Prosím o preventivní kontrolu po odstranění malwaru

[nothera]

Ahoj, pokud by se mohl někdo mrknout na logy z FRST, tak bych byl moc vděčný.

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2022
Ran by llega (administrator) on DESKTOP-7301JJD (20-01-2022 23:21:50)
Running from C:\Users\llega\OneDrive\Plocha
Loaded Profiles: llega
Platform: Microsoft Windows 10 Pro Version 20H2 19042.1466 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe <2>
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe <3>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361901.inf_amd64_204a65b18f2a904a\B361909\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361901.inf_amd64_204a65b18f2a904a\B361909\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <4>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7614\Agent.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <42>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NETSTAT.EXE
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Razer USA Ltd -> Razer USA Ltd) C:\Program Files (x86)\Razer\BlackWidow Ultimate\BlackWidowUltimateTray.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [157464 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [352712 2020-05-11] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942744 2018-12-17] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [340440 2021-04-16] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [14823760 2021-12-07] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] => C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company) [File not signed]
HKLM-x32\...\Run: [Razer Blackwidow Driver] => C:\Program Files (x86)\Razer\BlackWidow Ultimate\BlackWidowUltimateTray.exe [887712 2012-05-09] (Razer USA Ltd -> Razer USA Ltd)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HPUsageTracking] => "C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT\" (No File)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [781552 2021-10-07] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\Run: [Google Update] => C:\Users\llega\AppData\Local\Google\Update\1.3.36.122\GoogleUpdateCore.exe [223816 2022-01-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\Run: [Discord] => C:\Users\llega\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [190280 2021-12-17] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32711056 2020-12-12] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\Run: [Adobe Acrobat Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe" (No File)
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\MountPoints2: {82f0b350-37c4-11ec-bf4d-d050992786c1} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\MountPoints2: {a0342c9d-efce-11eb-be98-d050992786c1} - "F:\HiSuiteDownLoader.exe" 
HKLM\...\Windows x64\Print Processors\hpcpp093: C:\Windows\System32\spool\prtprocs\x64\hpcpp093.DLL [300032 2009-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP Fax Port: C:\WINDOWS\system32\hppfaxprintermon5.dll [22016 2009-09-22] (Hewlett-Packard Company) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\96.1.13589.113\Installer\chrmstp.exe [2021-12-17] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-05] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2021-11-18]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C98465E-B5A4-4600-908E-C2CA3FAF2111} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001UA => C:\Users\llega\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-04-15] (Google LLC -> Google LLC)
Task: {1CBCFD24-B3B0-4F3B-82E5-1F40E894253A} - System32\Tasks\G2MUpdateTask-S-1-5-21-4205546469-3882697476-2674355249-1001 => C:\Users\llega\AppData\Local\GoToMeeting\19932\g2mupdate.exe [31176 2021-11-16] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {383A83E7-37B0-481E-BAC6-5851F3B3F451} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2521976 2021-12-15] (Piriform Software Ltd -> Piriform Software)
Task: {397A756E-198F-4FAC-B326-0B47724DF91C} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38560 2021-11-01] (HP Inc. -> HP Inc.)
Task: {3B3EFF11-29C5-4AB2-B1F0-A58E543DC6F5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {4DAF0921-A35B-4BA7-AF78-279C5F9C0C1C} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-12-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {4E1CE991-0D91-46CD-9C1C-E244C750764B} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710472 2020-12-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {50C59D91-2EA4-4301-BA98-110B9EF694D1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-02] (Google LLC -> Google LLC)
Task: {664F7AC9-EF89-4480-9D16-D5BF171E36D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-02] (Google LLC -> Google LLC)
Task: {6C235D50-D6FA-4569-A979-F419DBB553FD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {726206A1-A2CC-4E79-A246-330C8661564C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138592 2022-01-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {7CB90FD7-A534-4853-98D6-519108EA5476} - System32\Tasks\G2MUploadTask-S-1-5-21-4205546469-3882697476-2674355249-1001 => C:\Users\llega\AppData\Local\GoToMeeting\19932\g2mupload.exe [31176 2021-11-16] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {7E86663F-B1B5-402D-927C-FFA16211F39F} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710472 2020-12-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {82A26049-68AC-40A2-938A-A72FC4869118} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138592 2022-01-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {8904D081-9F8E-4350-8992-0872A2903E53} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-07-01] (Piriform Software Ltd -> Piriform Software)
Task: {8DE4767B-FDB3-49D3-B3CB-3DB07525FC45} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2521976 2021-12-15] (Piriform Software Ltd -> Piriform Software)
Task: {9D649AB8-F616-44DB-8CB1-4035F2A6366A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9FE0A623-1891-4941-83F3-2C6FB7C09CC6} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4969240 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
Task: {A1199A9A-D4A7-4D1E-8799-4BED4C78A8E5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001Core => C:\Users\llega\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-04-15] (Google LLC -> Google LLC)
Task: {A3D53498-BFE4-4F24-B917-733B79501CD3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {B3A8DAA1-2737-4DE6-AA51-F48800B4DDB7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {B543480F-91BC-458D-9EB7-6A6253B0AD08} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-07-01] (Piriform Software Ltd -> Piriform Software)
Task: {B88E20A3-39B6-40E5-8D85-0D5237C94566} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {D54A2AEC-1E43-495D-BDAA-52007FC17116} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710472 2020-12-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {DF2941B9-993A-442F-BCE8-118A34054242} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38560 2021-11-01] (HP Inc. -> HP Inc.)
Task: {E254FB18-1F7E-4225-934D-3C6671E295B8} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\AdobeGCInvoker-1.0" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\AMDInstallLauncher" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\AMDLinkUpdate" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\CCleaner Browser Heartbeat Task (Hourly)" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\CCleaner Browser Heartbeat Task (Logon)" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\CCleanerUpdateTaskMachineCore" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\CCleanerUpdateTaskMachineUA" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\G2MUpdateTask-S-1-5-21-4205546469-3882697476-2674355249-1001" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\G2MUploadTask-S-1-5-21-4205546469-3882697476-2674355249-1001" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001Core" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001UA" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d7235fa69bc62e" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\ModifyLinkUpdate" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(21): schtasks.exe -> /Change /TN "\OneDrive Reporting Task-S-1-5-21-4205546469-3882697476-2674355249-1001" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(22): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-4205546469-3882697476-2674355249-1001" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(23): schtasks.exe -> /Change /TN "\StartCN" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(24): schtasks.exe -> /Change /TN "\StartDVR" /ENABLE
Task: {E6C26880-6ED0-43A3-9AD5-ACA0251AED02} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(25): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {F48DC82D-BDB6-47DE-9A96-F087AB7505C2} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-12-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-4205546469-3882697476-2674355249-1001.job => C:\Users\llega\AppData\Local\GoToMeeting\19932\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-4205546469-3882697476-2674355249-1001.job => C:\Users\llega\AppData\Local\GoToMeeting\19932\g2mupload.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{a8843a4e-afd5-4d35-b49b-c50b45140faa}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{abffea89-77aa-4e5e-89c9-c21a7bcaff9a}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{dd052cba-e7b3-44a3-a7bc-fc1760d59bd6}: [DhcpNameServer] 10.0.0.138

Edge: 
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\llega\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-09]
Edge HomePage: Default -> hxxp://www.centrum.cz/
Edge Extension: (Google Meet Grid View) - C:\Users\llega\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjkegbgpfgpikgkfidhcihhiflbjgfic [2020-06-10]
Edge Extension: (Nimbus snímky obrazovky a záznam videa) - C:\Users\llega\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bpconcjcammlapcogcnnelfmaeghhagj [2021-07-28]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\llega\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-01-08]
Edge Extension: (Adblock for Youtube™) - C:\Users\llega\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nipggfgilmoiofmnkbeabghbcaohmjih [2020-10-14]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-12-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-12-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-07-01] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-07-01] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-4205546469-3882697476-2674355249-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\llega\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-30] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default [2022-01-20]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://kfc.cz; hxxps://meet.google.com; hxxps://www.kosik.cz; hxxps://www.superzoo.cz
CHR HomePage: Default -> hxxps://www.youtube.com/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-02]
CHR Extension: (Nimbus Screenshot App) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\aecjogkncpbkjfobfnoaiepipllcadhe [2020-04-02]
CHR Extension: (Dokumenty) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-02]
CHR Extension: (Disk Google) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (Google Meet Grid View) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjkegbgpfgpikgkfidhcihhiflbjgfic [2020-05-01]
CHR Extension: (YouTube) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-02]
CHR Extension: (Nimbus snímky obrazovky a záznam videa) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpconcjcammlapcogcnnelfmaeghhagj [2022-01-20]
CHR Extension: (Color Picker) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\cemonabbpebmicmgjgpefjnnandabbjn [2021-12-16]
CHR Extension: (Adblock na Youtube™) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2021-09-26]
CHR Extension: (Tabulky) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-20]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-04]
CHR Extension: (OneLogin for Google Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioalpmibngobedobkmbhgmadaphocjdn [2021-09-19]
CHR Extension: (Grammarly for Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2022-01-17]
CHR Extension: (Tag Assistant Legacy (by Google)) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2021-09-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Bitwarden – Bezplatný správce hesel) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2021-12-10]
CHR Extension: (Gmail) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Profile: C:\Users\llega\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-01-20]
CHR Profile: C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-01-05]
CHR Notifications: Profile 2 -> hxxps://meet.google.com
CHR HomePage: Profile 2 -> hxxp://www.google.com
CHR Extension: (Prezentace) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-09]
CHR Extension: (Dokumenty) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-09]
CHR Extension: (Disk Google) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (ColorZilla) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2020-04-09]
CHR Extension: (YouTube) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-09]
CHR Extension: (Nimbus snímky obrazovky a záznam videa) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bpconcjcammlapcogcnnelfmaeghhagj [2021-06-22]
CHR Extension: (Diagnostika připojení Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eemlkeanncmjljgehlbplemhmdmalhdc [2020-04-28]
CHR Extension: (Strong Password Generator) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\emehklffcaphknhhfhadkjhpfapcbpco [2020-04-09]
CHR Extension: (Tabulky) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-09]
CHR Extension: (Dokumenty Google offline) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-06]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-05]
CHR Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hbapdpeemoojbophdfndmlgdhppljgmp [2021-11-09]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2020-04-09]
CHR Extension: (Google Keep – poznámky a seznamy) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2021-12-17]
CHR Extension: (dataslayer) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ikbablmmjldhamhcldjjigniffkkjgpo [2021-06-08]
CHR Extension: (OneLogin for Google Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ioalpmibngobedobkmbhgmadaphocjdn [2021-06-20]
CHR Extension: (Tag Assistant Legacy (by Google)) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2021-09-24]
CHR Extension: (Turbo Ad Finder) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kjbjojolojmokicddfeaamkodihccdcl [2021-01-21]
CHR Extension: (Momentum) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\laookkfknpbbblfpciffpaejjkokdgca [2021-12-16]
CHR Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2021-07-08]
CHR Extension: (UET Tag Helper (by Microsoft Advertising)) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\naijndjklgmffmpembnkfbcjbognokbf [2021-01-28]
CHR Extension: (WASP.inspector: Analytics Solution Profiler) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\niaoghengfohplclhbjnjheodgkejpih [2020-08-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Toggl Track: Productivity & Time Tracker) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\oejgccbfbmkkpaidnkphaiaecficdnfn [2022-01-05]
CHR Extension: (Gmail) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-26]
CHR Profile: C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-01-20]
CHR Extension: (Prezentace) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-14]
CHR Extension: (Dokumenty) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-14]
CHR Extension: (Disk Google) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-04]
CHR Extension: (YouTube) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-14]
CHR Extension: (Tabulky) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-04]
CHR Extension: (Gmail) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-04]
CHR Profile: C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4 [2021-12-20]
CHR Notifications: Profile 4 -> hxxps://meet.google.com
CHR Extension: (Prezentace) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-29]
CHR Extension: (Dokumenty) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-29]
CHR Extension: (Disk Google) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-10]
CHR Extension: (YouTube) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-29]
CHR Extension: (Tabulky) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-05]
CHR Extension: (dataslayer) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ikbablmmjldhamhcldjjigniffkkjgpo [2021-07-07]
CHR Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2021-07-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-05]
CHR Extension: (Gmail) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-07]
CHR Profile: C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5 [2022-01-13]
CHR Notifications: Profile 5 -> hxxps://meet.google.com
CHR Extension: (Prezentace) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-25]
CHR Extension: (Dokumenty) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2021-07-25]
CHR Extension: (Disk Google) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-07-25]
CHR Extension: (YouTube) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-07-25]
CHR Extension: (Color Picker) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\cemonabbpebmicmgjgpefjnnandabbjn [2021-12-16]
CHR Extension: (Tabulky) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-01]
CHR Extension: (dataslayer) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ikbablmmjldhamhcldjjigniffkkjgpo [2021-09-05]
CHR Extension: (Tag Assistant for Conversions Beta) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\llpfnmnallbompdmklfkcibfpcfpncdd [2021-09-05]
CHR Extension: (WASP.inspector: Analytics Solution Profiler) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\niaoghengfohplclhbjnjheodgkejpih [2021-09-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-25]
CHR Extension: (Bitwarden – Bezplatný správce hesel) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nngceckbapebfimnlniiiahkandclblb [2021-12-10]
CHR Extension: (Gmail) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-07-25]
CHR Profile: C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 6 [2021-11-25]
CHR Notifications: Profile 6 -> hxxps://meet.google.com
CHR Extension: (Prezentace) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-22]
CHR Extension: (Dokumenty) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-22]
CHR Extension: (Disk Google) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-22]
CHR Extension: (YouTube) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-22]
CHR Extension: (Tabulky) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-22]
CHR Extension: (Gmail) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-22]
CHR Profile: C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7 [2022-01-17]
CHR Extension: (Prezentace) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-16]
CHR Extension: (Dokumenty) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-16]
CHR Extension: (Disk Google) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-16]
CHR Extension: (YouTube) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-16]
CHR Extension: (Nimbus snímky obrazovky a záznam videa) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\bpconcjcammlapcogcnnelfmaeghhagj [2021-12-16]
CHR Extension: (CSS Selector Capture Pro) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\cpnkcffhllafbdbljkmhebnpbnlhapmd [2021-12-16]
CHR Extension: (Tabulky) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-16]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-12-16]
CHR Extension: (dataslayer) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ikbablmmjldhamhcldjjigniffkkjgpo [2022-01-07]
CHR Extension: (WASP.inspector: Analytics Solution Profiler) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\niaoghengfohplclhbjnjheodgkejpih [2022-01-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-16]
CHR Extension: (Bitwarden – Bezplatný správce hesel) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nngceckbapebfimnlniiiahkandclblb [2021-12-16]
CHR Extension: (Gmail) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-16]
CHR Extension: (Clockify Time Tracker) - C:\Users\llega\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pmjeegjhjdlccodhacdgbgfagbpmccpe [2022-01-07]
CHR Profile: C:\Users\llega\AppData\Local\Google\Chrome\User Data\System Profile [2022-01-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [844528 2021-10-07] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8480848 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [452888 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1720088 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [452888 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-07-01] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\96.1.13589.113\elevation_service.exe [1721904 2021-12-15] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-07-01] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12119432 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-11-02] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-11-01] (HP Inc. -> HP Inc.)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [File not signed]
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2556048 2021-08-08] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474584 2021-08-08] (Electronic Arts, Inc. -> Electronic Arts)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [File not signed]
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1629312 2020-10-28] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6137040 2022-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [31568 2021-12-07] (SteelSeries ApS -> )
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9847520 2020-05-11] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [223176 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [369216 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [252992 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [100416 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-09-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42416 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [186280 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [540056 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108912 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83976 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [853800 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [545176 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215432 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2020-11-01] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [318760 2021-12-20] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 RzSynapse; C:\WINDOWS\System32\drivers\RzSynapse.sys [154624 2011-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Razer USA Ltd)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [47760 2021-09-03] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [3353616 2020-05-12] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-15 20:35 - 2022-01-15 20:56 - 000000000 ____D C:\Users\llega\Downloads\Star Wars Episode I The Phantom Menace (1999) [1080p]
2022-01-15 20:23 - 2022-01-15 20:25 - 000000000 ____D C:\Users\llega\Downloads\The.Beatles.Get.Back.S01.COMPLETE.720p.DSNP.WEBRip.x264-GalaxyTV[TGx]
2022-01-15 20:22 - 2022-01-15 20:56 - 000000000 ____D C:\Users\llega\AppData\LocalLow\uTorrent
2022-01-13 19:08 - 2022-01-13 19:08 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-13 19:08 - 2022-01-13 19:08 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-13 19:08 - 2022-01-13 19:08 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-13 19:03 - 2022-01-13 19:03 - 000000000 ___HD C:\$WinREAgent
2022-01-06 21:04 - 2022-01-06 21:05 - 014305582 _____ C:\Users\llega\Downloads\FIT_kucharka_komplet2.pdf
2021-12-31 08:25 - 2021-12-31 08:26 - 000000000 ____D C:\Users\llega\AppData\Roaming\.minecraft
2021-12-26 00:28 - 2021-12-26 00:28 - 000000000 ____D C:\Users\llega\Transkribus
2021-12-26 00:28 - 2021-12-26 00:28 - 000000000 ____D C:\Users\llega\.swt
2021-12-26 00:27 - 2021-12-26 00:27 - 000191832 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2021-12-26 00:27 - 2021-12-26 00:27 - 000000000 ____D C:\Users\llega\AppData\Roaming\Sun
2021-12-26 00:27 - 2021-12-26 00:27 - 000000000 ____D C:\Users\llega\AppData\LocalLow\Sun
2021-12-26 00:27 - 2021-12-26 00:27 - 000000000 ____D C:\ProgramData\Oracle
2021-12-26 00:27 - 2021-12-26 00:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-12-26 00:27 - 2021-12-26 00:27 - 000000000 ____D C:\Program Files\Java
2021-12-24 19:21 - 2021-12-24 19:21 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-20 23:22 - 2020-04-03 15:33 - 000000000 ____D C:\FRST
2022-01-20 23:20 - 2020-04-28 13:42 - 000000000 ____D C:\Users\llega\AppData\Local\Battle.net
2022-01-20 22:51 - 2021-12-13 14:58 - 000003126 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4205546469-3882697476-2674355249-1001
2022-01-20 22:51 - 2021-07-01 20:53 - 000003164 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
2022-01-20 22:51 - 2021-07-01 20:53 - 000002682 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Logon)
2022-01-20 22:51 - 2021-07-01 20:52 - 000003516 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineUA
2022-01-20 22:51 - 2021-07-01 20:52 - 000003292 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineCore
2022-01-20 22:51 - 2021-07-01 20:51 - 000003254 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-01-20 22:51 - 2021-07-01 20:51 - 000002298 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2022-01-20 22:51 - 2021-06-25 10:18 - 000002672 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2022-01-20 22:51 - 2021-04-13 09:32 - 000003378 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7235fa69bc62e
2022-01-20 22:51 - 2021-03-28 00:20 - 000003640 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001UA
2022-01-20 22:51 - 2021-03-28 00:20 - 000003572 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-20 22:51 - 2021-03-28 00:20 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-01-20 22:51 - 2021-03-28 00:20 - 000003462 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-20 22:51 - 2021-03-28 00:20 - 000003372 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001Core
2022-01-20 22:51 - 2021-03-28 00:20 - 000003348 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-20 22:51 - 2021-03-28 00:20 - 000003324 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-4205546469-3882697476-2674355249-1001
2022-01-20 22:51 - 2021-03-28 00:20 - 000003238 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-20 22:51 - 2021-03-28 00:20 - 000003228 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-4205546469-3882697476-2674355249-1001
2022-01-20 22:51 - 2021-03-28 00:20 - 000002922 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4205546469-3882697476-2674355249-1001
2022-01-20 22:51 - 2021-03-28 00:20 - 000002732 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2022-01-20 22:51 - 2021-03-28 00:20 - 000002586 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2022-01-20 22:51 - 2021-03-28 00:20 - 000002570 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2022-01-20 22:51 - 2021-03-28 00:20 - 000002262 _____ C:\WINDOWS\system32\Tasks\StartCN
2022-01-20 22:51 - 2021-03-28 00:20 - 000002182 _____ C:\WINDOWS\system32\Tasks\StartDVR
2022-01-20 22:51 - 2021-03-28 00:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-01-20 22:51 - 2020-07-07 12:33 - 000000666 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-4205546469-3882697476-2674355249-1001.job
2022-01-20 22:51 - 2020-07-07 12:33 - 000000570 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-4205546469-3882697476-2674355249-1001.job
2022-01-20 22:50 - 2021-07-01 20:51 - 000000000 ____D C:\Program Files\CCleaner
2022-01-20 22:50 - 2021-03-28 00:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-20 22:50 - 2020-04-28 13:50 - 000000000 ____D C:\Program Files (x86)\StarCraft II
2022-01-20 22:50 - 2020-04-02 18:30 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-20 22:50 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-20 18:33 - 2021-03-28 00:23 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-20 18:33 - 2019-12-07 15:43 - 000716726 _____ C:\WINDOWS\system32\perfh005.dat
2022-01-20 18:33 - 2019-12-07 15:43 - 000144904 _____ C:\WINDOWS\system32\perfc005.dat
2022-01-20 18:33 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-20 18:28 - 2021-03-28 00:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-20 18:28 - 2021-03-28 00:14 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-20 18:28 - 2020-04-02 18:26 - 000000000 ____D C:\ProgramData\Avast Software
2022-01-20 18:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-20 16:35 - 2020-04-02 18:22 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2022-01-20 16:35 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-19 16:58 - 2020-04-02 20:50 - 000000000 ____D C:\Users\llega\AppData\Local\CrashDumps
2022-01-19 13:59 - 2021-03-28 00:20 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-01-18 23:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-18 16:39 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-17 22:12 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-15 20:56 - 2020-04-13 19:31 - 000000000 ____D C:\Users\llega\AppData\Roaming\uTorrent
2022-01-15 20:56 - 2020-04-13 13:23 - 000000000 ____D C:\Users\llega\AppData\Roaming\vlc
2022-01-15 20:54 - 2020-04-13 19:32 - 000000000 ____D C:\Users\llega\AppData\Local\BitTorrentHelper
2022-01-15 20:08 - 2020-06-09 05:20 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-15 17:59 - 2020-04-02 18:19 - 000000000 ____D C:\Users\llega\AppData\Local\Packages
2022-01-15 15:53 - 2020-04-28 13:40 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-01-14 21:43 - 2021-03-27 18:53 - 000002381 _____ C:\Users\llega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-14 10:22 - 2021-03-28 00:14 - 000525296 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-13 23:20 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-01-13 23:20 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-13 23:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-13 23:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-13 23:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-13 23:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-13 23:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-13 23:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-13 22:45 - 2020-04-16 14:48 - 000000000 ____D C:\Program Files\Microsoft Office
2022-01-13 17:23 - 2020-04-02 18:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-13 17:20 - 2020-04-02 18:56 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-12 20:56 - 2020-12-31 00:56 - 000000000 ____D C:\Users\llega\AppData\Local\AMD_Common
2022-01-11 20:23 - 2020-06-10 09:50 - 000000000 ____D C:\Users\llega\AppData\Local\Adobe
2022-01-11 17:04 - 2020-06-10 09:53 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-01-10 23:49 - 2020-04-15 07:45 - 000000000 ____D C:\Users\llega\AppData\Roaming\Google
2022-01-09 15:38 - 2020-04-02 18:24 - 000000000 ____D C:\Users\llega\AppData\Local\D3DSCache
2022-01-05 09:26 - 2020-04-02 18:30 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-01-02 19:56 - 2020-10-10 22:02 - 000000000 ____D C:\Users\llega\AppData\Local\PokerStars.CZ
2022-01-02 19:06 - 2020-04-02 18:37 - 000000000 ____D C:\Program Files (x86)\Steam
2021-12-26 00:28 - 2021-03-27 18:53 - 000000000 ____D C:\Users\llega
2021-12-24 19:59 - 2020-04-02 18:21 - 000000000 ____D C:\Users\llega\AppData\Local\PlaceholderTileLogoFolder
2021-12-24 19:22 - 2020-04-02 18:34 - 000000000 ____D C:\ProgramData\Packages
2021-12-24 08:34 - 2020-04-14 12:24 - 000000000 ____D C:\Users\llega\AppData\Local\ElevatedDiagnostics
2021-12-22 08:08 - 2020-06-20 20:08 - 000000000 ____D C:\Program Files\Adobe
2021-12-22 08:07 - 2021-06-25 10:17 - 000000000 __RHD C:\Users\llega\Creative Cloud Files

==================== Files in the root of some directories ========

2021-06-25 10:25 - 2021-06-25 10:25 - 000000000 _____ () C:\Users\llega\AppData\Local\oobelibMkey.log
2021-02-12 23:46 - 2021-12-14 22:16 - 000155539 _____ () C:\Users\llega\AppData\Local\PlariumPlay.log
2020-08-24 23:29 - 2020-08-24 23:29 - 000007605 _____ () C:\Users\llega\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

ADDITION

Kód: Vybrat vše

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-01-2022
Ran by llega (20-01-2022 23:23:00)
Running from C:\Users\llega\OneDrive\Plocha
Microsoft Windows 10 Pro Version 20H2 19042.1466 (X64) (2021-03-27 23:20:13)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4205546469-3882697476-2674355249-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4205546469-3882697476-2674355249-503 - Limited - Disabled)
Guest (S-1-5-21-4205546469-3882697476-2674355249-501 - Limited - Disabled)
llega (S-1-5-21-4205546469-3882697476-2674355249-1001 - Administrator - Enabled) => C:\Users\llega
WDAGUtilityAccount (S-1-5-21-4205546469-3882697476-2674355249-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{0611B3CC-B5DB-4B93-ACE4-97B8F938E6B7}) (Version: 4.2.1 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.011.20039 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.6.0.788.2 - Adobe Inc.)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 7.6.0.52 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Systems Incorporated)
Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_0_3) (Version: 14.0.3 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.12.1 - Advanced Micro Devices, Inc.)
Apple Mobile Device Support (HKLM\...\{74CC99EB-7DC0-4CB0-847A-F8C2FE39690C}) (Version: 14.5.0.7 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
AudFree Music Converter 2.0.0.340 (HKLM-x32\...\AudFree Music Converter_is1) (Version:  - AudFree Studio.)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 21.11.2500 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.82 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 96.1.13589.113 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
Cinch Audio Recorder version 4.0.2 (HKLM-x32\...\{F145F781-A266-4A33-8F34-65561BF29B25}_is1) (Version: 4.0.2 - Cinch Solutions)
Discord (HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\Discord) (Version: 0.0.311 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FileZilla Client 3.55.1 (HKLM-x32\...\FileZilla Client) (Version: 3.55.1 - Tim Kosse)
firstobject XML Editor version 2.4.2 (HKLM-x32\...\firstobject XML Editor_is1) (Version:  - )
Git (HKLM\...\Git_is1) (Version: 2.33.0 - The Git Development Community)
Google Ads Editor (HKLM-x32\...\{BD8B9D40-4659-11EC-9DAF-DC4A3E998CF6}) (Version: 13.8.2.0 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.71 - Google LLC)
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
GoToMeeting 10.18.0.19932 (HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\GoToMeeting) (Version: 10.18.0.19932 - LogMeIn, Inc.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hearthstone Deck Tracker (HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\HearthstoneDeckTracker) (Version: 1.14.4 - HearthSim)
HP Color LaserJet CM1312 MFP Series 5.1 (HKLM\...\{8EEDB90E-6ABC-42bb-AD4C-39DEE05E3EEA}) (Version: 5.1 - HP)
HP Customer Participation Program 10.0 (HKLM\...\HPExtendedCapabilities) (Version: 10.0 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
HWiNFO64 Version 6.24 (HKLM\...\HWiNFO64_is1) (Version: 6.24 - Martin Malik - REALiX)
iTunes (HKLM\...\{07B3B04F-368F-42D9-9DDC-EEF1821DF158}) (Version: 12.11.3.17 - Apple Inc.)
Java 8 Update 311 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{C7BC60AB-23E3-4F47-8FBE-283937D010AA}) (Version: 2.1.2106.23002 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech Capture (HKLM\...\Capture) (Version: 1.0.553 - Logitech)
Microsoft 365 Apps pro firmy - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.14729.20260 - Microsoft Corporation)
Microsoft Advertising Editor (HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\MicrosoftAdvertisingEditor) (Version: 11.29.12068 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.62 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 97.0.1072.62 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\OneDriveSetup.exe) (Version: 21.245.1128.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\Teams) (Version: 1.3.00.12058 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.59.0 - Microsoft Corporation)
MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD)
Node.js (HKLM\...\{BBA8BA33-A3FC-47F3-A144-B95FB83B4FB4}) (Version: 14.17.5 - Node.js Foundation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenTTD (HKLM-x32\...\OpenTTD) (Version: 12.0-beta2 - OpenTTD)
Origin (HKLM-x32\...\Origin) (Version: 10.5.102.48654 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
PokerStars.cz (HKLM-x32\...\PokerStars.cz) (Version:  - PokerStars.cz)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 5.0.3.377 - Jan Fiala)
Razer BlackWidow Ultimate (HKLM-x32\...\{E3AC9740-66D4-412F-AE55-DD0428F78175}) (Version: 1.05.00 - Razer USA Ltd.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version:  - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.29.283 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.0 - Rockstar Games)
Screaming Frog SEO Spider (HKLM\...\Screaming Frog SEO Spider) (Version: 16.4 - Screaming Frog Ltd)
ScreenToGif (HKLM-x32\...\{85D19DA1-199F-4C56-B156-E8AFC3592036}) (Version: 2.30.0 - Nicke Manarin)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 11.2.0 (HKLM\...\SteelSeries GG) (Version: 11.2.0 - SteelSeries ApS)
Streamlabs OBS 0.23.2 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.23.2 - General Workings, Inc.)
Sublime Text (HKLM\...\Sublime Text_is1) (Version:  - Sublime HQ Pty Ltd)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.4461 - Microsoft Corporation)
TP-Link Archer T2U Plus Driver (HKLM-x32\...\{D646A985-33A6-4D98-973F-44CC267BD834}) (Version: 2.1.0 - TP-Link)
TunesKit Spotify Converter (HKLM-x32\...\{7E3D1669-A658-40A9-87F2-D82CC52ED1D1}_is1) (Version: 1.7.0.657 - TunesKit, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version:  - Blizzard Entertainment)
Zoom (HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-06-25] (Adobe Systems Incorporated)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-04] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6 [2021-12-14] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-28] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.1050.0_x64__8wekyb3d8bbwe [2022-01-11] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.18.203.0_x64__8wekyb3d8bbwe [2021-12-24] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.0.113.0_x64__8wekyb3d8bbwe [2021-12-24] (Microsoft Studios)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-17] (Netflix, Inc.)
Photo to GIF - GIF Maker -> C:\Program Files\WindowsApps\39691Videopix.PhototoGIF-GIFMaker_1.1.7.0_x64__dxz7h1qnd1pge [2020-05-31] (Videopix) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0 [2022-01-08] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{041F9391-C79D-44EE-AA4E-AF4E029C4B47}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.112\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\llega\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{6D264B70-DA18-401D-910C-B202D89670C6}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.32\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{75399D28-E622-4973-8752-BC0F7DC47AF3}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.122\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\llega\AppData\Local\GoToMeeting\18068\G2MOutlookAddin64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{85D8EE2F-794F-41F0-BB03-49D56A23BEF4}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.122\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{8B480070-D37D-4090-A063-7A429F849652}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.92\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{BE5C2E39-090F-46A2-AFAA-47540743B4FE}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.102\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{CA8FA699-91CD-412F-9D13-9B1222F4370E}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.82\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{CA919489-0396-4164-A6E7-94CDED45A707}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.52\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\llega\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{DEDF773D-E27B-485E-8E7D-85C5B0EB5A67}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.72\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.122\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-11-26] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-11-26] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-11-26] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-20] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-11-26] (Adobe Inc. -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2020-12-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-11-26] (Adobe Inc. -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\llega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Chrome Connectivity Diagnostics.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory="Profile 2" --app-id=eemlkeanncmjljgehlbplemhmdmalhdc
ShortcutWithArgument: C:\Users\llega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Keep - Notes and Lists.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory="Profile 2" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\llega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Google Keep – poznámky a seznamy.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory="Profile 1" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\llega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Nimbus Screenshot App.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=aecjogkncpbkjfobfnoaiepipllcadhe
ShortcutWithArgument: C:\Users\llega\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\ff13ca23fee04978\Tomáš (tomkraus.cz) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 5"
ShortcutWithArgument: C:\Users\llega\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Tomáš (WORK WORK WORK) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\llega\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Lucka - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"

==================== Loaded Modules (Whitelisted) =============

2022-01-14 21:42 - 2022-01-14 21:42 - 104870912 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\libcef.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000112128 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\libegl.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 006227456 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\libglesv2.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2007-10-14 20:38 - 2007-10-14 20:38 - 000159744 _____ (Hewlett-Packard Co.) [File not signed] [File is in use] C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll
2008-01-03 20:24 - 2008-01-03 20:24 - 000077824 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll
2007-11-06 21:16 - 2007-11-06 21:16 - 000217088 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll
2007-11-06 21:16 - 2007-11-06 21:16 - 000184320 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpqddcmn.dll
2007-11-06 21:16 - 2007-11-06 21:16 - 000139264 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll
2007-11-06 21:16 - 2007-11-06 21:16 - 000061440 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll
2007-10-14 20:43 - 2007-10-14 20:43 - 000303104 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll
2007-10-14 20:38 - 2007-10-14 20:38 - 000098304 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll
2007-10-14 20:38 - 2007-10-14 20:38 - 000047104 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc
2007-10-14 20:43 - 2007-10-14 20:43 - 000405504 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll
2021-11-18 19:35 - 2009-09-22 20:44 - 000022016 ____N (Hewlett-Packard Company) [File not signed] C:\WINDOWS\System32\hppfaxprintermon5.dll
2021-11-18 19:35 - 2021-11-18 19:35 - 000096256 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL
2022-01-14 21:42 - 2022-01-14 21:42 - 000810496 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\chrome_elf.dll
2020-12-05 09:29 - 2021-08-08 12:14 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2020-12-05 09:29 - 2021-08-08 12:14 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2020-12-05 09:29 - 2021-08-08 12:14 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-08-08 12:16 - 2021-08-08 12:14 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-08-08 12:16 - 2021-08-08 12:14 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-08-08 12:16 - 2021-08-08 12:14 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-08-08 12:16 - 2021-08-08 12:14 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-08-08 12:16 - 2021-08-08 12:14 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-08-08 12:16 - 2021-08-08 12:14 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\audio\qtaudio_windows.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\imageformats\qgif.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\imageformats\qico.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\imageformats\qjpeg.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\imageformats\qmng.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\imageformats\qsvg.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\imageformats\qtiff.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\platforms\qwindows.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\Qt5Core.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\Qt5Gui.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\Qt5Multimedia.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\Qt5Network.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\Qt5Qml.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\Qt5Quick.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\Qt5Svg.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\Qt5Widgets.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\Qt5WinExtras.dll
2022-01-14 21:42 - 2022-01-14 21:42 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13279\Qt5Xml.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000735232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000120832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000262144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-07-27 13:58 - 2020-07-27 13:58 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-12-04 07:02 - 2020-12-04 07:02 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171101&iDate=2020-04-13%2006:32:49&bName=
SearchScopes: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-12-26] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-12-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\sharepoint.com -> hxxps://agenturakofein-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Git\cmd;C:\Program Files\nodejs\
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\llega\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\arrrrwacecx.jpeg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{388E1FF9-4F4C-44B5-9831-C2321E557F4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpongeBob SquarePants Battle for Bikini Bottom - Rehydrated\SpongeBob_BFBB_R.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{72FA837C-8C8E-432A-A15C-7E30B94F78F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpongeBob SquarePants Battle for Bikini Bottom - Rehydrated\SpongeBob_BFBB_R.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{D229C9CF-54D5-4199-8E93-6A34FC8BC6A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [{BDFED90F-0D27-4038-8035-005821CB07F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [{B670BDC9-3562-4066-ACAA-4EBBDDF16EA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client_game.exe () [File not signed]
FirewallRules: [{C3895A96-D390-4BDC-B8B2-265FACF4731B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client_game.exe () [File not signed]
FirewallRules: [{778B993B-2221-483D-87CE-8A3FE4DCA4DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{2831F134-EEBD-4C91-8D69-0E1FF1DF8AC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fall Guys\FallGuys_client.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{C7FC6960-2C82-4FA7-A19B-87482457E163}] => (Allow) C:\Windows\system32\winrmsrv.exe => No File
FirewallRules: [UDP Query User{80EBA144-AF82-454F-9884-F2ADB65EA109}C:\program files (x86)\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe] => (Block) C:\program files (x86)\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe => No File
FirewallRules: [TCP Query User{0FE0B723-14DF-4418-958D-C72F56A7D7C2}C:\program files (x86)\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe] => (Block) C:\program files (x86)\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe => No File
FirewallRules: [UDP Query User{197577ED-A12F-4840-A704-A3B24E79BE95}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [TCP Query User{B0590CA8-53FF-4E43-A420-5A9381BFFFCD}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [UDP Query User{9374E6AB-492D-4379-BB31-2762412C5E47}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [TCP Query User{50FDB49C-DF7B-49ED-8329-D4AD2D1ADF68}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [UDP Query User{35DAB11A-1847-4F47-86EA-9A2E98D2E15F}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{D81CE6A1-2EED-4A3F-996C-A98C28D93A3E}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{911642E3-416C-4165-AB53-1CA0E20DAA79}C:\program files (x86)\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe => No File
FirewallRules: [TCP Query User{9F7C7E51-8CBB-43A3-9752-E5B2D71D82EF}C:\program files (x86)\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe => No File
FirewallRules: [UDP Query User{740DE2B2-380B-4D98-A42B-973D4DD3BBEA}C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe => No File
FirewallRules: [TCP Query User{ACDA7D4F-EC93-47B9-98C3-41FB65D3C42B}C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe => No File
FirewallRules: [UDP Query User{278F9D52-8C9D-4437-897A-096F6B9A5B70}C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe => No File
FirewallRules: [TCP Query User{12046D72-9F85-48D5-A66D-A37DB27C791A}C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe => No File
FirewallRules: [UDP Query User{050FD279-57E3-4181-93E2-29A1846B7C2F}C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe => No File
FirewallRules: [TCP Query User{99ED3DEA-1442-4673-8619-49893FAECB54}C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe => No File
FirewallRules: [UDP Query User{061A7BA0-2C23-49B7-B906-EA703BBB03BE}C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe => No File
FirewallRules: [TCP Query User{8106E5A8-7E9D-45F8-9AC8-4BEB89EB89DA}C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe => No File
FirewallRules: [UDP Query User{BA54D501-DFBC-47B1-8930-AEB54239B398}C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe => No File
FirewallRules: [TCP Query User{F0309D9A-1692-4B1E-A347-089F18043A3B}C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe => No File
FirewallRules: [UDP Query User{7D7B7347-3846-486E-AD44-7766177881FF}C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe => No File
FirewallRules: [TCP Query User{0B190402-9A51-4D64-B66A-5EED735CB5B8}C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe => No File
FirewallRules: [{EA3329B1-6270-4EF7-973D-A7EBA16217C8}] => (Allow) C:\Users\llega\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{2E5F8054-7E8A-417B-88CE-544CC4721E06}] => (Allow) C:\Users\llega\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{F091A0D4-A068-4D7B-ABF5-2CEEC61BE09D}C:\program files (x86)\starcraft ii\versions\base78285\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base78285\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [TCP Query User{41AAC7C0-16F8-470C-97E7-87248096EBFE}C:\program files (x86)\starcraft ii\versions\base78285\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base78285\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{A540D8D2-5DF6-497E-8696-E0F3A24939A1}] => (Allow) C:\Users\llega\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{516A01F6-C258-4B75-9D52-0670247B7EDA}] => (Allow) C:\Users\llega\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{4F139952-3AF3-4260-8947-D2F5FB521FDB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paw Patrol On A Roll\PawPatrol.exe () [File not signed]
FirewallRules: [{3A8AE3C1-59D7-4E61-9037-4F796DB14926}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paw Patrol On A Roll\PawPatrol.exe () [File not signed]
FirewallRules: [{D5593F20-C75F-4390-8A78-97AC21410ADC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CF01F5DF-4D61-4CA0-8B11-3F9C677A0E13}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FE5ABE78-9144-47F0-B8E1-71EB5F252A6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{1E4E3B7A-F6D2-471C-B646-1E51BD5EFB3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{4D2A6A41-F7B3-4A3B-A636-358672565DBC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{77B1285D-9E07-422B-ACDE-13ED327D56B5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{9F4A5D99-C94D-4712-8D5D-CA8959D2A9DE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8D621521-7066-44D5-9966-6BB8D187C8B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{F9126612-C702-4681-992A-14FB9C290AAA}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{49E56BC2-8B45-43DE-9012-D14BF070BB13}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{5E3D20DA-72AF-4EE4-9549-D260E39E7848}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAW Patrol Mighty Pups  Save Adventure Bay\pp2.exe () [File not signed]
FirewallRules: [{478EEF5E-D6B7-42CB-956E-E9786ED4CCEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAW Patrol Mighty Pups  Save Adventure Bay\pp2.exe () [File not signed]
FirewallRules: [{A693CE2A-D6F6-47A6-9534-A73C187C7056}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E743E6F4-5B7E-45EE-9FB3-D0695A09C2A1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99A416D4-84C3-4787-80E9-530CFA13B6F1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{19138C96-EC2D-4867-A1F0-06E91E5F8331}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{91C85DDF-C0C9-4E5B-98EF-7DF07238B8B9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C6737863-E49C-4E04-ACE8-1CF9743AB91B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{551FE12D-A1FC-425B-8516-308A81EA671C}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{17D18D79-8F6F-4D58-9476-67BB74ABB035}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{44F19338-03C7-4641-A653-0A32A9F45FD5}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7175DE09-3652-4168-89FB-0F35980E5BAE}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6E03B871-102B-4C23-B56A-B1A962DD5032}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{50CB0F1A-EA8B-4895-A7A2-8F7526209DAD}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BE81FBEC-8898-4E26-B075-EC1A3A30920E}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6E5B30B7-CBC6-4C26-86E5-24171ED63C3F}] => (Allow) C:\Users\llega\AppData\Local\Temp\7zS5837\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{802EAEF8-4B7B-4FE9-94EB-055B423AFB0F}] => (Allow) C:\Users\llega\AppData\Local\Temp\7zS5837\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{6F5DEA94-89B9-4E9A-95C8-845237583242}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe () [File not signed]
FirewallRules: [{1FB01149-75B1-4952-9907-31B64CFDB35E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe () [File not signed]
FirewallRules: [{46113F5B-D5BA-4CE2-98A5-30982805F1D3}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BF3A0539-6C7F-4D60-93DA-EBEE22B6E69E}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1EF389A7-805D-4BEA-AA9A-83F9C5BD576A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{117DA5F2-1B26-45C4-9C32-F50F20009855}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6DA6B489-E10F-4DD0-AEE2-C2696D5908B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9FBC29A5-DCC0-4FF0-BD25-9FBBF266E632}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FF100D62-3EB5-4EF7-B69B-B5967E15006A}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
FirewallRules: [{AF2C9E05-C4A0-4FC2-BCDB-AFE9EEB35FBA}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D0F46FAD-CCA8-4076-A990-83D16F5E86DF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{48E7C669-957A-4AE2-BDB6-D58D3972C32C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3D34CE94-C6F2-49D2-B76B-7864A743702E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5FF8EEEA-0FEE-43A8-A8C1-1D01C61EC7BF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{42EFDFFD-6E72-49EC-97C2-236E43E432B8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DC031F4B-4F7D-4D2B-89A5-8455EC3C9E1C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{60572601-349C-4FBD-AF8E-68B6312F492A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E877CDDA-DE8F-48A1-A64C-EC3A229D853F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5860C59B-5720-4FD3-9B25-0AE364E02BF0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A40CEB5B-7A57-4CED-83B3-7A1F567A919E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D1B66461-D374-4A18-86C6-5A1DEC45E017}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{221B260F-1F15-4C71-86FD-3737FD0913C2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4B8324E3-1925-41F4-8E21-BB72D3715D06}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{615BDF4C-00ED-48B7-8FC1-5F7BB94B0B12}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.62\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

18-01-2022 16:36:55 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (01/19/2022 04:58:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Minecraft.Windows.exe, verze: 1.18.2.3, časové razítko: 0x61b01c3e
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1466, časové razítko: 0xe2f8ca76
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x2600
Čas spuštění chybující aplikace: 0x01d80d4b336d1728
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.18.203.0_x64__8wekyb3d8bbwe\Minecraft.Windows.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 9b07a627-46f7-42ce-8c1e-03b546b9b439
Úplný název chybujícího balíčku: Microsoft.MinecraftUWP_1.18.203.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App

Error: (01/17/2022 07:50:31 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Záloha (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (01/17/2022 07:36:11 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na \\?\Volume{accf2efd-eebc-d015-c312-8aa29d41c55f}\, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (01/17/2022 07:36:11 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (01/15/2022 07:34:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Minecraft.Windows.exe, verze: 1.18.2.3, časové razítko: 0x61b01c3e
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1466, časové razítko: 0xe2f8ca76
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x1a60
Čas spuštění chybující aplikace: 0x01d80a3cc5763e50
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.18.203.0_x64__8wekyb3d8bbwe\Minecraft.Windows.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: cf655c37-cee6-4212-a188-b9d03057fdee
Úplný název chybujícího balíčku: Microsoft.MinecraftUWP_1.18.203.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App

Error: (01/14/2022 10:23:11 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL se nezdařilo.
Závislé sestavení Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (01/13/2022 05:19:18 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL se nezdařilo.
Závislé sestavení Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (01/12/2022 09:54:48 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL se nezdařilo.
Závislé sestavení Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.


System errors:
=============
Error: (01/19/2022 05:26:16 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-7301JJD)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_35a6d s argumenty Není k dispozici za účelem spuštění serveru: 
Windows.Media.Capture.Internal.AppCaptureShell

Error: (01/19/2022 05:26:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba BcastDVRUserService_35a6d neuspěla při spuštění v důsledku následující chyby: 
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (01/19/2022 05:26:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby BcastDVRUserService_35a6d bylo dosaženo časového limitu (30000 ms).

Error: (01/19/2022 05:26:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7301JJD)
Description: Server microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/19/2022 05:26:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7301JJD)
Description: Server Microsoft.Windows.Search_1.14.2.19041_neutral_neutral_cw5n1h2txyewy!ShellFeedsUI.AppXfbff151h5bmghg166fvn34ccayg70vts.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/19/2022 05:26:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7301JJD)
Description: Server Microsoft.MicrosoftOfficeHub_18.2110.13110.0_x64__8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub.AppXt4mh7c9swwc5cmd5jgmtmwcfmvkddpn1.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/19/2022 04:41:36 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.

Error: (01/18/2022 07:48:48 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-7301JJD)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_36bf0 s argumenty Není k dispozici za účelem spuštění serveru: 
Windows.Media.Capture.Internal.AppCaptureShell


CodeIntegrity:
===============
Date: 2022-01-20 23:20:33
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2022-01-20 23:20:20
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Avast Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-01-20 23:18:35
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswidsagent.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

BIOS: American Megatrends Inc. P2.10 05/12/2015
Motherboard: ASRock Z97 Extreme4
Processor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz
Percentage of memory in use: 45%
Total physical RAM: 16332.2 MB
Available physical RAM: 8883.1 MB
Total Virtual: 19148.2 MB
Available Virtual: 9714.11 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.19 GB) (Free:27.52 GB) NTFS
Drive d: (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (Záloha) (Fixed) (Total:1861.73 GB) (Free:1565.65 GB) NTFS

\\?\Volume{1aad87f5-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.12 GB) NTFS
\\?\Volume{accf2efd-eebc-d015-c312-8aa29d41c55f}\ () (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS
\\?\Volume{3c405bbc-0000-0000-0000-e08dd1010000}\ () (Fixed) (Total:0.8 GB) (Free:0.37 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 1AAD87F5)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 3C405BBC)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1861.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=817 MB) - (Type=27)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 2.

==================== End of Addition.txt =======================

[Rudy]

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
C:\Program Files\Bonjour
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\MountPoints2: {82f0b350-37c4-11ec-bf4d-d050992786c1} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\MountPoints2: {a0342c9d-efce-11eb-be98-d050992786c1} - "F:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0C98465E-B5A4-4600-908E-C2CA3FAF2111} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001UA => C:\Users\llega\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-04-15] (Google LLC -> Google LLC)
Task: {50C59D91-2EA4-4301-BA98-110B9EF694D1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-02] (Google LLC -> Google LLC)
Task: {664F7AC9-EF89-4480-9D16-D5BF171E36D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-02] (Google LLC -> Google LLC)
Task: {A1199A9A-D4A7-4D1E-8799-4BED4C78A8E5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001Core => C:\Users\llega\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-04-15] (Google LLC -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\llega\AppData\Local\GoToMeeting\18068\G2MOutlookAddin64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{8B480070-D37D-4090-A063-7A429F849652}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.92\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{BE5C2E39-090F-46A2-AFAA-47540743B4FE}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.102\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{CA8FA699-91CD-412F-9D13-9B1222F4370E}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.82\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{CA919489-0396-4164-A6E7-94CDED45A707}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.52\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{DEDF773D-E27B-485E-8E7D-85C5B0EB5A67}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.72\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
SearchScopes: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FirewallRules: [{C7FC6960-2C82-4FA7-A19B-87482457E163}] => (Allow) C:\Windows\system32\winrmsrv.exe => No File
FirewallRules: [UDP Query User{197577ED-A12F-4840-A704-A3B24E79BE95}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [TCP Query User{B0590CA8-53FF-4E43-A420-5A9381BFFFCD}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [UDP Query User{9374E6AB-492D-4379-BB31-2762412C5E47}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [TCP Query User{50FDB49C-DF7B-49ED-8329-D4AD2D1ADF68}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [UDP Query User{740DE2B2-380B-4D98-A42B-973D4DD3BBEA}C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe => No File
FirewallRules: [TCP Query User{ACDA7D4F-EC93-47B9-98C3-41FB65D3C42B}C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe => No File
FirewallRules: [UDP Query User{278F9D52-8C9D-4437-897A-096F6B9A5B70}C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe => No File
FirewallRules: [TCP Query User{12046D72-9F85-48D5-A66D-A37DB27C791A}C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe => No File
FirewallRules: [UDP Query User{050FD279-57E3-4181-93E2-29A1846B7C2F}C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe => No File
FirewallRules: [TCP Query User{99ED3DEA-1442-4673-8619-49893FAECB54}C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe => No File
FirewallRules: [UDP Query User{061A7BA0-2C23-49B7-B906-EA703BBB03BE}C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe => No File
FirewallRules: [TCP Query User{8106E5A8-7E9D-45F8-9AC8-4BEB89EB89DA}C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe => No File
FirewallRules: [UDP Query User{BA54D501-DFBC-47B1-8930-AEB54239B398}C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe => No File
FirewallRules: [TCP Query User{F0309D9A-1692-4B1E-A347-089F18043A3B}C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe => No File
FirewallRules: [UDP Query User{7D7B7347-3846-486E-AD44-7766177881FF}C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe => No File
FirewallRules: [TCP Query User{0B190402-9A51-4D64-B66A-5EED735CB5B8}C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe => No File
FirewallRules: [{EA3329B1-6270-4EF7-973D-A7EBA16217C8}] => (Allow) C:\Users\llega\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{4D2A6A41-F7B3-4A3B-A636-358672565DBC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{77B1285D-9E07-422B-ACDE-13ED327D56B5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{6E5B30B7-CBC6-4C26-86E5-24171ED63C3F}] => (Allow) C:\Users\llega\AppData\Local\Temp\7zS5837\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{802EAEF8-4B7B-4FE9-94EB-055B423AFB0F}] => (Allow) C:\Users\llega\AppData\Local\Temp\7zS5837\HPDiagnosticCoreUI.exe => No File

EmptyTemp:
End

Uložte do C:\Users\llega\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[nothera]

Dobrý den, díky za pomoc. Zde je výstup z toho fixlogu:

Poslal jsem donate. <3

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-01-2022
Ran by llega (21-01-2022 19:07:22) Run:2
Running from C:\Users\llega\OneDrive\Plocha
Loaded Profiles: llega
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
C:\Program Files\Bonjour
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\MountPoints2: {82f0b350-37c4-11ec-bf4d-d050992786c1} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\...\MountPoints2: {a0342c9d-efce-11eb-be98-d050992786c1} - "F:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0C98465E-B5A4-4600-908E-C2CA3FAF2111} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001UA => C:\Users\llega\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-04-15] (Google LLC -> Google LLC)
Task: {50C59D91-2EA4-4301-BA98-110B9EF694D1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-02] (Google LLC -> Google LLC)
Task: {664F7AC9-EF89-4480-9D16-D5BF171E36D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-02] (Google LLC -> Google LLC)
Task: {A1199A9A-D4A7-4D1E-8799-4BED4C78A8E5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001Core => C:\Users\llega\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-04-15] (Google LLC -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\llega\AppData\Local\GoToMeeting\18068\G2MOutlookAddin64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{8B480070-D37D-4090-A063-7A429F849652}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.92\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{BE5C2E39-090F-46A2-AFAA-47540743B4FE}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.102\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{CA8FA699-91CD-412F-9D13-9B1222F4370E}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.82\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{CA919489-0396-4164-A6E7-94CDED45A707}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.52\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{DEDF773D-E27B-485E-8E7D-85C5B0EB5A67}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.36.72\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\llega\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
SearchScopes: HKU\S-1-5-21-4205546469-3882697476-2674355249-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FirewallRules: [{C7FC6960-2C82-4FA7-A19B-87482457E163}] => (Allow) C:\Windows\system32\winrmsrv.exe => No File
FirewallRules: [UDP Query User{197577ED-A12F-4840-A704-A3B24E79BE95}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [TCP Query User{B0590CA8-53FF-4E43-A420-5A9381BFFFCD}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [UDP Query User{9374E6AB-492D-4379-BB31-2762412C5E47}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [TCP Query User{50FDB49C-DF7B-49ED-8329-D4AD2D1ADF68}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [UDP Query User{740DE2B2-380B-4D98-A42B-973D4DD3BBEA}C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe => No File
FirewallRules: [TCP Query User{ACDA7D4F-EC93-47B9-98C3-41FB65D3C42B}C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe => No File
FirewallRules: [UDP Query User{278F9D52-8C9D-4437-897A-096F6B9A5B70}C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe => No File
FirewallRules: [TCP Query User{12046D72-9F85-48D5-A66D-A37DB27C791A}C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe => No File
FirewallRules: [UDP Query User{050FD279-57E3-4181-93E2-29A1846B7C2F}C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe => No File
FirewallRules: [TCP Query User{99ED3DEA-1442-4673-8619-49893FAECB54}C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe => No File
FirewallRules: [UDP Query User{061A7BA0-2C23-49B7-B906-EA703BBB03BE}C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe => No File
FirewallRules: [TCP Query User{8106E5A8-7E9D-45F8-9AC8-4BEB89EB89DA}C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe => No File
FirewallRules: [UDP Query User{BA54D501-DFBC-47B1-8930-AEB54239B398}C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe => No File
FirewallRules: [TCP Query User{F0309D9A-1692-4B1E-A347-089F18043A3B}C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe => No File
FirewallRules: [UDP Query User{7D7B7347-3846-486E-AD44-7766177881FF}C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe => No File
FirewallRules: [TCP Query User{0B190402-9A51-4D64-B66A-5EED735CB5B8}C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe => No File
FirewallRules: [{EA3329B1-6270-4EF7-973D-A7EBA16217C8}] => (Allow) C:\Users\llega\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{4D2A6A41-F7B3-4A3B-A636-358672565DBC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{77B1285D-9E07-422B-ACDE-13ED327D56B5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{6E5B30B7-CBC6-4C26-86E5-24171ED63C3F}] => (Allow) C:\Users\llega\AppData\Local\Temp\7zS5837\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{802EAEF8-4B7B-4FE9-94EB-055B423AFB0F}] => (Allow) C:\Users\llega\AppData\Local\Temp\7zS5837\HPDiagnosticCoreUI.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
C:\Program Files\Bonjour => moved successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{82f0b350-37c4-11ec-bf4d-d050992786c1} => removed successfully
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a0342c9d-efce-11eb-be98-d050992786c1} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0C98465E-B5A4-4600-908E-C2CA3FAF2111}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C98465E-B5A4-4600-908E-C2CA3FAF2111}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001UA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001UA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{50C59D91-2EA4-4301-BA98-110B9EF694D1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50C59D91-2EA4-4301-BA98-110B9EF694D1}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{664F7AC9-EF89-4480-9D16-D5BF171E36D7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{664F7AC9-EF89-4480-9D16-D5BF171E36D7}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A1199A9A-D4A7-4D1E-8799-4BED4C78A8E5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1199A9A-D4A7-4D1E-8799-4BED4C78A8E5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001Core => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-4205546469-3882697476-2674355249-1001Core" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309} => removed successfully
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{8B480070-D37D-4090-A063-7A429F849652} => removed successfully
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{BE5C2E39-090F-46A2-AFAA-47540743B4FE} => removed successfully
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{CA8FA699-91CD-412F-9D13-9B1222F4370E} => removed successfully
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{CA919489-0396-4164-A6E7-94CDED45A707} => removed successfully
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{DEDF773D-E27B-485E-8E7D-85C5B0EB5A67} => removed successfully
HKU\S-1-5-21-4205546469-3882697476-2674355249-1001_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C} => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKU\S-1-5-21-4205546469-3882697476-2674355249-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C7FC6960-2C82-4FA7-A19B-87482457E163}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{197577ED-A12F-4840-A704-A3B24E79BE95}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B0590CA8-53FF-4E43-A420-5A9381BFFFCD}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9374E6AB-492D-4379-BB31-2762412C5E47}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{50FDB49C-DF7B-49ED-8329-D4AD2D1ADF68}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{740DE2B2-380B-4D98-A42B-973D4DD3BBEA}C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{ACDA7D4F-EC93-47B9-98C3-41FB65D3C42B}C:\program files (x86)\starcraft ii\versions\base81102\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{278F9D52-8C9D-4437-897A-096F6B9A5B70}C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{12046D72-9F85-48D5-A66D-A37DB27C791A}C:\program files (x86)\starcraft ii\versions\base81009\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{050FD279-57E3-4181-93E2-29A1846B7C2F}C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{99ED3DEA-1442-4673-8619-49893FAECB54}C:\program files (x86)\starcraft ii\versions\base80949\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{061A7BA0-2C23-49B7-B906-EA703BBB03BE}C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8106E5A8-7E9D-45F8-9AC8-4BEB89EB89DA}C:\program files (x86)\starcraft ii\versions\base80188\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BA54D501-DFBC-47B1-8930-AEB54239B398}C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F0309D9A-1692-4B1E-A347-089F18043A3B}C:\program files (x86)\starcraft ii\versions\base80188\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7D7B7347-3846-486E-AD44-7766177881FF}C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0B190402-9A51-4D64-B66A-5EED735CB5B8}C:\program files (x86)\starcraft ii\versions\base79998\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EA3329B1-6270-4EF7-973D-A7EBA16217C8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D2A6A41-F7B3-4A3B-A636-358672565DBC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{77B1285D-9E07-422B-ACDE-13ED327D56B5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6E5B30B7-CBC6-4C26-86E5-24171ED63C3F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{802EAEF8-4B7B-4FE9-94EB-055B423AFB0F}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 1483862200 B
Java, Flash, Steam htmlcache => 459684543 B
Windows/system/drivers => 16182465 B
Edge => 86528 B
Chrome => 2668934773 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 14514791 B
NetworkService => 14514791 B
llega => 304509361 B

RecycleBin => 2949180477 B
EmptyTemp: => 7.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:17:56 ====

[Rudy]

Smazáno, log je již OK.