09E0D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {6C005699-4DC7-45B8-B08D-81211C2E4110} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [688128 2019-01-30] (FreeDownloadManager.org) [File not signed]
Task: {724CCF86-624D-43AD-892E-7C3903A593E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-17] (Piriform Software Ltd -> Piriform Ltd)
Task: {73E68DB1-F831-4D1D-9572-119E957089EF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {B2E3F344-94FE-4850-8BEC-411E5FF3025E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
Task: {B9BD8D84-6F91-40A5-B6B8-E9E67D11C3A9} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
Task: {C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {CF1038A7-318D-4633-931A-4ABBB598CBB4} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [851800 2018-12-26] (Lenovo -> Lenovo.)
Task: {D7253912-0F5F-4895-A95B-5ACB56F194BD} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1540107938-3102307928-580545200-1001 => C:\Users\zembe\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe
Task: {E018D74D-2107-4BB9-A14D-C744B74702D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {F00D895E-E643-4914-9946-BF3EB9072691} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F589A27C-2F20-485F-BCF1-CC7742DF56E7} - System32\Tasks\Opera scheduled assistant Autoupdate 1582730253 => C:\Users\zembe\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-13] (Opera Software AS -> Opera Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-1540107938-3102307928-580545200-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{9535daab-06d5-4de2-bb28-e62b8c6eb29a}: [NameServer] 192.168.1.1,8.8.4.4
Tcpip\..\Interfaces\{9535daab-06d5-4de2-bb28-e62b8c6eb29a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{957a2ed0-2633-4a85-afcc-279840f892d8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b1fa505a-2c3f-4e7f-a8ca-f0ebd47b5f39}: [DhcpNameServer] 10.10.10.1
Internet Explorer:
==================
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\zembe\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-13]
Edge Notifications: Default -> hxxps://teams.microsoft.com; hxxps://www.youtube.com
Edge HomePage: Default -> chrome://apps/
Edge DefaultSearchURL: Default -> hxxps://blobs.officehome.msocdn.com/versionless/webmanifestimages/OfficeDesktop_192.png
Edge Session Restore: Default -> is enabled.
Edge Extension: (Office) - C:\Users\zembe\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2020-04-15]
FireFox:
========
FF DefaultProfile: e1mgl8rl.default
FF ProfilePath: C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default [2020-07-12]
FF Notifications: Mozilla\Firefox\Profiles\e1mgl8rl.default -> hxxps://www.facebook.com
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\sp@avast.com.xpi [2020-05-06]
FF Extension: (LastPass: Free Password Manager) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\support@lastpass.com.xpi [2020-05-06]
FF Extension: (Avast Online Security) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\wrc@avast.com.xpi [2020-05-06]
FF Extension: (Video DownloadHelper) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-04-07]
FF Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\{ddc62400-f22d-4dd3-8b4a-05837de53c2e}.xpi [2020-05-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~1.DLL [2019-03-06] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\PROGRA~2\Ditec\DViewer\NPDITE~1.DLL [2020-03-18] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~2.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~3.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~1.DLL [2020-03-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~2.DLL [2020-03-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin HKU\S-1-5-21-1540107938-3102307928-580545200-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\zembe\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-03] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-07-13]
Chrome:
=======
CHR Profile: C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default [2020-07-13]
CHR Notifications: Default -> hxxps://dennikn.sk; hxxps://isport.blesk.cz; hxxps://live.ifortuna.sk; hxxps://meet.google.com; hxxps://mnamky-recepty.webnoviny.sk; hxxps://naszosie.pl; hxxps://promuze.blesk.cz; hxxps://road.cc; hxxps://sk.mall.tv; hxxps://sport.aktuality.sk; hxxps://sport.pravda.sk; hxxps://sportowefakty.wp.pl; hxxps://strategie-hnonline.os.tc; hxxps://teams.microsoft.com; hxxps://vzdelavame.os.tc; hxxps://www.apkonline.net; hxxps://www.blesk.cz; hxxps://www.chess.com; hxxps://www.dreamstime.com; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.joj.sk; hxxps://www.letour.fr; hxxps://www.sport.cz; hxxps://www.svetandroida.cz; hxxps://www.ta3.com; hxxps://www.topky.sk; hxxps://www.tyzden.sk; hxxps://www.youtube.com
CHR HomePage: Default -> chrome://apps/
CHR StartupUrls: Default -> "hxxps://imo.im/new/","hxxps://mail.google.com/mail/u/0/#all","hxxp://www.gmail.com/","file:///usr/share/doc/ ... google.sk/"
CHR DefaultSearchURL: Default -> hxxp://www.zive.cz/Client.Images/favicon.ico
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prekladač Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-19]
CHR Extension: (Prezentácie) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-13]
CHR Extension: (Dokumenty) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-13]
CHR Extension: (Disk Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-13]
CHR Extension: (YouTube) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-13]
CHR Extension: (Facebook) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2019-03-13]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-07-03]
CHR Extension: (Screen capture, screenshot share/save) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjbjepchlgclmpinlbbeinajphohgfod [2019-03-13]
CHR Extension: (Týden Živě: Microsoft vypne svůj nejz...) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnblcnmjaaakjjebecpefncfajnpebgk [2020-07-13]
CHR Extension: (TeX equation editor) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggdddnmjoomglnkjhcpcnjbieiojini [2019-03-13]
CHR Extension: (Tabuľky) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-13]
CHR Extension: (Star Atlas) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gheikhdfflhlbemfmhcfpeblehemeklp [2019-03-13]
CHR Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdhinadidafjejdhmfkjgnolgimiaplp [2020-07-04]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2020-07-03]
CHR Extension: (Picture-in-Picture Extension (by Google)) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgfoiooedgoejojocmhlaklaeopbecg [2020-04-01]
CHR Extension: (Music Player for Google Drive) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfeekfpnjbdmelcapngdgkjnhgijjkh [2019-03-13]
CHR Extension: (Pixlr Editor) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2019-03-13]
CHR Extension: (Audio Joiner) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihiafjkopgiakbmihgoieodihjcblfbk [2019-03-13]
CHR Extension: (Imagus) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\immpkjjlgappgfkkfieppnmlhakdmaab [2020-04-17]
CHR Extension: (Twitter) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi [2020-04-20]
CHR Extension: (Mapy Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jofhmakmcmhjkgbkaknehpglphepfmii [2020-02-16]
CHR Extension: (ShiftEdit) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcgmndephhjcabhhjfcmncnhbmgbkpij [2019-03-13]
CHR Extension: (Webcam Toy) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2019-03-13]
CHR Extension: (Mapy Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-03-13]
CHR Extension: (Žive.sk) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfkdibdekaipckjaaeaklehcmngjhiah [2020-04-19]
CHR Extension: (Merge PDF - Split PDF - Sejda.com) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhcknfplofcnpdjalbhnjognbpncojbi [2019-03-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Office) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2020-05-10]
CHR Extension: (Disig Web Signer 1.0.7) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbdbcaekkgabdfaabepfjgiooilmaoe [2019-07-24]
CHR Extension: (Outlook.com) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2019-03-13]
CHR Extension: (Gmail) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-31]
CHR HKU\S-1-5-21-1540107938-3102307928-580545200-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [odbdbcaekkgabdfaabepfjgiooilmaoe]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [File not signed]
R2 dLauncherLoopback; C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe [154960 2019-08-02] (DITEC, a.s. -> )
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55424 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892760 2018-12-26] (Lenovo -> Lenovo.)
R2 RemoteServerWin; C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3186264 2019-08-04] (Unified Intents AB -> Unified Intents AB)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_57c0cedf358ad293\driver\TPHKLOAD.exe [425352 2019-01-17] (Lenovo -> Lenovo Group Limited)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SUService; "C:\Program Files (x86)\Lenovo\System Update\SUService.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-12] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [149944 2019-10-31] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186832 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [77176 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [114640 2019-10-31] (ESET, spol. s r.o. -> ESET)
S3 fiddrv64; no ImagePath
S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2019-03-19] (Microsoft Windows -> MediaTek Inc.)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [44160 2018-12-26] (Lenovo -> Lenovo.)
S3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [18952 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33008 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2019-08-04] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [1049984 2013-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-13 16:06 - 2020-07-13 16:06 - 000003170 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot
2020-07-13 16:00 - 2020-07-13 16:06 - 000000000 ____D C:\AdwCleaner
2020-07-13 15:57 - 2020-07-13 15:58 - 008420016 _____ (Malwarebytes) C:\Users\zembe\Desktop\adwcleaner_8.0.6.exe
2020-07-13 15:54 - 2020-07-13 15:54 - 000031250 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E10_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-07-13 11:18 - 2020-07-13 11:18 - 000293375 _____ C:\Users\zembe\Downloads\16608.zip
2020-07-13 11:14 - 2020-07-13 11:18 - 000056691 _____ C:\Users\zembe\Desktop\Addition.txt
2020-07-13 11:04 - 2020-07-13 17:18 - 000030158 _____ C:\Users\zembe\Desktop\FRST.txt
2020-07-13 10:57 - 2020-07-13 17:16 - 000000000 ____D C:\FRST
2020-07-13 10:56 - 2020-07-13 10:55 - 002292736 _____ (Farbar) C:\Users\zembe\Desktop\FRST64.exe
2020-07-13 10:55 - 2020-07-13 10:55 - 002292736 _____ (Farbar) C:\Users\zembe\Downloads\FRST64.exe
2020-07-12 16:29 - 2020-07-12 16:49 - 000000000 ____D C:\Users\zembe\Desktop\fotky na stranku
2020-07-10 10:02 - 2020-07-10 10:02 - 000513238 _____ C:\Users\zembe\Downloads\5220182232.pdf
2020-07-08 15:41 - 2020-07-08 15:41 - 000185770 _____ C:\Users\zembe\Downloads\VM_ucitel pre nizsie stred_vzdel MAT v ZSsMS Nitrianska Blatnica.pdf
2020-07-08 15:41 - 2020-07-08 15:41 - 000184262 _____ C:\Users\zembe\Downloads\VM_ucitel pre primarne vzdelavanie v ZSsMS Nitrianska Blatnica.pdf
2020-07-08 15:39 - 2020-07-08 15:39 - 000194486 _____ C:\Users\zembe\Downloads\VM_ucitel_1_stupen_ZS_Tribecska_22_Topolcany.pdf
2020-07-08 15:39 - 2020-07-08 15:39 - 000189182 _____ C:\Users\zembe\Downloads\VM_vychovavatel v SKD v SSI_Tovarnicka 1632_Topolcany.pdf
2020-07-08 15:38 - 2020-07-08 15:38 - 000174549 _____ C:\Users\zembe\Downloads\VM_ZS_Scasneho 22_Nitra-ucitelka pre II_stupen ZS aprobacia MAT.pdf
2020-07-08 15:37 - 2020-07-08 15:37 - 000209385 _____ C:\Users\zembe\Downloads\VM_ZS_Hajske_ucitelka pre nizsie stredne vzdelavanie aprobacia bio_fyz_chem.pdf
2020-07-08 15:37 - 2020-07-08 15:37 - 000205922 _____ C:\Users\zembe\Downloads\VM_ZS_Ucitel pre primarne vzdelavanie.pdf
2020-07-07 16:20 - 2020-07-07 16:21 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (8)
2020-07-07 16:20 - 2020-07-07 16:20 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (7)
2020-07-07 16:19 - 2020-07-07 16:19 - 000024471 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E09_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-07-06 22:07 - 2020-07-06 22:07 - 000121899 _____ C:\Users\zembe\Downloads\V_1152339016_6_20200630_C1_P0.pdf
2020-07-06 18:05 - 2020-07-06 18:05 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (6)
2020-07-06 18:05 - 2020-07-06 18:05 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (5)
2020-07-06 16:35 - 2020-07-06 16:35 - 000446066 _____ C:\Users\zembe\Downloads\faktury 30.06.2020.pdf
2020-07-05 14:23 - 2020-07-05 14:23 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (4)
2020-07-05 14:22 - 2020-07-05 14:22 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (3)
2020-07-02 23:24 - 2020-07-02 23:24 - 000183597 _____ C:\Users\zembe\Downloads\VM_ucitel MAT v ZS Skultetyho 1 Nitra.pdf
2020-07-01 21:27 - 2020-07-01 21:27 - 000020941 _____ C:\Users\zembe\Downloads\[CzT]Avengers_Age_of_Ultron_2015_CZ_.torrent
2020-06-30 16:29 - 2020-06-30 16:29 - 000016505 _____ C:\Users\zembe\Downloads\ZS_SP_100005121 (1).xlsx
2020-06-30 16:25 - 2020-06-30 16:25 - 000016720 _____ C:\Users\zembe\Downloads\dochádzka excel.xlsx
2020-06-30 16:22 - 2020-06-30 16:22 - 000017152 _____ C:\Users\zembe\Downloads\dochádzka 1.A (1).xlsx
2020-06-30 16:12 - 2020-06-30 16:12 - 000016895 _____ C:\Users\zembe\Downloads\Sociálna poisťovňa.xlsx
2020-06-30 16:12 - 2020-06-30 16:12 - 000016695 _____ C:\Users\zembe\Downloads\Tabulka pre SP 4.A.xlsx
2020-06-30 16:11 - 2020-06-30 16:12 - 000016560 _____ C:\Users\zembe\Downloads\ZS_SP_100005121.xlsx
2020-06-29 16:47 - 2020-06-29 16:47 - 000016795 _____ C:\Users\zembe\Downloads\dochádzka 1.A.xlsx
2020-06-29 16:19 - 2020-06-29 16:19 - 000027450 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E08_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-29 16:18 - 2020-06-29 16:18 - 000029217 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_S02E10_TvRip_1080p_.torrent
2020-06-29 14:37 - 2020-06-29 14:37 - 000442530 _____ C:\Users\zembe\Downloads\HNN182223447.pdf
2020-06-29 12:28 - 2020-06-29 12:28 - 000045502 _____ C:\Users\zembe\Downloads\22b12142f3dbcda5.xls
2020-06-28 21:02 - 2020-07-01 13:33 - 000000000 ____D C:\Users\zembe\Desktop\Rada školy
2020-06-28 21:00 - 2020-06-28 21:05 - 000000000 ____D C:\Users\zembe\Desktop\Materiály na odovzdanie ku koncu šk. roka 2019-2020
2020-06-28 13:49 - 2020-06-28 13:49 - 007209564 _____ C:\Users\zembe\Downloads\Fyzika pre 6. ročník ZŠ a 1. ročník gymnázií s osemročným štúdiom.pdf
2020-06-27 21:12 - 2020-06-27 21:12 - 000028243 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E07_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-27 21:12 - 2020-06-27 21:12 - 000014681 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E09_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-26 14:55 - 2020-06-26 15:25 - 000547114 _____ C:\Users\zembe\Downloads\Zápisný lístok - školské obedy.pdf
2020-06-26 14:18 - 2020-06-26 14:18 - 000123067 _____ C:\Users\zembe\Downloads\Zápisný lístok ZŠ 2020-21.pdf
2020-06-24 20:05 - 2020-06-24 20:05 - 000225455 _____ C:\Users\zembe\Downloads\preberanie funkcie.pdf
2020-06-24 19:54 - 2020-06-24 19:54 - 000321405 _____ C:\Users\zembe\Downloads\ševt - objednávka tlačivá - jún 2020.pdf
2020-06-24 19:12 - 2020-06-24 19:12 - 000026304 _____ C:\Users\zembe\Downloads\X5406021.dbf
2020-06-24 18:04 - 2020-06-24 18:50 - 000016596 _____ C:\Users\zembe\Downloads\deviataci zs_sp_100005121.xlsx
2020-06-23 16:44 - 2020-06-23 16:44 - 000175104 _____ C:\Users\zembe\Downloads\Počet AU od 1.9.2019 do 31.12.2019 (1).xls
2020-06-23 16:15 - 2020-06-23 16:15 - 000917439 _____ C:\Users\zembe\Downloads\15057.zip
2020-06-23 16:12 - 2020-06-23 16:12 - 000122503 _____ C:\Users\zembe\Downloads\16086.zip
2020-06-23 16:08 - 2020-06-23 16:08 - 000082250 _____ C:\Users\zembe\Downloads\Faktúra.pdf
2020-06-23 15:56 - 2020-06-23 15:56 - 000114013 _____ C:\Users\zembe\Downloads\Objednávka pre mš 2020-21_Sestava 1.pdf
2020-06-23 15:46 - 2020-06-23 15:46 - 000365547 _____ C:\Users\zembe\Downloads\objednavka tlaciv (1).pdf
2020-06-23 15:38 - 2020-06-23 15:38 - 000365547 _____ C:\Users\zembe\Downloads\objednavka tlaciv.pdf
2020-06-22 18:29 - 2020-06-22 18:37 - 224559784 _____ (The GIMP Team ) C:\Users\zembe\Downloads\gimp-2.10.20-setup-1.exe
2020-06-22 16:19 - 2020-06-22 16:19 - 000001186 _____ C:\Users\Public\Desktop\Fotopak.lnk
2020-06-22 16:19 - 2020-06-22 16:19 - 000001186 _____ C:\ProgramData\Desktop\Fotopak.lnk
2020-06-22 16:19 - 2020-06-22 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fotopak
2020-06-22 16:19 - 2020-06-22 16:19 - 000000000 ____D C:\Program Files (x86)\FOTOPAK s.r.o
2020-06-22 16:04 - 2020-06-22 16:04 - 001795000 _____ C:\Users\zembe\Downloads\orez3.pdf
2020-06-22 16:00 - 2020-06-22 16:00 - 001155084 _____ C:\Users\zembe\Downloads\orez2.pdf
2020-06-22 15:58 - 2020-06-22 15:59 - 000767180 _____ C:\Users\zembe\Downloads\orez1.pdf
2020-06-22 12:47 - 2020-06-22 12:47 - 000035929 _____ C:\Users\zembe\Downloads\ef09de9a7770d227.xls
2020-06-22 12:41 - 2020-06-22 12:41 - 000035929 _____ C:\Users\zembe\Downloads\dd5d589ebf9fec8a.xls
2020-06-21 16:43 - 2020-06-21 16:43 - 000071116 _____ C:\Users\zembe\Downloads\[CzT]Most_Bron_1_3_serie_CZ_TvRip_.torrent
2020-06-21 16:36 - 2020-06-21 16:36 - 000073544 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_1_serie_CZ_WebRip_720p_.torrent
2020-06-21 16:18 - 2020-06-21 16:18 - 000013937 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_S01E01_CZ_WebRip_720p_.torrent
2020-06-20 14:04 - 2020-06-20 14:04 - 000057344 _____ C:\Users\zembe\Downloads\VL OK MO Z5 Z9 ZS TO 2020 (2).xls
2020-06-19 16:49 - 2020-06-30 16:55 - 000017532 _____ C:\Users\zembe\Desktop\ZS_SP_100005121.xlsx
2020-06-19 16:37 - 2020-06-19 16:37 - 000009300 _____ C:\Users\zembe\Downloads\ZS_SP_100005121 (1).csv
2020-06-19 16:34 - 2020-06-19 16:34 - 000012898 _____ C:\Users\zembe\Downloads\Tabuľka pre SP.xlsx
2020-06-18 23:30 - 2020-06-18 23:30 - 000024854 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E06_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-18 14:16 - 2020-06-18 14:16 - 000282883 _____ C:\Users\zembe\Downloads\Test 4.pdf
2020-06-17 15:00 - 2020-06-17 15:00 - 000403591 _____ C:\Users\zembe\Downloads\Test 3.pdf
2020-06-17 14:03 - 2020-06-17 14:03 - 000008936 _____ C:\Users\zembe\Downloads\ZS_SP_100005121.csv
2020-06-16 13:38 - 2020-06-16 13:38 - 000224240 _____ C:\Users\zembe\Downloads\Test 2.pdf
2020-06-15 15:05 - 2020-06-15 15:05 - 000205185 _____ C:\Users\zembe\Downloads\Test 1.pdf
2020-06-15 13:40 - 2020-06-24 16:01 - 000000000 ____D C:\Users\zembe\Desktop\fotky kolaž deviataci
2020-06-14 23:14 - 2020-06-14 23:14 - 000288768 _____ C:\Users\zembe\Downloads\Rada skoly a vyberove konanie 4_2019 (3).ppt
2020-06-14 16:02 - 2020-06-14 16:02 - 000017161 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E08_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-14 16:02 - 2020-06-14 16:02 - 000012781 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E07_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-14 14:17 - 2020-06-14 14:18 - 000992969 _____ C:\Users\zembe\Downloads\Deviatacka štatistika (1).pptx
2020-06-14 14:15 - 2020-06-14 14:15 - 000992969 _____ C:\Users\zembe\Downloads\Deviatacka štatistika.pptx
2020-06-14 13:43 - 2020-06-14 13:43 - 000624921 _____ C:\Users\zembe\Downloads\Zo života zvierat.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-13 17:22 - 2019-04-22 13:57 - 000000000 ____D C:\Users\zembe\AppData\Roaming\uTorrent
2020-07-13 17:18 - 2019-03-13 21:05 - 000000000 ___HD C:\Users\zembe\Desktop\.tmp.drivedownload
2020-07-13 17:15 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-13 16:27 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-13 16:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-13 16:18 - 2019-06-23 22:02 - 000000000 ___RD C:\Users\zembe\Disk Google (fotky2.zsobdokovce@gmail.com)
2020-07-13 16:17 - 2019-03-13 21:02 - 000000000 ___RD C:\Users\zembe\Disk Google
2020-07-13 16:16 - 2019-08-30 00:56 - 001853932 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-13 16:16 - 2019-08-30 00:49 - 000707862 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-13 16:16 - 2019-08-30 00:49 - 000145112 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-13 16:16 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-13 16:16 - 2019-03-13 23:06 - 000145248 _____ C:\WINDOWS\system32\perfh01B.dat
2020-07-13 16:16 - 2019-03-13 23:06 - 000032280 _____ C:\WINDOWS\system32\perfc01B.dat
2020-07-13 16:09 - 2019-09-09 21:02 - 000000000 ____D C:\ProgramData\Unified Remote
2020-07-13 16:09 - 2019-08-30 00:31 - 000651072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-13 16:08 - 2019-08-30 01:09 - 000003700 _____ C:\WINDOWS\system32\Tasks\Lenovo Power Management Driver PnP Task
2020-07-13 16:08 - 2019-08-30 01:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-13 16:07 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-07-13 16:06 - 2020-05-05 09:59 - 000000000 ____D C:\Program Files (x86)\Lenovo
2020-07-13 16:06 - 2019-12-06 19:44 - 000000000 ____D C:\WINDOWS\system32\Lenovo
2020-07-13 16:06 - 2019-03-14 16:51 - 000000000 ____D C:\Program Files\Lenovo
2020-07-13 16:06 - 2019-03-13 20:09 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2020-07-13 12:50 - 2019-03-13 20:09 - 000000000 ____D C:\Users\zembe\AppData\Local\Packages
2020-07-12 16:35 - 2019-03-13 20:38 - 000000000 ____D C:\Users\zembe\AppData\LocalLow\Mozilla
2020-07-12 12:48 - 2020-01-16 00:03 - 000003574 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-12 12:48 - 2020-01-16 00:03 - 000003450 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-11 22:50 - 2019-03-13 20:20 - 000000000 ____D C:\Users\zembe\AppData\Roaming\vlc
2020-07-10 20:46 - 2019-08-30 00:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-09 09:43 - 2020-01-16 00:05 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-09 09:43 - 2020-01-16 00:05 - 000002265 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-07-09 09:43 - 2020-01-16 00:05 - 000002265 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-07-08 17:43 - 2019-08-30 01:09 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-08 17:43 - 2019-03-13 20:36 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-07-05 18:10 - 2019-03-13 23:50 - 000000000 ____D C:\Users\zembe\AppData\Local\CrashDumps
2020-07-05 18:01 - 2019-03-13 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-07-02 17:45 - 2019-05-06 16:54 - 000000643 _____ C:\Users\zembe\Desktop\aScAgenda.lnk
2020-07-01 14:07 - 2020-04-24 00:17 - 000000000 ____D C:\Users\zembe\Documents\Lightshot
2020-07-01 14:07 - 2019-03-13 21:30 - 000000000 ___HD C:\Users\zembe\Documents\.tmp.drivedownload
2020-06-29 22:21 - 2019-04-10 13:36 - 000000000 ____D C:\Users\zembe\AppData\Local\LenovoServiceBridge
2020-06-27 14:37 - 2019-09-26 22:02 - 000000000 ____D C:\SVS_Proforient ZS
2020-06-24 19:03 - 2019-09-26 22:01 - 000043867 _____ C:\Users\zembe\Downloads\export.csv
2020-06-22 20:32 - 2019-03-13 20:17 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-22 20:32 - 2019-03-13 20:17 - 000002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-06-22 20:32 - 2019-03-13 20:17 - 000002272 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-06-22 08:19 - 2019-08-30 01:09 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-06-21 23:51 - 2020-05-01 23:35 - 000000000 ____D C:\Program Files (x86)\SMART Technologies
2020-06-21 13:21 - 2020-05-01 23:36 - 000000000 ____D C:\ProgramData\SMART Technologies
2020-06-21 13:08 - 2019-03-13 20:35 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-06-21 12:49 - 2020-05-03 14:33 - 000000000 ____D C:\Users\zembe\AppData\Local\Deployment
2020-06-20 09:42 - 2019-12-11 19:46 - 000000000 ____D C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome
2020-06-18 10:16 - 2020-04-07 23:26 - 000000000 ____D C:\Users\zembe\AppData\Local\OpenBoard
2020-06-18 06:33 - 2019-03-13 20:15 - 000000000 ____D C:\Users\zembe\AppData\Local\PlaceholderTileLogoFolder
==================== Files in the root of some directories ========
2020-04-23 08:51 - 2020-04-23 08:51 - 000000003 _____ () C:\Users\zembe\AppData\Local\updater.log
2020-04-23 08:51 - 2020-04-23 08:51 - 000000424 _____ () C:\Users\zembe\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by zember (13-07-2020 17:22:24)
Running from C:\Users\zembe\Desktop
Windows 10 Home Version 1909 18363.900 (X64) (2019-08-29 23:10:30)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1540107938-3102307928-580545200-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1540107938-3102307928-580545200-503 - Limited - Disabled)
Guest (S-1-5-21-1540107938-3102307928-580545200-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1540107938-3102307928-580545200-504 - Limited - Disabled)
zember (S-1-5-21-1540107938-3102307928-580545200-1001 - Administrator - Enabled) => C:\Users\zembe
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.371 - Adobe)
Alcor Micro USB Card Reader (HKLM-x32\...\{AE63FFAC-B71A-4B73-BF9C-DB00C78BD9BD}) (Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.17.3042.73586 - Alcor Micro Corp.)
Alf (HKLM-x32\...\Alf) (Version: 3.4 - PcProfi s.r.o.)
aSc TimeTables (HKLM-x32\...\aScTimeTables) (Version: 2020 - aSc Applied Software Consultants s.r.o)
aScAgenda (HKLM-x32\...\ImageMaker) (Version: - )
Asistent pri aktualizácii na Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
Backup and Sync from Google (HKLM\...\{01D33BEA-673C-439C-A7C7-DE5B236DB842}) (Version: 3.50.3166.0017 - Google, Inc.)
Balík softvéru eID (HKLM-x32\...\{27fcb623-2a19-4570-ab03-96077bc85e1d}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Balík softvéru eID (HKLM-x32\...\{ada2b0d4-ff66-4697-86d1-676a81f20d74}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Bit4id - miniLector (HKLM-x32\...\Bit4id - miniLector) (Version: 3.7 - Bit4id)
Brother MFL-Pro Suite DCP-1610W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
D.Launcher (x86) (HKLM-x32\...\{BB9946A5-07FE-4CC5-8D74-BDF7594DAE62}) (Version: 1.2.0.2 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{7F16A5CF-C9B8-4A75-B11F-32DFDA997F92}) (Version: 4.0.20 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{DE521A09-F131-4B2C-B2FE-25EE3E451A9D}) (Version: 4.0.13 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{469b40e4-942f-4580-b185-4ea063723bb6}) (Version: 1.0.22 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{5B3EEED0-8E1D-47EA-8B20-66086AB09DBA}) (Version: 4.0.2029 - DITEC, a.s.)
Disig Web Signer 1.0.7 (HKLM-x32\...\{21859B7E-5E38-4892-A480-FA8B180ADE72}) (Version: 1.1.8 - Disig)
DLL knižnice (HKLM-x32\...\DLL knižnice_is1) (Version: - Školské výpočtové stredisko Michalovce)
EAC MW klient (HKLM-x32\...\{92879DFD-B281-447B-AC54-ED065B0BBB17}) (Version: 3.3.0 - Ministerstvo vnútra Slovenskej republiky)
ESET Endpoint Security (HKLM\...\{96402769-F07F-4636-9D99-E2782BA22484}) (Version: 7.2.2055.0 - ESET, spol. s r.o.)
Fotopak (HKLM\...\{1B50488E-9DE1-471E-B370-8B5D9802E269}) (Version: 2.0.18.0 - FOTOPAK s.r.o.)
Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.38.7312 - FreeDownloadManager.ORG)
GemPcCCID (HKLM\...\{C2C14C20-A217-4FCA-B668-89B6C70B6EFF}) (Version: 2.0.7 - Gemalto)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HWiNFO64 Version 6.14 (HKLM\...\HWiNFO64_is1) (Version: 6.14 - Martin Malik - REALiX)
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Lenovo Diagnostics Tool (HKLM\...\{C7DB8EA5-C9C1-468F-B90C-CA206CA5C6BE}) (Version: 4.26.1 - Lenovo)
LibreOffice 6.4.3.2 (HKLM\...\{E95546E2-BAB2-4E42-97AB-BC7D497D405F}) (Version: 6.4.3.2 - The Document Foundation)
Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
Microsoft Azure Information Protection Viewer (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\{a8406147-34a4-4193-a552-ddf4fc68a707}) (Version: 1.54.59.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.61 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office 2016 Professional Plus (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\OneDriveSetup.exe) (Version: 19.012.0121.0011 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Teams) (Version: 1.3.00.13565 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 76.0 (x64 sk) (HKLM\...\Mozilla Firefox 76.0 (x64 sk)) (Version: 76.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0.2 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM-x32\...\{90160000-001F-0405-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM-x32\...\{90160000-001F-041B-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Office (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\ccb4df306c8d1bb267155a2207fb3946) (Version: 1.0 - Office)
OpenBoard (1.5.4.240) (HKLM-x32\...\{8CCA6AC7-BBF9-4DD2-8E70-A907E0FCA38F}}_is1) (Version: 1.5.4.240 - Open Education Foundation)
Opera Stable 68.0.3618.104 (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Opera 68.0.3618.104) (Version: 68.0.3618.104 - Opera Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.6.4.13 - Synaptics Incorporated)
ŠVS Proforient 2020.03 ZŠ (HKLM-x32\...\ŠVS Proforient ZŠ_is1) (Version: - Školské výpočtové stredisko Michalovce)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
Testovanie žiakov 2019.06 ZŠ (HKLM-x32\...\Testovanie žiakov ZŠ_is1) (Version: - Školské výpočtové stredisko Michalovce)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.7.0 - Unified Intents AB)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
version 5.13.415.31/1.0.0.27/3.4.5.11(H1C307WW) (HKLM-x32\...\{4AD4461B-8BD4-4354-805C-E97E7A404906}_is1) (Version: - Lenovo Group Limited)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WinCITY Registratúra - preinštalácia (HKLM-x32\...\WinCITY Registratúra - preinštalácia) (Version: V.2018.2 - TOPSET Solutions s.r.o.)
Ziacik v2.7 (HKLM-x32\...\Ziacik v2.7) (Version: - )
Zoom (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-18] (Dolby Laboratories)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-07-07] (Microsoft Corporation)
GeoGebra Geometrie -> C:\Program Files\WindowsApps\18FD273D.GeoGebraGeometry_6.0.562.0_neutral__1f5eszzrqmqpy [2019-10-21] (Internationales GeoGebra Institut)
GeoGebra grafický kalkulátor -> C:\Program Files\WindowsApps\18FD273D.GeoGebraGraphingCalculator_6.0.573.0_neutral__1f5eszzrqmqpy [2020-02-13] (Internationales GeoGebra Institut)
GeoGebra Klasik -> C:\Program Files\WindowsApps\18FD273D.GeoGebra_6.0.562.0_neutral__1f5eszzrqmqpy [2019-10-21] (Internationales GeoGebra Institut)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-05] (Instagram)
Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_18.7.500.0_x64__4n2hpmxwrvr6p [2020-05-24] (XBMC Foundation)
Messenger (Beta) -> C:\Program Files\WindowsApps\Facebook.FacebookMessenger_600.1.119.0_x64__8xx8rvfyw5nnt [2020-07-10] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-04] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.10615.5289.0_x64__8wekyb3d8bbwe [2020-07-01] (Microsoft Corporation)
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c [2020-06-27] (Skype) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\zembe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\zembe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Office.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=ocdlmjhbenodhlknglojajgokahchlkk
ShortcutWithArgument: C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Mapy Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jofhmakmcmhjkgbkaknehpglphepfmii
==================== Loaded Modules (Whitelisted) =============
2019-03-13 22:23 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2019-03-13 22:24 - 2018-01-18 15:39 - 000519168 _____ () [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2019-03-13 22:24 - 2017-12-22 12:53 - 000180224 _____ () [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2019-03-13 22:25 - 2018-01-18 15:39 - 000208896 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2019-03-13 22:25 - 2018-01-18 15:39 - 001720832 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2019-03-13 22:24 - 2017-11-07 19:55 - 000137728 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2019-03-13 22:24 - 2017-08-18 11:23 - 000087552 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2019-03-13 22:24 - 2017-08-18 11:23 - 017974784 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2019-03-13 22:24 - 2017-11-07 20:04 - 000090624 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLSvk.dll
2019-04-13 15:41 - 2017-11-07 19:55 - 000440832 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\Track.dll
2018-03-19 14:12 - 2018-03-19 14:12 - 000113678 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libgcc_s_dw2-1.dll
2018-03-19 14:12 - 2018-03-19 14:12 - 001542158 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libstdc++-6.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_ctypes.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_elementtree.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_hashlib.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_multiprocessing.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_psutil_windows.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_socket.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_ssl.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_yappi.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\bz2.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\common.time34.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\hashobjs_ext.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\PIL._imaging.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\pyexpat.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\pysqlite2._sqlite.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\pythoncom27.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\pywintypes27.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\select.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\thumbnails_ext.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\unicodedata.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\usb_ext.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32api.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32com.shell.shell.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32crypt.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32event.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32file.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32gui.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32inet.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32pdh.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32pipe.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32process.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32profile.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32security.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32ts.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\windows.conditional.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\windows.connectivity.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\windows.device_monitor.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\windows.volumes.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\windows.winwrap.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._controls_.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._core_.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._gdi_.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._html2.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._misc_.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._windows_.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_ctypes.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_elementtree.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_hashlib.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_multiprocessing.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_psutil_windows.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_socket.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_ssl.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_yappi.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\bz2.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\common.time34.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\hashobjs_ext.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\PIL._imaging.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\pyexpat.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\pysqlite2._sqlite.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\pythoncom27.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\pywintypes27.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\select.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\thumbnails_ext.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\unicodedata.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\usb_ext.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32api.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32com.shell.shell.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32crypt.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32event.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32file.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32gui.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32inet.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32pdh.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32pipe.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32process.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32profile.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32security.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32ts.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\windows.conditional.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\windows.connectivity.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\windows.device_monitor.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\windows.volumes.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\windows.winwrap.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._controls_.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._core_.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._gdi_.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._html2.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._misc_.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._windows_.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_ctypes.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_elementtree.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_hashlib.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_multiprocessing.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_psutil_windows.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_socket.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_ssl.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_yappi.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\bz2.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\common.time34.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\hashobjs_ext.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\PIL._imaging.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\pyexpat.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\pysqlite2._sqlite.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\pythoncom27.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\pywintypes27.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\select.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\thumbnails_ext.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\unicodedata.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\usb_ext.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32api.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32com.shell.shell.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32crypt.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32event.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32file.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32gui.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32inet.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32pdh.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32pipe.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32process.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32profile.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32security.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32ts.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\windows.conditional.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\windows.connectivity.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\windows.device_monitor.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\windows.volumes.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\windows.winwrap.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._controls_.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._core_.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._gdi_.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._html2.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._misc_.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._windows_.pyd
2019-03-13 22:24 - 2015-12-01 09:22 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2019-03-13 22:24 - 2015-12-01 09:22 - 000087040 _____ (Brother Industries, Ltd.) [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2019-03-13 20:34 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2018-03-19 14:12 - 2018-03-19 14:12 - 000047104 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libwinpthread-1.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\python27.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\python27.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\python27.dll
2019-09-09 21:02 - 2016-10-10 06:27 - 000556544 _____ (Soft Service Company) [File not signed] C:\Program Files (x86)\Unified Remote 3\wcl.dll
2019-09-09 21:02 - 2016-09-23 15:08 - 001283584 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\LIBEAY32MD.dll
2019-09-09 21:02 - 2016-09-23 15:08 - 000255488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\SSLEAY32MD.dll
2019-07-01 13:51 - 2019-07-01 13:51 - 006623384 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\Qt5Core.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxbase30u_net_vc90_x64.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxbase30u_vc90_x64.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxmsw30u_adv_vc90_x64.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxmsw30u_core_vc90_x64.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxmsw30u_html_vc90_x64.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxmsw30u_webview_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxbase30u_net_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxbase30u_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxmsw30u_adv_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxmsw30u_core_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxmsw30u_html_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxmsw30u_webview_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxbase30u_net_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxbase30u_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxmsw30u_adv_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxmsw30u_core_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxmsw30u_html_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\sharepoint.com -> hxxps://edusk-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.1.1 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "SMART Board Service"
HKLM\...\StartupApproved\Run32: => "SMART Ink"
HKLM\...\StartupApproved\Run32: => "SMART Tray Tools"
HKLM\...\StartupApproved\Run32: => "SMARTNotification"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_8375AD1315402FA46ABD1F971EFE392F"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{1347B276-4615-4DB9-B7D3-40326D83A9DA}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{76582B40-E804-4799-B920-78DB160D7055}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B9C2BF5A-0218-4445-9EE2-60A44E84AB8F}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{0520E1F2-0803-40DD-A0F8-92BF94DDF8C7}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{DDF85FB7-0D01-410B-949C-B922E8B81672}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{98BD30E6-70A5-4CCA-8D47-8F58A1C322D6}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{7B3A91E7-9F64-468C-A90F-6486A0CB7771}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B46B3DCB-9C5A-4F65-8CD7-27CB79FAB7B2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{65782CEB-AD1E-420F-80DA-60EDF8B6B14E}] => (Allow) C:\SVS_Proforient ZS\opppt.exe () [File not signed]
FirewallRules: [{32335E0C-33D3-4048-9FDD-13E6E2C1DFA5}] => (Allow) C:\SVS_Proforient ZS\opppt.exe () [File not signed]
FirewallRules: [TCP Query User{ADDCE602-3102-4716-9300-9BF5E1F5FD81}C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{D4231660-7158-4672-BEBE-46D9FC053BA5}C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [TCP Query User{E921BA23-2840-41EC-8D6F-2D00E0A5AE2D}C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{17D4653C-E23D-447D-86B9-E16901962160}C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [{9F92766C-11D4-4C6B-8672-20A7845C3EC8}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1CEEB159-1E5B-4E98-B443-A7A2873966A3}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1DEABCCA-D9E8-47FC-AF01-BCE1FFD942E7}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{815FABFB-0670-499C-A1F9-6C0E0FD15D36}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AC13C5F3-27CE-49FD-8C60-0A54ACA0A508}] => (Allow) C:\Users\zembe\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1C8ADB29-D151-451A-9F85-67732B9BC822}] => (Allow) C:\Users\zembe\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{04D5D9B3-7E1F-4965-84E2-97CEFEDFA6D4}C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D560E3D1-32EC-466E-BA73-62F08826A5B5}C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9C54C989-BDC5-4E03-9B5E-0B739EE03E00}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => No File
FirewallRules: [{4D84F1F6-B6E6-415F-B0E1-B53E7A5C7782}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => No File
FirewallRules: [{69636EAA-2AC2-4BEA-9CB4-9D68D544CD02}] => (Allow) C:\SVS_Proforient ZS\oppp.exe (MICHALOVCE) [File not signed]
FirewallRules: [{629CF4F8-43D2-464F-9004-1F3F30CF4113}] => (Allow) C:\SVS_Proforient ZS\oppp.exe (MICHALOVCE) [File not signed]
FirewallRules: [{32D58F6C-3B2C-49BC-B3E6-E3783D006641}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FE23DCD1-E9CC-4904-96A7-AC6995E29650}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{13CFD1C7-D128-451D-B1AD-19AF8C867A03}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4B5C2740-133C-42DB-899C-209A9D70DF90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F48EF430-CA43-4118-B8B9-AAF63DAEEED3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
22-06-2020 16:18:17 Nainštalované Fotopak
30-06-2020 17:42:53 Scheduled Checkpoint
13-07-2020 16:04:39 AdwCleaner_BeforeCleaning_13/07/2020_16:04:38
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/13/2020 04:48:43 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8620,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/13/2020 04:34:22 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3856,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/13/2020 04:06:52 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (07/13/2020 04:06:52 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (07/13/2020 04:06:51 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (07/13/2020 04:06:51 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (07/13/2020 10:55:50 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (33680,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 09:43:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (49552,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (07/13/2020 04:44:42 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/13/2020 04:27:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80073d02: 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (07/13/2020 04:19:58 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/13/2020 04:15:14 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/13/2020 04:06:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (07/13/2020 04:06:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba System Update sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (07/13/2020 04:06:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba RemoteServerWin sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (07/13/2020 04:06:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 0 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
CodeIntegrity:
===================================
Date: 2020-07-13 16:13:05.008
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-07-13 16:13:05.001
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-07-13 16:13:04.992
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 16:13:04.977
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-07-13 16:13:04.969
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-07-13 16:13:04.961
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 16:13:04.944
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-07-13 16:13:04.937
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: LENOVO H9ET81WW(1.18) 12/05/2013
Motherboard: LENOVO 20206
Processor: Intel(R) Celeron(R) CPU 1005M @ 1.90GHz
Percentage of memory in use: 82%
Total physical RAM: 6736.54 MB
Available physical RAM: 1205.52 MB
Total Virtual: 10576.54 MB
Available Virtual: 3074.98 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:194.73 GB) (Free:110.52 GB) NTFS
Drive d: (DATA) (Fixed) (Total:269.91 GB) (Free:120.75 GB) NTFS
Drive e: () (Removable) (Total:0.95 GB) (Free:0.14 GB) FAT
\\?\Volume{c7125d87-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{c7125d87-0000-0000-0000-40d130000000}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C7125D87)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=194.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=593 MB) - (Type=27)
Partition 4: (Not Active) - (Size=269.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Size: 968.8 MB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.
==================== End of Addition.txt =======================
Ran by zember (administrator) on LENOVOB590 (LENOVO 20206) (13-07-2020 17:14:40)
Running from C:\Users\zembe\Desktop
Loaded Profiles: zember
Platform: Windows 10 Home Version 1909 18363.900 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AlcorMicro, Corp. -> Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Disig a.s. -> Disig a.s.) C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe
(DITEC, a.s. -> ) C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <40>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_57c0cedf358ad293\driver\tphkload.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCE7C~1.INF\driver\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCE7C~1.INF\driver\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNCE7C~1.INF\driver\tposd.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\zembe\AppData\Local\Microsoft\Teams\current\Teams.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(uTorrent.CZ -> BitTorrent, Inc.) [File not signed] C:\Users\zembe\AppData\Roaming\uTorrent\utorrent.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2985712 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [179536 2019-10-31] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2013-07-12] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\zembe\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [uTorrent] => C:\Users\zembe\AppData\Roaming\uTorrent\utorrent.exe [414656 2018-10-25] (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\zembe\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48594832 2020-06-15] (Google LLC -> )
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-17] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [Opera Browser Assistant] => C:\Users\zembe\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3004440 2020-05-13] (Opera Software AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Web Signer.lnk [2019-07-24]
ShortcutTarget: Web Signer.lnk -> C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe (Disig a.s. -> Disig a.s.)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0927A769-2CFF-49B6-AE43-4D4C6EE92853} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-12] (Adobe Inc. -> Adobe)
Task: {1288CE4C-2485-4330-8800-66BFF8A60410} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {256A2A53-2C28-4D49-904C-5F8D8113F302} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {27A1ECD5-7F3D-43C2-BB8F-26E2D256C829} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe
Task: {31B3E1D0-7273-43A3-8A1B-258899A3B9C5} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {400CE9EC-5367-4C80-84D6-56AAD4032ADF} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2985712 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {467A1818-5F1D-4FA2-BD5E-A4897D5E9B21} - System32\Tasks\update-S-1-5-21-1540107938-3102307928-580545200-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {46C8E21E-971A-48CE-A762-E5B093E0EF48} - System32\Tasks\AdwCleaner_onReboot => C:\Users\zembe\Desktop\adwcleaner_8.0.6.exe [8420016 2020-07-13] (Malwarebytes Inc -> Malwarebytes)
Task: {47073ECB-03AF-402C-8CB9-98920B1EBDC2} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {50300EC7-8741-4A2D-BFBC-938AD294242A} - System32\Tasks\Opera scheduled Autoupdate 1562361389 => C:\Users\zembe\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-13] (Opera Software AS -> Opera Software)
Task: {57F198EA-06F7-4C9C-9541-08560709BBEA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A4EB032-09CD-4EA5-BC62-048AB2F09E0D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {6C005699-4DC7-45B8-B08D-81211C2E4110} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [688128 2019-01-30] (FreeDownloadManager.org) [File not signed]
Task: {724CCF86-624D-43AD-892E-7C3903A593E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-17] (Piriform Software Ltd -> Piriform Ltd)
Task: {73E68DB1-F831-4D1D-9572-119E957089EF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {B2E3F344-94FE-4850-8BEC-411E5FF3025E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
Task: {B9BD8D84-6F91-40A5-B6B8-E9E67D11C3A9} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
Task: {C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {CF1038A7-318D-4633-931A-4ABBB598CBB4} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [851800 2018-12-26] (Lenovo -> Lenovo.)
Task: {D7253912-0F5F-4895-A95B-5ACB56F194BD} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1540107938-3102307928-580545200-1001 => C:\Users\zembe\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe
Task: {E018D74D-2107-4BB9-A14D-C744B74702D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {F00D895E-E643-4914-9946-BF3EB9072691} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F589A27C-2F20-485F-BCF1-CC7742DF56E7} - System32\Tasks\Opera scheduled assistant Autoupdate 1582730253 => C:\Users\zembe\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-13] (Opera Software AS -> Opera Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-1540107938-3102307928-580545200-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{9535daab-06d5-4de2-bb28-e62b8c6eb29a}: [NameServer] 192.168.1.1,8.8.4.4
Tcpip\..\Interfaces\{9535daab-06d5-4de2-bb28-e62b8c6eb29a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{957a2ed0-2633-4a85-afcc-279840f892d8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b1fa505a-2c3f-4e7f-a8ca-f0ebd47b5f39}: [DhcpNameServer] 10.10.10.1
Internet Explorer:
==================
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\zembe\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-13]
Edge Notifications: Default -> hxxps://teams.microsoft.com; hxxps://www.youtube.com
Edge HomePage: Default -> chrome://apps/
Edge DefaultSearchURL: Default -> hxxps://blobs.officehome.msocdn.com/versionless/webmanifestimages/OfficeDesktop_192.png
Edge Session Restore: Default -> is enabled.
Edge Extension: (Office) - C:\Users\zembe\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2020-04-15]
FireFox:
========
FF DefaultProfile: e1mgl8rl.default
FF ProfilePath: C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default [2020-07-12]
FF Notifications: Mozilla\Firefox\Profiles\e1mgl8rl.default -> hxxps://www.facebook.com
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\sp@avast.com.xpi [2020-05-06]
FF Extension: (LastPass: Free Password Manager) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\support@lastpass.com.xpi [2020-05-06]
FF Extension: (Avast Online Security) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\wrc@avast.com.xpi [2020-05-06]
FF Extension: (Video DownloadHelper) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-04-07]
FF Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\{ddc62400-f22d-4dd3-8b4a-05837de53c2e}.xpi [2020-05-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~1.DLL [2019-03-06] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\PROGRA~2\Ditec\DViewer\NPDITE~1.DLL [2020-03-18] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~2.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~3.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~1.DLL [2020-03-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~2.DLL [2020-03-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin HKU\S-1-5-21-1540107938-3102307928-580545200-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\zembe\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-03] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-07-13]
Chrome:
=======
CHR Profile: C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default [2020-07-13]
CHR Notifications: Default -> hxxps://dennikn.sk; hxxps://isport.blesk.cz; hxxps://live.ifortuna.sk; hxxps://meet.google.com; hxxps://mnamky-recepty.webnoviny.sk; hxxps://naszosie.pl; hxxps://promuze.blesk.cz; hxxps://road.cc; hxxps://sk.mall.tv; hxxps://sport.aktuality.sk; hxxps://sport.pravda.sk; hxxps://sportowefakty.wp.pl; hxxps://strategie-hnonline.os.tc; hxxps://teams.microsoft.com; hxxps://vzdelavame.os.tc; hxxps://www.apkonline.net; hxxps://www.blesk.cz; hxxps://www.chess.com; hxxps://www.dreamstime.com; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.joj.sk; hxxps://www.letour.fr; hxxps://www.sport.cz; hxxps://www.svetandroida.cz; hxxps://www.ta3.com; hxxps://www.topky.sk; hxxps://www.tyzden.sk; hxxps://www.youtube.com
CHR HomePage: Default -> chrome://apps/
CHR StartupUrls: Default -> "hxxps://imo.im/new/","hxxps://mail.google.com/mail/u/0/#all","hxxp://www.gmail.com/","file:///usr/share/doc/ ... google.sk/"
CHR DefaultSearchURL: Default -> hxxp://www.zive.cz/Client.Images/favicon.ico
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prekladač Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-19]
CHR Extension: (Prezentácie) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-13]
CHR Extension: (Dokumenty) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-13]
CHR Extension: (Disk Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-13]
CHR Extension: (YouTube) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-13]
CHR Extension: (Facebook) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2019-03-13]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-07-03]
CHR Extension: (Screen capture, screenshot share/save) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjbjepchlgclmpinlbbeinajphohgfod [2019-03-13]
CHR Extension: (Týden Živě: Microsoft vypne svůj nejz...) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnblcnmjaaakjjebecpefncfajnpebgk [2020-07-13]
CHR Extension: (TeX equation editor) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggdddnmjoomglnkjhcpcnjbieiojini [2019-03-13]
CHR Extension: (Tabuľky) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-13]
CHR Extension: (Star Atlas) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gheikhdfflhlbemfmhcfpeblehemeklp [2019-03-13]
CHR Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdhinadidafjejdhmfkjgnolgimiaplp [2020-07-04]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2020-07-03]
CHR Extension: (Picture-in-Picture Extension (by Google)) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgfoiooedgoejojocmhlaklaeopbecg [2020-04-01]
CHR Extension: (Music Player for Google Drive) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfeekfpnjbdmelcapngdgkjnhgijjkh [2019-03-13]
CHR Extension: (Pixlr Editor) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2019-03-13]
CHR Extension: (Audio Joiner) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihiafjkopgiakbmihgoieodihjcblfbk [2019-03-13]
CHR Extension: (Imagus) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\immpkjjlgappgfkkfieppnmlhakdmaab [2020-04-17]
CHR Extension: (Twitter) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi [2020-04-20]
CHR Extension: (Mapy Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jofhmakmcmhjkgbkaknehpglphepfmii [2020-02-16]
CHR Extension: (ShiftEdit) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcgmndephhjcabhhjfcmncnhbmgbkpij [2019-03-13]
CHR Extension: (Webcam Toy) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2019-03-13]
CHR Extension: (Mapy Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-03-13]
CHR Extension: (Žive.sk) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfkdibdekaipckjaaeaklehcmngjhiah [2020-04-19]
CHR Extension: (Merge PDF - Split PDF - Sejda.com) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhcknfplofcnpdjalbhnjognbpncojbi [2019-03-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Office) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2020-05-10]
CHR Extension: (Disig Web Signer 1.0.7) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbdbcaekkgabdfaabepfjgiooilmaoe [2019-07-24]
CHR Extension: (Outlook.com) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2019-03-13]
CHR Extension: (Gmail) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-31]
CHR HKU\S-1-5-21-1540107938-3102307928-580545200-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [odbdbcaekkgabdfaabepfjgiooilmaoe]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [File not signed]
R2 dLauncherLoopback; C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe [154960 2019-08-02] (DITEC, a.s. -> )
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55424 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892760 2018-12-26] (Lenovo -> Lenovo.)
R2 RemoteServerWin; C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3186264 2019-08-04] (Unified Intents AB -> Unified Intents AB)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_57c0cedf358ad293\driver\TPHKLOAD.exe [425352 2019-01-17] (Lenovo -> Lenovo Group Limited)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SUService; "C:\Program Files (x86)\Lenovo\System Update\SUService.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-12] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [149944 2019-10-31] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186832 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [77176 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [114640 2019-10-31] (ESET, spol. s r.o. -> ESET)
S3 fiddrv64; no ImagePath
S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2019-03-19] (Microsoft Windows -> MediaTek Inc.)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [44160 2018-12-26] (Lenovo -> Lenovo.)
S3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [18952 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33008 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2019-08-04] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [1049984 2013-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-13 16:06 - 2020-07-13 16:06 - 000003170 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot
2020-07-13 16:00 - 2020-07-13 16:06 - 000000000 ____D C:\AdwCleaner
2020-07-13 15:57 - 2020-07-13 15:58 - 008420016 _____ (Malwarebytes) C:\Users\zembe\Desktop\adwcleaner_8.0.6.exe
2020-07-13 15:54 - 2020-07-13 15:54 - 000031250 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E10_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-07-13 11:18 - 2020-07-13 11:18 - 000293375 _____ C:\Users\zembe\Downloads\16608.zip
2020-07-13 11:14 - 2020-07-13 11:18 - 000056691 _____ C:\Users\zembe\Desktop\Addition.txt
2020-07-13 11:04 - 2020-07-13 17:18 - 000030158 _____ C:\Users\zembe\Desktop\FRST.txt
2020-07-13 10:57 - 2020-07-13 17:16 - 000000000 ____D C:\FRST
2020-07-13 10:56 - 2020-07-13 10:55 - 002292736 _____ (Farbar) C:\Users\zembe\Desktop\FRST64.exe
2020-07-13 10:55 - 2020-07-13 10:55 - 002292736 _____ (Farbar) C:\Users\zembe\Downloads\FRST64.exe
2020-07-12 16:29 - 2020-07-12 16:49 - 000000000 ____D C:\Users\zembe\Desktop\fotky na stranku
2020-07-10 10:02 - 2020-07-10 10:02 - 000513238 _____ C:\Users\zembe\Downloads\5220182232.pdf
2020-07-08 15:41 - 2020-07-08 15:41 - 000185770 _____ C:\Users\zembe\Downloads\VM_ucitel pre nizsie stred_vzdel MAT v ZSsMS Nitrianska Blatnica.pdf
2020-07-08 15:41 - 2020-07-08 15:41 - 000184262 _____ C:\Users\zembe\Downloads\VM_ucitel pre primarne vzdelavanie v ZSsMS Nitrianska Blatnica.pdf
2020-07-08 15:39 - 2020-07-08 15:39 - 000194486 _____ C:\Users\zembe\Downloads\VM_ucitel_1_stupen_ZS_Tribecska_22_Topolcany.pdf
2020-07-08 15:39 - 2020-07-08 15:39 - 000189182 _____ C:\Users\zembe\Downloads\VM_vychovavatel v SKD v SSI_Tovarnicka 1632_Topolcany.pdf
2020-07-08 15:38 - 2020-07-08 15:38 - 000174549 _____ C:\Users\zembe\Downloads\VM_ZS_Scasneho 22_Nitra-ucitelka pre II_stupen ZS aprobacia MAT.pdf
2020-07-08 15:37 - 2020-07-08 15:37 - 000209385 _____ C:\Users\zembe\Downloads\VM_ZS_Hajske_ucitelka pre nizsie stredne vzdelavanie aprobacia bio_fyz_chem.pdf
2020-07-08 15:37 - 2020-07-08 15:37 - 000205922 _____ C:\Users\zembe\Downloads\VM_ZS_Ucitel pre primarne vzdelavanie.pdf
2020-07-07 16:20 - 2020-07-07 16:21 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (8)
2020-07-07 16:20 - 2020-07-07 16:20 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (7)
2020-07-07 16:19 - 2020-07-07 16:19 - 000024471 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E09_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-07-06 22:07 - 2020-07-06 22:07 - 000121899 _____ C:\Users\zembe\Downloads\V_1152339016_6_20200630_C1_P0.pdf
2020-07-06 18:05 - 2020-07-06 18:05 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (6)
2020-07-06 18:05 - 2020-07-06 18:05 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (5)
2020-07-06 16:35 - 2020-07-06 16:35 - 000446066 _____ C:\Users\zembe\Downloads\faktury 30.06.2020.pdf
2020-07-05 14:23 - 2020-07-05 14:23 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (4)
2020-07-05 14:22 - 2020-07-05 14:22 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (3)
2020-07-02 23:24 - 2020-07-02 23:24 - 000183597 _____ C:\Users\zembe\Downloads\VM_ucitel MAT v ZS Skultetyho 1 Nitra.pdf
2020-07-01 21:27 - 2020-07-01 21:27 - 000020941 _____ C:\Users\zembe\Downloads\[CzT]Avengers_Age_of_Ultron_2015_CZ_.torrent
2020-06-30 16:29 - 2020-06-30 16:29 - 000016505 _____ C:\Users\zembe\Downloads\ZS_SP_100005121 (1).xlsx
2020-06-30 16:25 - 2020-06-30 16:25 - 000016720 _____ C:\Users\zembe\Downloads\dochádzka excel.xlsx
2020-06-30 16:22 - 2020-06-30 16:22 - 000017152 _____ C:\Users\zembe\Downloads\dochádzka 1.A (1).xlsx
2020-06-30 16:12 - 2020-06-30 16:12 - 000016895 _____ C:\Users\zembe\Downloads\Sociálna poisťovňa.xlsx
2020-06-30 16:12 - 2020-06-30 16:12 - 000016695 _____ C:\Users\zembe\Downloads\Tabulka pre SP 4.A.xlsx
2020-06-30 16:11 - 2020-06-30 16:12 - 000016560 _____ C:\Users\zembe\Downloads\ZS_SP_100005121.xlsx
2020-06-29 16:47 - 2020-06-29 16:47 - 000016795 _____ C:\Users\zembe\Downloads\dochádzka 1.A.xlsx
2020-06-29 16:19 - 2020-06-29 16:19 - 000027450 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E08_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-29 16:18 - 2020-06-29 16:18 - 000029217 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_S02E10_TvRip_1080p_.torrent
2020-06-29 14:37 - 2020-06-29 14:37 - 000442530 _____ C:\Users\zembe\Downloads\HNN182223447.pdf
2020-06-29 12:28 - 2020-06-29 12:28 - 000045502 _____ C:\Users\zembe\Downloads\22b12142f3dbcda5.xls
2020-06-28 21:02 - 2020-07-01 13:33 - 000000000 ____D C:\Users\zembe\Desktop\Rada školy
2020-06-28 21:00 - 2020-06-28 21:05 - 000000000 ____D C:\Users\zembe\Desktop\Materiály na odovzdanie ku koncu šk. roka 2019-2020
2020-06-28 13:49 - 2020-06-28 13:49 - 007209564 _____ C:\Users\zembe\Downloads\Fyzika pre 6. ročník ZŠ a 1. ročník gymnázií s osemročným štúdiom.pdf
2020-06-27 21:12 - 2020-06-27 21:12 - 000028243 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E07_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-27 21:12 - 2020-06-27 21:12 - 000014681 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E09_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-26 14:55 - 2020-06-26 15:25 - 000547114 _____ C:\Users\zembe\Downloads\Zápisný lístok - školské obedy.pdf
2020-06-26 14:18 - 2020-06-26 14:18 - 000123067 _____ C:\Users\zembe\Downloads\Zápisný lístok ZŠ 2020-21.pdf
2020-06-24 20:05 - 2020-06-24 20:05 - 000225455 _____ C:\Users\zembe\Downloads\preberanie funkcie.pdf
2020-06-24 19:54 - 2020-06-24 19:54 - 000321405 _____ C:\Users\zembe\Downloads\ševt - objednávka tlačivá - jún 2020.pdf
2020-06-24 19:12 - 2020-06-24 19:12 - 000026304 _____ C:\Users\zembe\Downloads\X5406021.dbf
2020-06-24 18:04 - 2020-06-24 18:50 - 000016596 _____ C:\Users\zembe\Downloads\deviataci zs_sp_100005121.xlsx
2020-06-23 16:44 - 2020-06-23 16:44 - 000175104 _____ C:\Users\zembe\Downloads\Počet AU od 1.9.2019 do 31.12.2019 (1).xls
2020-06-23 16:15 - 2020-06-23 16:15 - 000917439 _____ C:\Users\zembe\Downloads\15057.zip
2020-06-23 16:12 - 2020-06-23 16:12 - 000122503 _____ C:\Users\zembe\Downloads\16086.zip
2020-06-23 16:08 - 2020-06-23 16:08 - 000082250 _____ C:\Users\zembe\Downloads\Faktúra.pdf
2020-06-23 15:56 - 2020-06-23 15:56 - 000114013 _____ C:\Users\zembe\Downloads\Objednávka pre mš 2020-21_Sestava 1.pdf
2020-06-23 15:46 - 2020-06-23 15:46 - 000365547 _____ C:\Users\zembe\Downloads\objednavka tlaciv (1).pdf
2020-06-23 15:38 - 2020-06-23 15:38 - 000365547 _____ C:\Users\zembe\Downloads\objednavka tlaciv.pdf
2020-06-22 18:29 - 2020-06-22 18:37 - 224559784 _____ (The GIMP Team ) C:\Users\zembe\Downloads\gimp-2.10.20-setup-1.exe
2020-06-22 16:19 - 2020-06-22 16:19 - 000001186 _____ C:\Users\Public\Desktop\Fotopak.lnk
2020-06-22 16:19 - 2020-06-22 16:19 - 000001186 _____ C:\ProgramData\Desktop\Fotopak.lnk
2020-06-22 16:19 - 2020-06-22 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fotopak
2020-06-22 16:19 - 2020-06-22 16:19 - 000000000 ____D C:\Program Files (x86)\FOTOPAK s.r.o
2020-06-22 16:04 - 2020-06-22 16:04 - 001795000 _____ C:\Users\zembe\Downloads\orez3.pdf
2020-06-22 16:00 - 2020-06-22 16:00 - 001155084 _____ C:\Users\zembe\Downloads\orez2.pdf
2020-06-22 15:58 - 2020-06-22 15:59 - 000767180 _____ C:\Users\zembe\Downloads\orez1.pdf
2020-06-22 12:47 - 2020-06-22 12:47 - 000035929 _____ C:\Users\zembe\Downloads\ef09de9a7770d227.xls
2020-06-22 12:41 - 2020-06-22 12:41 - 000035929 _____ C:\Users\zembe\Downloads\dd5d589ebf9fec8a.xls
2020-06-21 16:43 - 2020-06-21 16:43 - 000071116 _____ C:\Users\zembe\Downloads\[CzT]Most_Bron_1_3_serie_CZ_TvRip_.torrent
2020-06-21 16:36 - 2020-06-21 16:36 - 000073544 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_1_serie_CZ_WebRip_720p_.torrent
2020-06-21 16:18 - 2020-06-21 16:18 - 000013937 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_S01E01_CZ_WebRip_720p_.torrent
2020-06-20 14:04 - 2020-06-20 14:04 - 000057344 _____ C:\Users\zembe\Downloads\VL OK MO Z5 Z9 ZS TO 2020 (2).xls
2020-06-19 16:49 - 2020-06-30 16:55 - 000017532 _____ C:\Users\zembe\Desktop\ZS_SP_100005121.xlsx
2020-06-19 16:37 - 2020-06-19 16:37 - 000009300 _____ C:\Users\zembe\Downloads\ZS_SP_100005121 (1).csv
2020-06-19 16:34 - 2020-06-19 16:34 - 000012898 _____ C:\Users\zembe\Downloads\Tabuľka pre SP.xlsx
2020-06-18 23:30 - 2020-06-18 23:30 - 000024854 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E06_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-18 14:16 - 2020-06-18 14:16 - 000282883 _____ C:\Users\zembe\Downloads\Test 4.pdf
2020-06-17 15:00 - 2020-06-17 15:00 - 000403591 _____ C:\Users\zembe\Downloads\Test 3.pdf
2020-06-17 14:03 - 2020-06-17 14:03 - 000008936 _____ C:\Users\zembe\Downloads\ZS_SP_100005121.csv
2020-06-16 13:38 - 2020-06-16 13:38 - 000224240 _____ C:\Users\zembe\Downloads\Test 2.pdf
2020-06-15 15:05 - 2020-06-15 15:05 - 000205185 _____ C:\Users\zembe\Downloads\Test 1.pdf
2020-06-15 13:40 - 2020-06-24 16:01 - 000000000 ____D C:\Users\zembe\Desktop\fotky kolaž deviataci
2020-06-14 23:14 - 2020-06-14 23:14 - 000288768 _____ C:\Users\zembe\Downloads\Rada skoly a vyberove konanie 4_2019 (3).ppt
2020-06-14 16:02 - 2020-06-14 16:02 - 000017161 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E08_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-14 16:02 - 2020-06-14 16:02 - 000012781 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E07_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-14 14:17 - 2020-06-14 14:18 - 000992969 _____ C:\Users\zembe\Downloads\Deviatacka štatistika (1).pptx
2020-06-14 14:15 - 2020-06-14 14:15 - 000992969 _____ C:\Users\zembe\Downloads\Deviatacka štatistika.pptx
2020-06-14 13:43 - 2020-06-14 13:43 - 000624921 _____ C:\Users\zembe\Downloads\Zo života zvierat.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-13 17:22 - 2019-04-22 13:57 - 000000000 ____D C:\Users\zembe\AppData\Roaming\uTorrent
2020-07-13 17:18 - 2019-03-13 21:05 - 000000000 ___HD C:\Users\zembe\Desktop\.tmp.drivedownload
2020-07-13 17:15 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-13 16:27 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-13 16:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-13 16:18 - 2019-06-23 22:02 - 000000000 ___RD C:\Users\zembe\Disk Google (fotky2.zsobdokovce@gmail.com)
2020-07-13 16:17 - 2019-03-13 21:02 - 000000000 ___RD C:\Users\zembe\Disk Google
2020-07-13 16:16 - 2019-08-30 00:56 - 001853932 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-13 16:16 - 2019-08-30 00:49 - 000707862 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-13 16:16 - 2019-08-30 00:49 - 000145112 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-13 16:16 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-13 16:16 - 2019-03-13 23:06 - 000145248 _____ C:\WINDOWS\system32\perfh01B.dat
2020-07-13 16:16 - 2019-03-13 23:06 - 000032280 _____ C:\WINDOWS\system32\perfc01B.dat
2020-07-13 16:09 - 2019-09-09 21:02 - 000000000 ____D C:\ProgramData\Unified Remote
2020-07-13 16:09 - 2019-08-30 00:31 - 000651072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-13 16:08 - 2019-08-30 01:09 - 000003700 _____ C:\WINDOWS\system32\Tasks\Lenovo Power Management Driver PnP Task
2020-07-13 16:08 - 2019-08-30 01:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-13 16:07 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-07-13 16:06 - 2020-05-05 09:59 - 000000000 ____D C:\Program Files (x86)\Lenovo
2020-07-13 16:06 - 2019-12-06 19:44 - 000000000 ____D C:\WINDOWS\system32\Lenovo
2020-07-13 16:06 - 2019-03-14 16:51 - 000000000 ____D C:\Program Files\Lenovo
2020-07-13 16:06 - 2019-03-13 20:09 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2020-07-13 12:50 - 2019-03-13 20:09 - 000000000 ____D C:\Users\zembe\AppData\Local\Packages
2020-07-12 16:35 - 2019-03-13 20:38 - 000000000 ____D C:\Users\zembe\AppData\LocalLow\Mozilla
2020-07-12 12:48 - 2020-01-16 00:03 - 000003574 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-12 12:48 - 2020-01-16 00:03 - 000003450 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-11 22:50 - 2019-03-13 20:20 - 000000000 ____D C:\Users\zembe\AppData\Roaming\vlc
2020-07-10 20:46 - 2019-08-30 00:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-09 09:43 - 2020-01-16 00:05 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-09 09:43 - 2020-01-16 00:05 - 000002265 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-07-09 09:43 - 2020-01-16 00:05 - 000002265 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-07-08 17:43 - 2019-08-30 01:09 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-08 17:43 - 2019-03-13 20:36 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-07-05 18:10 - 2019-03-13 23:50 - 000000000 ____D C:\Users\zembe\AppData\Local\CrashDumps
2020-07-05 18:01 - 2019-03-13 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-07-02 17:45 - 2019-05-06 16:54 - 000000643 _____ C:\Users\zembe\Desktop\aScAgenda.lnk
2020-07-01 14:07 - 2020-04-24 00:17 - 000000000 ____D C:\Users\zembe\Documents\Lightshot
2020-07-01 14:07 - 2019-03-13 21:30 - 000000000 ___HD C:\Users\zembe\Documents\.tmp.drivedownload
2020-06-29 22:21 - 2019-04-10 13:36 - 000000000 ____D C:\Users\zembe\AppData\Local\LenovoServiceBridge
2020-06-27 14:37 - 2019-09-26 22:02 - 000000000 ____D C:\SVS_Proforient ZS
2020-06-24 19:03 - 2019-09-26 22:01 - 000043867 _____ C:\Users\zembe\Downloads\export.csv
2020-06-22 20:32 - 2019-03-13 20:17 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-22 20:32 - 2019-03-13 20:17 - 000002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-06-22 20:32 - 2019-03-13 20:17 - 000002272 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-06-22 08:19 - 2019-08-30 01:09 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-06-21 23:51 - 2020-05-01 23:35 - 000000000 ____D C:\Program Files (x86)\SMART Technologies
2020-06-21 13:21 - 2020-05-01 23:36 - 000000000 ____D C:\ProgramData\SMART Technologies
2020-06-21 13:08 - 2019-03-13 20:35 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-06-21 12:49 - 2020-05-03 14:33 - 000000000 ____D C:\Users\zembe\AppData\Local\Deployment
2020-06-20 09:42 - 2019-12-11 19:46 - 000000000 ____D C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome
2020-06-18 10:16 - 2020-04-07 23:26 - 000000000 ____D C:\Users\zembe\AppData\Local\OpenBoard
2020-06-18 06:33 - 2019-03-13 20:15 - 000000000 ____D C:\Users\zembe\AppData\Local\PlaceholderTileLogoFolder
==================== Files in the root of some directories ========
2020-04-23 08:51 - 2020-04-23 08:51 - 000000003 _____ () C:\Users\zembe\AppData\Local\updater.log
2020-04-23 08:51 - 2020-04-23 08:51 - 000000424 _____ () C:\Users\zembe\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by zember (13-07-2020 17:22:24)
Running from C:\Users\zembe\Desktop
Windows 10 Home Version 1909 18363.900 (X64) (2019-08-29 23:10:30)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1540107938-3102307928-580545200-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1540107938-3102307928-580545200-503 - Limited - Disabled)
Guest (S-1-5-21-1540107938-3102307928-580545200-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1540107938-3102307928-580545200-504 - Limited - Disabled)
zember (S-1-5-21-1540107938-3102307928-580545200-1001 - Administrator - Enabled) => C:\Users\zembe
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.371 - Adobe)
Alcor Micro USB Card Reader (HKLM-x32\...\{AE63FFAC-B71A-4B73-BF9C-DB00C78BD9BD}) (Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.17.3042.73586 - Alcor Micro Corp.)
Alf (HKLM-x32\...\Alf) (Version: 3.4 - PcProfi s.r.o.)
aSc TimeTables (HKLM-x32\...\aScTimeTables) (Version: 2020 - aSc Applied Software Consultants s.r.o)
aScAgenda (HKLM-x32\...\ImageMaker) (Version: - )
Asistent pri aktualizácii na Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
Backup and Sync from Google (HKLM\...\{01D33BEA-673C-439C-A7C7-DE5B236DB842}) (Version: 3.50.3166.0017 - Google, Inc.)
Balík softvéru eID (HKLM-x32\...\{27fcb623-2a19-4570-ab03-96077bc85e1d}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Balík softvéru eID (HKLM-x32\...\{ada2b0d4-ff66-4697-86d1-676a81f20d74}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Bit4id - miniLector (HKLM-x32\...\Bit4id - miniLector) (Version: 3.7 - Bit4id)
Brother MFL-Pro Suite DCP-1610W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
D.Launcher (x86) (HKLM-x32\...\{BB9946A5-07FE-4CC5-8D74-BDF7594DAE62}) (Version: 1.2.0.2 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{7F16A5CF-C9B8-4A75-B11F-32DFDA997F92}) (Version: 4.0.20 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{DE521A09-F131-4B2C-B2FE-25EE3E451A9D}) (Version: 4.0.13 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{469b40e4-942f-4580-b185-4ea063723bb6}) (Version: 1.0.22 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{5B3EEED0-8E1D-47EA-8B20-66086AB09DBA}) (Version: 4.0.2029 - DITEC, a.s.)
Disig Web Signer 1.0.7 (HKLM-x32\...\{21859B7E-5E38-4892-A480-FA8B180ADE72}) (Version: 1.1.8 - Disig)
DLL knižnice (HKLM-x32\...\DLL knižnice_is1) (Version: - Školské výpočtové stredisko Michalovce)
EAC MW klient (HKLM-x32\...\{92879DFD-B281-447B-AC54-ED065B0BBB17}) (Version: 3.3.0 - Ministerstvo vnútra Slovenskej republiky)
ESET Endpoint Security (HKLM\...\{96402769-F07F-4636-9D99-E2782BA22484}) (Version: 7.2.2055.0 - ESET, spol. s r.o.)
Fotopak (HKLM\...\{1B50488E-9DE1-471E-B370-8B5D9802E269}) (Version: 2.0.18.0 - FOTOPAK s.r.o.)
Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.38.7312 - FreeDownloadManager.ORG)
GemPcCCID (HKLM\...\{C2C14C20-A217-4FCA-B668-89B6C70B6EFF}) (Version: 2.0.7 - Gemalto)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HWiNFO64 Version 6.14 (HKLM\...\HWiNFO64_is1) (Version: 6.14 - Martin Malik - REALiX)
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Lenovo Diagnostics Tool (HKLM\...\{C7DB8EA5-C9C1-468F-B90C-CA206CA5C6BE}) (Version: 4.26.1 - Lenovo)
LibreOffice 6.4.3.2 (HKLM\...\{E95546E2-BAB2-4E42-97AB-BC7D497D405F}) (Version: 6.4.3.2 - The Document Foundation)
Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
Microsoft Azure Information Protection Viewer (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\{a8406147-34a4-4193-a552-ddf4fc68a707}) (Version: 1.54.59.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.61 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office 2016 Professional Plus (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\OneDriveSetup.exe) (Version: 19.012.0121.0011 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Teams) (Version: 1.3.00.13565 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 76.0 (x64 sk) (HKLM\...\Mozilla Firefox 76.0 (x64 sk)) (Version: 76.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0.2 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM-x32\...\{90160000-001F-0405-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM-x32\...\{90160000-001F-041B-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Office (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\ccb4df306c8d1bb267155a2207fb3946) (Version: 1.0 - Office)
OpenBoard (1.5.4.240) (HKLM-x32\...\{8CCA6AC7-BBF9-4DD2-8E70-A907E0FCA38F}}_is1) (Version: 1.5.4.240 - Open Education Foundation)
Opera Stable 68.0.3618.104 (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Opera 68.0.3618.104) (Version: 68.0.3618.104 - Opera Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.6.4.13 - Synaptics Incorporated)
ŠVS Proforient 2020.03 ZŠ (HKLM-x32\...\ŠVS Proforient ZŠ_is1) (Version: - Školské výpočtové stredisko Michalovce)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
Testovanie žiakov 2019.06 ZŠ (HKLM-x32\...\Testovanie žiakov ZŠ_is1) (Version: - Školské výpočtové stredisko Michalovce)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.7.0 - Unified Intents AB)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
version 5.13.415.31/1.0.0.27/3.4.5.11(H1C307WW) (HKLM-x32\...\{4AD4461B-8BD4-4354-805C-E97E7A404906}_is1) (Version: - Lenovo Group Limited)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WinCITY Registratúra - preinštalácia (HKLM-x32\...\WinCITY Registratúra - preinštalácia) (Version: V.2018.2 - TOPSET Solutions s.r.o.)
Ziacik v2.7 (HKLM-x32\...\Ziacik v2.7) (Version: - )
Zoom (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-18] (Dolby Laboratories)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-07-07] (Microsoft Corporation)
GeoGebra Geometrie -> C:\Program Files\WindowsApps\18FD273D.GeoGebraGeometry_6.0.562.0_neutral__1f5eszzrqmqpy [2019-10-21] (Internationales GeoGebra Institut)
GeoGebra grafický kalkulátor -> C:\Program Files\WindowsApps\18FD273D.GeoGebraGraphingCalculator_6.0.573.0_neutral__1f5eszzrqmqpy [2020-02-13] (Internationales GeoGebra Institut)
GeoGebra Klasik -> C:\Program Files\WindowsApps\18FD273D.GeoGebra_6.0.562.0_neutral__1f5eszzrqmqpy [2019-10-21] (Internationales GeoGebra Institut)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-05] (Instagram)
Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_18.7.500.0_x64__4n2hpmxwrvr6p [2020-05-24] (XBMC Foundation)
Messenger (Beta) -> C:\Program Files\WindowsApps\Facebook.FacebookMessenger_600.1.119.0_x64__8xx8rvfyw5nnt [2020-07-10] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-04] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.10615.5289.0_x64__8wekyb3d8bbwe [2020-07-01] (Microsoft Corporation)
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c [2020-06-27] (Skype) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\zembe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\zembe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Office.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=ocdlmjhbenodhlknglojajgokahchlkk
ShortcutWithArgument: C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Mapy Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jofhmakmcmhjkgbkaknehpglphepfmii
==================== Loaded Modules (Whitelisted) =============
2019-03-13 22:23 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2019-03-13 22:24 - 2018-01-18 15:39 - 000519168 _____ () [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2019-03-13 22:24 - 2017-12-22 12:53 - 000180224 _____ () [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2019-03-13 22:25 - 2018-01-18 15:39 - 000208896 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2019-03-13 22:25 - 2018-01-18 15:39 - 001720832 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2019-03-13 22:24 - 2017-11-07 19:55 - 000137728 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2019-03-13 22:24 - 2017-08-18 11:23 - 000087552 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2019-03-13 22:24 - 2017-08-18 11:23 - 017974784 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2019-03-13 22:24 - 2017-11-07 20:04 - 000090624 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLSvk.dll
2019-04-13 15:41 - 2017-11-07 19:55 - 000440832 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\Track.dll
2018-03-19 14:12 - 2018-03-19 14:12 - 000113678 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libgcc_s_dw2-1.dll
2018-03-19 14:12 - 2018-03-19 14:12 - 001542158 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libstdc++-6.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_ctypes.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_elementtree.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_hashlib.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_multiprocessing.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_psutil_windows.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_socket.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_ssl.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\_yappi.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\bz2.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\common.time34.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\hashobjs_ext.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\PIL._imaging.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\pyexpat.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\pysqlite2._sqlite.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\pythoncom27.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\pywintypes27.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\select.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\thumbnails_ext.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\unicodedata.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\usb_ext.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32api.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32com.shell.shell.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32crypt.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32event.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32file.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32gui.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32inet.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32pdh.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32pipe.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32process.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32profile.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32security.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\win32ts.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\windows.conditional.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\windows.connectivity.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\windows.device_monitor.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\windows.volumes.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\windows.winwrap.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._controls_.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._core_.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._gdi_.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._html2.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._misc_.pyd
2020-07-13 16:17 - 2020-07-13 16:17 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wx._windows_.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_ctypes.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_elementtree.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_hashlib.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_multiprocessing.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_psutil_windows.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_socket.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_ssl.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\_yappi.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\bz2.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\common.time34.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\hashobjs_ext.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\PIL._imaging.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\pyexpat.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\pysqlite2._sqlite.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\pythoncom27.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\pywintypes27.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\select.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\thumbnails_ext.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\unicodedata.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\usb_ext.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32api.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32com.shell.shell.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32crypt.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32event.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32file.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32gui.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32inet.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32pdh.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32pipe.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32process.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32profile.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32security.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\win32ts.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\windows.conditional.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\windows.connectivity.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\windows.device_monitor.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\windows.volumes.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\windows.winwrap.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._controls_.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._core_.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._gdi_.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._html2.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._misc_.pyd
2020-07-13 16:15 - 2020-07-13 16:15 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wx._windows_.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_ctypes.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_elementtree.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_hashlib.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_multiprocessing.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_psutil_windows.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_socket.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_ssl.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\_yappi.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\bz2.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\common.time34.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\hashobjs_ext.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\PIL._imaging.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\pyexpat.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\pysqlite2._sqlite.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\pythoncom27.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\pywintypes27.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\select.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\thumbnails_ext.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\unicodedata.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\usb_ext.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32api.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32com.shell.shell.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32crypt.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32event.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32file.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32gui.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32inet.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32pdh.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32pipe.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32process.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32profile.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32security.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\win32ts.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\windows.conditional.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\windows.connectivity.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\windows.device_monitor.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\windows.volumes.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\windows.winwrap.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._controls_.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._core_.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._gdi_.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._html2.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._misc_.pyd
2020-07-13 16:18 - 2020-07-13 16:18 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wx._windows_.pyd
2019-03-13 22:24 - 2015-12-01 09:22 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2019-03-13 22:24 - 2015-12-01 09:22 - 000087040 _____ (Brother Industries, Ltd.) [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2019-03-13 20:34 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2018-03-19 14:12 - 2018-03-19 14:12 - 000047104 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libwinpthread-1.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\python27.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\python27.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\python27.dll
2019-09-09 21:02 - 2016-10-10 06:27 - 000556544 _____ (Soft Service Company) [File not signed] C:\Program Files (x86)\Unified Remote 3\wcl.dll
2019-09-09 21:02 - 2016-09-23 15:08 - 001283584 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\LIBEAY32MD.dll
2019-09-09 21:02 - 2016-09-23 15:08 - 000255488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\SSLEAY32MD.dll
2019-07-01 13:51 - 2019-07-01 13:51 - 006623384 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\Qt5Core.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxbase30u_net_vc90_x64.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxbase30u_vc90_x64.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxmsw30u_adv_vc90_x64.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxmsw30u_core_vc90_x64.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxmsw30u_html_vc90_x64.dll
2020-07-13 16:17 - 2020-07-13 16:17 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI75642\wxmsw30u_webview_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxbase30u_net_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxbase30u_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxmsw30u_adv_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxmsw30u_core_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxmsw30u_html_vc90_x64.dll
2020-07-13 16:15 - 2020-07-13 16:15 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI77482\wxmsw30u_webview_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxbase30u_net_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxbase30u_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxmsw30u_adv_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxmsw30u_core_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxmsw30u_html_vc90_x64.dll
2020-07-13 16:18 - 2020-07-13 16:18 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI91602\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\sharepoint.com -> hxxps://edusk-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.1.1 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "SMART Board Service"
HKLM\...\StartupApproved\Run32: => "SMART Ink"
HKLM\...\StartupApproved\Run32: => "SMART Tray Tools"
HKLM\...\StartupApproved\Run32: => "SMARTNotification"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_8375AD1315402FA46ABD1F971EFE392F"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{1347B276-4615-4DB9-B7D3-40326D83A9DA}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{76582B40-E804-4799-B920-78DB160D7055}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B9C2BF5A-0218-4445-9EE2-60A44E84AB8F}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{0520E1F2-0803-40DD-A0F8-92BF94DDF8C7}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{DDF85FB7-0D01-410B-949C-B922E8B81672}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{98BD30E6-70A5-4CCA-8D47-8F58A1C322D6}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{7B3A91E7-9F64-468C-A90F-6486A0CB7771}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B46B3DCB-9C5A-4F65-8CD7-27CB79FAB7B2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{65782CEB-AD1E-420F-80DA-60EDF8B6B14E}] => (Allow) C:\SVS_Proforient ZS\opppt.exe () [File not signed]
FirewallRules: [{32335E0C-33D3-4048-9FDD-13E6E2C1DFA5}] => (Allow) C:\SVS_Proforient ZS\opppt.exe () [File not signed]
FirewallRules: [TCP Query User{ADDCE602-3102-4716-9300-9BF5E1F5FD81}C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{D4231660-7158-4672-BEBE-46D9FC053BA5}C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [TCP Query User{E921BA23-2840-41EC-8D6F-2D00E0A5AE2D}C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{17D4653C-E23D-447D-86B9-E16901962160}C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [{9F92766C-11D4-4C6B-8672-20A7845C3EC8}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1CEEB159-1E5B-4E98-B443-A7A2873966A3}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1DEABCCA-D9E8-47FC-AF01-BCE1FFD942E7}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{815FABFB-0670-499C-A1F9-6C0E0FD15D36}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AC13C5F3-27CE-49FD-8C60-0A54ACA0A508}] => (Allow) C:\Users\zembe\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1C8ADB29-D151-451A-9F85-67732B9BC822}] => (Allow) C:\Users\zembe\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{04D5D9B3-7E1F-4965-84E2-97CEFEDFA6D4}C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D560E3D1-32EC-466E-BA73-62F08826A5B5}C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9C54C989-BDC5-4E03-9B5E-0B739EE03E00}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => No File
FirewallRules: [{4D84F1F6-B6E6-415F-B0E1-B53E7A5C7782}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => No File
FirewallRules: [{69636EAA-2AC2-4BEA-9CB4-9D68D544CD02}] => (Allow) C:\SVS_Proforient ZS\oppp.exe (MICHALOVCE) [File not signed]
FirewallRules: [{629CF4F8-43D2-464F-9004-1F3F30CF4113}] => (Allow) C:\SVS_Proforient ZS\oppp.exe (MICHALOVCE) [File not signed]
FirewallRules: [{32D58F6C-3B2C-49BC-B3E6-E3783D006641}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FE23DCD1-E9CC-4904-96A7-AC6995E29650}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{13CFD1C7-D128-451D-B1AD-19AF8C867A03}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4B5C2740-133C-42DB-899C-209A9D70DF90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F48EF430-CA43-4118-B8B9-AAF63DAEEED3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
22-06-2020 16:18:17 Nainštalované Fotopak
30-06-2020 17:42:53 Scheduled Checkpoint
13-07-2020 16:04:39 AdwCleaner_BeforeCleaning_13/07/2020_16:04:38
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/13/2020 04:48:43 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8620,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/13/2020 04:34:22 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3856,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/13/2020 04:06:52 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (07/13/2020 04:06:52 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (07/13/2020 04:06:51 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (07/13/2020 04:06:51 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (07/13/2020 10:55:50 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (33680,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 09:43:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (49552,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (07/13/2020 04:44:42 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/13/2020 04:27:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80073d02: 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (07/13/2020 04:19:58 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/13/2020 04:15:14 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/13/2020 04:06:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (07/13/2020 04:06:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba System Update sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (07/13/2020 04:06:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba RemoteServerWin sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (07/13/2020 04:06:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 0 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
CodeIntegrity:
===================================
Date: 2020-07-13 16:13:05.008
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-07-13 16:13:05.001
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-07-13 16:13:04.992
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 16:13:04.977
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-07-13 16:13:04.969
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-07-13 16:13:04.961
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 16:13:04.944
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-07-13 16:13:04.937
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: LENOVO H9ET81WW(1.18) 12/05/2013
Motherboard: LENOVO 20206
Processor: Intel(R) Celeron(R) CPU 1005M @ 1.90GHz
Percentage of memory in use: 82%
Total physical RAM: 6736.54 MB
Available physical RAM: 1205.52 MB
Total Virtual: 10576.54 MB
Available Virtual: 3074.98 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:194.73 GB) (Free:110.52 GB) NTFS
Drive d: (DATA) (Fixed) (Total:269.91 GB) (Free:120.75 GB) NTFS
Drive e: () (Removable) (Total:0.95 GB) (Free:0.14 GB) FAT
\\?\Volume{c7125d87-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{c7125d87-0000-0000-0000-40d130000000}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C7125D87)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=194.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=593 MB) - (Type=27)
Partition 4: (Not Active) - (Size=269.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Size: 968.8 MB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Dlhé prihlasovanie sa do PC
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {E018D74D-2107-4BB9-A14D-C744B74702D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
S3 fiddrv64; no ImagePath
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
C:\Users\zembe\AppData\Local\Temp
FirewallRules: [{9C54C989-BDC5-4E03-9B5E-0B739EE03E00}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => No File
FirewallRules: [{4D84F1F6-B6E6-415F-B0E1-B53E7A5C7782}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Dlhé prihlasovanie sa do PC
Fix result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by zember (13-07-2020 18:36:30) Run:1
Running from C:\Users\zembe\Desktop
Loaded Profiles: zember
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {E018D74D-2107-4BB9-A14D-C744B74702D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
S3 fiddrv64; no ImagePath
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
C:\Users\zembe\AppData\Local\Temp
FirewallRules: [{9C54C989-BDC5-4E03-9B5E-0B739EE03E00}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => No File
FirewallRules: [{4D84F1F6-B6E6-415F-B0E1-B53E7A5C7782}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E018D74D-2107-4BB9-A14D-C744B74702D8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E018D74D-2107-4BB9-A14D-C744B74702D8}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13D67BB7-DB5F-48AA-884D-7A5D94168509} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13D67BB7-DB5F-48AA-884D-7A5D94168509} => removed successfully
HKLM\System\CurrentControlSet\Services\fiddrv64 => removed successfully
fiddrv64 => service removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
C:\Users\zembe\AppData\Local\Temp => moved successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9C54C989-BDC5-4E03-9B5E-0B739EE03E00}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D84F1F6-B6E6-415F-B0E1-B53E7A5C7782}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 415837170 B
Java, Flash, Steam htmlcache => 554 B
Windows/system/drivers => 6119786 B
Edge => 31973 B
Chrome => 1268163964 B
Firefox => 30160529 B
Opera => 13539847 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 16724 B
LocalService => 41916 B
NetworkService => 41916 B
zembe => 4786982 B
RecycleBin => 15756361 B
EmptyTemp: => 1.6 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 18:59:11 ====
Ran by zember (13-07-2020 18:36:30) Run:1
Running from C:\Users\zembe\Desktop
Loaded Profiles: zember
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {E018D74D-2107-4BB9-A14D-C744B74702D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
S3 fiddrv64; no ImagePath
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
C:\Users\zembe\AppData\Local\Temp
FirewallRules: [{9C54C989-BDC5-4E03-9B5E-0B739EE03E00}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => No File
FirewallRules: [{4D84F1F6-B6E6-415F-B0E1-B53E7A5C7782}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E018D74D-2107-4BB9-A14D-C744B74702D8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E018D74D-2107-4BB9-A14D-C744B74702D8}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13D67BB7-DB5F-48AA-884D-7A5D94168509} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13D67BB7-DB5F-48AA-884D-7A5D94168509} => removed successfully
HKLM\System\CurrentControlSet\Services\fiddrv64 => removed successfully
fiddrv64 => service removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
C:\Users\zembe\AppData\Local\Temp => moved successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9C54C989-BDC5-4E03-9B5E-0B739EE03E00}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D84F1F6-B6E6-415F-B0E1-B53E7A5C7782}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 415837170 B
Java, Flash, Steam htmlcache => 554 B
Windows/system/drivers => 6119786 B
Edge => 31973 B
Chrome => 1268163964 B
Firefox => 30160529 B
Opera => 13539847 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 16724 B
LocalService => 41916 B
NetworkService => 41916 B
zembe => 4786982 B
RecycleBin => 15756361 B
EmptyTemp: => 1.6 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 18:59:11 ====
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Dlhé prihlasovanie sa do PC
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Dlhé prihlasovanie sa do PC
Start NTB je podstatne rýchlejší. Ďakujem.
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Dlhé prihlasovanie sa do PC
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?