Dlhé prihlasovanie sa do PC
Napsal: 13 črc 2020 10:20
Zdravím, mojmu NTB trvá velmi dlho pokým sa po zadaní prihlasovacích údajov zobrazí pracovná plocha (aj 3-4 minuty). Prosím o kontrolu logov:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-07-2020 01
Ran by zember (administrator) on LENOVOB590 (LENOVO 20206) (13-07-2020 11:04:56)
Running from C:\Users\zembe\Desktop
Loaded Profiles: zember
Platform: Windows 10 Home Version 1909 18363.900 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AlcorMicro, Corp. -> Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Disig a.s. -> Disig a.s.) C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_57c0cedf358ad293\driver\tphkload.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\zembe\AppData\Local\Microsoft\Teams\current\Teams.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(uTorrent.CZ -> BitTorrent, Inc.) [File not signed] C:\Users\zembe\AppData\Roaming\uTorrent\utorrent.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2985712 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [179536 2019-10-31] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [548864 2013-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2013-07-12] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\zembe\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [uTorrent] => C:\Users\zembe\AppData\Roaming\uTorrent\utorrent.exe [414656 2018-10-25] (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\zembe\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48594832 2020-06-15] (Google LLC -> )
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-17] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [Opera Browser Assistant] => C:\Users\zembe\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3004440 2020-05-13] (Opera Software AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Web Signer.lnk [2019-07-24]
ShortcutTarget: Web Signer.lnk -> C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe (Disig a.s. -> Disig a.s.)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0927A769-2CFF-49B6-AE43-4D4C6EE92853} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-12] (Adobe Inc. -> Adobe)
Task: {1288CE4C-2485-4330-8800-66BFF8A60410} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {256A2A53-2C28-4D49-904C-5F8D8113F302} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {27A1ECD5-7F3D-43C2-BB8F-26E2D256C829} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe [59776 2019-11-12] (Lenovo -> )
Task: {31B3E1D0-7273-43A3-8A1B-258899A3B9C5} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758648 2020-03-31] (Lenovo -> )
Task: {400CE9EC-5367-4C80-84D6-56AAD4032ADF} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2985712 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {467A1818-5F1D-4FA2-BD5E-A4897D5E9B21} - System32\Tasks\update-S-1-5-21-1540107938-3102307928-580545200-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {47073ECB-03AF-402C-8CB9-98920B1EBDC2} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {50300EC7-8741-4A2D-BFBC-938AD294242A} - System32\Tasks\Opera scheduled Autoupdate 1562361389 => C:\Users\zembe\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-13] (Opera Software AS -> Opera Software)
Task: {57F198EA-06F7-4C9C-9541-08560709BBEA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {58BE4D60-E483-4AB6-B706-ABBC5B75B77E} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [851800 2018-12-26] (Lenovo -> Lenovo.)
Task: {6A4EB032-09CD-4EA5-BC62-048AB2F09E0D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758648 2020-03-31] (Lenovo -> )
Task: {6C005699-4DC7-45B8-B08D-81211C2E4110} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [688128 2019-01-30] (FreeDownloadManager.org) [File not signed]
Task: {724CCF86-624D-43AD-892E-7C3903A593E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-17] (Piriform Software Ltd -> Piriform Ltd)
Task: {73E68DB1-F831-4D1D-9572-119E957089EF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {B2E3F344-94FE-4850-8BEC-411E5FF3025E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
Task: {B9BD8D84-6F91-40A5-B6B8-E9E67D11C3A9} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [113024 2019-11-12] (Lenovo -> Lenovo)
Task: {C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {D7253912-0F5F-4895-A95B-5ACB56F194BD} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1540107938-3102307928-580545200-1001 => C:\Users\zembe\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [122344 2019-04-04] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {E018D74D-2107-4BB9-A14D-C744B74702D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {F00D895E-E643-4914-9946-BF3EB9072691} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F589A27C-2F20-485F-BCF1-CC7742DF56E7} - System32\Tasks\Opera scheduled assistant Autoupdate 1582730253 => C:\Users\zembe\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-13] (Opera Software AS -> Opera Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-1540107938-3102307928-580545200-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9535daab-06d5-4de2-bb28-e62b8c6eb29a}: [NameServer] 192.168.1.1,8.8.4.4
Tcpip\..\Interfaces\{9535daab-06d5-4de2-bb28-e62b8c6eb29a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{957a2ed0-2633-4a85-afcc-279840f892d8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b1fa505a-2c3f-4e7f-a8ca-f0ebd47b5f39}: [DhcpNameServer] 10.10.10.1
Internet Explorer:
==================
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\zembe\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-12]
Edge Notifications: Default -> hxxps://teams.microsoft.com; hxxps://www.youtube.com
Edge HomePage: Default -> chrome://apps/
Edge DefaultSearchURL: Default -> hxxps://blobs.officehome.msocdn.com/versionless/webmanifestimages/OfficeDesktop_192.png
Edge Session Restore: Default -> is enabled.
Edge Extension: (Office) - C:\Users\zembe\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2020-04-15]
FireFox:
========
FF DefaultProfile: e1mgl8rl.default
FF ProfilePath: C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default [2020-07-12]
FF Notifications: Mozilla\Firefox\Profiles\e1mgl8rl.default -> hxxps://www.facebook.com
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\sp@avast.com.xpi [2020-05-06]
FF Extension: (LastPass: Free Password Manager) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\support@lastpass.com.xpi [2020-05-06]
FF Extension: (Avast Online Security) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\wrc@avast.com.xpi [2020-05-06]
FF Extension: (Video DownloadHelper) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-04-07]
FF Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\{ddc62400-f22d-4dd3-8b4a-05837de53c2e}.xpi [2020-05-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~1.DLL [2019-03-06] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\PROGRA~2\Ditec\DViewer\NPDITE~1.DLL [2020-03-18] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~2.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~3.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~1.DLL [2020-03-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~2.DLL [2020-03-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin HKU\S-1-5-21-1540107938-3102307928-580545200-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\zembe\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-03] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-07-13]
Chrome:
=======
CHR Profile: C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default [2020-07-13]
CHR Notifications: Default -> hxxps://dennikn.sk; hxxps://isport.blesk.cz; hxxps://live.ifortuna.sk; hxxps://meet.google.com; hxxps://mnamky-recepty.webnoviny.sk; hxxps://naszosie.pl; hxxps://promuze.blesk.cz; hxxps://road.cc; hxxps://sk.mall.tv; hxxps://sport.aktuality.sk; hxxps://sport.pravda.sk; hxxps://sportowefakty.wp.pl; hxxps://strategie-hnonline.os.tc; hxxps://teams.microsoft.com; hxxps://vzdelavame.os.tc; hxxps://www.apkonline.net; hxxps://www.blesk.cz; hxxps://www.chess.com; hxxps://www.dreamstime.com; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.joj.sk; hxxps://www.letour.fr; hxxps://www.sport.cz; hxxps://www.svetandroida.cz; hxxps://www.ta3.com; hxxps://www.topky.sk; hxxps://www.tyzden.sk; hxxps://www.youtube.com
CHR HomePage: Default -> chrome://apps/
CHR StartupUrls: Default -> "hxxps://imo.im/new/","hxxps://mail.google.com/mail/u/0/#all","hxxp://www.gmail.com/","file:///usr/share/doc/ ... google.sk/"
CHR DefaultSearchURL: Default -> hxxp://www.zive.cz/Client.Images/favicon.ico
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prekladač Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-19]
CHR Extension: (Prezentácie) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-13]
CHR Extension: (Dokumenty) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-13]
CHR Extension: (Disk Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-13]
CHR Extension: (YouTube) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-13]
CHR Extension: (Facebook) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2019-03-13]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-07-03]
CHR Extension: (Screen capture, screenshot share/save) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjbjepchlgclmpinlbbeinajphohgfod [2019-03-13]
CHR Extension: (Týden Živě: Microsoft vypne svůj nejz...) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnblcnmjaaakjjebecpefncfajnpebgk [2020-07-13]
CHR Extension: (TeX equation editor) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggdddnmjoomglnkjhcpcnjbieiojini [2019-03-13]
CHR Extension: (Tabuľky) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-13]
CHR Extension: (Star Atlas) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gheikhdfflhlbemfmhcfpeblehemeklp [2019-03-13]
CHR Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdhinadidafjejdhmfkjgnolgimiaplp [2020-07-04]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2020-07-03]
CHR Extension: (Picture-in-Picture Extension (by Google)) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgfoiooedgoejojocmhlaklaeopbecg [2020-04-01]
CHR Extension: (Music Player for Google Drive) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfeekfpnjbdmelcapngdgkjnhgijjkh [2019-03-13]
CHR Extension: (Pixlr Editor) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2019-03-13]
CHR Extension: (Audio Joiner) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihiafjkopgiakbmihgoieodihjcblfbk [2019-03-13]
CHR Extension: (Imagus) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\immpkjjlgappgfkkfieppnmlhakdmaab [2020-04-17]
CHR Extension: (Twitter) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi [2020-04-20]
CHR Extension: (Mapy Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jofhmakmcmhjkgbkaknehpglphepfmii [2020-02-16]
CHR Extension: (ShiftEdit) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcgmndephhjcabhhjfcmncnhbmgbkpij [2019-03-13]
CHR Extension: (Webcam Toy) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2019-03-13]
CHR Extension: (Mapy Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-03-13]
CHR Extension: (Žive.sk) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfkdibdekaipckjaaeaklehcmngjhiah [2020-04-19]
CHR Extension: (Merge PDF - Split PDF - Sejda.com) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhcknfplofcnpdjalbhnjognbpncojbi [2019-03-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Office) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2020-05-10]
CHR Extension: (Disig Web Signer 1.0.7) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbdbcaekkgabdfaabepfjgiooilmaoe [2019-07-24]
CHR Extension: (Outlook.com) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2019-03-13]
CHR Extension: (Gmail) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-31]
CHR HKU\S-1-5-21-1540107938-3102307928-580545200-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [odbdbcaekkgabdfaabepfjgiooilmaoe]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [File not signed]
S2 dLauncherLoopback; C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe [154960 2019-08-02] (DITEC, a.s. -> )
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55424 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892760 2018-12-26] (Lenovo -> Lenovo.)
R2 RemoteServerWin; C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3186264 2019-08-04] (Unified Intents AB -> Unified Intents AB)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_57c0cedf358ad293\driver\TPHKLOAD.exe [425352 2019-01-17] (Lenovo -> Lenovo Group Limited)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-12] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [149944 2019-10-31] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186832 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [77176 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [114640 2019-10-31] (ESET, spol. s r.o. -> ESET)
S3 fiddrv64; no ImagePath
S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2019-03-19] (Microsoft Windows -> MediaTek Inc.)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [44160 2018-12-26] (Lenovo -> Lenovo.)
S3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [18952 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33008 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2019-08-04] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [1049984 2013-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-13 11:04 - 2020-07-13 11:08 - 000029981 _____ C:\Users\zembe\Desktop\FRST.txt
2020-07-13 10:57 - 2020-07-13 11:07 - 000000000 ____D C:\FRST
2020-07-13 10:56 - 2020-07-13 10:55 - 002292736 _____ (Farbar) C:\Users\zembe\Desktop\FRST64.exe
2020-07-13 10:55 - 2020-07-13 10:55 - 002292736 _____ (Farbar) C:\Users\zembe\Downloads\FRST64.exe
2020-07-12 16:29 - 2020-07-12 16:49 - 000000000 ____D C:\Users\zembe\Desktop\fotky na stranku
2020-07-10 10:02 - 2020-07-10 10:02 - 000513238 _____ C:\Users\zembe\Downloads\5220182232.pdf
2020-07-08 15:41 - 2020-07-08 15:41 - 000185770 _____ C:\Users\zembe\Downloads\VM_ucitel pre nizsie stred_vzdel MAT v ZSsMS Nitrianska Blatnica.pdf
2020-07-08 15:41 - 2020-07-08 15:41 - 000184262 _____ C:\Users\zembe\Downloads\VM_ucitel pre primarne vzdelavanie v ZSsMS Nitrianska Blatnica.pdf
2020-07-08 15:39 - 2020-07-08 15:39 - 000194486 _____ C:\Users\zembe\Downloads\VM_ucitel_1_stupen_ZS_Tribecska_22_Topolcany.pdf
2020-07-08 15:39 - 2020-07-08 15:39 - 000189182 _____ C:\Users\zembe\Downloads\VM_vychovavatel v SKD v SSI_Tovarnicka 1632_Topolcany.pdf
2020-07-08 15:38 - 2020-07-08 15:38 - 000174549 _____ C:\Users\zembe\Downloads\VM_ZS_Scasneho 22_Nitra-ucitelka pre II_stupen ZS aprobacia MAT.pdf
2020-07-08 15:37 - 2020-07-08 15:37 - 000209385 _____ C:\Users\zembe\Downloads\VM_ZS_Hajske_ucitelka pre nizsie stredne vzdelavanie aprobacia bio_fyz_chem.pdf
2020-07-08 15:37 - 2020-07-08 15:37 - 000205922 _____ C:\Users\zembe\Downloads\VM_ZS_Ucitel pre primarne vzdelavanie.pdf
2020-07-07 16:20 - 2020-07-07 16:21 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (8)
2020-07-07 16:20 - 2020-07-07 16:20 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (7)
2020-07-07 16:19 - 2020-07-07 16:19 - 000024471 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E09_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-07-06 22:07 - 2020-07-06 22:07 - 000121899 _____ C:\Users\zembe\Downloads\V_1152339016_6_20200630_C1_P0.pdf
2020-07-06 18:05 - 2020-07-06 18:05 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (6)
2020-07-06 18:05 - 2020-07-06 18:05 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (5)
2020-07-06 16:35 - 2020-07-06 16:35 - 000446066 _____ C:\Users\zembe\Downloads\faktury 30.06.2020.pdf
2020-07-05 14:23 - 2020-07-05 14:23 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (4)
2020-07-05 14:22 - 2020-07-05 14:22 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (3)
2020-07-02 23:24 - 2020-07-02 23:24 - 000183597 _____ C:\Users\zembe\Downloads\VM_ucitel MAT v ZS Skultetyho 1 Nitra.pdf
2020-07-01 21:27 - 2020-07-01 21:27 - 000020941 _____ C:\Users\zembe\Downloads\[CzT]Avengers_Age_of_Ultron_2015_CZ_.torrent
2020-06-30 16:29 - 2020-06-30 16:29 - 000016505 _____ C:\Users\zembe\Downloads\ZS_SP_100005121 (1).xlsx
2020-06-30 16:25 - 2020-06-30 16:25 - 000016720 _____ C:\Users\zembe\Downloads\dochádzka excel.xlsx
2020-06-30 16:22 - 2020-06-30 16:22 - 000017152 _____ C:\Users\zembe\Downloads\dochádzka 1.A (1).xlsx
2020-06-30 16:12 - 2020-06-30 16:12 - 000016895 _____ C:\Users\zembe\Downloads\Sociálna poisťovňa.xlsx
2020-06-30 16:12 - 2020-06-30 16:12 - 000016695 _____ C:\Users\zembe\Downloads\Tabulka pre SP 4.A.xlsx
2020-06-30 16:11 - 2020-06-30 16:12 - 000016560 _____ C:\Users\zembe\Downloads\ZS_SP_100005121.xlsx
2020-06-29 16:47 - 2020-06-29 16:47 - 000016795 _____ C:\Users\zembe\Downloads\dochádzka 1.A.xlsx
2020-06-29 16:19 - 2020-06-29 16:19 - 000027450 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E08_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-29 16:18 - 2020-06-29 16:18 - 000029217 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_S02E10_TvRip_1080p_.torrent
2020-06-29 14:37 - 2020-06-29 14:37 - 000442530 _____ C:\Users\zembe\Downloads\HNN182223447.pdf
2020-06-29 12:28 - 2020-06-29 12:28 - 000045502 _____ C:\Users\zembe\Downloads\22b12142f3dbcda5.xls
2020-06-28 21:02 - 2020-07-01 13:33 - 000000000 ____D C:\Users\zembe\Desktop\Rada školy
2020-06-28 21:00 - 2020-06-28 21:05 - 000000000 ____D C:\Users\zembe\Desktop\Materiály na odovzdanie ku koncu šk. roka 2019-2020
2020-06-28 13:49 - 2020-06-28 13:49 - 007209564 _____ C:\Users\zembe\Downloads\Fyzika pre 6. ročník ZŠ a 1. ročník gymnázií s osemročným štúdiom.pdf
2020-06-27 21:12 - 2020-06-27 21:12 - 000028243 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E07_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-27 21:12 - 2020-06-27 21:12 - 000014681 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E09_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-26 14:55 - 2020-06-26 15:25 - 000547114 _____ C:\Users\zembe\Downloads\Zápisný lístok - školské obedy.pdf
2020-06-26 14:18 - 2020-06-26 14:18 - 000123067 _____ C:\Users\zembe\Downloads\Zápisný lístok ZŠ 2020-21.pdf
2020-06-24 20:05 - 2020-06-24 20:05 - 000225455 _____ C:\Users\zembe\Downloads\preberanie funkcie.pdf
2020-06-24 19:54 - 2020-06-24 19:54 - 000321405 _____ C:\Users\zembe\Downloads\ševt - objednávka tlačivá - jún 2020.pdf
2020-06-24 19:12 - 2020-06-24 19:12 - 000026304 _____ C:\Users\zembe\Downloads\X5406021.dbf
2020-06-24 18:04 - 2020-06-24 18:50 - 000016596 _____ C:\Users\zembe\Downloads\deviataci zs_sp_100005121.xlsx
2020-06-23 16:44 - 2020-06-23 16:44 - 000175104 _____ C:\Users\zembe\Downloads\Počet AU od 1.9.2019 do 31.12.2019 (1).xls
2020-06-23 16:15 - 2020-06-23 16:15 - 000917439 _____ C:\Users\zembe\Downloads\15057.zip
2020-06-23 16:12 - 2020-06-23 16:12 - 000122503 _____ C:\Users\zembe\Downloads\16086.zip
2020-06-23 16:08 - 2020-06-23 16:08 - 000082250 _____ C:\Users\zembe\Downloads\Faktúra.pdf
2020-06-23 15:56 - 2020-06-23 15:56 - 000114013 _____ C:\Users\zembe\Downloads\Objednávka pre mš 2020-21_Sestava 1.pdf
2020-06-23 15:46 - 2020-06-23 15:46 - 000365547 _____ C:\Users\zembe\Downloads\objednavka tlaciv (1).pdf
2020-06-23 15:38 - 2020-06-23 15:38 - 000365547 _____ C:\Users\zembe\Downloads\objednavka tlaciv.pdf
2020-06-22 18:29 - 2020-06-22 18:37 - 224559784 _____ (The GIMP Team ) C:\Users\zembe\Downloads\gimp-2.10.20-setup-1.exe
2020-06-22 16:19 - 2020-06-22 16:19 - 000001186 _____ C:\Users\Public\Desktop\Fotopak.lnk
2020-06-22 16:19 - 2020-06-22 16:19 - 000001186 _____ C:\ProgramData\Desktop\Fotopak.lnk
2020-06-22 16:19 - 2020-06-22 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fotopak
2020-06-22 16:19 - 2020-06-22 16:19 - 000000000 ____D C:\Program Files (x86)\FOTOPAK s.r.o
2020-06-22 16:04 - 2020-06-22 16:04 - 001795000 _____ C:\Users\zembe\Downloads\orez3.pdf
2020-06-22 16:00 - 2020-06-22 16:00 - 001155084 _____ C:\Users\zembe\Downloads\orez2.pdf
2020-06-22 15:58 - 2020-06-22 15:59 - 000767180 _____ C:\Users\zembe\Downloads\orez1.pdf
2020-06-22 12:47 - 2020-06-22 12:47 - 000035929 _____ C:\Users\zembe\Downloads\ef09de9a7770d227.xls
2020-06-22 12:41 - 2020-06-22 12:41 - 000035929 _____ C:\Users\zembe\Downloads\dd5d589ebf9fec8a.xls
2020-06-21 16:43 - 2020-06-21 16:43 - 000071116 _____ C:\Users\zembe\Downloads\[CzT]Most_Bron_1_3_serie_CZ_TvRip_.torrent
2020-06-21 16:36 - 2020-06-21 16:36 - 000073544 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_1_serie_CZ_WebRip_720p_.torrent
2020-06-21 16:18 - 2020-06-21 16:18 - 000013937 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_S01E01_CZ_WebRip_720p_.torrent
2020-06-20 14:04 - 2020-06-20 14:04 - 000057344 _____ C:\Users\zembe\Downloads\VL OK MO Z5 Z9 ZS TO 2020 (2).xls
2020-06-19 16:49 - 2020-06-30 16:55 - 000017532 _____ C:\Users\zembe\Desktop\ZS_SP_100005121.xlsx
2020-06-19 16:37 - 2020-06-19 16:37 - 000009300 _____ C:\Users\zembe\Downloads\ZS_SP_100005121 (1).csv
2020-06-19 16:34 - 2020-06-19 16:34 - 000012898 _____ C:\Users\zembe\Downloads\Tabuľka pre SP.xlsx
2020-06-18 23:30 - 2020-06-18 23:30 - 000024854 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E06_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-18 14:16 - 2020-06-18 14:16 - 000282883 _____ C:\Users\zembe\Downloads\Test 4.pdf
2020-06-17 15:00 - 2020-06-17 15:00 - 000403591 _____ C:\Users\zembe\Downloads\Test 3.pdf
2020-06-17 14:03 - 2020-06-17 14:03 - 000008936 _____ C:\Users\zembe\Downloads\ZS_SP_100005121.csv
2020-06-16 13:38 - 2020-06-16 13:38 - 000224240 _____ C:\Users\zembe\Downloads\Test 2.pdf
2020-06-15 15:05 - 2020-06-15 15:05 - 000205185 _____ C:\Users\zembe\Downloads\Test 1.pdf
2020-06-15 13:40 - 2020-06-24 16:01 - 000000000 ____D C:\Users\zembe\Desktop\fotky kolaž deviataci
2020-06-14 23:14 - 2020-06-14 23:14 - 000288768 _____ C:\Users\zembe\Downloads\Rada skoly a vyberove konanie 4_2019 (3).ppt
2020-06-14 16:02 - 2020-06-14 16:02 - 000017161 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E08_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-14 16:02 - 2020-06-14 16:02 - 000012781 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E07_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-14 14:17 - 2020-06-14 14:18 - 000992969 _____ C:\Users\zembe\Downloads\Deviatacka štatistika (1).pptx
2020-06-14 14:15 - 2020-06-14 14:15 - 000992969 _____ C:\Users\zembe\Downloads\Deviatacka štatistika.pptx
2020-06-14 13:43 - 2020-06-14 13:43 - 000624921 _____ C:\Users\zembe\Downloads\Zo života zvierat.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-13 11:14 - 2019-04-22 13:57 - 000000000 ____D C:\Users\zembe\AppData\Roaming\uTorrent
2020-07-13 11:08 - 2019-03-13 21:05 - 000000000 ___HD C:\Users\zembe\Desktop\.tmp.drivedownload
2020-07-13 10:51 - 2019-06-23 22:02 - 000000000 ___RD C:\Users\zembe\Disk Google (fotky2.zsobdokovce@gmail.com)
2020-07-13 10:50 - 2019-03-13 21:02 - 000000000 ___RD C:\Users\zembe\Disk Google
2020-07-13 10:47 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-12 16:35 - 2019-03-13 20:38 - 000000000 ____D C:\Users\zembe\AppData\LocalLow\Mozilla
2020-07-12 12:48 - 2020-01-16 00:03 - 000003574 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-12 12:48 - 2020-01-16 00:03 - 000003450 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-11 22:50 - 2019-08-30 00:56 - 001853932 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-11 22:50 - 2019-08-30 00:49 - 000707862 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-11 22:50 - 2019-08-30 00:49 - 000145112 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-11 22:50 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-11 22:50 - 2019-03-13 23:06 - 000145248 _____ C:\WINDOWS\system32\perfh01B.dat
2020-07-11 22:50 - 2019-03-13 23:06 - 000032280 _____ C:\WINDOWS\system32\perfc01B.dat
2020-07-11 22:50 - 2019-03-13 20:20 - 000000000 ____D C:\Users\zembe\AppData\Roaming\vlc
2020-07-11 14:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-10 23:39 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-10 20:46 - 2019-08-30 00:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-09 09:43 - 2020-01-16 00:05 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-09 09:43 - 2020-01-16 00:05 - 000002265 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-07-09 09:43 - 2020-01-16 00:05 - 000002265 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-07-08 17:43 - 2019-08-30 01:09 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-08 17:43 - 2019-03-13 20:36 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-07-06 17:55 - 2019-03-13 20:09 - 000000000 ____D C:\Users\zembe\AppData\Local\Packages
2020-07-05 18:10 - 2019-03-13 23:50 - 000000000 ____D C:\Users\zembe\AppData\Local\CrashDumps
2020-07-05 18:01 - 2019-03-13 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-07-02 17:45 - 2019-05-06 16:54 - 000000643 _____ C:\Users\zembe\Desktop\aScAgenda.lnk
2020-07-01 14:07 - 2020-04-24 00:17 - 000000000 ____D C:\Users\zembe\Documents\Lightshot
2020-07-01 14:07 - 2019-03-13 21:30 - 000000000 ___HD C:\Users\zembe\Documents\.tmp.drivedownload
2020-06-29 22:21 - 2019-04-10 13:36 - 000000000 ____D C:\Users\zembe\AppData\Local\LenovoServiceBridge
2020-06-27 14:37 - 2019-09-26 22:02 - 000000000 ____D C:\SVS_Proforient ZS
2020-06-24 19:03 - 2019-09-26 22:01 - 000043867 _____ C:\Users\zembe\Downloads\export.csv
2020-06-22 20:32 - 2019-03-13 20:17 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-22 20:32 - 2019-03-13 20:17 - 000002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-06-22 20:32 - 2019-03-13 20:17 - 000002272 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-06-22 08:19 - 2019-08-30 01:09 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-06-21 23:51 - 2020-05-01 23:35 - 000000000 ____D C:\Program Files (x86)\SMART Technologies
2020-06-21 13:21 - 2020-05-01 23:36 - 000000000 ____D C:\ProgramData\SMART Technologies
2020-06-21 13:08 - 2019-03-13 20:35 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-06-21 12:49 - 2020-05-03 14:33 - 000000000 ____D C:\Users\zembe\AppData\Local\Deployment
2020-06-20 09:42 - 2019-12-11 19:46 - 000000000 ____D C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome
2020-06-18 10:16 - 2020-04-07 23:26 - 000000000 ____D C:\Users\zembe\AppData\Local\OpenBoard
2020-06-18 06:33 - 2019-03-13 20:15 - 000000000 ____D C:\Users\zembe\AppData\Local\PlaceholderTileLogoFolder
==================== Files in the root of some directories ========
2020-04-23 08:51 - 2020-04-23 08:51 - 000000003 _____ () C:\Users\zembe\AppData\Local\updater.log
2020-04-23 08:51 - 2020-04-23 08:51 - 000000424 _____ () C:\Users\zembe\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by zember (13-07-2020 11:14:25)
Running from C:\Users\zembe\Desktop
Windows 10 Home Version 1909 18363.900 (X64) (2019-08-29 23:10:30)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1540107938-3102307928-580545200-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1540107938-3102307928-580545200-503 - Limited - Disabled)
Guest (S-1-5-21-1540107938-3102307928-580545200-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1540107938-3102307928-580545200-504 - Limited - Disabled)
zember (S-1-5-21-1540107938-3102307928-580545200-1001 - Administrator - Enabled) => C:\Users\zembe
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.371 - Adobe)
Alcor Micro USB Card Reader (HKLM-x32\...\{AE63FFAC-B71A-4B73-BF9C-DB00C78BD9BD}) (Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.17.3042.73586 - Alcor Micro Corp.)
Alf (HKLM-x32\...\Alf) (Version: 3.4 - PcProfi s.r.o.)
aSc TimeTables (HKLM-x32\...\aScTimeTables) (Version: 2020 - aSc Applied Software Consultants s.r.o)
aScAgenda (HKLM-x32\...\ImageMaker) (Version: - )
Asistent pri aktualizácii na Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
Backup and Sync from Google (HKLM\...\{01D33BEA-673C-439C-A7C7-DE5B236DB842}) (Version: 3.50.3166.0017 - Google, Inc.)
Balík softvéru eID (HKLM-x32\...\{27fcb623-2a19-4570-ab03-96077bc85e1d}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Balík softvéru eID (HKLM-x32\...\{ada2b0d4-ff66-4697-86d1-676a81f20d74}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Bit4id - miniLector (HKLM-x32\...\Bit4id - miniLector) (Version: 3.7 - Bit4id)
Brother MFL-Pro Suite DCP-1610W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
D.Launcher (x86) (HKLM-x32\...\{BB9946A5-07FE-4CC5-8D74-BDF7594DAE62}) (Version: 1.2.0.2 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{7F16A5CF-C9B8-4A75-B11F-32DFDA997F92}) (Version: 4.0.20 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{DE521A09-F131-4B2C-B2FE-25EE3E451A9D}) (Version: 4.0.13 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{469b40e4-942f-4580-b185-4ea063723bb6}) (Version: 1.0.22 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{5B3EEED0-8E1D-47EA-8B20-66086AB09DBA}) (Version: 4.0.2029 - DITEC, a.s.)
Disig Web Signer 1.0.7 (HKLM-x32\...\{21859B7E-5E38-4892-A480-FA8B180ADE72}) (Version: 1.1.8 - Disig)
DLL knižnice (HKLM-x32\...\DLL knižnice_is1) (Version: - Školské výpočtové stredisko Michalovce)
EAC MW klient (HKLM-x32\...\{92879DFD-B281-447B-AC54-ED065B0BBB17}) (Version: 3.3.0 - Ministerstvo vnútra Slovenskej republiky)
ESET Endpoint Security (HKLM\...\{96402769-F07F-4636-9D99-E2782BA22484}) (Version: 7.2.2055.0 - ESET, spol. s r.o.)
Fotopak (HKLM\...\{1B50488E-9DE1-471E-B370-8B5D9802E269}) (Version: 2.0.18.0 - FOTOPAK s.r.o.)
Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.38.7312 - FreeDownloadManager.ORG)
GemPcCCID (HKLM\...\{C2C14C20-A217-4FCA-B668-89B6C70B6EFF}) (Version: 2.0.7 - Gemalto)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HWiNFO64 Version 6.14 (HKLM\...\HWiNFO64_is1) (Version: 6.14 - Martin Malik - REALiX)
Integrated Camera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 5.13.415.31 - Vimicro)
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Lenovo Diagnostics Tool (HKLM\...\{C7DB8EA5-C9C1-468F-B90C-CA206CA5C6BE}) (Version: 4.26.1 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.7 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0096 - Lenovo)
LibreOffice 6.4.3.2 (HKLM\...\{E95546E2-BAB2-4E42-97AB-BC7D497D405F}) (Version: 6.4.3.2 - The Document Foundation)
Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
Microsoft Azure Information Protection Viewer (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\{a8406147-34a4-4193-a552-ddf4fc68a707}) (Version: 1.54.59.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.61 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office 2016 Professional Plus (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\OneDriveSetup.exe) (Version: 19.012.0121.0011 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Teams) (Version: 1.3.00.13565 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 76.0 (x64 sk) (HKLM\...\Mozilla Firefox 76.0 (x64 sk)) (Version: 76.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0.2 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM-x32\...\{90160000-001F-0405-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM-x32\...\{90160000-001F-041B-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Office (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\ccb4df306c8d1bb267155a2207fb3946) (Version: 1.0 - Office)
OpenBoard (1.5.4.240) (HKLM-x32\...\{8CCA6AC7-BBF9-4DD2-8E70-A907E0FCA38F}}_is1) (Version: 1.5.4.240 - Open Education Foundation)
Opera Stable 68.0.3618.104 (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Opera 68.0.3618.104) (Version: 68.0.3618.104 - Opera Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.6.4.13 - Synaptics Incorporated)
ŠVS Proforient 2020.03 ZŠ (HKLM-x32\...\ŠVS Proforient ZŠ_is1) (Version: - Školské výpočtové stredisko Michalovce)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
Testovanie žiakov 2019.06 ZŠ (HKLM-x32\...\Testovanie žiakov ZŠ_is1) (Version: - Školské výpočtové stredisko Michalovce)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.7.0 - Unified Intents AB)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
version 5.13.415.31/1.0.0.27/3.4.5.11(H1C307WW) (HKLM-x32\...\{4AD4461B-8BD4-4354-805C-E97E7A404906}_is1) (Version: - Lenovo Group Limited)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WinCITY Registratúra - preinštalácia (HKLM-x32\...\WinCITY Registratúra - preinštalácia) (Version: V.2018.2 - TOPSET Solutions s.r.o.)
Ziacik v2.7 (HKLM-x32\...\Ziacik v2.7) (Version: - )
Zoom (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-18] (Dolby Laboratories)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-07-07] (Microsoft Corporation)
GeoGebra Geometrie -> C:\Program Files\WindowsApps\18FD273D.GeoGebraGeometry_6.0.562.0_neutral__1f5eszzrqmqpy [2019-10-21] (Internationales GeoGebra Institut)
GeoGebra grafický kalkulátor -> C:\Program Files\WindowsApps\18FD273D.GeoGebraGraphingCalculator_6.0.573.0_neutral__1f5eszzrqmqpy [2020-02-13] (Internationales GeoGebra Institut)
GeoGebra Klasik -> C:\Program Files\WindowsApps\18FD273D.GeoGebra_6.0.562.0_neutral__1f5eszzrqmqpy [2019-10-21] (Internationales GeoGebra Institut)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-05] (Instagram)
Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_18.7.500.0_x64__4n2hpmxwrvr6p [2020-05-24] (XBMC Foundation)
Messenger (Beta) -> C:\Program Files\WindowsApps\Facebook.FacebookMessenger_600.1.119.0_x64__8xx8rvfyw5nnt [2020-07-10] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-04] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.10615.5289.0_x64__8wekyb3d8bbwe [2020-07-01] (Microsoft Corporation)
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c [2020-06-27] (Skype) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\zembe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\zembe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Office.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=ocdlmjhbenodhlknglojajgokahchlkk
ShortcutWithArgument: C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Mapy Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jofhmakmcmhjkgbkaknehpglphepfmii
==================== Loaded Modules (Whitelisted) =============
2019-03-13 22:23 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2019-03-13 22:24 - 2018-01-18 15:39 - 000519168 _____ () [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2019-03-13 22:24 - 2017-12-22 12:53 - 000180224 _____ () [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2019-03-13 22:25 - 2018-01-18 15:39 - 000208896 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2019-03-13 22:25 - 2018-01-18 15:39 - 001720832 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2019-03-13 22:24 - 2017-11-07 19:55 - 000137728 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2019-03-13 22:24 - 2017-08-18 11:23 - 000087552 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2019-03-13 22:24 - 2017-08-18 11:23 - 017974784 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2019-03-13 22:24 - 2017-11-07 20:04 - 000090624 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLSvk.dll
2019-04-13 15:41 - 2017-11-07 19:55 - 000440832 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\Track.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_ctypes.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_elementtree.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_hashlib.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_multiprocessing.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_psutil_windows.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_socket.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_ssl.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_yappi.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\bz2.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\common.time34.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\hashobjs_ext.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\PIL._imaging.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pyexpat.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pysqlite2._sqlite.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pythoncom27.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pywintypes27.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\select.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\thumbnails_ext.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\unicodedata.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\usb_ext.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32api.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32com.shell.shell.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32crypt.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32event.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32file.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32gui.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32inet.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32pdh.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32pipe.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32process.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32profile.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32security.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32ts.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.conditional.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.connectivity.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.device_monitor.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.volumes.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.winwrap.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._controls_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._core_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._gdi_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._html2.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._misc_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._windows_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_ctypes.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_elementtree.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_hashlib.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_multiprocessing.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_psutil_windows.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_socket.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_ssl.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_yappi.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\bz2.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\common.time34.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\hashobjs_ext.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\PIL._imaging.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pyexpat.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pysqlite2._sqlite.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pythoncom27.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pywintypes27.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\select.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\thumbnails_ext.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\unicodedata.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\usb_ext.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32api.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32com.shell.shell.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32crypt.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32event.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32file.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32gui.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32inet.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32pdh.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32pipe.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32process.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32profile.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32security.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32ts.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.conditional.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.connectivity.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.device_monitor.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.volumes.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.winwrap.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._controls_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._core_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._gdi_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._html2.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._misc_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._windows_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_ctypes.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_elementtree.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_hashlib.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_multiprocessing.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_psutil_windows.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_socket.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_ssl.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_yappi.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\bz2.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\common.time34.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\hashobjs_ext.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\PIL._imaging.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pyexpat.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pysqlite2._sqlite.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pythoncom27.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pywintypes27.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\select.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\thumbnails_ext.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\unicodedata.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\usb_ext.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32api.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32com.shell.shell.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32crypt.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32event.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32file.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32gui.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32inet.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32pdh.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32pipe.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32process.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32profile.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32security.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32ts.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.conditional.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.connectivity.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.device_monitor.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.volumes.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.winwrap.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._controls_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._core_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._gdi_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._html2.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._misc_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._windows_.pyd
2019-03-13 22:24 - 2015-12-01 09:22 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2019-03-13 22:24 - 2015-12-01 09:22 - 000087040 _____ (Brother Industries, Ltd.) [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2019-03-13 20:34 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\python27.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\python27.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\python27.dll
2019-09-09 21:02 - 2016-10-10 06:27 - 000556544 _____ (Soft Service Company) [File not signed] C:\Program Files (x86)\Unified Remote 3\wcl.dll
2019-09-09 21:02 - 2016-09-23 15:08 - 001283584 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\LIBEAY32MD.dll
2019-09-09 21:02 - 2016-09-23 15:08 - 000255488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\SSLEAY32MD.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxbase30u_net_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxbase30u_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_adv_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_core_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_html_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_webview_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxbase30u_net_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxbase30u_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_adv_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_core_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_html_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_webview_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxbase30u_net_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxbase30u_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_adv_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_core_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_html_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\sharepoint.com -> hxxps://edusk-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.1.1 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "SMART Board Service"
HKLM\...\StartupApproved\Run32: => "SMART Ink"
HKLM\...\StartupApproved\Run32: => "SMART Tray Tools"
HKLM\...\StartupApproved\Run32: => "SMARTNotification"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_8375AD1315402FA46ABD1F971EFE392F"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{1347B276-4615-4DB9-B7D3-40326D83A9DA}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{76582B40-E804-4799-B920-78DB160D7055}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B9C2BF5A-0218-4445-9EE2-60A44E84AB8F}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{0520E1F2-0803-40DD-A0F8-92BF94DDF8C7}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{DDF85FB7-0D01-410B-949C-B922E8B81672}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{98BD30E6-70A5-4CCA-8D47-8F58A1C322D6}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{7B3A91E7-9F64-468C-A90F-6486A0CB7771}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B46B3DCB-9C5A-4F65-8CD7-27CB79FAB7B2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{65782CEB-AD1E-420F-80DA-60EDF8B6B14E}] => (Allow) C:\SVS_Proforient ZS\opppt.exe () [File not signed]
FirewallRules: [{32335E0C-33D3-4048-9FDD-13E6E2C1DFA5}] => (Allow) C:\SVS_Proforient ZS\opppt.exe () [File not signed]
FirewallRules: [TCP Query User{ADDCE602-3102-4716-9300-9BF5E1F5FD81}C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{D4231660-7158-4672-BEBE-46D9FC053BA5}C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [TCP Query User{E921BA23-2840-41EC-8D6F-2D00E0A5AE2D}C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{17D4653C-E23D-447D-86B9-E16901962160}C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [{9F92766C-11D4-4C6B-8672-20A7845C3EC8}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1CEEB159-1E5B-4E98-B443-A7A2873966A3}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1DEABCCA-D9E8-47FC-AF01-BCE1FFD942E7}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{815FABFB-0670-499C-A1F9-6C0E0FD15D36}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AC13C5F3-27CE-49FD-8C60-0A54ACA0A508}] => (Allow) C:\Users\zembe\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1C8ADB29-D151-451A-9F85-67732B9BC822}] => (Allow) C:\Users\zembe\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{04D5D9B3-7E1F-4965-84E2-97CEFEDFA6D4}C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D560E3D1-32EC-466E-BA73-62F08826A5B5}C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9C54C989-BDC5-4E03-9B5E-0B739EE03E00}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{4D84F1F6-B6E6-415F-B0E1-B53E7A5C7782}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{69636EAA-2AC2-4BEA-9CB4-9D68D544CD02}] => (Allow) C:\SVS_Proforient ZS\oppp.exe (MICHALOVCE) [File not signed]
FirewallRules: [{629CF4F8-43D2-464F-9004-1F3F30CF4113}] => (Allow) C:\SVS_Proforient ZS\oppp.exe (MICHALOVCE) [File not signed]
FirewallRules: [{32D58F6C-3B2C-49BC-B3E6-E3783D006641}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FE23DCD1-E9CC-4904-96A7-AC6995E29650}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{13CFD1C7-D128-451D-B1AD-19AF8C867A03}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4B5C2740-133C-42DB-899C-209A9D70DF90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F48EF430-CA43-4118-B8B9-AAF63DAEEED3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
22-06-2020 16:18:17 Nainštalované Fotopak
30-06-2020 17:42:53 Scheduled Checkpoint
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/13/2020 10:55:50 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (33680,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 09:43:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (49552,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 01:45:14 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (25300,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 01:06:11 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (26424,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/11/2020 09:43:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (27840,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/11/2020 02:16:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (51876,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/10/2020 11:44:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (62840,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/10/2020 09:43:37 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (39380,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (07/13/2020 11:05:42 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {0134A8B2-3407-4B45-AD25-E9F7C92A80BC} did not register with DCOM within the required timeout.
Error: (07/13/2020 10:55:38 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {0134A8B2-3407-4B45-AD25-E9F7C92A80BC} did not register with DCOM within the required timeout.
Error: (07/13/2020 10:52:01 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/13/2020 10:47:18 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:48 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {7160A13D-73DA-4CEA-95B9-37356478588A} did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:48 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {7160A13D-73DA-4CEA-95B9-37356478588A} did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:47 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220!App.AppXtzbhf6k67jn9be72jwc3zje4rv3bb4am.mca did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:45 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220!App.AppXtzbhf6k67jn9be72jwc3zje4rv3bb4am.mca did not register with DCOM within the required timeout.
CodeIntegrity:
===================================
Date: 2020-07-13 10:42:57.852
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.846
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.835
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.829
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.378
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-12 12:48:48.533
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-12 12:48:48.527
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-12 12:48:48.515
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO H9ET81WW(1.18) 12/05/2013
Motherboard: LENOVO 20206
Processor: Intel(R) Celeron(R) CPU 1005M @ 1.90GHz
Percentage of memory in use: 84%
Total physical RAM: 6736.54 MB
Available physical RAM: 1065.86 MB
Total Virtual: 12409.14 MB
Available Virtual: 2745.68 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:194.73 GB) (Free:109.69 GB) NTFS
Drive d: (DATA) (Fixed) (Total:269.91 GB) (Free:122.25 GB) NTFS
Drive e: () (Removable) (Total:0.95 GB) (Free:0.14 GB) FAT
\\?\Volume{c7125d87-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{c7125d87-0000-0000-0000-40d130000000}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C7125D87)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=194.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=593 MB) - (Type=27)
Partition 4: (Not Active) - (Size=269.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Size: 968.8 MB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-07-2020 01
Ran by zember (administrator) on LENOVOB590 (LENOVO 20206) (13-07-2020 11:04:56)
Running from C:\Users\zembe\Desktop
Loaded Profiles: zember
Platform: Windows 10 Home Version 1909 18363.900 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AlcorMicro, Corp. -> Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Disig a.s. -> Disig a.s.) C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_57c0cedf358ad293\driver\tphkload.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\zembe\AppData\Local\Microsoft\Teams\current\Teams.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12006.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(uTorrent.CZ -> BitTorrent, Inc.) [File not signed] C:\Users\zembe\AppData\Roaming\uTorrent\utorrent.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2985712 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [179536 2019-10-31] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [548864 2013-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2013-07-12] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\zembe\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [uTorrent] => C:\Users\zembe\AppData\Roaming\uTorrent\utorrent.exe [414656 2018-10-25] (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\zembe\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-03] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48594832 2020-06-15] (Google LLC -> )
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-17] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Run: [Opera Browser Assistant] => C:\Users\zembe\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3004440 2020-05-13] (Opera Software AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Web Signer.lnk [2019-07-24]
ShortcutTarget: Web Signer.lnk -> C:\Program Files (x86)\Disig\Disig Web Signer 1.0.7\Updater\WebSignerTray.exe (Disig a.s. -> Disig a.s.)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0927A769-2CFF-49B6-AE43-4D4C6EE92853} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-12] (Adobe Inc. -> Adobe)
Task: {1288CE4C-2485-4330-8800-66BFF8A60410} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {256A2A53-2C28-4D49-904C-5F8D8113F302} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {27A1ECD5-7F3D-43C2-BB8F-26E2D256C829} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe [59776 2019-11-12] (Lenovo -> )
Task: {31B3E1D0-7273-43A3-8A1B-258899A3B9C5} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758648 2020-03-31] (Lenovo -> )
Task: {400CE9EC-5367-4C80-84D6-56AAD4032ADF} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2985712 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {467A1818-5F1D-4FA2-BD5E-A4897D5E9B21} - System32\Tasks\update-S-1-5-21-1540107938-3102307928-580545200-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {47073ECB-03AF-402C-8CB9-98920B1EBDC2} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {50300EC7-8741-4A2D-BFBC-938AD294242A} - System32\Tasks\Opera scheduled Autoupdate 1562361389 => C:\Users\zembe\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-13] (Opera Software AS -> Opera Software)
Task: {57F198EA-06F7-4C9C-9541-08560709BBEA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {58BE4D60-E483-4AB6-B706-ABBC5B75B77E} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [851800 2018-12-26] (Lenovo -> Lenovo.)
Task: {6A4EB032-09CD-4EA5-BC62-048AB2F09E0D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758648 2020-03-31] (Lenovo -> )
Task: {6C005699-4DC7-45B8-B08D-81211C2E4110} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [688128 2019-01-30] (FreeDownloadManager.org) [File not signed]
Task: {724CCF86-624D-43AD-892E-7C3903A593E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-17] (Piriform Software Ltd -> Piriform Ltd)
Task: {73E68DB1-F831-4D1D-9572-119E957089EF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {B2E3F344-94FE-4850-8BEC-411E5FF3025E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
Task: {B9BD8D84-6F91-40A5-B6B8-E9E67D11C3A9} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [113024 2019-11-12] (Lenovo -> Lenovo)
Task: {C834BEA8-DE9A-417D-AF80-D6C1EFF6B7E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {D7253912-0F5F-4895-A95B-5ACB56F194BD} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1540107938-3102307928-580545200-1001 => C:\Users\zembe\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [122344 2019-04-04] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {E018D74D-2107-4BB9-A14D-C744B74702D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-13] (Google Inc -> Google Inc.)
Task: {F00D895E-E643-4914-9946-BF3EB9072691} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F589A27C-2F20-485F-BCF1-CC7742DF56E7} - System32\Tasks\Opera scheduled assistant Autoupdate 1582730253 => C:\Users\zembe\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-05-13] (Opera Software AS -> Opera Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-1540107938-3102307928-580545200-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9535daab-06d5-4de2-bb28-e62b8c6eb29a}: [NameServer] 192.168.1.1,8.8.4.4
Tcpip\..\Interfaces\{9535daab-06d5-4de2-bb28-e62b8c6eb29a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{957a2ed0-2633-4a85-afcc-279840f892d8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b1fa505a-2c3f-4e7f-a8ca-f0ebd47b5f39}: [DhcpNameServer] 10.10.10.1
Internet Explorer:
==================
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\zembe\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-12]
Edge Notifications: Default -> hxxps://teams.microsoft.com; hxxps://www.youtube.com
Edge HomePage: Default -> chrome://apps/
Edge DefaultSearchURL: Default -> hxxps://blobs.officehome.msocdn.com/versionless/webmanifestimages/OfficeDesktop_192.png
Edge Session Restore: Default -> is enabled.
Edge Extension: (Office) - C:\Users\zembe\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2020-04-15]
FireFox:
========
FF DefaultProfile: e1mgl8rl.default
FF ProfilePath: C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default [2020-07-12]
FF Notifications: Mozilla\Firefox\Profiles\e1mgl8rl.default -> hxxps://www.facebook.com
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\sp@avast.com.xpi [2020-05-06]
FF Extension: (LastPass: Free Password Manager) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\support@lastpass.com.xpi [2020-05-06]
FF Extension: (Avast Online Security) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\wrc@avast.com.xpi [2020-05-06]
FF Extension: (Video DownloadHelper) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-04-07]
FF Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\zembe\AppData\Roaming\Mozilla\Firefox\Profiles\e1mgl8rl.default\Extensions\{ddc62400-f22d-4dd3-8b4a-05837de53c2e}.xpi [2020-05-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~1.DLL [2019-03-06] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\PROGRA~2\Ditec\DViewer\NPDITE~1.DLL [2020-03-18] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~2.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~3.DLL [2016-12-15] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~1.DLL [2020-03-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~2.DLL [2020-03-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin HKU\S-1-5-21-1540107938-3102307928-580545200-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\zembe\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-03] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-07-13]
Chrome:
=======
CHR Profile: C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default [2020-07-13]
CHR Notifications: Default -> hxxps://dennikn.sk; hxxps://isport.blesk.cz; hxxps://live.ifortuna.sk; hxxps://meet.google.com; hxxps://mnamky-recepty.webnoviny.sk; hxxps://naszosie.pl; hxxps://promuze.blesk.cz; hxxps://road.cc; hxxps://sk.mall.tv; hxxps://sport.aktuality.sk; hxxps://sport.pravda.sk; hxxps://sportowefakty.wp.pl; hxxps://strategie-hnonline.os.tc; hxxps://teams.microsoft.com; hxxps://vzdelavame.os.tc; hxxps://www.apkonline.net; hxxps://www.blesk.cz; hxxps://www.chess.com; hxxps://www.dreamstime.com; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.joj.sk; hxxps://www.letour.fr; hxxps://www.sport.cz; hxxps://www.svetandroida.cz; hxxps://www.ta3.com; hxxps://www.topky.sk; hxxps://www.tyzden.sk; hxxps://www.youtube.com
CHR HomePage: Default -> chrome://apps/
CHR StartupUrls: Default -> "hxxps://imo.im/new/","hxxps://mail.google.com/mail/u/0/#all","hxxp://www.gmail.com/","file:///usr/share/doc/ ... google.sk/"
CHR DefaultSearchURL: Default -> hxxp://www.zive.cz/Client.Images/favicon.ico
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prekladač Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-19]
CHR Extension: (Prezentácie) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-13]
CHR Extension: (Dokumenty) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-13]
CHR Extension: (Disk Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-13]
CHR Extension: (YouTube) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-13]
CHR Extension: (Facebook) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2019-03-13]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-07-03]
CHR Extension: (Screen capture, screenshot share/save) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjbjepchlgclmpinlbbeinajphohgfod [2019-03-13]
CHR Extension: (Týden Živě: Microsoft vypne svůj nejz...) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnblcnmjaaakjjebecpefncfajnpebgk [2020-07-13]
CHR Extension: (TeX equation editor) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggdddnmjoomglnkjhcpcnjbieiojini [2019-03-13]
CHR Extension: (Tabuľky) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-13]
CHR Extension: (Star Atlas) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gheikhdfflhlbemfmhcfpeblehemeklp [2019-03-13]
CHR Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdhinadidafjejdhmfkjgnolgimiaplp [2020-07-04]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2020-07-03]
CHR Extension: (Picture-in-Picture Extension (by Google)) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgfoiooedgoejojocmhlaklaeopbecg [2020-04-01]
CHR Extension: (Music Player for Google Drive) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfeekfpnjbdmelcapngdgkjnhgijjkh [2019-03-13]
CHR Extension: (Pixlr Editor) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2019-03-13]
CHR Extension: (Audio Joiner) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihiafjkopgiakbmihgoieodihjcblfbk [2019-03-13]
CHR Extension: (Imagus) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\immpkjjlgappgfkkfieppnmlhakdmaab [2020-04-17]
CHR Extension: (Twitter) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi [2020-04-20]
CHR Extension: (Mapy Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\jofhmakmcmhjkgbkaknehpglphepfmii [2020-02-16]
CHR Extension: (ShiftEdit) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcgmndephhjcabhhjfcmncnhbmgbkpij [2019-03-13]
CHR Extension: (Webcam Toy) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2019-03-13]
CHR Extension: (Mapy Google) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-03-13]
CHR Extension: (Žive.sk) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfkdibdekaipckjaaeaklehcmngjhiah [2020-04-19]
CHR Extension: (Merge PDF - Split PDF - Sejda.com) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhcknfplofcnpdjalbhnjognbpncojbi [2019-03-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Office) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocdlmjhbenodhlknglojajgokahchlkk [2020-05-10]
CHR Extension: (Disig Web Signer 1.0.7) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbdbcaekkgabdfaabepfjgiooilmaoe [2019-07-24]
CHR Extension: (Outlook.com) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2019-03-13]
CHR Extension: (Gmail) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\zembe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-31]
CHR HKU\S-1-5-21-1540107938-3102307928-580545200-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [odbdbcaekkgabdfaabepfjgiooilmaoe]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [File not signed]
S2 dLauncherLoopback; C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe [154960 2019-08-02] (DITEC, a.s. -> )
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55424 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892760 2018-12-26] (Lenovo -> Lenovo.)
R2 RemoteServerWin; C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3186264 2019-08-04] (Unified Intents AB -> Unified Intents AB)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_57c0cedf358ad293\driver\TPHKLOAD.exe [425352 2019-01-17] (Lenovo -> Lenovo Group Limited)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-12] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [149944 2019-10-31] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186832 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [77176 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [114640 2019-10-31] (ESET, spol. s r.o. -> ESET)
S3 fiddrv64; no ImagePath
S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2019-03-19] (Microsoft Windows -> MediaTek Inc.)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [44160 2018-12-26] (Lenovo -> Lenovo.)
S3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [18952 2019-12-10] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33008 2019-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2019-08-04] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [1049984 2013-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-13 11:04 - 2020-07-13 11:08 - 000029981 _____ C:\Users\zembe\Desktop\FRST.txt
2020-07-13 10:57 - 2020-07-13 11:07 - 000000000 ____D C:\FRST
2020-07-13 10:56 - 2020-07-13 10:55 - 002292736 _____ (Farbar) C:\Users\zembe\Desktop\FRST64.exe
2020-07-13 10:55 - 2020-07-13 10:55 - 002292736 _____ (Farbar) C:\Users\zembe\Downloads\FRST64.exe
2020-07-12 16:29 - 2020-07-12 16:49 - 000000000 ____D C:\Users\zembe\Desktop\fotky na stranku
2020-07-10 10:02 - 2020-07-10 10:02 - 000513238 _____ C:\Users\zembe\Downloads\5220182232.pdf
2020-07-08 15:41 - 2020-07-08 15:41 - 000185770 _____ C:\Users\zembe\Downloads\VM_ucitel pre nizsie stred_vzdel MAT v ZSsMS Nitrianska Blatnica.pdf
2020-07-08 15:41 - 2020-07-08 15:41 - 000184262 _____ C:\Users\zembe\Downloads\VM_ucitel pre primarne vzdelavanie v ZSsMS Nitrianska Blatnica.pdf
2020-07-08 15:39 - 2020-07-08 15:39 - 000194486 _____ C:\Users\zembe\Downloads\VM_ucitel_1_stupen_ZS_Tribecska_22_Topolcany.pdf
2020-07-08 15:39 - 2020-07-08 15:39 - 000189182 _____ C:\Users\zembe\Downloads\VM_vychovavatel v SKD v SSI_Tovarnicka 1632_Topolcany.pdf
2020-07-08 15:38 - 2020-07-08 15:38 - 000174549 _____ C:\Users\zembe\Downloads\VM_ZS_Scasneho 22_Nitra-ucitelka pre II_stupen ZS aprobacia MAT.pdf
2020-07-08 15:37 - 2020-07-08 15:37 - 000209385 _____ C:\Users\zembe\Downloads\VM_ZS_Hajske_ucitelka pre nizsie stredne vzdelavanie aprobacia bio_fyz_chem.pdf
2020-07-08 15:37 - 2020-07-08 15:37 - 000205922 _____ C:\Users\zembe\Downloads\VM_ZS_Ucitel pre primarne vzdelavanie.pdf
2020-07-07 16:20 - 2020-07-07 16:21 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (8)
2020-07-07 16:20 - 2020-07-07 16:20 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (7)
2020-07-07 16:19 - 2020-07-07 16:19 - 000024471 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E09_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-07-06 22:07 - 2020-07-06 22:07 - 000121899 _____ C:\Users\zembe\Downloads\V_1152339016_6_20200630_C1_P0.pdf
2020-07-06 18:05 - 2020-07-06 18:05 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (6)
2020-07-06 18:05 - 2020-07-06 18:05 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (5)
2020-07-06 16:35 - 2020-07-06 16:35 - 000446066 _____ C:\Users\zembe\Downloads\faktury 30.06.2020.pdf
2020-07-05 14:23 - 2020-07-05 14:23 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (4)
2020-07-05 14:22 - 2020-07-05 14:22 - 000000002 _____ C:\Users\zembe\Downloads\stiahnuť (3)
2020-07-02 23:24 - 2020-07-02 23:24 - 000183597 _____ C:\Users\zembe\Downloads\VM_ucitel MAT v ZS Skultetyho 1 Nitra.pdf
2020-07-01 21:27 - 2020-07-01 21:27 - 000020941 _____ C:\Users\zembe\Downloads\[CzT]Avengers_Age_of_Ultron_2015_CZ_.torrent
2020-06-30 16:29 - 2020-06-30 16:29 - 000016505 _____ C:\Users\zembe\Downloads\ZS_SP_100005121 (1).xlsx
2020-06-30 16:25 - 2020-06-30 16:25 - 000016720 _____ C:\Users\zembe\Downloads\dochádzka excel.xlsx
2020-06-30 16:22 - 2020-06-30 16:22 - 000017152 _____ C:\Users\zembe\Downloads\dochádzka 1.A (1).xlsx
2020-06-30 16:12 - 2020-06-30 16:12 - 000016895 _____ C:\Users\zembe\Downloads\Sociálna poisťovňa.xlsx
2020-06-30 16:12 - 2020-06-30 16:12 - 000016695 _____ C:\Users\zembe\Downloads\Tabulka pre SP 4.A.xlsx
2020-06-30 16:11 - 2020-06-30 16:12 - 000016560 _____ C:\Users\zembe\Downloads\ZS_SP_100005121.xlsx
2020-06-29 16:47 - 2020-06-29 16:47 - 000016795 _____ C:\Users\zembe\Downloads\dochádzka 1.A.xlsx
2020-06-29 16:19 - 2020-06-29 16:19 - 000027450 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E08_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-29 16:18 - 2020-06-29 16:18 - 000029217 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_S02E10_TvRip_1080p_.torrent
2020-06-29 14:37 - 2020-06-29 14:37 - 000442530 _____ C:\Users\zembe\Downloads\HNN182223447.pdf
2020-06-29 12:28 - 2020-06-29 12:28 - 000045502 _____ C:\Users\zembe\Downloads\22b12142f3dbcda5.xls
2020-06-28 21:02 - 2020-07-01 13:33 - 000000000 ____D C:\Users\zembe\Desktop\Rada školy
2020-06-28 21:00 - 2020-06-28 21:05 - 000000000 ____D C:\Users\zembe\Desktop\Materiály na odovzdanie ku koncu šk. roka 2019-2020
2020-06-28 13:49 - 2020-06-28 13:49 - 007209564 _____ C:\Users\zembe\Downloads\Fyzika pre 6. ročník ZŠ a 1. ročník gymnázií s osemročným štúdiom.pdf
2020-06-27 21:12 - 2020-06-27 21:12 - 000028243 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E07_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-27 21:12 - 2020-06-27 21:12 - 000014681 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E09_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-26 14:55 - 2020-06-26 15:25 - 000547114 _____ C:\Users\zembe\Downloads\Zápisný lístok - školské obedy.pdf
2020-06-26 14:18 - 2020-06-26 14:18 - 000123067 _____ C:\Users\zembe\Downloads\Zápisný lístok ZŠ 2020-21.pdf
2020-06-24 20:05 - 2020-06-24 20:05 - 000225455 _____ C:\Users\zembe\Downloads\preberanie funkcie.pdf
2020-06-24 19:54 - 2020-06-24 19:54 - 000321405 _____ C:\Users\zembe\Downloads\ševt - objednávka tlačivá - jún 2020.pdf
2020-06-24 19:12 - 2020-06-24 19:12 - 000026304 _____ C:\Users\zembe\Downloads\X5406021.dbf
2020-06-24 18:04 - 2020-06-24 18:50 - 000016596 _____ C:\Users\zembe\Downloads\deviataci zs_sp_100005121.xlsx
2020-06-23 16:44 - 2020-06-23 16:44 - 000175104 _____ C:\Users\zembe\Downloads\Počet AU od 1.9.2019 do 31.12.2019 (1).xls
2020-06-23 16:15 - 2020-06-23 16:15 - 000917439 _____ C:\Users\zembe\Downloads\15057.zip
2020-06-23 16:12 - 2020-06-23 16:12 - 000122503 _____ C:\Users\zembe\Downloads\16086.zip
2020-06-23 16:08 - 2020-06-23 16:08 - 000082250 _____ C:\Users\zembe\Downloads\Faktúra.pdf
2020-06-23 15:56 - 2020-06-23 15:56 - 000114013 _____ C:\Users\zembe\Downloads\Objednávka pre mš 2020-21_Sestava 1.pdf
2020-06-23 15:46 - 2020-06-23 15:46 - 000365547 _____ C:\Users\zembe\Downloads\objednavka tlaciv (1).pdf
2020-06-23 15:38 - 2020-06-23 15:38 - 000365547 _____ C:\Users\zembe\Downloads\objednavka tlaciv.pdf
2020-06-22 18:29 - 2020-06-22 18:37 - 224559784 _____ (The GIMP Team ) C:\Users\zembe\Downloads\gimp-2.10.20-setup-1.exe
2020-06-22 16:19 - 2020-06-22 16:19 - 000001186 _____ C:\Users\Public\Desktop\Fotopak.lnk
2020-06-22 16:19 - 2020-06-22 16:19 - 000001186 _____ C:\ProgramData\Desktop\Fotopak.lnk
2020-06-22 16:19 - 2020-06-22 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fotopak
2020-06-22 16:19 - 2020-06-22 16:19 - 000000000 ____D C:\Program Files (x86)\FOTOPAK s.r.o
2020-06-22 16:04 - 2020-06-22 16:04 - 001795000 _____ C:\Users\zembe\Downloads\orez3.pdf
2020-06-22 16:00 - 2020-06-22 16:00 - 001155084 _____ C:\Users\zembe\Downloads\orez2.pdf
2020-06-22 15:58 - 2020-06-22 15:59 - 000767180 _____ C:\Users\zembe\Downloads\orez1.pdf
2020-06-22 12:47 - 2020-06-22 12:47 - 000035929 _____ C:\Users\zembe\Downloads\ef09de9a7770d227.xls
2020-06-22 12:41 - 2020-06-22 12:41 - 000035929 _____ C:\Users\zembe\Downloads\dd5d589ebf9fec8a.xls
2020-06-21 16:43 - 2020-06-21 16:43 - 000071116 _____ C:\Users\zembe\Downloads\[CzT]Most_Bron_1_3_serie_CZ_TvRip_.torrent
2020-06-21 16:36 - 2020-06-21 16:36 - 000073544 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_1_serie_CZ_WebRip_720p_.torrent
2020-06-21 16:18 - 2020-06-21 16:18 - 000013937 _____ C:\Users\zembe\Downloads\[CzT]V_pasti_Of_r_S01E01_CZ_WebRip_720p_.torrent
2020-06-20 14:04 - 2020-06-20 14:04 - 000057344 _____ C:\Users\zembe\Downloads\VL OK MO Z5 Z9 ZS TO 2020 (2).xls
2020-06-19 16:49 - 2020-06-30 16:55 - 000017532 _____ C:\Users\zembe\Desktop\ZS_SP_100005121.xlsx
2020-06-19 16:37 - 2020-06-19 16:37 - 000009300 _____ C:\Users\zembe\Downloads\ZS_SP_100005121 (1).csv
2020-06-19 16:34 - 2020-06-19 16:34 - 000012898 _____ C:\Users\zembe\Downloads\Tabuľka pre SP.xlsx
2020-06-18 23:30 - 2020-06-18 23:30 - 000024854 _____ C:\Users\zembe\Downloads\[SkT]Narcos__Mexiko___Narcos__Mexico_S01E06_(CZ)[WebRip][1080p]_=_CSFD_86%.torrent
2020-06-18 14:16 - 2020-06-18 14:16 - 000282883 _____ C:\Users\zembe\Downloads\Test 4.pdf
2020-06-17 15:00 - 2020-06-17 15:00 - 000403591 _____ C:\Users\zembe\Downloads\Test 3.pdf
2020-06-17 14:03 - 2020-06-17 14:03 - 000008936 _____ C:\Users\zembe\Downloads\ZS_SP_100005121.csv
2020-06-16 13:38 - 2020-06-16 13:38 - 000224240 _____ C:\Users\zembe\Downloads\Test 2.pdf
2020-06-15 15:05 - 2020-06-15 15:05 - 000205185 _____ C:\Users\zembe\Downloads\Test 1.pdf
2020-06-15 13:40 - 2020-06-24 16:01 - 000000000 ____D C:\Users\zembe\Desktop\fotky kolaž deviataci
2020-06-14 23:14 - 2020-06-14 23:14 - 000288768 _____ C:\Users\zembe\Downloads\Rada skoly a vyberove konanie 4_2019 (3).ppt
2020-06-14 16:02 - 2020-06-14 16:02 - 000017161 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E08_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-14 16:02 - 2020-06-14 16:02 - 000012781 _____ C:\Users\zembe\Downloads\[SkT]V_pasti___Trapped_S02E07_(CZ)[TvRip][1080i]_=_CSFD_83%.torrent
2020-06-14 14:17 - 2020-06-14 14:18 - 000992969 _____ C:\Users\zembe\Downloads\Deviatacka štatistika (1).pptx
2020-06-14 14:15 - 2020-06-14 14:15 - 000992969 _____ C:\Users\zembe\Downloads\Deviatacka štatistika.pptx
2020-06-14 13:43 - 2020-06-14 13:43 - 000624921 _____ C:\Users\zembe\Downloads\Zo života zvierat.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-13 11:14 - 2019-04-22 13:57 - 000000000 ____D C:\Users\zembe\AppData\Roaming\uTorrent
2020-07-13 11:08 - 2019-03-13 21:05 - 000000000 ___HD C:\Users\zembe\Desktop\.tmp.drivedownload
2020-07-13 10:51 - 2019-06-23 22:02 - 000000000 ___RD C:\Users\zembe\Disk Google (fotky2.zsobdokovce@gmail.com)
2020-07-13 10:50 - 2019-03-13 21:02 - 000000000 ___RD C:\Users\zembe\Disk Google
2020-07-13 10:47 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-12 16:35 - 2019-03-13 20:38 - 000000000 ____D C:\Users\zembe\AppData\LocalLow\Mozilla
2020-07-12 12:48 - 2020-01-16 00:03 - 000003574 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-12 12:48 - 2020-01-16 00:03 - 000003450 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-11 22:50 - 2019-08-30 00:56 - 001853932 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-11 22:50 - 2019-08-30 00:49 - 000707862 _____ C:\WINDOWS\system32\perfh005.dat
2020-07-11 22:50 - 2019-08-30 00:49 - 000145112 _____ C:\WINDOWS\system32\perfc005.dat
2020-07-11 22:50 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-11 22:50 - 2019-03-13 23:06 - 000145248 _____ C:\WINDOWS\system32\perfh01B.dat
2020-07-11 22:50 - 2019-03-13 23:06 - 000032280 _____ C:\WINDOWS\system32\perfc01B.dat
2020-07-11 22:50 - 2019-03-13 20:20 - 000000000 ____D C:\Users\zembe\AppData\Roaming\vlc
2020-07-11 14:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-10 23:39 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-10 20:46 - 2019-08-30 00:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-09 09:43 - 2020-01-16 00:05 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-09 09:43 - 2020-01-16 00:05 - 000002265 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-07-09 09:43 - 2020-01-16 00:05 - 000002265 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-07-08 17:43 - 2019-08-30 01:09 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-08 17:43 - 2019-03-13 20:36 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-07-06 17:55 - 2019-03-13 20:09 - 000000000 ____D C:\Users\zembe\AppData\Local\Packages
2020-07-05 18:10 - 2019-03-13 23:50 - 000000000 ____D C:\Users\zembe\AppData\Local\CrashDumps
2020-07-05 18:01 - 2019-03-13 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-07-02 17:45 - 2019-05-06 16:54 - 000000643 _____ C:\Users\zembe\Desktop\aScAgenda.lnk
2020-07-01 14:07 - 2020-04-24 00:17 - 000000000 ____D C:\Users\zembe\Documents\Lightshot
2020-07-01 14:07 - 2019-03-13 21:30 - 000000000 ___HD C:\Users\zembe\Documents\.tmp.drivedownload
2020-06-29 22:21 - 2019-04-10 13:36 - 000000000 ____D C:\Users\zembe\AppData\Local\LenovoServiceBridge
2020-06-27 14:37 - 2019-09-26 22:02 - 000000000 ____D C:\SVS_Proforient ZS
2020-06-24 19:03 - 2019-09-26 22:01 - 000043867 _____ C:\Users\zembe\Downloads\export.csv
2020-06-22 20:32 - 2019-03-13 20:17 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-22 20:32 - 2019-03-13 20:17 - 000002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-06-22 20:32 - 2019-03-13 20:17 - 000002272 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-06-22 08:19 - 2019-08-30 01:09 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-06-21 23:51 - 2020-05-01 23:35 - 000000000 ____D C:\Program Files (x86)\SMART Technologies
2020-06-21 13:21 - 2020-05-01 23:36 - 000000000 ____D C:\ProgramData\SMART Technologies
2020-06-21 13:08 - 2019-03-13 20:35 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-06-21 12:49 - 2020-05-03 14:33 - 000000000 ____D C:\Users\zembe\AppData\Local\Deployment
2020-06-20 09:42 - 2019-12-11 19:46 - 000000000 ____D C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome
2020-06-18 10:16 - 2020-04-07 23:26 - 000000000 ____D C:\Users\zembe\AppData\Local\OpenBoard
2020-06-18 06:33 - 2019-03-13 20:15 - 000000000 ____D C:\Users\zembe\AppData\Local\PlaceholderTileLogoFolder
==================== Files in the root of some directories ========
2020-04-23 08:51 - 2020-04-23 08:51 - 000000003 _____ () C:\Users\zembe\AppData\Local\updater.log
2020-04-23 08:51 - 2020-04-23 08:51 - 000000424 _____ () C:\Users\zembe\AppData\Local\UserProducts.xml
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by zember (13-07-2020 11:14:25)
Running from C:\Users\zembe\Desktop
Windows 10 Home Version 1909 18363.900 (X64) (2019-08-29 23:10:30)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1540107938-3102307928-580545200-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1540107938-3102307928-580545200-503 - Limited - Disabled)
Guest (S-1-5-21-1540107938-3102307928-580545200-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1540107938-3102307928-580545200-504 - Limited - Disabled)
zember (S-1-5-21-1540107938-3102307928-580545200-1001 - Administrator - Enabled) => C:\Users\zembe
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.371 - Adobe)
Alcor Micro USB Card Reader (HKLM-x32\...\{AE63FFAC-B71A-4B73-BF9C-DB00C78BD9BD}) (Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.17.3042.73586 - Alcor Micro Corp.)
Alf (HKLM-x32\...\Alf) (Version: 3.4 - PcProfi s.r.o.)
aSc TimeTables (HKLM-x32\...\aScTimeTables) (Version: 2020 - aSc Applied Software Consultants s.r.o)
aScAgenda (HKLM-x32\...\ImageMaker) (Version: - )
Asistent pri aktualizácii na Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
Backup and Sync from Google (HKLM\...\{01D33BEA-673C-439C-A7C7-DE5B236DB842}) (Version: 3.50.3166.0017 - Google, Inc.)
Balík softvéru eID (HKLM-x32\...\{27fcb623-2a19-4570-ab03-96077bc85e1d}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Balík softvéru eID (HKLM-x32\...\{ada2b0d4-ff66-4697-86d1-676a81f20d74}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Bit4id - miniLector (HKLM-x32\...\Bit4id - miniLector) (Version: 3.7 - Bit4id)
Brother MFL-Pro Suite DCP-1610W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
D.Launcher (x86) (HKLM-x32\...\{BB9946A5-07FE-4CC5-8D74-BDF7594DAE62}) (Version: 1.2.0.2 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{7F16A5CF-C9B8-4A75-B11F-32DFDA997F92}) (Version: 4.0.20 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{DE521A09-F131-4B2C-B2FE-25EE3E451A9D}) (Version: 4.0.13 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{469b40e4-942f-4580-b185-4ea063723bb6}) (Version: 1.0.22 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{5B3EEED0-8E1D-47EA-8B20-66086AB09DBA}) (Version: 4.0.2029 - DITEC, a.s.)
Disig Web Signer 1.0.7 (HKLM-x32\...\{21859B7E-5E38-4892-A480-FA8B180ADE72}) (Version: 1.1.8 - Disig)
DLL knižnice (HKLM-x32\...\DLL knižnice_is1) (Version: - Školské výpočtové stredisko Michalovce)
EAC MW klient (HKLM-x32\...\{92879DFD-B281-447B-AC54-ED065B0BBB17}) (Version: 3.3.0 - Ministerstvo vnútra Slovenskej republiky)
ESET Endpoint Security (HKLM\...\{96402769-F07F-4636-9D99-E2782BA22484}) (Version: 7.2.2055.0 - ESET, spol. s r.o.)
Fotopak (HKLM\...\{1B50488E-9DE1-471E-B370-8B5D9802E269}) (Version: 2.0.18.0 - FOTOPAK s.r.o.)
Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.38.7312 - FreeDownloadManager.ORG)
GemPcCCID (HKLM\...\{C2C14C20-A217-4FCA-B668-89B6C70B6EFF}) (Version: 2.0.7 - Gemalto)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HWiNFO64 Version 6.14 (HKLM\...\HWiNFO64_is1) (Version: 6.14 - Martin Malik - REALiX)
Integrated Camera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 5.13.415.31 - Vimicro)
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Lenovo Diagnostics Tool (HKLM\...\{C7DB8EA5-C9C1-468F-B90C-CA206CA5C6BE}) (Version: 4.26.1 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.7 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0096 - Lenovo)
LibreOffice 6.4.3.2 (HKLM\...\{E95546E2-BAB2-4E42-97AB-BC7D497D405F}) (Version: 6.4.3.2 - The Document Foundation)
Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
Microsoft Azure Information Protection Viewer (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\{a8406147-34a4-4193-a552-ddf4fc68a707}) (Version: 1.54.59.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.61 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office 2016 Professional Plus (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\OneDriveSetup.exe) (Version: 19.012.0121.0011 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Teams) (Version: 1.3.00.13565 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 76.0 (x64 sk) (HKLM\...\Mozilla Firefox 76.0 (x64 sk)) (Version: 76.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0.2 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM-x32\...\{90160000-001F-0405-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM-x32\...\{90160000-001F-041B-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Office (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\ccb4df306c8d1bb267155a2207fb3946) (Version: 1.0 - Office)
OpenBoard (1.5.4.240) (HKLM-x32\...\{8CCA6AC7-BBF9-4DD2-8E70-A907E0FCA38F}}_is1) (Version: 1.5.4.240 - Open Education Foundation)
Opera Stable 68.0.3618.104 (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\Opera 68.0.3618.104) (Version: 68.0.3618.104 - Opera Software)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.6.4.13 - Synaptics Incorporated)
ŠVS Proforient 2020.03 ZŠ (HKLM-x32\...\ŠVS Proforient ZŠ_is1) (Version: - Školské výpočtové stredisko Michalovce)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
Testovanie žiakov 2019.06 ZŠ (HKLM-x32\...\Testovanie žiakov ZŠ_is1) (Version: - Školské výpočtové stredisko Michalovce)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.7.0 - Unified Intents AB)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
version 5.13.415.31/1.0.0.27/3.4.5.11(H1C307WW) (HKLM-x32\...\{4AD4461B-8BD4-4354-805C-E97E7A404906}_is1) (Version: - Lenovo Group Limited)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WinCITY Registratúra - preinštalácia (HKLM-x32\...\WinCITY Registratúra - preinštalácia) (Version: V.2018.2 - TOPSET Solutions s.r.o.)
Ziacik v2.7 (HKLM-x32\...\Ziacik v2.7) (Version: - )
Zoom (HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-18] (Dolby Laboratories)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-07-07] (Microsoft Corporation)
GeoGebra Geometrie -> C:\Program Files\WindowsApps\18FD273D.GeoGebraGeometry_6.0.562.0_neutral__1f5eszzrqmqpy [2019-10-21] (Internationales GeoGebra Institut)
GeoGebra grafický kalkulátor -> C:\Program Files\WindowsApps\18FD273D.GeoGebraGraphingCalculator_6.0.573.0_neutral__1f5eszzrqmqpy [2020-02-13] (Internationales GeoGebra Institut)
GeoGebra Klasik -> C:\Program Files\WindowsApps\18FD273D.GeoGebra_6.0.562.0_neutral__1f5eszzrqmqpy [2019-10-21] (Internationales GeoGebra Institut)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-05] (Instagram)
Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_18.7.500.0_x64__4n2hpmxwrvr6p [2020-05-24] (XBMC Foundation)
Messenger (Beta) -> C:\Program Files\WindowsApps\Facebook.FacebookMessenger_600.1.119.0_x64__8xx8rvfyw5nnt [2020-07-10] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-04] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_20.10615.5289.0_x64__8wekyb3d8bbwe [2020-07-01] (Microsoft Corporation)
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c [2020-06-27] (Skype) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\zembe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1540107938-3102307928-580545200-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\zembe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-31] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Office.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=ocdlmjhbenodhlknglojajgokahchlkk
ShortcutWithArgument: C:\Users\zembe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Mapy Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jofhmakmcmhjkgbkaknehpglphepfmii
==================== Loaded Modules (Whitelisted) =============
2019-03-13 22:23 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2019-03-13 22:24 - 2018-01-18 15:39 - 000519168 _____ () [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2019-03-13 22:24 - 2017-12-22 12:53 - 000180224 _____ () [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2019-03-13 22:25 - 2018-01-18 15:39 - 000208896 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2019-03-13 22:25 - 2018-01-18 15:39 - 001720832 _____ () [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2019-03-13 22:24 - 2017-11-07 19:55 - 000137728 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2019-03-13 22:24 - 2017-08-18 11:23 - 000087552 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2019-03-13 22:24 - 2017-08-18 11:23 - 017974784 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2019-03-13 22:24 - 2017-11-07 20:04 - 000090624 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLSvk.dll
2019-04-13 15:41 - 2017-11-07 19:55 - 000440832 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\Track.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_ctypes.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_elementtree.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_hashlib.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_multiprocessing.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_psutil_windows.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_socket.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_ssl.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\_yappi.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\bz2.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\common.time34.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\hashobjs_ext.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\PIL._imaging.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pyexpat.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pysqlite2._sqlite.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pythoncom27.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\pywintypes27.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\select.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\thumbnails_ext.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\unicodedata.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\usb_ext.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32api.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32com.shell.shell.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32crypt.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32event.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32file.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32gui.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32inet.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32pdh.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32pipe.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32process.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32profile.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32security.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\win32ts.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.conditional.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.connectivity.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.device_monitor.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.volumes.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\windows.winwrap.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._controls_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._core_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._gdi_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._html2.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._misc_.pyd
2020-07-13 10:57 - 2020-07-13 10:57 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wx._windows_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_ctypes.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_elementtree.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_hashlib.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_multiprocessing.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_psutil_windows.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_socket.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_ssl.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\_yappi.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\bz2.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\common.time34.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\hashobjs_ext.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\PIL._imaging.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pyexpat.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pysqlite2._sqlite.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pythoncom27.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\pywintypes27.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\select.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\thumbnails_ext.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\unicodedata.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\usb_ext.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32api.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32com.shell.shell.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32crypt.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32event.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32file.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32gui.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32inet.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32pdh.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32pipe.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32process.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32profile.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32security.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\win32ts.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.conditional.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.connectivity.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.device_monitor.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.volumes.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\windows.winwrap.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._controls_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._core_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._gdi_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._html2.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._misc_.pyd
2020-07-13 10:51 - 2020-07-13 10:51 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wx._windows_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000114176 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_ctypes.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000172544 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_elementtree.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 002250240 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_hashlib.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000032256 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_multiprocessing.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000046080 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_psutil_windows.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000047616 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_socket.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 002819584 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_ssl.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000026112 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\_yappi.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000080896 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\bz2.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000016384 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\common.time34.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000007680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\hashobjs_ext.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000301568 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\PIL._imaging.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000168448 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pyexpat.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001084416 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pysqlite2._sqlite.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000548864 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pythoncom27.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000137728 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\pywintypes27.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000010752 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\select.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000020992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\thumbnails_ext.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000689664 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\unicodedata.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000119808 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\usb_ext.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000128512 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32api.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000438784 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32com.shell.shell.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000011776 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32crypt.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000023040 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32event.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000149504 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32file.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000223232 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32gui.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000048128 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32inet.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000029696 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32pdh.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000027648 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32pipe.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000044032 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32process.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32profile.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000136192 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32security.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000026624 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\win32ts.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000034816 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.conditional.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000038400 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.connectivity.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000071680 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.device_monitor.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000109056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.volumes.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000020480 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\windows.winwrap.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001325056 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._controls_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001489408 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._core_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001007104 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._gdi_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000103424 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._html2.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 000916992 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._misc_.pyd
2020-07-13 10:47 - 2020-07-13 10:47 - 001039872 _____ () [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wx._windows_.pyd
2019-03-13 22:24 - 2015-12-01 09:22 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2019-03-13 22:24 - 2015-12-01 09:22 - 000087040 _____ (Brother Industries, Ltd.) [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2019-03-13 20:34 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\python27.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\python27.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\python27.dll
2019-09-09 21:02 - 2016-10-10 06:27 - 000556544 _____ (Soft Service Company) [File not signed] C:\Program Files (x86)\Unified Remote 3\wcl.dll
2019-09-09 21:02 - 2016-09-23 15:08 - 001283584 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\LIBEAY32MD.dll
2019-09-09 21:02 - 2016-09-23 15:08 - 000255488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Unified Remote 3\SSLEAY32MD.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxbase30u_net_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxbase30u_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_adv_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_core_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_html_vc90_x64.dll
2020-07-13 10:57 - 2020-07-13 10:57 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI473562\wxmsw30u_webview_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxbase30u_net_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxbase30u_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_adv_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_core_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_html_vc90_x64.dll
2020-07-13 10:51 - 2020-07-13 10:51 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI689682\wxmsw30u_webview_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxbase30u_net_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxbase30u_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_adv_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_core_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_html_vc90_x64.dll
2020-07-13 10:47 - 2020-07-13 10:47 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\zembe\AppData\Local\Temp\_MEI712402\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\sharepoint.com -> hxxps://edusk-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.1.1 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "SMART Board Service"
HKLM\...\StartupApproved\Run32: => "SMART Ink"
HKLM\...\StartupApproved\Run32: => "SMART Tray Tools"
HKLM\...\StartupApproved\Run32: => "SMARTNotification"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_8375AD1315402FA46ABD1F971EFE392F"
HKU\S-1-5-21-1540107938-3102307928-580545200-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{1347B276-4615-4DB9-B7D3-40326D83A9DA}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{76582B40-E804-4799-B920-78DB160D7055}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B9C2BF5A-0218-4445-9EE2-60A44E84AB8F}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{0520E1F2-0803-40DD-A0F8-92BF94DDF8C7}C:\users\zembe\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zembe\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{DDF85FB7-0D01-410B-949C-B922E8B81672}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{98BD30E6-70A5-4CCA-8D47-8F58A1C322D6}] => (Allow) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe (Unified Intents AB -> Unified Intents AB)
FirewallRules: [{7B3A91E7-9F64-468C-A90F-6486A0CB7771}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B46B3DCB-9C5A-4F65-8CD7-27CB79FAB7B2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{65782CEB-AD1E-420F-80DA-60EDF8B6B14E}] => (Allow) C:\SVS_Proforient ZS\opppt.exe () [File not signed]
FirewallRules: [{32335E0C-33D3-4048-9FDD-13E6E2C1DFA5}] => (Allow) C:\SVS_Proforient ZS\opppt.exe () [File not signed]
FirewallRules: [TCP Query User{ADDCE602-3102-4716-9300-9BF5E1F5FD81}C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{D4231660-7158-4672-BEBE-46D9FC053BA5}C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [TCP Query User{E921BA23-2840-41EC-8D6F-2D00E0A5AE2D}C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [UDP Query User{17D4653C-E23D-447D-86B9-E16901962160}C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe] => (Allow) C:\users\zembe\downloads\microsoft-rogue-checker (1)\roguechecker.exe (Microsoft) [File not signed]
FirewallRules: [{9F92766C-11D4-4C6B-8672-20A7845C3EC8}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1CEEB159-1E5B-4E98-B443-A7A2873966A3}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1DEABCCA-D9E8-47FC-AF01-BCE1FFD942E7}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{815FABFB-0670-499C-A1F9-6C0E0FD15D36}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AC13C5F3-27CE-49FD-8C60-0A54ACA0A508}] => (Allow) C:\Users\zembe\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1C8ADB29-D151-451A-9F85-67732B9BC822}] => (Allow) C:\Users\zembe\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{04D5D9B3-7E1F-4965-84E2-97CEFEDFA6D4}C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{D560E3D1-32EC-466E-BA73-62F08826A5B5}C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zembe\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9C54C989-BDC5-4E03-9B5E-0B739EE03E00}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{4D84F1F6-B6E6-415F-B0E1-B53E7A5C7782}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{69636EAA-2AC2-4BEA-9CB4-9D68D544CD02}] => (Allow) C:\SVS_Proforient ZS\oppp.exe (MICHALOVCE) [File not signed]
FirewallRules: [{629CF4F8-43D2-464F-9004-1F3F30CF4113}] => (Allow) C:\SVS_Proforient ZS\oppp.exe (MICHALOVCE) [File not signed]
FirewallRules: [{32D58F6C-3B2C-49BC-B3E6-E3783D006641}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FE23DCD1-E9CC-4904-96A7-AC6995E29650}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{13CFD1C7-D128-451D-B1AD-19AF8C867A03}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4B5C2740-133C-42DB-899C-209A9D70DF90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F48EF430-CA43-4118-B8B9-AAF63DAEEED3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
22-06-2020 16:18:17 Nainštalované Fotopak
30-06-2020 17:42:53 Scheduled Checkpoint
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/13/2020 10:55:50 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (33680,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 09:43:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (49552,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 01:45:14 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (25300,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/12/2020 01:06:11 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (26424,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/11/2020 09:43:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (27840,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/11/2020 02:16:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (51876,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/10/2020 11:44:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (62840,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (07/10/2020 09:43:37 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (39380,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
System errors:
=============
Error: (07/13/2020 11:05:42 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {0134A8B2-3407-4B45-AD25-E9F7C92A80BC} did not register with DCOM within the required timeout.
Error: (07/13/2020 10:55:38 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {0134A8B2-3407-4B45-AD25-E9F7C92A80BC} did not register with DCOM within the required timeout.
Error: (07/13/2020 10:52:01 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/13/2020 10:47:18 AM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:48 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {7160A13D-73DA-4CEA-95B9-37356478588A} did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:48 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server {7160A13D-73DA-4CEA-95B9-37356478588A} did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:47 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220!App.AppXtzbhf6k67jn9be72jwc3zje4rv3bb4am.mca did not register with DCOM within the required timeout.
Error: (07/12/2020 11:45:45 PM) (Source: DCOM) (EventID: 10010) (User: LENOVOB590)
Description: The server DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220!App.AppXtzbhf6k67jn9be72jwc3zje4rv3bb4am.mca did not register with DCOM within the required timeout.
CodeIntegrity:
===================================
Date: 2020-07-13 10:42:57.852
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.846
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.835
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.829
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-13 10:42:57.378
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-12 12:48:48.533
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-12 12:48:48.527
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-12 12:48:48.515
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO H9ET81WW(1.18) 12/05/2013
Motherboard: LENOVO 20206
Processor: Intel(R) Celeron(R) CPU 1005M @ 1.90GHz
Percentage of memory in use: 84%
Total physical RAM: 6736.54 MB
Available physical RAM: 1065.86 MB
Total Virtual: 12409.14 MB
Available Virtual: 2745.68 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:194.73 GB) (Free:109.69 GB) NTFS
Drive d: (DATA) (Fixed) (Total:269.91 GB) (Free:122.25 GB) NTFS
Drive e: () (Removable) (Total:0.95 GB) (Free:0.14 GB) FAT
\\?\Volume{c7125d87-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{c7125d87-0000-0000-0000-40d130000000}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C7125D87)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=194.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=593 MB) - (Type=27)
Partition 4: (Not Active) - (Size=269.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Size: 968.8 MB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.
==================== End of Addition.txt =======================
