Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

preventivni kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#31 Příspěvek od fsubin »

FRST som presunul z mojho Downloads adresara, ktory mam na disku oznaceny ako disk E na disk D - co je fyzicky iny disk rozdeleny na dve particie C a D. S HDD som vobec ziadne problemy nespozoroval, ani ziadne ine problemy so system sa nevyskytli.
Disk E je diskom ku ktoremu pristupujem velmi casto a mam na nom ulozene najvacsie data, ale vobec ziadny problem som zatial nezaznamenal.


Tu je log po fixe:

Fix result of Farbar Recovery Scan Tool (x64) Version: 26-03-2021
Ran by fsubi (26-03-2021 20:48:59) Run:6
Running from D:\
Loaded Profiles: fsubi
Boot Mode: Normal
==============================================

fixlist content:
*****************
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll => No File
FirewallRules: [{1F079BE3-3F8A-416E-8E12-E68E8CB889C7}] => (Allow) LPort=9009
FirewallRules: [{720C0124-A353-4DD1-AE5B-4204FAA4C9FB}] => (Allow) LPort=9009
FirewallRules: [{3062C1C5-CBDC-4AE0-9FAF-391FA2B92D41}] => (Allow) LPort=9009
FirewallRules: [{62F1B393-A810-4AFE-923F-350A6315D2D8}] => (Allow) LPort=9009
FirewallRules: [{2270EE59-B1FC-46F1-9D2F-A4C0E44E1EBF}] => (Allow) LPort=9009
FirewallRules: [{C64ECB58-D7EF-4752-BCEA-7ED1787D656A}] => (Allow) LPort=9009
FirewallRules: [{49D23485-F5F1-4A31-BEFC-079C13D8E67E}] => (Allow) LPort=9009
FirewallRules: [{2691C416-306C-4CEE-ADCA-E2B67CE92F55}] => (Allow) LPort=9009
FirewallRules: [{69B42916-9F9B-4956-95B3-57470280FBEE}] => (Allow) LPort=9009
FirewallRules: [{997673BC-FE27-4CA3-ADCA-9CB8DAA5606B}] => (Allow) LPort=9009
FirewallRules: [{3A936A07-E549-4EEB-86DD-706BF4C1D4E3}] => (Allow) LPort=9009
FirewallRules: [{AA0E18CA-91D7-418D-9203-C62161D3BE37}] => (Allow) LPort=9009
FirewallRules: [{10C5BF8E-D6A7-4140-9D0E-0E1383058006}] => (Allow) LPort=9009
FirewallRules: [{7C385996-6710-4064-BFC4-4F5E85386D5A}] => (Allow) LPort=9009
FirewallRules: [{79523D0A-012A-4708-BC96-8DF2F5EFC39C}] => (Allow) LPort=9009
FirewallRules: [{878BB43B-A168-4D93-BE76-14ECC29A1251}] => (Allow) LPort=9009
FirewallRules: [{DD94E7E5-D4A5-45E6-921F-FC88DC16E781}] => (Allow) LPort=9009
FirewallRules: [{97C8976D-41DC-4B2C-9DC4-7E1B8276ADAC}] => (Allow) LPort=9009
FirewallRules: [{2A57BDD5-AA7C-455A-BBCE-82AF256AC8B5}] => (Allow) LPort=9009
FirewallRules: [{10DE0991-BD0F-4FEB-8787-B06E9EF6B77A}] => (Allow) LPort=9009
FirewallRules: [{4A0B101F-E5DF-4650-A68A-86DBB7FFA644}] => (Allow) LPort=9009

*****************

HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1F079BE3-3F8A-416E-8E12-E68E8CB889C7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{720C0124-A353-4DD1-AE5B-4204FAA4C9FB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3062C1C5-CBDC-4AE0-9FAF-391FA2B92D41}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{62F1B393-A810-4AFE-923F-350A6315D2D8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2270EE59-B1FC-46F1-9D2F-A4C0E44E1EBF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C64ECB58-D7EF-4752-BCEA-7ED1787D656A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{49D23485-F5F1-4A31-BEFC-079C13D8E67E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2691C416-306C-4CEE-ADCA-E2B67CE92F55}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{69B42916-9F9B-4956-95B3-57470280FBEE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{997673BC-FE27-4CA3-ADCA-9CB8DAA5606B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3A936A07-E549-4EEB-86DD-706BF4C1D4E3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AA0E18CA-91D7-418D-9203-C62161D3BE37}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{10C5BF8E-D6A7-4140-9D0E-0E1383058006}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7C385996-6710-4064-BFC4-4F5E85386D5A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{79523D0A-012A-4708-BC96-8DF2F5EFC39C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{878BB43B-A168-4D93-BE76-14ECC29A1251}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DD94E7E5-D4A5-45E6-921F-FC88DC16E781}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{97C8976D-41DC-4B2C-9DC4-7E1B8276ADAC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2A57BDD5-AA7C-455A-BBCE-82AF256AC8B5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{10DE0991-BD0F-4FEB-8787-B06E9EF6B77A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4A0B101F-E5DF-4650-A68A-86DBB7FFA644}" => removed successfully

==== End of Fixlog 20:48:59 ====

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: preventivni kontrola

#32 Příspěvek od Diallix »

Poprosim o nove logy .
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#33 Příspěvek od fsubin »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-03-2021
Ran by fsubi (administrator) on SCORSESE (Gigabyte Technology Co., Ltd. Z490 AORUS ULTRA) (26-03-2021 21:26:54)
Running from D:\
Loaded Profiles: fsubi
Platform: Windows 10 Pro Version 20H2 19042.870 (X64) Language: English (United Kingdom)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
() [File not signed] C:\Program Files\Rainlendar2\Rainlendar2.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365057.inf_amd64_c4eff47eaf88e53e\B364966\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365057.inf_amd64_c4eff47eaf88e53e\B364966\atiesrxx.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe <2>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7aa6ca9dbb25bff8\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_5d10f2aad7f84bec\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_68966115f2eef4e5\RstMwService.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\TPMProvisioningService.exe
(LeapFrog Enterprises, Inc. -> LeapFrog Enterprises, Inc.) D:\Program Files (x86)\LeapReader\LeapFrog Connect2\LFHelper.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\fsubi\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) C:\Windows\V0700Mon.exe
(Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\TM Flight Series\drivers\amd64\tmHInstall.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe <2>
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) D:\Program Files\NordVPN\nordvpn-service.exe
(X-Rite Incorporated -> ) D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\ColorMunki Photo Tray.exe
(X-Rite Incorporated -> X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2019-01-31] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Gigabyte Speed] => C:\Program Files\cFosSpeed\cFosSpeed.exe [1724248 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
HKLM-x32\...\Run: [V0700Mon.exe] => C:\Windows\V0700Mon.exe [28672 2011-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992040 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [3389440 2020-03-31] () [File not signed]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536424 2021-03-06] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [NordVPN] => D:\Program Files\NordVPN\NordVPN.exe [274176 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\Canon iP4900 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAW.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP4900 series: C:\Windows\system32\CNMLMAW.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2012-09-27] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2020-09-05]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorMunki Gamma.lnk [2020-12-18]
ShortcutTarget: ColorMunki Gamma.lnk -> D:\Program Files (x86)\X-Rite\ColorMunki Photo\Gamma\CalibrationLoader.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorMunkiPhotoTray.exe.lnk [2020-12-18]
ShortcutTarget: ColorMunkiPhotoTray.exe.lnk -> D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\ColorMunki Photo Tray.exe (X-Rite Incorporated -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SetupRST_ModeSwitch.lnk [2021-03-10]
ShortcutTarget: SetupRST_ModeSwitch.lnk -> C:\Program Files (x86)\GIGABYTE\AppCenter\pack\SetupRST.exe (Intel(R) Rapid Storage Technology -> Intel Corporation)
Startup: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-12-18] ()

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {125E5CB0-8E1B-4EBD-9809-4FF6C3E7C9FD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {19257E17-54BD-409B-82D6-BD9323798C97} - System32\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001 => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupdate.exe [31320 2021-03-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {2618028A-795D-488D-B7BE-2BB8A49723E4} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
Task: {2BD3A851-EDE3-4DA7-A9DB-56F091B71F2E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {2D9F587D-7707-4EE6-9DA9-41F5D1DD1BDC} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15768 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {38D5B7FE-F94F-4961-AECF-0291AA6A8F45} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {39A21086-5EA3-4DCD-8687-2F3FC26664BC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68176 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {428E89D9-8C38-4D47-931B-E6410811600D} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60496 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5D9F2634-C1D2-4A30-A406-BD26DED14AD4} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
Task: {5F22382B-246E-4162-8EF5-1A21E267A830} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5FF0D7CB-A573-487C-8D48-88318A79928A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2167464 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Task: {647FCA04-0918-462B-A71A-891BFA3AF77D} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {76AADFFE-8C8A-4453-AF34-31477891C1F3} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {81286C84-111F-4E37-9BE9-5452028FFED1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {828A2158-A8BC-41F1-841B-F0A50381E96E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {855353F1-8F68-46C1-9829-6FACAEA77639} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {863EE257-9599-4AB7-9386-447569E201A5} - System32\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001 => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupload.exe [31320 2021-03-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {8ECC6BC5-A1B7-4651-A428-5EC9AA551EB9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9198E8C5-5F0F-4749-97C0-F4C666E3BCF8} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [387992 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {A796589C-F8A4-48D1-B0A7-8D153F80868F} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2167464 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Task: {BA36A4CC-2DC8-4EBB-A638-24BAD056E79D} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {C5010CC4-3852-4BD1-B4A8-25DDD13059FE} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18328 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {D1634F2A-9D54-4719-A81E-A9E9CA2A7F4B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {E62AEDD9-EF72-427D-9E5F-FC162313B03A} - System32\Tasks\X-Rite Device Services Software Updater => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe [24432 2015-09-18] (X-Rite Incorporated -> X-Rite Inc.)
Task: {E8714478-ABE1-4B96-9E9C-D15B776B750F} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [252984 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {F543737F-6F8C-4C1E-977A-E5F4B93417B5} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\IntelPTTEKRecertification.exe [919832 2020-12-20] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {F6A21BBB-2DFC-4A48-9522-0B72E3B590D3} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [233184 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001.job => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupdate.exe
Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001.job => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupload.exe
Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\IntelPTTEKRecertification.exe
Task: C:\Windows\Tasks\X-Rite Device Services Software Updater.job => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{98dbab16-08c4-4647-a0d2-64f7cb3a0a64}: [NameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-26]
Edge HomePage: Default -> hxxp://www.seznam.cz/
Edge StartupUrls: Default -> "hxxps://google.sk/"
Edge Extension: (LastPass: Free Password Manager) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2021-03-15]
Edge Extension: (Outlook) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-14]
Edge Extension: (Logitech Smooth Scrolling) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-09-07]
Edge Extension: (Office) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2020-10-17]
Edge Extension: (Word) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-14]
Edge Extension: (Excel) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-14]
Edge Extension: (OneNote Web Clipper) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oogbnpmeihfgnccdnmmlgicknopghhma [2020-11-06]
Edge Extension: (PowerPoint) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-14]
Edge Extension: (AdBlocker Ultimate) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pciakllldcajllepkbbihkmfkikheffb [2020-12-11]

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2020-10-05] [not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2012-01-13] (Nero AG -> Nero AG)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-07] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-07] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default [2021-03-26]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Slides) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-05]
CHR Extension: (Docs) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-05]
CHR Extension: (Google Drive) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-05]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-02-25]
CHR Extension: (OneNote Online) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciniambnphakdoflgeamacamhfllbkmo [2020-09-05]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-09-05]
CHR Extension: (Adobe Acrobat) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-01]
CHR Extension: (Google Play Music) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-11-21]
CHR Extension: (Sheets) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-05]
CHR Extension: (NordVPN — #1 VPN Chrome Extension: Get a VPN) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2021-03-26]
CHR Extension: (Google Docs Offline) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-11]
CHR Extension: (OneNote Web Clipper) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2020-09-26]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-03-26]
CHR Extension: (Cisco Webex Extension) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2021-03-25]
CHR Extension: (Evernote Web) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2020-09-05]
CHR Extension: (Application launcher for Drive (by Google)) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Office) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2021-02-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-13]
CHR HKU\S-1-5-21-971254259-73155972-3602281376-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S4 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
S4 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\84.1.5542.138\elevation_service.exe [1332800 2020-08-19] (Piriform Software Ltd -> Piriform Software)
S4 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [595288 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8990072 2021-03-11] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44272 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-02-26] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142904 2021-02-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
S3 GalaxyClientService; D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
S2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128920 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LFHelper; D:\Program Files (x86)\LeapReader\LeapFrog Connect2\LFHelper.exe [3000056 2020-10-29] (LeapFrog Enterprises, Inc. -> LeapFrog Enterprises, Inc.)
R2 nordvpn-service; D:\Program Files\NordVPN\nordvpn-service.exe [275200 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125664 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1679240 2021-02-18] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkAudioUniversalService; C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 tmHInstall; C:\Program Files\Thrustmaster\TM Flight Series\drivers\amd64\tmHInstall.exe [110608 2020-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [83312 2015-09-18] (X-Rite Incorporated -> X-Rite Inc.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1595456 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
S3 colormunki; C:\Windows\System32\Drivers\colormunki_x64.sys [51600 2013-06-21] (USBIO Test -> Thesycon GmbH, Germany)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-09-05] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 GuiHidUsbDevLowerTFH; C:\Windows\System32\Drivers\GuiHidUsbDevLowerTFH.sys [129552 2020-07-31] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2020. All rights reserved.)
S3 HWiNFO_160; C:\Users\fsubi\AppData\Local\Temp\HWiNFO64A_160.SYS [64536 2021-03-26] (Martin Malik - REALiX -> REALiX(tm)) <==== ATTENTION
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2021-03-11] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 NDivert; C:\Windows\System32\drivers\NDivert.sys [105184 2021-02-01] (TEFINCOM S.A. -> )
R3 nlwt; C:\Windows\system32\DRIVERS\nlwt.sys [39360 2021-02-05] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 SaiH0C2D; C:\Windows\system32\DRIVERS\SaiH0C2D.sys [176128 2007-07-02] (Saitek -> Saitek)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R3 V0700Vid; C:\Windows\system32\DRIVERS\V0700Vid.sys [393920 2011-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239432 2020-10-16] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2020-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [429296 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-05] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-26 16:44 - 2021-03-26 16:44 - 000000368 ____H C:\Windows\Tasks\Intel PTT EK Recertification.job
2021-03-25 11:56 - 2021-03-25 11:56 - 000000000 ____D C:\Users\fsubi\AppData\Local\CADlogic Limited
2021-03-25 10:37 - 2021-03-25 11:56 - 000000000 ____D C:\ProgramData\CADlogic Limited
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\Users\fsubi\AppData\System
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\Users\fsubi\AppData\Local\SmartDraw
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartDraw 2020
2021-03-22 09:09 - 2021-03-22 09:09 - 000011357 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-03-20 16:01 - 2021-03-24 08:01 - 000000000 ____D C:\Users\fsubi\Počítač\Untitled Export
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {d8170687-85fa-4716-bafd-087205d0db72}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {9f9c9e51-d42f-4462-a27a-7d419da18045}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {29d6077f-6adb-42de-abac-1c60aeb0e237}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700}
2021-03-20 12:25 - 2020-12-02 16:04 - 000274672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll
2021-03-20 12:25 - 2020-12-02 16:04 - 000229616 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll
2021-03-20 12:25 - 2020-12-02 16:03 - 005968480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2021-03-20 12:25 - 2020-12-02 15:52 - 043277665 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2021-03-20 11:50 - 2021-03-26 21:27 - 000000000 ____D C:\FRST
2021-03-19 11:50 - 2021-03-19 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-03-18 17:05 - 2021-03-26 21:26 - 000003112 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2021-03-18 17:05 - 2021-03-18 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-03-18 17:05 - 2021-03-18 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-03-18 17:05 - 2021-03-10 19:43 - 002241008 _____ (AMD Inc.) C:\Windows\SysWOW64\AMDBugReportTool.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001857864 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001857864 _____ C:\Windows\system32\vulkaninfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001438520 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001438520 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001093736 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 001093736 _____ C:\Windows\system32\vulkan-1.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000946896 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000946896 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000799568 _____ (AMD) C:\Windows\system32\atieclxx.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000736568 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000620864 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000496432 _____ C:\Windows\system32\GameManager64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000492856 _____ C:\Windows\system32\dgtrayicon.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000456016 _____ C:\Windows\system32\atieah64.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000432432 _____ C:\Windows\system32\EEURestart.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000351568 _____ C:\Windows\SysWOW64\atieah32.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000346424 _____ C:\Windows\system32\clinfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000245072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000212816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000186680 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000166712 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000166200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000156472 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000142136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000140592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000135480 _____ (AMD) C:\Windows\system32\atimuixx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000125248 _____ C:\Windows\system32\atidxx64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000107344 _____ C:\Windows\SysWOW64\atidxx32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000090432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000075064 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000046400 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000043320 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000019856 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 081415488 _____ C:\Windows\system32\amd_comgr.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 072438584 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 066865984 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 005222216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 004987200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 001492800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiacm64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 001339200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000940880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000768336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000489272 _____ C:\Windows\system32\amdgfxinfo64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000468288 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000466256 _____ C:\Windows\system32\amdlogum.exe
2021-03-18 16:59 - 2021-03-17 11:44 - 000379704 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000182096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000158352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000149824 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000130368 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000130320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000122192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000108320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000106816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000069952 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 001685696 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 001365056 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000546864 _____ C:\Windows\system32\amdmiracast.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000136024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000130304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000120368 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000108320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2021-03-18 16:59 - 2021-03-10 19:26 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2021-03-18 16:59 - 2021-03-10 19:26 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2021-03-18 16:59 - 2021-03-10 19:22 - 058675112 _____ C:\Windows\system32\amdxc64.so
2021-03-18 16:59 - 2021-03-10 19:19 - 000556128 _____ C:\Windows\SysWOW64\atiapfxx.blb
2021-03-18 16:59 - 2021-03-10 19:19 - 000556128 _____ C:\Windows\system32\atiapfxx.blb
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000044272 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-03-14 14:31 - 2021-03-14 14:31 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime
2021-03-14 14:19 - 2021-03-14 14:19 - 000000000 ____D C:\Users\fsubi\AppData\Local\KojimaProductions
2021-03-13 17:44 - 2021-03-13 17:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-03-13 17:44 - 2021-03-13 17:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-03-13 17:44 - 2021-03-13 17:44 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-03-13 17:44 - 2021-03-13 17:44 - 000707016 _____ C:\Windows\system32\TextShaping.dll
2021-03-13 17:44 - 2021-03-13 17:44 - 000611952 _____ C:\Windows\SysWOW64\TextShaping.dll
2021-03-11 21:12 - 2021-03-11 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AORUS
2021-03-11 10:15 - 2021-03-11 10:15 - 000000000 ____D C:\Users\psubi\AppData\Local\cFos
2021-03-10 13:50 - 2021-03-10 13:50 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
2021-03-10 13:50 - 2021-03-10 13:50 - 000000000 ____D C:\Program Files (x86)\Belarc
2021-03-10 12:49 - 2021-03-10 12:49 - 000003356 _____ C:\Windows\system32\Tasks\SIV-VGA
2021-03-10 12:49 - 2021-03-10 12:49 - 000003350 _____ C:\Windows\system32\Tasks\SIV
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\Users\fsubi\AppData\Local\cFos
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte Speed
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\ProgramData\cFos
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\Program Files\cFosSpeed
2021-03-10 12:49 - 2019-03-21 04:06 - 001595456 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys
2021-03-10 12:45 - 2020-12-16 07:47 - 000027512 _____ (Intel Corporation) C:\Windows\system32\RstMwEventLogMsg.dll
2021-03-10 12:45 - 2020-12-16 07:46 - 002965880 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsService.exe
2021-03-10 12:45 - 2020-12-16 07:46 - 001474936 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAC.sys
2021-03-10 12:45 - 2020-12-16 07:46 - 000219512 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsNative.exe
2021-03-10 12:45 - 2020-12-16 07:46 - 000119672 _____ (Intel Corporation) C:\Windows\system32\Optane.dll
2021-03-10 12:45 - 2020-12-16 07:46 - 000073080 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAfs.sys
2021-03-10 12:45 - 2020-12-16 07:46 - 000023416 _____ (Intel Corporation) C:\Windows\system32\OptaneEventLogMsg.dll
2021-03-09 23:11 - 2021-03-11 22:46 - 001065984 _____ C:\Users\fsubi\AppData\Local\file__0.localstorage
2021-03-09 23:11 - 2021-03-09 23:21 - 000000000 ____D C:\Users\fsubi\Valley
2021-03-09 23:10 - 2021-03-09 23:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2021-03-08 23:24 - 2021-03-08 23:24 - 000000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2021-03-08 19:07 - 2021-03-11 21:12 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2021-03-08 19:04 - 2021-03-08 19:04 - 000003450 _____ C:\Windows\system32\Tasks\GraphicsCardEngine
2021-02-28 17:36 - 2021-02-28 17:36 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2021-02-27 22:01 - 2021-02-27 22:01 - 001822272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 001394024 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 000480256 _____ C:\Windows\system32\AssignedAccessCsp.dll
2021-02-27 22:01 - 2021-02-27 22:01 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-27 22:01 - 2021-02-27 22:01 - 000091136 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-02-27 11:56 - 2021-02-27 11:56 - 000000000 ____D C:\Users\fsubi\AppData\Local\Madness
2021-02-25 22:14 - 2021-02-25 22:15 - 000000000 ____D C:\AdwCleaner
2021-02-25 22:13 - 2021-02-25 22:13 - 000000000 ____D C:\Users\fsubi\AppData\Local\mbam
2021-02-25 22:13 - 2021-02-25 22:13 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-02-25 20:50 - 2021-02-25 20:50 - 000001185 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-26 21:26 - 2020-09-24 18:30 - 000003096 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-03-26 21:26 - 2020-09-05 20:40 - 000000000 ____D C:\Users\fsubi\.rainlendar2
2021-03-26 21:26 - 2020-09-05 17:04 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-26 21:26 - 2019-12-07 09:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-26 21:26 - 2019-12-07 09:03 - 001048576 _____ C:\Windows\system32\config\BBI
2021-03-26 21:25 - 2019-12-07 09:13 - 000000000 ____D C:\Windows\INF
2021-03-26 21:24 - 2020-09-05 17:18 - 000000000 ___RD C:\Users\fsubi\Počítač
2021-03-26 20:51 - 2020-09-07 09:00 - 000000000 ____D C:\Program Files\CCleaner
2021-03-26 20:38 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\AppReadiness
2021-03-26 20:24 - 2020-09-05 17:04 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-03-26 19:58 - 2020-09-06 05:11 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-26 19:58 - 2019-12-07 09:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-26 17:38 - 2020-09-05 17:10 - 000842942 _____ C:\Windows\system32\PerfStringBackup.INI
2021-03-26 17:22 - 2021-01-18 13:16 - 000000000 ____D C:\REX Weather Force 2020
2021-03-26 16:51 - 2020-09-05 17:17 - 000000000 ____D C:\Users\fsubi\AppData\Local\D3DSCache
2021-03-26 16:48 - 2020-12-05 11:12 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2021-03-26 12:44 - 2020-09-05 17:13 - 000000000 ____D C:\Users\fsubi
2021-03-26 09:26 - 2020-11-24 17:10 - 000000652 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001.job
2021-03-26 09:26 - 2020-11-24 17:10 - 000000556 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001.job
2021-03-26 09:22 - 2021-02-01 16:38 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\Temp
2021-03-26 09:22 - 2020-09-05 17:32 - 000000000 ____D C:\Program Files (x86)\Google
2021-03-25 16:47 - 2020-11-24 17:10 - 000003802 _____ C:\Windows\system32\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-25 16:47 - 2020-11-24 17:10 - 000003706 _____ C:\Windows\system32\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-25 16:47 - 2020-11-24 17:10 - 000000000 ____D C:\Users\fsubi\AppData\Local\GoToMeeting
2021-03-25 14:55 - 2020-11-22 20:23 - 000000000 ____D C:\Users\fsubi\AppData\Local\CrashDumps
2021-03-25 14:45 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Local\Packages
2021-03-25 10:37 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Local\VirtualStore
2021-03-25 10:36 - 2020-12-15 09:06 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\uTorrent Web
2021-03-25 10:29 - 2020-12-15 09:07 - 000000000 ____D C:\Users\fsubi\AppData\Local\BitTorrentHelper
2021-03-24 07:36 - 2020-09-05 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2021-03-22 20:54 - 2021-02-22 22:52 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Microsoft Flight Simulator
2021-03-22 19:40 - 2020-10-10 09:10 - 000000000 ____D C:\Users\fsubi\AppData\Local\FlightSimulator
2021-03-22 16:18 - 2020-09-05 17:04 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-22 12:52 - 2020-09-05 20:53 - 000000000 ____D C:\Program Files\Microsoft Office
2021-03-22 09:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\bcastdvr
2021-03-22 09:09 - 2019-12-07 09:03 - 000000000 ____D C:\Windows\CbsTemp
2021-03-20 12:33 - 2020-09-05 17:27 - 000003840 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-03-20 12:32 - 2020-09-05 19:38 - 000000000 ____D C:\Windows\SysWOW64\pack
2021-03-20 12:32 - 2020-09-05 17:34 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-20 12:30 - 2020-09-05 17:33 - 000000000 ____D C:\Program Files (x86)\Intel
2021-03-20 12:29 - 2020-09-05 17:34 - 000000000 ____D C:\Program Files\Intel
2021-03-20 12:25 - 2020-09-05 17:35 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-03-20 12:25 - 2020-09-05 17:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-03-20 12:21 - 2020-09-24 17:58 - 000000000 ____D C:\Users\fsubi\AppData\Local\ElevatedDiagnostics
2021-03-20 11:46 - 2021-02-05 09:26 - 000000895 _____ C:\Users\fsubi\Počítač\NordVPN.lnk
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\Users\fsubi\AppData\Local\NordVPN
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\ProgramData\NordVPN
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2021-03-19 11:50 - 2020-12-05 11:07 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-03-18 17:16 - 2020-09-05 18:09 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\AMD
2021-03-18 17:05 - 2020-09-24 18:31 - 000000000 ____D C:\Users\fsubi\AppData\Local\AMD
2021-03-18 17:05 - 2020-09-24 18:30 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2021-03-18 17:05 - 2020-09-24 18:30 - 000003160 _____ C:\Windows\system32\Tasks\StartCN
2021-03-18 17:05 - 2020-09-24 18:30 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR
2021-03-18 17:05 - 2020-09-05 17:16 - 000000000 ____D C:\Program Files\AMD
2021-03-18 16:59 - 2021-01-21 20:20 - 000000000 ____D C:\AMD
2021-03-18 16:57 - 2020-11-21 11:17 - 000000000 ____D C:\Users\fsubi\AppData\Local\AMD_Common
2021-03-17 11:45 - 2021-02-23 08:16 - 000379704 _____ C:\Windows\SysWOW64\GameManager32.dll
2021-03-17 11:45 - 2021-02-23 08:16 - 000019856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2021-03-17 11:44 - 2020-09-16 12:04 - 001767232 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2021-03-17 11:44 - 2020-09-16 12:04 - 001339200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2021-03-17 11:44 - 2020-09-16 12:03 - 000202144 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll
2021-03-17 11:44 - 2020-09-16 12:03 - 000169688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll
2021-03-16 21:37 - 2020-09-05 17:32 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-15 10:07 - 2020-10-22 14:09 - 000015824 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys
2021-03-14 10:26 - 2019-12-07 09:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-03-13 20:46 - 2021-02-08 14:59 - 000000000 ____D C:\Users\fsubi\AppData\Local\Amazon Music
2021-03-13 20:08 - 2021-02-08 14:59 - 000001261 _____ C:\Users\fsubi\Počítač\Amazon Music.lnk
2021-03-13 18:01 - 2020-09-08 10:12 - 000000000 ____D C:\Users\fsubi\Počítač\Games
2021-03-13 18:01 - 2020-09-05 22:29 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-03-13 17:48 - 2020-09-05 17:04 - 000817928 _____ C:\Windows\system32\FNTCACHE.DAT
2021-03-13 17:48 - 2019-12-07 14:49 - 000000000 ___SD C:\Windows\system32\AppV
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SystemResources
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\setup
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\oobe
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\Dism
2021-03-13 10:20 - 2020-09-30 20:39 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\decrypt
2021-03-11 21:12 - 2020-09-05 17:50 - 000000000 ____D C:\Users\fsubi\AppData\Local\Downloaded Installations
2021-03-11 21:10 - 2020-10-05 15:28 - 000018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2021-03-11 20:53 - 2020-09-05 17:17 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-11 20:53 - 2020-09-05 17:13 - 000002365 _____ C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-11 20:06 - 2020-09-05 19:17 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-03-11 19:54 - 2020-09-21 19:31 - 000000000 ___RD C:\Users\psubi\OneDrive
2021-03-11 10:15 - 2020-09-21 19:31 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971254259-73155972-3602281376-1002
2021-03-11 10:15 - 2020-09-21 19:30 - 000002365 _____ C:\Users\psubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-10 18:15 - 2020-09-05 18:43 - 000000000 ____D C:\Windows\system32\MRT
2021-03-10 18:13 - 2020-09-05 18:43 - 131005360 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-03-10 14:28 - 2020-09-07 09:00 - 000000000 ____D C:\Users\fsubi\Počítač\Power Tools
2021-03-10 14:27 - 2020-09-07 09:00 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-03-10 14:25 - 2020-12-31 08:42 - 000000000 ____D C:\Program Files\CPUID
2021-03-10 14:25 - 2020-09-07 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2021-03-10 14:08 - 2020-10-03 13:56 - 001682352 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000216016 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000169400 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000159184 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000038320 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe
2021-03-10 13:11 - 2020-09-05 17:15 - 000000000 ____D C:\ProgramData\Packages
2021-03-09 20:36 - 2020-09-05 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2021-03-09 20:36 - 2020-09-05 20:54 - 000000000 ____D C:\Program Files\HWiNFO64
2021-03-08 19:07 - 2020-09-05 19:13 - 000000000 ____D C:\Program Files\ENE
2021-03-08 19:04 - 2020-09-05 17:51 - 000003466 _____ C:\Windows\system32\Tasks\EasyTune 1
2021-03-08 19:04 - 2020-09-05 17:51 - 000003366 _____ C:\Windows\system32\Tasks\EasyTune
2021-03-08 18:53 - 2020-09-06 05:11 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-08 18:53 - 2020-09-06 05:11 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-01 17:05 - 2020-10-12 13:43 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\ABarthel
2021-03-01 16:25 - 2020-09-30 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2021-03-01 16:17 - 2020-09-30 20:39 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\.ePUBeedrmremoval
2021-02-27 22:06 - 2019-12-07 14:49 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\Provisioning
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-27 21:52 - 2021-02-06 18:41 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\EasyAntiCheat
2021-02-25 22:14 - 2019-12-07 09:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-02-25 20:50 - 2020-09-21 19:30 - 000000000 ____D C:\Users\psubi\AppData\Roaming\Adobe
2021-02-25 20:50 - 2020-09-05 19:17 - 000000000 ____D C:\ProgramData\Adobe
2021-02-25 20:50 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Adobe
2021-02-25 20:46 - 2020-11-08 11:23 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\Mozilla
2021-02-25 20:35 - 2020-12-18 14:57 - 000000000 ____D C:\Program Files\Adobe
2021-02-24 16:46 - 2020-09-21 19:30 - 000000000 ____D C:\Users\psubi\AppData\Local\Packages

==================== Files in the root of some directories ========

2021-03-09 23:11 - 2021-03-11 22:46 - 001065984 _____ () C:\Users\fsubi\AppData\Local\file__0.localstorage
2020-09-11 13:01 - 2020-09-11 13:01 - 000000056 _____ () C:\Users\fsubi\AppData\Local\X-Plane 11 Preferences.prf
2020-09-11 13:06 - 2020-09-11 13:32 - 000000015 _____ () C:\Users\fsubi\AppData\Local\X-Plane_drm_11.prf
2020-09-11 13:01 - 2020-09-11 13:01 - 000000059 _____ () C:\Users\fsubi\AppData\Local\x-plane_install_11.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#34 Příspěvek od fsubin »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-03-2021
Ran by fsubi (26-03-2021 21:27:40)
Running from D:\
Windows 10 Pro Version 20H2 19042.870 (X64) (2020-09-05 17:06:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-971254259-73155972-3602281376-500 - Administrator - Disabled)
aslin (S-1-5-21-971254259-73155972-3602281376-1004 - Limited - Disabled)
DefaultAccount (S-1-5-21-971254259-73155972-3602281376-503 - Limited - Disabled)
filik (S-1-5-21-971254259-73155972-3602281376-1005 - Limited - Disabled)
fsubi (S-1-5-21-971254259-73155972-3602281376-1001 - Administrator - Enabled) => C:\Users\fsubi
Guest (S-1-5-21-971254259-73155972-3602281376-501 - Limited - Disabled)
lauri (S-1-5-21-971254259-73155972-3602281376-1003 - Limited - Disabled)
psubi (S-1-5-21-971254259-73155972-3602281376-1002 - Limited - Enabled) => C:\Users\psubi
WDAGUtilityAccount (S-1-5-21-971254259-73155972-3602281376-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0709.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0709.1 - GIGABYTE)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 21.001.20145 - Adobe Systems Incorporated)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_10_1) (Version: 10.1 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Inc.)
Amazon Music (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Amazon Amazon Music) (Version: 8.3.0.2240 - Amazon.com Services LLC)
Amazon Photos (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Amazon Photos) (Version: 7.6.2 - Amazon.com, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.3.1 - Advanced Micro Devices, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0317.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0317.1 - GIGABYTE)
Belarc Advisor 9.7 (HKLM-x32\...\Belarc Advisor) (Version: 9.7.0.0 - Belarc Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
calibre (HKLM-x32\...\{4E1FEEB8-45A5-4069-B948-B5DED59D406C}) (Version: 5.12.0 - Kovid Goyal)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.7.0 - Canon Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - ‪Canon Inc.‬)
Canon iP4900 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4900_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.4 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.13.10.0 - Canon Inc.)
Canon Utilities EOS Network Setting Tool (HKLM-x32\...\EOS Network Setting Tool) (Version: 1.1.0.9 - Canon Inc.)
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.)
Canon Utilities EOS Utility 3 (HKLM-x32\...\EOS Utility 3) (Version: 3.13.10.1 - Canon Inc.)
Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.10.0.0 - Canon Inc.)
CanoScan 9000F Mark II Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ9604) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 84.1.5542.138 - Piriform Software)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
Cisco Webex Meetings (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\ActiveTouchMeetingClient) (Version: 40.11.4 - Cisco Webex LLC)
ColorChecker Camera Calibration 2.2.0 (HKLM-x32\...\ColorChecker Camera Calibration_is1) (Version: 2.2.0 - X-Rite)
ColorMunki Photo 1.2.4 (HKLM-x32\...\ColorMunki Photo_is1) (Version: 1.2.4 - X-Rite)
CPUID CPU-Z 1.95 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.95 - CPUID, Inc.)
Creative Live! Cam Chat HD (VF0700) (1.00.06.00) (HKLM\...\Creative VF0700) (Version: - Creative Technology Ltd.)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.12 - GOG.com)
Documentation Manager (HKLM\...\{903A7EB3-3534-44FC-8E98-43D5050EF04E}) (Version: 22.10.0.7 - Intel Corporation) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 118.4.460 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{0BF9DD77-498D-4E9E-A968-CFC9249BDD9F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.21.0114.1 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.21.0114.1 - GIGABYTE)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.21.0202.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.21.0202.1 - GIGABYTE)
ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{0f607f07-7957-4887-9d5e-be8efe9595a9}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM-x32\...\{33f042cf-0ae3-4241-b8c8-7f544533ea8e}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Epic Games Launcher (HKLM-x32\...\{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ePUBee DRM Removal (HKLM-x32\...\ePUBee DRM Removal) (Version: 3.1.5.2 - ePUBee Inc.)
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
Excel (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Fast Boot (HKLM-x32\...\{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE)
Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Hidden
Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte)
Gigabyte Speed v10.50 (HKLM\...\Gigabyte Speed) (Version: 10.50 - cFos Software GmbH, Bonn)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 89.0.4389.90 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
GoTo Opener (HKLM-x32\...\{C2A61D74-BB65-42AD-B81F-AC25E1F7DE02}) (Version: 1.0.536 - LogMeIn, Inc.)
GoToMeeting 10.15.500.19584 (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\GoToMeeting) (Version: 10.15.500.19584 - LogMeIn, Inc.)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.19.0624.1 - GIGABYTE)
High-Definition Video Playback (HKLM-x32\...\{9193490D-5229-4FC4-9BB9-A6D63C09574A}) (Version: 11.1.11100.4.196 - Nero AG) Hidden
HWiNFO64 Version 7.00 (HKLM\...\HWiNFO64_is1) (Version: 7.00 - Martin Malik - REALiX)
Intel(R) Chipset Device Software (HKLM-x32\...\{99926fb7-5da9-4101-b79f-eec3674ca64b}) (Version: 10.1.18634.8254 - Intel(R) Corporation)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{7368d41d-24b9-4b1a-aef4-862e2571fa92}) (Version: 6.5.1.371 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2052.15.0.2069 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.8.0.1065 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000020-0220-1033-84C8-B8D95FA3C8C3}) (Version: 22.20.0.3 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{ded97635-a82a-48b1-b197-0e7c5e4c4ac3}) (Version: 22.10.0.7 - Intel Corporation) Hidden
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LeapFrog Connect 2 (HKLM-x32\...\LeapFrogConnect2) (Version: 4.1.9.448 - LeapFrog)
LeapFrogConnect2 (HKLM-x32\...\{816F787F-8448-45E6-AE87-25DB24131477}) (Version: 4.1.9.448 - LeapFrog) Hidden
LeapReader (HKLM-x32\...\{D751797E-949C-42BF-8E6C-F2CB4E8A6634}) (Version: 4.1.9.448 - LeapFrog Enterprises) Hidden
Learning Lodge™ (HKLM-x32\...\VTechDownloadManager) (Version: - VTech)
Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.126 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
MAGIX Content and Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Soundpool Music Maker - Feel good (HKLM\...\{677F8E85-8686-476B-829A-D5ED9ECA16E6}) (Version: 1.0.1.0 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM\...\{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Travel Maps (HKLM\...\{83EC0C28-33DB-467B-A919-52ECDD8F4B69}) (Version: 1.0.1.378 - MAGIX Software GmbH) Hidden
MAGIX Travel Maps (HKLM\...\MX.{83EC0C28-33DB-467B-A919-52ECDD8F4B69}) (Version: 1.0.1.378 - MAGIX Software GmbH)
MAGIX Video Pro X (Design elements) (HKLM\...\{F2A29913-41F4-4DBC-861C-4D033BC2ED4C}) (Version: 17.0.2.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Fade effects) (HKLM\...\{A1816F3A-47EF-47FE-A406-F7C73FCECEE3}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (HKLM\...\{4547085E-9FFE-4A8D-BA44-6F97C3927F3E}) (Version: 17.0.1.32 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (HKLM\...\MX.{4547085E-9FFE-4A8D-BA44-6F97C3927F3E}) (Version: 17.0.1.32 - MAGIX Software GmbH)
MAGIX Video Pro X (Menu templates) (HKLM\...\{00DD9BCE-E5A3-4B62-900E-193065C3BB49}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Migrate Content) (HKLM\...\{86096249-43A1-4C5D-919D-97DAFA52B28E}) (Version: 16.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Design elements) (HKLM\...\{C99F2C3F-ECC7-413B-9D7F-9E54585D991C}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Menu templates) (HKLM\...\{A0E0419E-413B-4BB3-B7DD-45325228C3E5}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Movie templates) (HKLM\...\{4518A9B7-A262-4D9B-906D-DBFD4549ADCA}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Slideshow Maker styles) (HKLM\...\{06680A3C-A2BD-4AD4-B172-CEA79DD5E3BC}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie templates) (HKLM\...\{1A266F02-9EFD-4E7E-82F2-7C682897A884}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Slideshow Maker styles) (HKLM\...\{DA144E48-B850-439A-BE92-600A14BB9197}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Soundtrack Maker styles) (HKLM\...\{2115BA04-C7F2-46F2-A3D7-7BFCD0D97C29}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Templates and effects) (HKLM-x32\...\MAGIX_GlobalContent.Video_Pro_X) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Video Pro X (Title effects) (HKLM\...\{8D139F22-4779-4AC3-A7DE-FB54F07E13A6}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Update Service 5.7.33.77) (HKLM\...\{8F07F018-6858-3E5F-8500-456430AA3069}) (Version: 5.7.33.77 - MAGIX Software GmbH) Hidden
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.13801.20360 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.63 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 89.0.774.63 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971254259-73155972-3602281376-1002\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Movie Studio 16.0 Platinum (HKLM\...\{661AE070-1B81-11EA-8676-9431242A7F22}) (Version: 16.0.175 - VEGAS)
Nero 11 (HKLM-x32\...\{810B7362-6B05-4714-AF6A-EF3A20CCD634}) (Version: 11.2.00600 - Nero AG)
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.11100.8.0 - Nero AG)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.35.9.0 - TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 - NordVPN)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20294 - Microsoft Corporation) Hidden
ON_OFF Charge 2 B19.1119.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.19.1119.1 - GIGABYTE) Hidden
ON_OFF Charge 2 B19.1119.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.19.1119.1 - GIGABYTE)
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Outlook (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Polar FlowSync version 3.0.0.1337 (HKLM-x32\...\{A1538F5C-7B65-4DB6-9FFB-FFC0DF2E85D8}_is1) (Version: 3.0.0.1337 - Polar Electro Oy)
PowerPoint (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 9.8.7.18 - Bitsum)
QT5.10.1 (HKLM-x32\...\{5C60E178-F792-4CF7-A2E7-E7124DF1B2F0}) (Version: 1.0.1.0 - LeapFrog) Hidden
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: 2.15.4 - Rainy)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9075.1 - Realtek Semiconductor Corp.)
REX Weather Force 2020 (HKLM\...\{868DE4BF-66FA-4211-91FD-4D699A1EE900}) (Version: 6.0.2021.0216 - REX Game Studios, LLC.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.21.0310.1 - GIGABYTE)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.34.337 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.21.0129.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.21.0129.1 - GIGABYTE)
Smart Backup (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.18.0911.1 - GIGABYTE)
SPAD.neXt (HKLM\...\{CE21AD13-50E6-474A-89B9-81E262E620A0}_is1) (Version: 0.9.8.6 - SPADneXt.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
T.Flight Hotas drivers (HKLM-x32\...\{E08E6F77-E66C-47FC-8565-0AA3389D48C8}) (Version: 1.TFHT.2020 - Thrustmaster)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Use the entry named LeapFrog Connect2 to uninstall QT5.10.1 (HKLM-x32\...\QT5.10.1) (Version: - LeapFrog)
Use the entry named LeapFrogConnect2 to uninstall LeapReader (HKLM-x32\...\LFC2_LeapReaderPlugin) (Version: - LeapFrog)
uTorrent Web (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\utweb) (Version: 1.1.2 - BitTorrent, Inc.)
Vita Concert Grand LE (HKLM\...\{2C61CE04-1EEF-4582-ABBA-B9CCFC3743EB}) (Version: 2.4.0.96 - MAGIX Software GmbH) Hidden
Welcome App (Start-up experience) (HKLM-x32\...\{51865D9D-8F63-46F2-87AB-9E72F93B618C}) (Version: 11.0.23500.0.0 - Nero AG) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2700 - Broadcom Corporation)
Word (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
X-Rite Device Services Manager (HKLM-x32\...\{C665E881-CE55-4156-A4A6-7C55D645FD4E}) (Version: 2.4.1 - X-Rite)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_EN_is1) (Version: 18.0.1.10 - ZONER software)

Packages:
=========
DTS:X Ultra -> C:\Program Files\WindowsApps\DTSInc.DTSXUltra_1.5.13.0_x64__t5j2fzbtdg37r [2021-03-09] (DTS, Inc.)
Files -> C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t [2021-03-24] (Yair A)
HEVC Video Extensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_1.0.40615.0_x64__8wekyb3d8bbwe [2021-03-19] (Microsoft Corporation)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1015.0_x64__8j3eq9eme6ctt [2021-03-13] (INTEL CORP)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-03-26] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_21.10208.5605.0_x64__8wekyb3d8bbwe [2021-03-08] (Microsoft Corporation)
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.21005.0_x64__8wekyb3d8bbwe [2021-03-09] (Microsoft Studios)
MPEG-2 Video Extension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-05] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-11-22] (Microsoft Corporation)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2108.9.0_x64__cv1g1gvanyjgm [2021-03-17] (WhatsApp Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\fsubi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\fsubi\AppData\Local\GoToMeeting\18962\G2MOutlookAddin64.dll (LogMeIn, Inc. -> LogMeIn, Inc.)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\fsubi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => E:\Users\Filip\Dropbox [2014-12-31 15:04]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_fac18e2da6ec7b25\OptaneShellExt.dll [2020-12-16] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_fac18e2da6ec7b25\OptaneShellExt.dll [2020-12-16] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-03-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm --app-url=hxxps://excel.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi --app-url=hxxps://word.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Play Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Loaded Modules (Whitelisted) =============

2021-03-10 19:53 - 2021-03-10 19:53 - 001868288 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2013-06-21 14:03 - 2013-06-21 14:03 - 002633728 _____ () [File not signed] C:\Program Files (x86)\X-Rite\Devices\colormunki\colormunki.dll
2015-07-13 10:33 - 2015-07-13 10:33 - 001592832 _____ () [File not signed] C:\Program Files (x86)\X-Rite\Devices\rm200\GoldenEye.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-08-02 11:24 - 2017-08-02 11:24 - 000017920 _____ () [File not signed] C:\Program Files\Rainlendar2\lfs.dll
2017-08-02 11:37 - 2017-08-02 11:37 - 000331776 _____ () [File not signed] C:\Program Files\Rainlendar2\libical.dll
2017-08-02 11:37 - 2017-08-02 11:37 - 000063488 _____ () [File not signed] C:\Program Files\Rainlendar2\libicalss.dll
2017-08-02 11:24 - 2017-08-02 11:24 - 000314880 _____ () [File not signed] C:\Program Files\Rainlendar2\lua53.dll
2020-03-31 18:47 - 2020-03-31 18:47 - 000295424 _____ () [File not signed] C:\Program Files\Rainlendar2\plugins\GoogleCalendarPlugin.dll
2020-03-31 18:46 - 2020-03-31 18:46 - 000129536 _____ () [File not signed] C:\Program Files\Rainlendar2\plugins\iCalendarPlugin.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 001970176 _____ () [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\QtCore4.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 007053312 _____ () [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\QtGui4.dll
2021-03-10 14:21 - 2021-03-10 14:21 - 001640448 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\SIV\yccV2.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 001088512 _____ (GretagMacbeth) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\Cxf.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 000503808 _____ (Microsoft Corporation) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\MSVCP71.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 000348160 _____ (Microsoft Corporation) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\MSVCR71.dll
2019-10-10 14:13 - 2019-10-10 14:13 - 000422400 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files\Rainlendar2\libcurl.dll
2018-11-16 12:48 - 2018-11-16 12:48 - 002720768 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Rainlendar2\libcrypto-1_1-x64.dll
2018-11-16 12:49 - 2018-11-16 12:49 - 000658944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Rainlendar2\libssl-1_1-x64.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2015-10-14 01:15 - 2015-10-14 01:15 - 002042368 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll
2020-12-16 10:08 - 2020-12-16 10:08 - 002001920 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll
2019-12-02 11:10 - 2019-12-02 11:10 - 002874880 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxbase313u_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 000181248 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxbase313u_xml_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 008349184 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_core_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 000793600 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_html_vc_rny.dll
2019-12-02 11:16 - 2019-12-02 11:16 - 000914432 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_propgrid_vc_rny.dll
2019-12-02 11:15 - 2019-12-02 11:15 - 000954880 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_xrc_vc_rny.dll
2014-12-02 09:59 - 2014-12-02 09:59 - 001502208 _____ (X-Rite Inc.) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1iO.dll
2014-12-02 09:59 - 2014-12-02 09:59 - 003962368 _____ (X-Rite Inc.) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Pro.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 000269824 _____ (X-Rite Inc.) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\XRiteDevice.dll
2015-04-02 14:59 - 2015-04-02 14:59 - 002359296 _____ (X-Rite) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1isis\EyeOne_iSis.dll
2014-11-05 10:05 - 2014-11-05 10:05 - 001019392 _____ (X-Rite) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Fun.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2019-01-31] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2019-01-31] (Logitech Inc -> Logitech, Inc.)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2020-10-15] (Belarc, Inc. -> Belarc, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 09:14 - 2019-12-07 09:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-971254259-73155972-3602281376-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\fsubi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\picasabackground-003.bmp
HKU\S-1-5-21-971254259-73155972-3602281376-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\psubi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img2.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)
WiFi: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
WiFi: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 2: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "CiscoMeetingDaemon"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "NordVPN"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "Amazon Photos"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2EF1C09D-5154-4AFE-A939-1ED4404E0502}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{C79537E7-DBA4-4D5E-9F48-2199D2C680BE}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{B3FCFE0F-67CB-4D68-AD50-3EB98374364A}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [UDP Query User{7A2275EC-3B87-44BF-9C32-C49FED8E8776}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [{A1452CEA-25E9-4F9D-AC37-0CD53C770AF2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{444578ED-08D5-44CD-A617-012AC0125730}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{24B1E1F7-8C97-4AA2-94D6-4D983F6B0339}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8D9E0F45-EB17-4F03-B4EB-A5CA3A0AB55D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4E7DF3DF-A7D9-4E14-BA23-61F6481EC986}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\YNAB 4\YNAB 4.exe (YouNeedABudget.com -> )
FirewallRules: [{A78CD105-CEF5-4A4B-A7A4-C0F5724FB11F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\YNAB 4\YNAB 4.exe (YouNeedABudget.com -> )
FirewallRules: [{850C4B1B-A7A5-4DE4-818C-BBBA7D255980}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
FirewallRules: [{410F3158-74E5-4137-8983-9F505A1F9C6E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{3FC922AD-7A2C-4385-8E30-9F2AB45E907B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{54444C69-55B9-4395-851D-84472DD9C6FF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [File not signed]
FirewallRules: [{3E35454A-538E-4353-9655-87F22FFB6AED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [File not signed]
FirewallRules: [{1EC1F12E-3905-40F9-A48E-C2672C31B272}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37AD5553-F9D0-4E55-9BA9-1582CC5EF333}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{17FC7FD9-18E1-4BDF-830D-D4E57EB256AB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FF4F1192-C893-4307-8687-DE48D17301B2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{863F4C13-1940-4849-956D-7834F6D9FA75}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F30A4321-0FF1-4D5E-852D-B3E2E494636D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FB948A41-7975-4237-AE4F-AE499E554064}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious2\CSD2.exe (Vertigo Gaming Inc.) [File not signed]
FirewallRules: [{F430DE73-BB30-4AED-A6EB-D23E47251354}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious2\CSD2.exe (Vertigo Gaming Inc.) [File not signed]
FirewallRules: [{2CA95FEB-19F9-4577-AE46-B96AEB2386D3}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{86975E04-8911-4682-B790-1BC3D46E9DA7}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{9AFEA613-C7A8-4958-871E-B218281F5170}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C4D234BB-0283-470F-859A-E1B08A9AF37D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C4EC43ED-F96F-45B7-ADD5-A94ED2F7E72D}] => (Allow) C:\Users\fsubi\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
FirewallRules: [{6EF4D578-1ECA-4EB2-AE29-AB5E4DEDCA62}] => (Allow) C:\Users\fsubi\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
FirewallRules: [{153380D6-D739-4942-8802-CD8997522BEE}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Canon Inc. -> CANON INC.)
FirewallRules: [{16FE463D-A4AD-4D65-ADB3-EB25CB1ABE17}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Canon Inc. -> CANON INC.)
FirewallRules: [{DEE52412-DB21-4290-94E8-E9531E65DCB6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Indiana Jones and the Fate of Atlantis\Indiana Jones and the Fate of Atlantis.exe (LucasArts Entertainment Company) [File not signed]
FirewallRules: [{50D6DE88-B850-4EA4-8CDE-87EFF5C2B729}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Indiana Jones and the Fate of Atlantis\Indiana Jones and the Fate of Atlantis.exe (LucasArts Entertainment Company) [File not signed]
FirewallRules: [{38E14EED-BAC9-4E7F-BDBD-EB8887324698}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Disco Elysium\disco.exe () [File not signed]
FirewallRules: [{2D26774F-B223-4543-83B8-B12824297739}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Disco Elysium\disco.exe () [File not signed]
FirewallRules: [{E7CA7536-380B-4166-B1B1-E8C4A76105D4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{642C2D9D-0AAF-4FB2-A81D-498B7A469D9B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{009B3789-E538-494E-9CED-A39BB669870D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Worlds\LEGO_Worlds.exe (Travellers Tales (UK) Limited -> )
FirewallRules: [{206D4EF9-1319-43BC-8D14-3C4F214B1D04}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Worlds\LEGO_Worlds.exe (Travellers Tales (UK) Limited -> )
FirewallRules: [{3D24ACF3-22A4-4DF5-9CD5-58E5A965837A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{5E91677C-4211-4489-902C-E57CFA123218}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{CED34EF7-8E92-4372-9E13-F87A1204C9BD}] => (Allow) C:\Program Files\MAGIX\Video Pro X\11\Video_Pro_X.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{BB0B45E4-12DB-47F6-8FC8-FA67307035C9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ACFD921A-0C05-42BC-BE74-4652CF19DD48}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe () [File not signed]
FirewallRules: [{BB36CFB0-72C5-4536-B33A-8A46EBC31F85}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe () [File not signed]
FirewallRules: [{E31AB2FF-BD0E-4B53-9504-15C5258F0449}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{341E47A7-412C-48EC-B340-F572060C7919}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{752407C3-DF06-4260-A702-561E519B0F37}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{079B8416-8A53-40EE-BFA0-A015D088667D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E51B1764-976C-4650-99DF-164B02AA8F09}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E5B0EC10-25BC-4AAF-937D-3D12582D1F4E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0313E2A9-5930-42AE-9155-6701BA169662}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B8173E86-C93F-4BEC-8715-FE3C4B5D0498}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7D4884AD-63CC-468C-B4FC-362604BBBBD5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{1F89427A-BFA7-469C-9254-21C832488128}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{813F0577-FC0F-498A-A835-19C048345153}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6EBD3D48-1649-4363-AC51-BD0AF76ED04A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{06458D5B-F1E5-4263-B807-424CC87E16F5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{24722010-CE07-4534-A0DA-8066039DAA4C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E23CEA62-D35C-4008-B0CC-3A09A7A94EBD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MicrosoftFlightSimulator\FlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{7707F3F7-94D4-4092-AE4F-E088F627A234}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MicrosoftFlightSimulator\FlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{044CD729-D4DE-415B-9605-E8DA6DEA1712}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B4E180BF-AA9A-482A-AA48-3E2D250B9852}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B74EB9F0-D1A1-4B20-B60B-BC2718C2D6B6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Death Stranding\ds.exe (KOJIMA PRODUCTIONS Co., Ltd.) [File not signed]
FirewallRules: [{EC4C4C62-71CC-4440-B5A8-D3A3EB349F02}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Death Stranding\ds.exe (KOJIMA PRODUCTIONS Co., Ltd.) [File not signed]
FirewallRules: [{01F65A0D-2C26-4590-88F6-3F661DCDB0F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{079FFAAE-E0B9-46DE-B855-6FEC969121B8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{D3617E6F-7970-449A-8A51-7D266430D79F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{451ECB7B-D6F2-44B4-9A3F-9DBE2CB1175D}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{EF77C753-FF70-4243-9E1B-F92B0006320B}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{563D214B-A8D6-40C4-B2F1-1B0DC3BF0E5F}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{1762CA98-1C62-4EBF-8858-F09022C12FF9}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{F5D6B7FB-9A66-4D3C-B938-4E074E5F7358}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{BDEAE202-56FE-4003-8021-B95F2EAC14A3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\89.0.774.63\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{95A6EB9E-B73E-42C8-8FC9-9291CC0A4F1D}] => (Allow) LPort=9009
FirewallRules: [{9D7C1BE2-6E5B-4856-9EB0-3B9E4E13EA44}] => (Allow) LPort=9009

==================== Restore Points =========================

17-03-2021 10:05:13 Windows Modules Installer
18-03-2021 17:04:26 Radeon Installer
20-03-2021 12:24:18 Removed Realtek Audio Driver
22-03-2021 09:08:02 Windows Modules Installer
24-03-2021 07:35:54 Removed APP Center
25-03-2021 10:37:33 Installed Draft IT.

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/26/2021 09:25:50 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 09:25:50 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 05:29:29 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 05:29:29 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 05:29:29 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 05:29:29 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 05:12:25 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 05:12:25 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]


System errors:
=============
Error: (03/26/2021 09:26:21 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 05:34:22 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 05:33:34 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} did not register with DCOM within the required timeout.

Error: (03/26/2021 05:30:25 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 05:12:48 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 04:56:30 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 04:56:11 PM) (Source: DCOM) (EventID: 10005) (User: SCORSESE)
Description: DCOM got error "1084" attempting to start the service camsvc with arguments "Unavailable" in order to run the server:
Windows.Internal.CapabilityAccess.CapabilityAccess

Error: (03/26/2021 04:56:08 PM) (Source: DCOM) (EventID: 10005) (User: SCORSESE)
Description: DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}


Windows Defender:
================
Date: 2020-12-05 11:48:15
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-12-05 11:19:56
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.323.580.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17400.5
Error code: 0x80240022
Error description: The program can't check for definition updates.

Date: 2020-12-05 11:19:56
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.323.580.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17400.5
Error code: 0x80240022
Error description: The program can't check for definition updates.

CodeIntegrity:
===============
Date: 2021-03-26 17:36:32
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F6 08/28/2020
Motherboard: Gigabyte Technology Co., Ltd. Z490 AORUS ULTRA
Processor: Intel(R) Core(TM) i7-10700K CPU @ 3.80GHz
Percentage of memory in use: 34%
Total physical RAM: 16301.11 MB
Available physical RAM: 10745.05 MB
Total Virtual: 34733.11 MB
Available Virtual: 26908.45 MB

==================== Drives ================================

Drive c: (Robert) (Fixed) (Total:155.63 GB) (Free:47.35 GB) NTFS
Drive d: (De Niro) (Fixed) (Total:775.26 GB) (Free:149.65 GB) NTFS
Drive e: (Goodfellas) (Fixed) (Total:931.51 GB) (Free:318.13 GB) NTFS
Drive f: (Casino) (Fixed) (Total:111.79 GB) (Free:30.47 GB) NTFS

\\?\Volume{9e86aaad-765c-4af0-b4e8-391aedf90cb2}\ () (Fixed) (Total:0.5 GB) (Free:0.04 GB) NTFS
\\?\Volume{27b2bf21-f9c1-4a4d-94ad-4510f71cfe9c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: CF291FF1)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: CF291F8C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: preventivni kontrola

#35 Příspěvek od Diallix »

Log\y vypadaju ok. Este posledne docistenie.

Aby sme vylucili neake dalsie problemy alebo poskodenie HDD, tak tento navod urobte zo systemoveho disku, z toho, kde vam to pred tym neslo, no pred tym vypnite cely antivirus.

Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše


FirewallRules: [{95A6EB9E-B73E-42C8-8FC9-9291CC0A4F1D}] => (Allow) LPort=9009
FirewallRules: [{9D7C1BE2-6E5B-4856-9EB0-3B9E4E13EA44}] => (Allow) LPort=9009

Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#36 Příspěvek od fsubin »

Tentokrat to prebehlo bez akychkolvek problemov. Tu je log:

Fix result of Farbar Recovery Scan Tool (x64) Version: 28-03-2021
Ran by fsubi (29-03-2021 23:20:03) Run:7
Running from E:\
Loaded Profiles: fsubi
Boot Mode: Normal
==============================================

fixlist content:
*****************

FirewallRules: [{95A6EB9E-B73E-42C8-8FC9-9291CC0A4F1D}] => (Allow) LPort=9009
FirewallRules: [{9D7C1BE2-6E5B-4856-9EB0-3B9E4E13EA44}] => (Allow) LPort=9009

*****************

"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{95A6EB9E-B73E-42C8-8FC9-9291CC0A4F1D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9D7C1BE2-6E5B-4856-9EB0-3B9E4E13EA44}" => removed successfully

==== End of Fixlog 23:20:03 ====

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#37 Příspěvek od fsubin »

Pre istotu este prikladam nove logy FRST + Addition.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-03-2021
Ran by fsubi (administrator) on SCORSESE (Gigabyte Technology Co., Ltd. Z490 AORUS ULTRA) (29-03-2021 23:22:35)
Running from E:\
Loaded Profiles: fsubi
Platform: Windows 10 Pro Version 20H2 19042.870 (X64) Language: English (United Kingdom)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
() [File not signed] C:\Program Files\Rainlendar2\Rainlendar2.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365573.inf_amd64_a1e6ef6331086c90\B365567\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365573.inf_amd64_a1e6ef6331086c90\B365567\atiesrxx.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\cfosspeed.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7aa6ca9dbb25bff8\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_5d10f2aad7f84bec\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_68966115f2eef4e5\RstMwService.exe
(LeapFrog Enterprises, Inc. -> LeapFrog Enterprises, Inc.) D:\Program Files (x86)\LeapReader\LeapFrog Connect2\LFHelper.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\fsubi\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) C:\Windows\V0700Mon.exe
(Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\TM Flight Series\drivers\amd64\tmHInstall.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe <2>
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) D:\Program Files\NordVPN\nordvpn-service.exe
(X-Rite Incorporated -> ) D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\ColorMunki Photo Tray.exe
(X-Rite Incorporated -> X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2019-01-31] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Gigabyte Speed] => C:\Program Files\cFosSpeed\cFosSpeed.exe [1724248 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
HKLM-x32\...\Run: [V0700Mon.exe] => C:\Windows\V0700Mon.exe [28672 2011-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992040 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [3389440 2020-03-31] () [File not signed]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536424 2021-03-06] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [NordVPN] => D:\Program Files\NordVPN\NordVPN.exe [274176 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\Canon iP4900 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAW.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP4900 series: C:\Windows\system32\CNMLMAW.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2012-09-28] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2020-09-05]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorMunki Gamma.lnk [2020-12-18]
ShortcutTarget: ColorMunki Gamma.lnk -> D:\Program Files (x86)\X-Rite\ColorMunki Photo\Gamma\CalibrationLoader.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorMunkiPhotoTray.exe.lnk [2020-12-18]
ShortcutTarget: ColorMunkiPhotoTray.exe.lnk -> D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\ColorMunki Photo Tray.exe (X-Rite Incorporated -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SetupRST_ModeSwitch.lnk [2021-03-10]
ShortcutTarget: SetupRST_ModeSwitch.lnk -> C:\Program Files (x86)\GIGABYTE\AppCenter\pack\SetupRST.exe (Intel(R) Rapid Storage Technology -> Intel Corporation)
Startup: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-12-18] ()

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {125E5CB0-8E1B-4EBD-9809-4FF6C3E7C9FD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {19257E17-54BD-409B-82D6-BD9323798C97} - System32\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001 => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupdate.exe [31320 2021-03-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {2618028A-795D-488D-B7BE-2BB8A49723E4} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
Task: {2BD3A851-EDE3-4DA7-A9DB-56F091B71F2E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {2D9F587D-7707-4EE6-9DA9-41F5D1DD1BDC} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15768 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {38D5B7FE-F94F-4961-AECF-0291AA6A8F45} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {42B6D4FA-8DAA-4F30-96DC-AE1770485F37} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60496 2021-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5D9F2634-C1D2-4A30-A406-BD26DED14AD4} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
Task: {5F22382B-246E-4162-8EF5-1A21E267A830} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5FF0D7CB-A573-487C-8D48-88318A79928A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2167464 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Task: {6233132D-C586-483B-A29A-57D7964814F9} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {76AADFFE-8C8A-4453-AF34-31477891C1F3} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {81286C84-111F-4E37-9BE9-5452028FFED1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {828A2158-A8BC-41F1-841B-F0A50381E96E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {863EE257-9599-4AB7-9386-447569E201A5} - System32\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001 => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupload.exe [31320 2021-03-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {8ECC6BC5-A1B7-4651-A428-5EC9AA551EB9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9198E8C5-5F0F-4749-97C0-F4C666E3BCF8} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [387992 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {9965716A-1AD2-451F-8198-731299BA83F1} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A796589C-F8A4-48D1-B0A7-8D153F80868F} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2167464 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Task: {BDCADA16-0D9F-4DF5-8F4D-7D0915001F0C} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68176 2021-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {C5010CC4-3852-4BD1-B4A8-25DDD13059FE} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18328 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {D1634F2A-9D54-4719-A81E-A9E9CA2A7F4B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {D73B504C-0C16-4ED2-B0E0-A022E50CA13B} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {E62AEDD9-EF72-427D-9E5F-FC162313B03A} - System32\Tasks\X-Rite Device Services Software Updater => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe [24432 2015-09-18] (X-Rite Incorporated -> X-Rite Inc.)
Task: {E8714478-ABE1-4B96-9E9C-D15B776B750F} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [252984 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {F0107FEF-9644-4D86-8B48-E7EDDF7BEA56} - System32\Tasks\cFos\Registration Tasks\Open Browser => "c:\program files (x86)\google\chrome\application\chrome.exe" "http://localhost:1487/cfosspeed/console.htm"
Task: {F543737F-6F8C-4C1E-977A-E5F4B93417B5} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\IntelPTTEKRecertification.exe [919832 2020-12-20] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {F6A21BBB-2DFC-4A48-9522-0B72E3B590D3} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [233184 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001.job => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupdate.exe
Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001.job => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupload.exe
Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\IntelPTTEKRecertification.exe
Task: C:\Windows\Tasks\X-Rite Device Services Software Updater.job => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{98dbab16-08c4-4647-a0d2-64f7cb3a0a64}: [NameServer] 192.168.1.1
Tcpip\..\Interfaces\{dd8ba83b-a846-4114-930a-1afa89154091}: [DhcpNameServer] 192.168.5.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-29]
Edge HomePage: Default -> hxxp://www.seznam.cz/
Edge StartupUrls: Default -> "hxxps://google.sk/"
Edge Extension: (LastPass: Free Password Manager) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2021-03-15]
Edge Extension: (Outlook) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-14]
Edge Extension: (Logitech Smooth Scrolling) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-09-07]
Edge Extension: (Office) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2020-10-17]
Edge Extension: (Word) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-14]
Edge Extension: (Excel) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-14]
Edge Extension: (OneNote Web Clipper) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oogbnpmeihfgnccdnmmlgicknopghhma [2020-11-06]
Edge Extension: (PowerPoint) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-14]
Edge Extension: (AdBlocker Ultimate) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pciakllldcajllepkbbihkmfkikheffb [2020-12-11]

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2020-10-05] [not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2012-01-13] (Nero AG -> Nero AG)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-07] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-07] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default [2021-03-29]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Slides) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-05]
CHR Extension: (Docs) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-05]
CHR Extension: (Google Drive) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-05]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-02-25]
CHR Extension: (OneNote Online) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciniambnphakdoflgeamacamhfllbkmo [2020-09-05]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-09-05]
CHR Extension: (Adobe Acrobat) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-01]
CHR Extension: (Google Play Music) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-11-21]
CHR Extension: (Sheets) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-05]
CHR Extension: (NordVPN — #1 VPN Chrome Extension: Get a VPN) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2021-03-26]
CHR Extension: (Google Docs Offline) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-11]
CHR Extension: (OneNote Web Clipper) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2020-09-26]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-03-26]
CHR Extension: (Cisco Webex Extension) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2021-03-25]
CHR Extension: (Evernote Web) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2020-09-05]
CHR Extension: (Application launcher for Drive (by Google)) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Office) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2021-02-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-13]
CHR HKU\S-1-5-21-971254259-73155972-3602281376-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S4 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
S4 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\84.1.5542.138\elevation_service.exe [1332800 2020-08-19] (Piriform Software Ltd -> Piriform Software)
S4 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [595288 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8990072 2021-03-11] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44272 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-02-26] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142904 2021-02-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
S3 GalaxyClientService; D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
S2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128920 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LFHelper; D:\Program Files (x86)\LeapReader\LeapFrog Connect2\LFHelper.exe [3000056 2020-10-29] (LeapFrog Enterprises, Inc. -> LeapFrog Enterprises, Inc.)
R2 nordvpn-service; D:\Program Files\NordVPN\nordvpn-service.exe [275200 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125664 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1679240 2021-02-18] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkAudioUniversalService; C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 tmHInstall; C:\Program Files\Thrustmaster\TM Flight Series\drivers\amd64\tmHInstall.exe [110608 2020-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [83312 2015-09-18] (X-Rite Incorporated -> X-Rite Inc.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1595456 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
S3 colormunki; C:\Windows\System32\Drivers\colormunki_x64.sys [51600 2013-06-21] (USBIO Test -> Thesycon GmbH, Germany)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-09-05] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 GuiHidUsbDevLowerTFH; C:\Windows\System32\Drivers\GuiHidUsbDevLowerTFH.sys [129552 2020-07-31] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2020. All rights reserved.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2021-03-11] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 NDivert; C:\Windows\System32\drivers\NDivert.sys [105184 2021-02-01] (TEFINCOM S.A. -> )
R3 nlwt; C:\Windows\system32\DRIVERS\nlwt.sys [39360 2021-02-05] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 SaiH0C2D; C:\Windows\system32\DRIVERS\SaiH0C2D.sys [176128 2007-07-02] (Saitek -> Saitek)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R3 V0700Vid; C:\Windows\system32\DRIVERS\V0700Vid.sys [393920 2011-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239432 2020-10-16] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2020-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [429296 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-05] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-29 23:14 - 2021-03-29 23:21 - 000003112 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2021-03-29 23:14 - 2021-03-29 23:14 - 000000000 ____D C:\Windows\LastGood.Tmp
2021-03-29 23:14 - 2021-03-29 23:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-03-29 23:14 - 2021-03-29 23:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-03-29 22:46 - 2021-03-29 12:53 - 001857856 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-03-29 22:46 - 2021-03-29 12:53 - 001857856 _____ C:\Windows\system32\vulkaninfo.exe
2021-03-29 22:46 - 2021-03-29 12:53 - 001438528 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-03-29 22:46 - 2021-03-29 12:53 - 001438528 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-03-29 22:46 - 2021-03-29 12:53 - 001093736 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 001093736 _____ C:\Windows\system32\vulkan-1.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000946904 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000946904 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000736584 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000620864 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000496448 _____ C:\Windows\system32\GameManager64.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000379712 _____ C:\Windows\SysWOW64\GameManager32.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000186688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000166208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000156488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000142152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000090432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000075072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000046400 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2021-03-29 22:46 - 2021-03-29 12:53 - 000043328 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 066856760 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 005222200 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 004987192 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 001492800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiacm64.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 001339200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000799552 _____ (AMD) C:\Windows\system32\atieclxx.exe
2021-03-29 22:46 - 2021-03-29 12:52 - 000492864 _____ C:\Windows\system32\dgtrayicon.exe
2021-03-29 22:46 - 2021-03-29 12:52 - 000468280 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000456000 _____ C:\Windows\system32\atieah64.exe
2021-03-29 22:46 - 2021-03-29 12:52 - 000432448 _____ C:\Windows\system32\EEURestart.exe
2021-03-29 22:46 - 2021-03-29 12:52 - 000351544 _____ C:\Windows\SysWOW64\atieah32.exe
2021-03-29 22:46 - 2021-03-29 12:52 - 000346432 _____ C:\Windows\system32\clinfo.exe
2021-03-29 22:46 - 2021-03-29 12:52 - 000245064 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000212800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000182080 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000166728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000158352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000149816 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000140608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000135496 _____ (AMD) C:\Windows\system32\atimuixx.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000130360 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000125248 _____ C:\Windows\system32\atidxx64.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000107336 _____ C:\Windows\SysWOW64\atidxx32.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000069944 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000019872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2021-03-29 22:46 - 2021-03-29 12:52 - 000019872 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 081415480 _____ C:\Windows\system32\amd_comgr.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 072438584 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 001685712 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 001365056 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 000940856 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 000768312 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 000489272 _____ C:\Windows\system32\amdgfxinfo64.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 000466256 _____ C:\Windows\system32\amdlogum.exe
2021-03-29 22:46 - 2021-03-29 12:51 - 000379712 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 000130320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 000122168 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 000108328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2021-03-29 22:46 - 2021-03-29 12:51 - 000106808 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2021-03-29 22:46 - 2021-03-29 12:50 - 000546880 _____ C:\Windows\system32\amdmiracast.dll
2021-03-29 22:46 - 2021-03-29 12:50 - 000136008 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2021-03-29 22:46 - 2021-03-29 12:50 - 000130320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2021-03-29 22:46 - 2021-03-29 12:50 - 000120352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2021-03-29 22:46 - 2021-03-29 12:50 - 000108336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2021-03-29 22:46 - 2021-03-26 16:14 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2021-03-29 22:46 - 2021-03-26 16:14 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2021-03-29 22:46 - 2021-03-26 16:10 - 057917352 _____ C:\Windows\system32\amdxc64.so
2021-03-29 22:46 - 2021-03-26 16:09 - 000556440 _____ C:\Windows\SysWOW64\atiapfxx.blb
2021-03-29 22:46 - 2021-03-26 16:09 - 000556440 _____ C:\Windows\system32\atiapfxx.blb
2021-03-27 15:15 - 2021-03-27 15:15 - 000000000 ____D C:\Windows\system32\Tasks\cFos
2021-03-26 17:44 - 2021-03-26 17:44 - 000000368 ____H C:\Windows\Tasks\Intel PTT EK Recertification.job
2021-03-25 12:56 - 2021-03-25 12:56 - 000000000 ____D C:\Users\fsubi\AppData\Local\CADlogic Limited
2021-03-25 11:37 - 2021-03-25 12:56 - 000000000 ____D C:\ProgramData\CADlogic Limited
2021-03-25 11:02 - 2021-03-25 11:02 - 000000000 ____D C:\Users\fsubi\AppData\System
2021-03-25 11:02 - 2021-03-25 11:02 - 000000000 ____D C:\Users\fsubi\AppData\Local\SmartDraw
2021-03-25 11:02 - 2021-03-25 11:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartDraw 2020
2021-03-22 10:09 - 2021-03-22 10:09 - 000011357 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-03-20 17:01 - 2021-03-24 09:01 - 000000000 ____D C:\Users\fsubi\Počítač\Untitled Export
2021-03-20 13:30 - 2021-03-20 13:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {d8170687-85fa-4716-bafd-087205d0db72}
2021-03-20 13:30 - 2021-03-20 13:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {9f9c9e51-d42f-4462-a27a-7d419da18045}
2021-03-20 13:30 - 2021-03-20 13:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {29d6077f-6adb-42de-abac-1c60aeb0e237}
2021-03-20 13:30 - 2021-03-20 13:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700}
2021-03-20 13:25 - 2020-12-02 17:04 - 000274672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll
2021-03-20 13:25 - 2020-12-02 17:04 - 000229616 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll
2021-03-20 13:25 - 2020-12-02 17:03 - 005968480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2021-03-20 13:25 - 2020-12-02 16:52 - 043277665 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2021-03-20 12:50 - 2021-03-29 23:22 - 000000000 ____D C:\FRST
2021-03-19 12:50 - 2021-03-19 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-03-18 18:05 - 2021-03-26 16:30 - 002239496 _____ (AMD Inc.) C:\Windows\SysWOW64\AMDBugReportTool.exe
2021-03-16 18:49 - 2021-03-16 18:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-03-16 18:49 - 2021-03-16 18:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-03-16 18:49 - 2021-03-16 18:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-03-16 18:49 - 2021-03-16 18:49 - 000044272 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-03-14 15:31 - 2021-03-14 15:31 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime
2021-03-14 15:19 - 2021-03-14 15:19 - 000000000 ____D C:\Users\fsubi\AppData\Local\KojimaProductions
2021-03-13 18:44 - 2021-03-13 18:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-03-13 18:44 - 2021-03-13 18:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-03-13 18:44 - 2021-03-13 18:44 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-03-13 18:44 - 2021-03-13 18:44 - 000707016 _____ C:\Windows\system32\TextShaping.dll
2021-03-13 18:44 - 2021-03-13 18:44 - 000611952 _____ C:\Windows\SysWOW64\TextShaping.dll
2021-03-11 22:12 - 2021-03-11 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AORUS
2021-03-11 11:15 - 2021-03-11 11:15 - 000000000 ____D C:\Users\psubi\AppData\Local\cFos
2021-03-10 14:50 - 2021-03-10 14:50 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
2021-03-10 14:50 - 2021-03-10 14:50 - 000000000 ____D C:\Program Files (x86)\Belarc
2021-03-10 13:49 - 2021-03-10 13:49 - 000003356 _____ C:\Windows\system32\Tasks\SIV-VGA
2021-03-10 13:49 - 2021-03-10 13:49 - 000003350 _____ C:\Windows\system32\Tasks\SIV
2021-03-10 13:49 - 2021-03-10 13:49 - 000000000 ____D C:\Users\fsubi\AppData\Local\cFos
2021-03-10 13:49 - 2021-03-10 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte Speed
2021-03-10 13:49 - 2021-03-10 13:49 - 000000000 ____D C:\ProgramData\cFos
2021-03-10 13:49 - 2021-03-10 13:49 - 000000000 ____D C:\Program Files\cFosSpeed
2021-03-10 13:49 - 2019-03-21 05:06 - 001595456 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys
2021-03-10 13:45 - 2020-12-16 08:47 - 000027512 _____ (Intel Corporation) C:\Windows\system32\RstMwEventLogMsg.dll
2021-03-10 13:45 - 2020-12-16 08:46 - 002965880 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsService.exe
2021-03-10 13:45 - 2020-12-16 08:46 - 001474936 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAC.sys
2021-03-10 13:45 - 2020-12-16 08:46 - 000219512 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsNative.exe
2021-03-10 13:45 - 2020-12-16 08:46 - 000119672 _____ (Intel Corporation) C:\Windows\system32\Optane.dll
2021-03-10 13:45 - 2020-12-16 08:46 - 000073080 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAfs.sys
2021-03-10 13:45 - 2020-12-16 08:46 - 000023416 _____ (Intel Corporation) C:\Windows\system32\OptaneEventLogMsg.dll
2021-03-10 00:11 - 2021-03-11 23:46 - 001065984 _____ C:\Users\fsubi\AppData\Local\file__0.localstorage
2021-03-10 00:11 - 2021-03-10 00:21 - 000000000 ____D C:\Users\fsubi\Valley
2021-03-10 00:10 - 2021-03-10 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2021-03-09 00:24 - 2021-03-09 00:24 - 000000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2021-03-08 20:07 - 2021-03-11 22:12 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2021-03-08 20:04 - 2021-03-08 20:04 - 000003450 _____ C:\Windows\system32\Tasks\GraphicsCardEngine
2021-02-28 18:36 - 2021-02-28 18:36 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2021-02-27 23:01 - 2021-02-27 23:01 - 001822272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-02-27 23:01 - 2021-02-27 23:01 - 001394024 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-02-27 23:01 - 2021-02-27 23:01 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-27 23:01 - 2021-02-27 23:01 - 000480256 _____ C:\Windows\system32\AssignedAccessCsp.dll
2021-02-27 23:01 - 2021-02-27 23:01 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-27 23:01 - 2021-02-27 23:01 - 000091136 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-02-27 12:56 - 2021-02-27 12:56 - 000000000 ____D C:\Users\fsubi\AppData\Local\Madness

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-29 23:22 - 2020-09-07 10:00 - 000000000 ____D C:\Program Files\CCleaner
2021-03-29 23:21 - 2020-09-24 19:30 - 000003096 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-03-29 23:21 - 2020-09-05 21:40 - 000000000 ____D C:\Users\fsubi\.rainlendar2
2021-03-29 23:20 - 2020-09-05 18:10 - 000842942 _____ C:\Windows\system32\PerfStringBackup.INI
2021-03-29 23:20 - 2020-09-05 18:04 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-29 23:20 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-29 23:20 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-03-29 23:20 - 2019-12-07 10:03 - 001048576 _____ C:\Windows\system32\config\BBI
2021-03-29 23:15 - 2020-09-24 19:31 - 000000000 ____D C:\Users\fsubi\AppData\Local\AMD
2021-03-29 23:14 - 2020-09-24 19:30 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2021-03-29 23:14 - 2020-09-24 19:30 - 000003160 _____ C:\Windows\system32\Tasks\StartCN
2021-03-29 23:14 - 2020-09-24 19:30 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR
2021-03-29 23:14 - 2020-09-05 19:09 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\AMD
2021-03-29 23:14 - 2020-09-05 18:16 - 000000000 ____D C:\Program Files\AMD
2021-03-29 22:46 - 2021-01-21 21:20 - 000000000 ____D C:\AMD
2021-03-29 22:44 - 2020-11-21 12:17 - 000000000 ____D C:\Users\fsubi\AppData\Local\AMD_Common
2021-03-29 22:42 - 2020-09-05 18:04 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-03-29 18:05 - 2020-09-06 23:14 - 000000000 ____D C:\ProgramData\Isolated Storage
2021-03-29 18:03 - 2021-01-18 14:16 - 000000000 ____D C:\REX Weather Force 2020
2021-03-29 18:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-03-29 12:52 - 2020-09-16 13:04 - 001767224 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2021-03-29 12:52 - 2020-09-16 13:04 - 001339200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2021-03-29 12:51 - 2020-09-16 13:03 - 000202144 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll
2021-03-29 12:51 - 2020-09-16 13:03 - 000169672 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll
2021-03-29 10:54 - 2020-09-05 18:18 - 000000000 ___RD C:\Users\fsubi\Počítač
2021-03-28 12:48 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-28 12:18 - 2021-02-22 23:52 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Microsoft Flight Simulator
2021-03-28 00:21 - 2020-11-22 21:23 - 000000000 ____D C:\Users\fsubi\AppData\Local\CrashDumps
2021-03-27 15:09 - 2020-10-05 16:28 - 000018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2021-03-26 20:58 - 2020-09-06 06:11 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-26 17:51 - 2020-09-05 18:17 - 000000000 ____D C:\Users\fsubi\AppData\Local\D3DSCache
2021-03-26 17:48 - 2020-12-05 12:12 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2021-03-26 13:44 - 2020-09-05 18:13 - 000000000 ____D C:\Users\fsubi
2021-03-26 10:26 - 2020-11-24 18:10 - 000000652 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001.job
2021-03-26 10:26 - 2020-11-24 18:10 - 000000556 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001.job
2021-03-26 10:22 - 2021-02-01 17:38 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\Temp
2021-03-26 10:22 - 2020-09-05 18:32 - 000000000 ____D C:\Program Files (x86)\Google
2021-03-25 17:47 - 2020-11-24 18:10 - 000003802 _____ C:\Windows\system32\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-25 17:47 - 2020-11-24 18:10 - 000003706 _____ C:\Windows\system32\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-25 17:47 - 2020-11-24 18:10 - 000000000 ____D C:\Users\fsubi\AppData\Local\GoToMeeting
2021-03-25 15:45 - 2020-09-05 18:15 - 000000000 ____D C:\Users\fsubi\AppData\Local\Packages
2021-03-25 11:37 - 2020-09-05 18:15 - 000000000 ____D C:\Users\fsubi\AppData\Local\VirtualStore
2021-03-25 11:36 - 2020-12-15 10:06 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\uTorrent Web
2021-03-25 11:29 - 2020-12-15 10:07 - 000000000 ____D C:\Users\fsubi\AppData\Local\BitTorrentHelper
2021-03-24 08:36 - 2020-09-05 18:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2021-03-22 20:40 - 2020-10-10 10:10 - 000000000 ____D C:\Users\fsubi\AppData\Local\FlightSimulator
2021-03-22 17:18 - 2020-09-05 18:04 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-22 13:52 - 2020-09-05 21:53 - 000000000 ____D C:\Program Files\Microsoft Office
2021-03-22 10:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-03-22 10:09 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-03-20 13:33 - 2020-09-05 18:27 - 000003840 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-03-20 13:32 - 2020-09-05 20:38 - 000000000 ____D C:\Windows\SysWOW64\pack
2021-03-20 13:32 - 2020-09-05 18:34 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-20 13:30 - 2020-09-05 18:33 - 000000000 ____D C:\Program Files (x86)\Intel
2021-03-20 13:29 - 2020-09-05 18:34 - 000000000 ____D C:\Program Files\Intel
2021-03-20 13:25 - 2020-09-05 18:35 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-03-20 13:25 - 2020-09-05 18:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-03-20 13:21 - 2020-09-24 18:58 - 000000000 ____D C:\Users\fsubi\AppData\Local\ElevatedDiagnostics
2021-03-20 12:46 - 2021-02-05 10:26 - 000000895 _____ C:\Users\fsubi\Počítač\NordVPN.lnk
2021-03-20 12:46 - 2021-02-05 10:26 - 000000000 ____D C:\Users\fsubi\AppData\Local\NordVPN
2021-03-20 12:46 - 2021-02-05 10:26 - 000000000 ____D C:\ProgramData\NordVPN
2021-03-20 12:46 - 2021-02-05 10:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2021-03-19 12:50 - 2020-12-05 12:07 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-03-16 22:37 - 2020-09-05 18:32 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-15 11:07 - 2020-10-22 15:09 - 000015824 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys
2021-03-14 11:26 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-03-13 21:46 - 2021-02-08 15:59 - 000000000 ____D C:\Users\fsubi\AppData\Local\Amazon Music
2021-03-13 21:08 - 2021-02-08 15:59 - 000001261 _____ C:\Users\fsubi\Počítač\Amazon Music.lnk
2021-03-13 19:01 - 2020-09-08 11:12 - 000000000 ____D C:\Users\fsubi\Počítač\Games
2021-03-13 19:01 - 2020-09-05 23:29 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-03-13 18:48 - 2020-09-05 18:04 - 000817928 _____ C:\Windows\system32\FNTCACHE.DAT
2021-03-13 18:48 - 2019-12-07 15:49 - 000000000 ___SD C:\Windows\system32\AppV
2021-03-13 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-03-13 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-03-13 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-03-13 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-03-13 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-03-13 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2021-03-13 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-03-13 18:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2021-03-13 11:20 - 2020-09-30 21:39 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\decrypt
2021-03-11 22:12 - 2020-09-05 18:50 - 000000000 ____D C:\Users\fsubi\AppData\Local\Downloaded Installations
2021-03-11 21:53 - 2020-09-05 18:17 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-11 21:53 - 2020-09-05 18:13 - 000002365 _____ C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-11 21:06 - 2020-09-05 20:17 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-03-11 20:54 - 2020-09-21 20:31 - 000000000 ___RD C:\Users\psubi\OneDrive
2021-03-11 11:15 - 2020-09-21 20:31 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971254259-73155972-3602281376-1002
2021-03-11 11:15 - 2020-09-21 20:30 - 000002365 _____ C:\Users\psubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-10 19:15 - 2020-09-05 19:43 - 000000000 ____D C:\Windows\system32\MRT
2021-03-10 19:13 - 2020-09-05 19:43 - 131005360 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-03-10 15:28 - 2020-09-07 10:00 - 000000000 ____D C:\Users\fsubi\Počítač\Power Tools
2021-03-10 15:27 - 2020-09-07 10:00 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-03-10 15:25 - 2020-12-31 09:42 - 000000000 ____D C:\Program Files\CPUID
2021-03-10 15:25 - 2020-09-07 10:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2021-03-10 15:08 - 2020-10-03 14:56 - 001682352 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2021-03-10 15:08 - 2020-10-03 14:56 - 000216016 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2021-03-10 15:08 - 2020-10-03 14:56 - 000169400 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2021-03-10 15:08 - 2020-10-03 14:56 - 000159184 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2021-03-10 15:08 - 2020-10-03 14:56 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2021-03-10 15:08 - 2020-10-03 14:56 - 000038320 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe
2021-03-10 14:11 - 2020-09-05 18:15 - 000000000 ____D C:\ProgramData\Packages
2021-03-09 21:36 - 2020-09-05 21:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2021-03-09 21:36 - 2020-09-05 21:54 - 000000000 ____D C:\Program Files\HWiNFO64
2021-03-08 20:07 - 2020-09-05 20:13 - 000000000 ____D C:\Program Files\ENE
2021-03-08 20:04 - 2020-09-05 18:51 - 000003466 _____ C:\Windows\system32\Tasks\EasyTune 1
2021-03-08 20:04 - 2020-09-05 18:51 - 000003366 _____ C:\Windows\system32\Tasks\EasyTune
2021-03-08 19:53 - 2020-09-06 06:11 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-08 19:53 - 2020-09-06 06:11 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-01 18:05 - 2020-10-12 14:43 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\ABarthel
2021-03-01 17:25 - 2020-09-30 21:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2021-03-01 17:17 - 2020-09-30 21:39 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\.ePUBeedrmremoval
2021-02-27 23:06 - 2019-12-07 15:49 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-02-27 23:06 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-27 23:06 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-27 23:06 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-02-27 23:06 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-27 22:52 - 2021-02-06 19:41 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\EasyAntiCheat

==================== Files in the root of some directories ========

2021-03-10 00:11 - 2021-03-11 23:46 - 001065984 _____ () C:\Users\fsubi\AppData\Local\file__0.localstorage
2020-09-11 14:01 - 2020-09-11 14:01 - 000000056 _____ () C:\Users\fsubi\AppData\Local\X-Plane 11 Preferences.prf
2020-09-11 14:06 - 2020-09-11 14:32 - 000000015 _____ () C:\Users\fsubi\AppData\Local\X-Plane_drm_11.prf
2020-09-11 14:01 - 2020-09-11 14:01 - 000000059 _____ () C:\Users\fsubi\AppData\Local\x-plane_install_11.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#38 Příspěvek od fsubin »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-03-2021
Ran by fsubi (29-03-2021 23:23:22)
Running from E:\
Windows 10 Pro Version 20H2 19042.870 (X64) (2020-09-05 17:06:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-971254259-73155972-3602281376-500 - Administrator - Disabled)
aslin (S-1-5-21-971254259-73155972-3602281376-1004 - Limited - Disabled)
DefaultAccount (S-1-5-21-971254259-73155972-3602281376-503 - Limited - Disabled)
filik (S-1-5-21-971254259-73155972-3602281376-1005 - Limited - Disabled)
fsubi (S-1-5-21-971254259-73155972-3602281376-1001 - Administrator - Enabled) => C:\Users\fsubi
Guest (S-1-5-21-971254259-73155972-3602281376-501 - Limited - Disabled)
lauri (S-1-5-21-971254259-73155972-3602281376-1003 - Limited - Disabled)
psubi (S-1-5-21-971254259-73155972-3602281376-1002 - Limited - Enabled) => C:\Users\psubi
WDAGUtilityAccount (S-1-5-21-971254259-73155972-3602281376-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0709.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0709.1 - GIGABYTE)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 21.001.20145 - Adobe Systems Incorporated)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_10_1) (Version: 10.1 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Inc.)
Amazon Music (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Amazon Amazon Music) (Version: 8.3.0.2240 - Amazon.com Services LLC)
Amazon Photos (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Amazon Photos) (Version: 7.6.2 - Amazon.com, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.3.2 - Advanced Micro Devices, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0317.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0317.1 - GIGABYTE)
Belarc Advisor 9.7 (HKLM-x32\...\Belarc Advisor) (Version: 9.7.0.0 - Belarc Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
calibre (HKLM-x32\...\{4E1FEEB8-45A5-4069-B948-B5DED59D406C}) (Version: 5.12.0 - Kovid Goyal)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.7.0 - Canon Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - ‪Canon Inc.‬)
Canon iP4900 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4900_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.4 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.13.10.0 - Canon Inc.)
Canon Utilities EOS Network Setting Tool (HKLM-x32\...\EOS Network Setting Tool) (Version: 1.1.0.9 - Canon Inc.)
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.)
Canon Utilities EOS Utility 3 (HKLM-x32\...\EOS Utility 3) (Version: 3.13.10.1 - Canon Inc.)
Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.10.0.0 - Canon Inc.)
CanoScan 9000F Mark II Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ9604) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 84.1.5542.138 - Piriform Software)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
Cisco Webex Meetings (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\ActiveTouchMeetingClient) (Version: 40.11.4 - Cisco Webex LLC)
ColorChecker Camera Calibration 2.2.0 (HKLM-x32\...\ColorChecker Camera Calibration_is1) (Version: 2.2.0 - X-Rite)
ColorMunki Photo 1.2.4 (HKLM-x32\...\ColorMunki Photo_is1) (Version: 1.2.4 - X-Rite)
CPUID CPU-Z 1.95 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.95 - CPUID, Inc.)
Creative Live! Cam Chat HD (VF0700) (1.00.06.00) (HKLM\...\Creative VF0700) (Version: - Creative Technology Ltd.)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.12 - GOG.com)
Documentation Manager (HKLM\...\{903A7EB3-3534-44FC-8E98-43D5050EF04E}) (Version: 22.10.0.7 - Intel Corporation) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 118.4.460 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{0BF9DD77-498D-4E9E-A968-CFC9249BDD9F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.21.0114.1 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.21.0114.1 - GIGABYTE)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.21.0202.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.21.0202.1 - GIGABYTE)
ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{0f607f07-7957-4887-9d5e-be8efe9595a9}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM-x32\...\{33f042cf-0ae3-4241-b8c8-7f544533ea8e}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Epic Games Launcher (HKLM-x32\...\{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ePUBee DRM Removal (HKLM-x32\...\ePUBee DRM Removal) (Version: 3.1.5.2 - ePUBee Inc.)
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
Excel (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Fast Boot (HKLM-x32\...\{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE)
Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Hidden
Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte)
Gigabyte Speed v10.50 (HKLM\...\Gigabyte Speed) (Version: 10.50 - cFos Software GmbH, Bonn)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 89.0.4389.90 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
GoTo Opener (HKLM-x32\...\{C2A61D74-BB65-42AD-B81F-AC25E1F7DE02}) (Version: 1.0.536 - LogMeIn, Inc.)
GoToMeeting 10.15.500.19584 (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\GoToMeeting) (Version: 10.15.500.19584 - LogMeIn, Inc.)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.19.0624.1 - GIGABYTE)
High-Definition Video Playback (HKLM-x32\...\{9193490D-5229-4FC4-9BB9-A6D63C09574A}) (Version: 11.1.11100.4.196 - Nero AG) Hidden
HWiNFO64 Version 7.00 (HKLM\...\HWiNFO64_is1) (Version: 7.00 - Martin Malik - REALiX)
Intel(R) Chipset Device Software (HKLM-x32\...\{99926fb7-5da9-4101-b79f-eec3674ca64b}) (Version: 10.1.18634.8254 - Intel(R) Corporation)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{7368d41d-24b9-4b1a-aef4-862e2571fa92}) (Version: 6.5.1.371 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2052.15.0.2069 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.8.0.1065 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000020-0220-1033-84C8-B8D95FA3C8C3}) (Version: 22.20.0.3 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{ded97635-a82a-48b1-b197-0e7c5e4c4ac3}) (Version: 22.10.0.7 - Intel Corporation) Hidden
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LeapFrog Connect 2 (HKLM-x32\...\LeapFrogConnect2) (Version: 4.1.9.448 - LeapFrog)
LeapFrogConnect2 (HKLM-x32\...\{816F787F-8448-45E6-AE87-25DB24131477}) (Version: 4.1.9.448 - LeapFrog) Hidden
LeapReader (HKLM-x32\...\{D751797E-949C-42BF-8E6C-F2CB4E8A6634}) (Version: 4.1.9.448 - LeapFrog Enterprises) Hidden
Learning Lodge™ (HKLM-x32\...\VTechDownloadManager) (Version: - VTech)
Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.126 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
MAGIX Content and Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Soundpool Music Maker - Feel good (HKLM\...\{677F8E85-8686-476B-829A-D5ED9ECA16E6}) (Version: 1.0.1.0 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM\...\{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Travel Maps (HKLM\...\{83EC0C28-33DB-467B-A919-52ECDD8F4B69}) (Version: 1.0.1.378 - MAGIX Software GmbH) Hidden
MAGIX Travel Maps (HKLM\...\MX.{83EC0C28-33DB-467B-A919-52ECDD8F4B69}) (Version: 1.0.1.378 - MAGIX Software GmbH)
MAGIX Video Pro X (Design elements) (HKLM\...\{F2A29913-41F4-4DBC-861C-4D033BC2ED4C}) (Version: 17.0.2.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Fade effects) (HKLM\...\{A1816F3A-47EF-47FE-A406-F7C73FCECEE3}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (HKLM\...\{4547085E-9FFE-4A8D-BA44-6F97C3927F3E}) (Version: 17.0.1.32 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (HKLM\...\MX.{4547085E-9FFE-4A8D-BA44-6F97C3927F3E}) (Version: 17.0.1.32 - MAGIX Software GmbH)
MAGIX Video Pro X (Menu templates) (HKLM\...\{00DD9BCE-E5A3-4B62-900E-193065C3BB49}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Migrate Content) (HKLM\...\{86096249-43A1-4C5D-919D-97DAFA52B28E}) (Version: 16.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Design elements) (HKLM\...\{C99F2C3F-ECC7-413B-9D7F-9E54585D991C}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Menu templates) (HKLM\...\{A0E0419E-413B-4BB3-B7DD-45325228C3E5}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Movie templates) (HKLM\...\{4518A9B7-A262-4D9B-906D-DBFD4549ADCA}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Slideshow Maker styles) (HKLM\...\{06680A3C-A2BD-4AD4-B172-CEA79DD5E3BC}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie templates) (HKLM\...\{1A266F02-9EFD-4E7E-82F2-7C682897A884}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Slideshow Maker styles) (HKLM\...\{DA144E48-B850-439A-BE92-600A14BB9197}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Soundtrack Maker styles) (HKLM\...\{2115BA04-C7F2-46F2-A3D7-7BFCD0D97C29}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Templates and effects) (HKLM-x32\...\MAGIX_GlobalContent.Video_Pro_X) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Video Pro X (Title effects) (HKLM\...\{8D139F22-4779-4AC3-A7DE-FB54F07E13A6}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Update Service 5.7.33.77) (HKLM\...\{8F07F018-6858-3E5F-8500-456430AA3069}) (Version: 5.7.33.77 - MAGIX Software GmbH) Hidden
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.13801.20360 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.63 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 89.0.774.63 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971254259-73155972-3602281376-1002\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Movie Studio 16.0 Platinum (HKLM\...\{661AE070-1B81-11EA-8676-9431242A7F22}) (Version: 16.0.175 - VEGAS)
Nero 11 (HKLM-x32\...\{810B7362-6B05-4714-AF6A-EF3A20CCD634}) (Version: 11.2.00600 - Nero AG)
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.11100.8.0 - Nero AG)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.35.9.0 - TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 - NordVPN)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20294 - Microsoft Corporation) Hidden
ON_OFF Charge 2 B19.1119.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.19.1119.1 - GIGABYTE) Hidden
ON_OFF Charge 2 B19.1119.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.19.1119.1 - GIGABYTE)
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Outlook (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Polar FlowSync version 3.0.0.1337 (HKLM-x32\...\{A1538F5C-7B65-4DB6-9FFB-FFC0DF2E85D8}_is1) (Version: 3.0.0.1337 - Polar Electro Oy)
PowerPoint (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 9.8.7.18 - Bitsum)
QT5.10.1 (HKLM-x32\...\{5C60E178-F792-4CF7-A2E7-E7124DF1B2F0}) (Version: 1.0.1.0 - LeapFrog) Hidden
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: 2.15.4 - Rainy)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9075.1 - Realtek Semiconductor Corp.)
REX Weather Force 2020 (HKLM\...\{868DE4BF-66FA-4211-91FD-4D699A1EE900}) (Version: 6.0.2021.0216 - REX Game Studios, LLC.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.21.0310.1 - GIGABYTE)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.34.337 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.21.0129.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.21.0129.1 - GIGABYTE)
Smart Backup (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.18.0911.1 - GIGABYTE)
SPAD.neXt (HKLM\...\{CE21AD13-50E6-474A-89B9-81E262E620A0}_is1) (Version: 0.9.8.6 - SPADneXt.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
T.Flight Hotas drivers (HKLM-x32\...\{E08E6F77-E66C-47FC-8565-0AA3389D48C8}) (Version: 1.TFHT.2020 - Thrustmaster)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Use the entry named LeapFrog Connect2 to uninstall QT5.10.1 (HKLM-x32\...\QT5.10.1) (Version: - LeapFrog)
Use the entry named LeapFrogConnect2 to uninstall LeapReader (HKLM-x32\...\LFC2_LeapReaderPlugin) (Version: - LeapFrog)
uTorrent Web (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\utweb) (Version: 1.1.2 - BitTorrent, Inc.)
Vita Concert Grand LE (HKLM\...\{2C61CE04-1EEF-4582-ABBA-B9CCFC3743EB}) (Version: 2.4.0.96 - MAGIX Software GmbH) Hidden
Welcome App (Start-up experience) (HKLM-x32\...\{51865D9D-8F63-46F2-87AB-9E72F93B618C}) (Version: 11.0.23500.0.0 - Nero AG) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2700 - Broadcom Corporation)
Word (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
X-Rite Device Services Manager (HKLM-x32\...\{C665E881-CE55-4156-A4A6-7C55D645FD4E}) (Version: 2.4.1 - X-Rite)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_EN_is1) (Version: 18.0.1.10 - ZONER software)

Packages:
=========
DTS:X Ultra -> C:\Program Files\WindowsApps\DTSInc.DTSXUltra_1.5.13.0_x64__t5j2fzbtdg37r [2021-03-09] (DTS, Inc.)
Files -> C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.2.0_x64__et10x9a9vyk8t [2021-03-28] (Yair A)
HEVC Video Extensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_1.0.40615.0_x64__8wekyb3d8bbwe [2021-03-19] (Microsoft Corporation)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1015.0_x64__8j3eq9eme6ctt [2021-03-27] (INTEL CORP)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-03-29] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_21.10208.5605.0_x64__8wekyb3d8bbwe [2021-03-08] (Microsoft Corporation)
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.21005.0_x64__8wekyb3d8bbwe [2021-03-09] (Microsoft Studios)
MPEG-2 Video Extension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-05] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-11-22] (Microsoft Corporation)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2108.9.0_x64__cv1g1gvanyjgm [2021-03-17] (WhatsApp Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\fsubi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\fsubi\AppData\Local\GoToMeeting\18962\G2MOutlookAddin64.dll (LogMeIn, Inc. -> LogMeIn, Inc.)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\fsubi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => E:\Users\Filip\Dropbox [2014-12-31 16:04]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_fac18e2da6ec7b25\OptaneShellExt.dll [2020-12-16] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_fac18e2da6ec7b25\OptaneShellExt.dll [2020-12-16] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-03-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm --app-url=hxxps://excel.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi --app-url=hxxps://word.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Play Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Loaded Modules (Whitelisted) =============

2021-03-10 20:53 - 2021-03-10 20:53 - 001868288 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2013-06-21 15:03 - 2013-06-21 15:03 - 002633728 _____ () [File not signed] C:\Program Files (x86)\X-Rite\Devices\colormunki\colormunki.dll
2015-07-13 11:33 - 2015-07-13 11:33 - 001592832 _____ () [File not signed] C:\Program Files (x86)\X-Rite\Devices\rm200\GoldenEye.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-08-02 12:24 - 2017-08-02 12:24 - 000017920 _____ () [File not signed] C:\Program Files\Rainlendar2\lfs.dll
2017-08-02 12:37 - 2017-08-02 12:37 - 000331776 _____ () [File not signed] C:\Program Files\Rainlendar2\libical.dll
2017-08-02 12:37 - 2017-08-02 12:37 - 000063488 _____ () [File not signed] C:\Program Files\Rainlendar2\libicalss.dll
2017-08-02 12:24 - 2017-08-02 12:24 - 000314880 _____ () [File not signed] C:\Program Files\Rainlendar2\lua53.dll
2020-03-31 19:47 - 2020-03-31 19:47 - 000295424 _____ () [File not signed] C:\Program Files\Rainlendar2\plugins\GoogleCalendarPlugin.dll
2020-03-31 19:46 - 2020-03-31 19:46 - 000129536 _____ () [File not signed] C:\Program Files\Rainlendar2\plugins\iCalendarPlugin.dll
2020-12-18 17:09 - 2017-01-10 12:15 - 001970176 _____ () [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\QtCore4.dll
2020-12-18 17:09 - 2017-01-10 12:15 - 007053312 _____ () [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\QtGui4.dll
2021-03-26 10:10 - 2021-03-26 10:10 - 001640448 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2019-04-15 17:24 - 2019-04-15 17:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV2.dll
2019-04-15 17:24 - 2019-04-15 17:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-04-15 17:24 - 2019-04-15 17:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\SIV\yccV2.dll
2020-12-18 17:09 - 2017-03-07 05:29 - 001088512 _____ (GretagMacbeth) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\Cxf.dll
2020-12-18 17:09 - 2017-03-07 05:29 - 000503808 _____ (Microsoft Corporation) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\MSVCP71.dll
2020-12-18 17:09 - 2017-03-07 05:29 - 000348160 _____ (Microsoft Corporation) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\MSVCR71.dll
2019-10-10 15:13 - 2019-10-10 15:13 - 000422400 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files\Rainlendar2\libcurl.dll
2018-11-16 13:48 - 2018-11-16 13:48 - 002720768 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Rainlendar2\libcrypto-1_1-x64.dll
2018-11-16 13:49 - 2018-11-16 13:49 - 000658944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Rainlendar2\libssl-1_1-x64.dll
2021-01-05 12:57 - 2021-01-05 12:57 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-01-05 12:56 - 2021-01-05 12:56 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2015-10-14 02:15 - 2015-10-14 02:15 - 002042368 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll
2020-12-16 11:08 - 2020-12-16 11:08 - 002001920 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll
2019-12-02 12:10 - 2019-12-02 12:10 - 002874880 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxbase313u_vc_rny.dll
2019-12-02 12:14 - 2019-12-02 12:14 - 000181248 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxbase313u_xml_vc_rny.dll
2019-12-02 12:14 - 2019-12-02 12:14 - 008349184 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_core_vc_rny.dll
2019-12-02 12:14 - 2019-12-02 12:14 - 000793600 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_html_vc_rny.dll
2019-12-02 12:16 - 2019-12-02 12:16 - 000914432 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_propgrid_vc_rny.dll
2019-12-02 12:15 - 2019-12-02 12:15 - 000954880 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_xrc_vc_rny.dll
2014-12-02 10:59 - 2014-12-02 10:59 - 001502208 _____ (X-Rite Inc.) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1iO.dll
2014-12-02 10:59 - 2014-12-02 10:59 - 003962368 _____ (X-Rite Inc.) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Pro.dll
2020-12-18 17:09 - 2017-01-10 12:15 - 000269824 _____ (X-Rite Inc.) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\XRiteDevice.dll
2015-04-02 15:59 - 2015-04-02 15:59 - 002359296 _____ (X-Rite) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1isis\EyeOne_iSis.dll
2014-11-05 11:05 - 2014-11-05 11:05 - 001019392 _____ (X-Rite) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Fun.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2019-01-31] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2019-01-31] (Logitech Inc -> Logitech, Inc.)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2020-10-15] (Belarc, Inc. -> Belarc, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-971254259-73155972-3602281376-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\fsubi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\picasabackground-003.bmp
HKU\S-1-5-21-971254259-73155972-3602281376-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\psubi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img2.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)
WiFi: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
WiFi: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 2: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "CiscoMeetingDaemon"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "NordVPN"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "Amazon Photos"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2EF1C09D-5154-4AFE-A939-1ED4404E0502}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{C79537E7-DBA4-4D5E-9F48-2199D2C680BE}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{B3FCFE0F-67CB-4D68-AD50-3EB98374364A}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [UDP Query User{7A2275EC-3B87-44BF-9C32-C49FED8E8776}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [{A1452CEA-25E9-4F9D-AC37-0CD53C770AF2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{444578ED-08D5-44CD-A617-012AC0125730}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{24B1E1F7-8C97-4AA2-94D6-4D983F6B0339}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8D9E0F45-EB17-4F03-B4EB-A5CA3A0AB55D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4E7DF3DF-A7D9-4E14-BA23-61F6481EC986}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\YNAB 4\YNAB 4.exe (YouNeedABudget.com -> )
FirewallRules: [{A78CD105-CEF5-4A4B-A7A4-C0F5724FB11F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\YNAB 4\YNAB 4.exe (YouNeedABudget.com -> )
FirewallRules: [{850C4B1B-A7A5-4DE4-818C-BBBA7D255980}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
FirewallRules: [{410F3158-74E5-4137-8983-9F505A1F9C6E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{3FC922AD-7A2C-4385-8E30-9F2AB45E907B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{54444C69-55B9-4395-851D-84472DD9C6FF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [File not signed]
FirewallRules: [{3E35454A-538E-4353-9655-87F22FFB6AED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [File not signed]
FirewallRules: [{1EC1F12E-3905-40F9-A48E-C2672C31B272}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37AD5553-F9D0-4E55-9BA9-1582CC5EF333}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{17FC7FD9-18E1-4BDF-830D-D4E57EB256AB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FF4F1192-C893-4307-8687-DE48D17301B2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{863F4C13-1940-4849-956D-7834F6D9FA75}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F30A4321-0FF1-4D5E-852D-B3E2E494636D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FB948A41-7975-4237-AE4F-AE499E554064}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious2\CSD2.exe (Vertigo Gaming Inc.) [File not signed]
FirewallRules: [{F430DE73-BB30-4AED-A6EB-D23E47251354}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious2\CSD2.exe (Vertigo Gaming Inc.) [File not signed]
FirewallRules: [{2CA95FEB-19F9-4577-AE46-B96AEB2386D3}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{86975E04-8911-4682-B790-1BC3D46E9DA7}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{9AFEA613-C7A8-4958-871E-B218281F5170}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C4D234BB-0283-470F-859A-E1B08A9AF37D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C4EC43ED-F96F-45B7-ADD5-A94ED2F7E72D}] => (Allow) C:\Users\fsubi\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
FirewallRules: [{6EF4D578-1ECA-4EB2-AE29-AB5E4DEDCA62}] => (Allow) C:\Users\fsubi\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
FirewallRules: [{153380D6-D739-4942-8802-CD8997522BEE}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Canon Inc. -> CANON INC.)
FirewallRules: [{16FE463D-A4AD-4D65-ADB3-EB25CB1ABE17}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Canon Inc. -> CANON INC.)
FirewallRules: [{DEE52412-DB21-4290-94E8-E9531E65DCB6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Indiana Jones and the Fate of Atlantis\Indiana Jones and the Fate of Atlantis.exe (LucasArts Entertainment Company) [File not signed]
FirewallRules: [{50D6DE88-B850-4EA4-8CDE-87EFF5C2B729}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Indiana Jones and the Fate of Atlantis\Indiana Jones and the Fate of Atlantis.exe (LucasArts Entertainment Company) [File not signed]
FirewallRules: [{38E14EED-BAC9-4E7F-BDBD-EB8887324698}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Disco Elysium\disco.exe () [File not signed]
FirewallRules: [{2D26774F-B223-4543-83B8-B12824297739}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Disco Elysium\disco.exe () [File not signed]
FirewallRules: [{E7CA7536-380B-4166-B1B1-E8C4A76105D4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{642C2D9D-0AAF-4FB2-A81D-498B7A469D9B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{009B3789-E538-494E-9CED-A39BB669870D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Worlds\LEGO_Worlds.exe (Travellers Tales (UK) Limited -> )
FirewallRules: [{206D4EF9-1319-43BC-8D14-3C4F214B1D04}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Worlds\LEGO_Worlds.exe (Travellers Tales (UK) Limited -> )
FirewallRules: [{3D24ACF3-22A4-4DF5-9CD5-58E5A965837A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{5E91677C-4211-4489-902C-E57CFA123218}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{CED34EF7-8E92-4372-9E13-F87A1204C9BD}] => (Allow) C:\Program Files\MAGIX\Video Pro X\11\Video_Pro_X.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{BB0B45E4-12DB-47F6-8FC8-FA67307035C9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ACFD921A-0C05-42BC-BE74-4652CF19DD48}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe () [File not signed]
FirewallRules: [{BB36CFB0-72C5-4536-B33A-8A46EBC31F85}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe () [File not signed]
FirewallRules: [{E31AB2FF-BD0E-4B53-9504-15C5258F0449}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{341E47A7-412C-48EC-B340-F572060C7919}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{752407C3-DF06-4260-A702-561E519B0F37}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{079B8416-8A53-40EE-BFA0-A015D088667D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E51B1764-976C-4650-99DF-164B02AA8F09}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E5B0EC10-25BC-4AAF-937D-3D12582D1F4E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0313E2A9-5930-42AE-9155-6701BA169662}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B8173E86-C93F-4BEC-8715-FE3C4B5D0498}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7D4884AD-63CC-468C-B4FC-362604BBBBD5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{1F89427A-BFA7-469C-9254-21C832488128}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{E23CEA62-D35C-4008-B0CC-3A09A7A94EBD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MicrosoftFlightSimulator\FlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{7707F3F7-94D4-4092-AE4F-E088F627A234}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MicrosoftFlightSimulator\FlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{044CD729-D4DE-415B-9605-E8DA6DEA1712}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B4E180BF-AA9A-482A-AA48-3E2D250B9852}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B74EB9F0-D1A1-4B20-B60B-BC2718C2D6B6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Death Stranding\ds.exe (KOJIMA PRODUCTIONS Co., Ltd.) [File not signed]
FirewallRules: [{EC4C4C62-71CC-4440-B5A8-D3A3EB349F02}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Death Stranding\ds.exe (KOJIMA PRODUCTIONS Co., Ltd.) [File not signed]
FirewallRules: [{01F65A0D-2C26-4590-88F6-3F661DCDB0F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{451ECB7B-D6F2-44B4-9A3F-9DBE2CB1175D}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{EF77C753-FF70-4243-9E1B-F92B0006320B}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{563D214B-A8D6-40C4-B2F1-1B0DC3BF0E5F}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{1762CA98-1C62-4EBF-8858-F09022C12FF9}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{F5D6B7FB-9A66-4D3C-B938-4E074E5F7358}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{BDEAE202-56FE-4003-8021-B95F2EAC14A3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\89.0.774.63\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2F1BC374-816E-483B-8E77-81EDFEE7A861}] => (Allow) LPort=9009
FirewallRules: [{5629748C-8245-41FA-8505-C90177BFE05F}] => (Allow) LPort=9009
FirewallRules: [{5CCCBFA1-9C4E-43FE-8ED0-2D582661F332}] => (Allow) LPort=9009
FirewallRules: [{03224629-7F11-4E6F-9074-4FDC917B0F78}] => (Allow) LPort=9009
FirewallRules: [{FC7F97B6-FC3A-49DF-ABD3-598268D0490C}] => (Allow) LPort=9009
FirewallRules: [{31CF0442-395F-4A4E-8959-1AFB5F87A9C0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{46F449E8-B591-42DE-BB47-E24DFDCCD357}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{F10348A0-93E3-40F8-B0A7-A3C22F039EE1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{AE999DF7-91FF-4328-B70D-65598FF06F4A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{3CE80D06-9A24-40F4-A000-27ECC83FD4E2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{D45F212C-3BF7-4CF8-AD4C-9815397C7D62}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{3A63202A-09A1-4D91-8104-3EAD433E006F}] => (Allow) LPort=9009
FirewallRules: [{DB04A5FD-E365-49BD-8A6C-DC43A762A377}] => (Allow) LPort=9009
FirewallRules: [{17D67074-EE57-497C-9C63-5E9E864056E9}] => (Allow) LPort=9009
FirewallRules: [{0BEF62E2-2FFC-489A-922E-53C41FB1C9F8}] => (Allow) LPort=9009

==================== Restore Points =========================

20-03-2021 13:24:18 Removed Realtek Audio Driver
22-03-2021 10:08:02 Windows Modules Installer
24-03-2021 08:35:54 Removed APP Center
25-03-2021 11:37:33 Installed Draft IT.
29-03-2021 23:13:46 Radeon Installer

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/29/2021 11:20:28 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/29/2021 11:14:56 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/29/2021 11:14:56 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/29/2021 11:14:56 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/29/2021 11:14:56 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/27/2021 03:24:17 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: SCORSESE)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).

Error: (03/27/2021 03:09:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: RunUpd.exe, version: 1.0.0.0, time stamp: 0x5d0cb2a6
Faulting module name: KERNELBASE.dll, version: 10.0.19041.804, time stamp: 0xb610d74d
Exception code: 0xc000041d
Fault offset: 0x0012a8b2
Faulting process ID: 0x2364
Faulting application start time: 0x01d72312dce958f4
Faulting application path: C:\Program Files (x86)\GIGABYTE\AppCenter\RunUpd.exe
Faulting module path: C:\Windows\System32\KERNELBASE.dll
Report ID: 396941a8-1e4f-425a-8e5b-c20e12d13e01
Faulting package full name:
Faulting package-relative application ID:

Error: (03/27/2021 03:09:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: RunUpd.exe, version: 1.0.0.0, time stamp: 0x5d0cb2a6
Faulting module name: KERNELBASE.dll, version: 10.0.19041.804, time stamp: 0xb610d74d
Exception code: 0xc0020001
Fault offset: 0x0012a8b2
Faulting process ID: 0x2364
Faulting application start time: 0x01d72312dce958f4
Faulting application path: C:\Program Files (x86)\GIGABYTE\AppCenter\RunUpd.exe
Faulting module path: C:\Windows\System32\KERNELBASE.dll
Report ID: 3e5e62c7-341e-4909-8406-5b85b4f0b109
Faulting package full name:
Faulting package-relative application ID:


System errors:
=============
Error: (03/29/2021 11:20:50 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/29/2021 11:20:23 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server Microsoft.Windows.ContentDeliveryManager_10.0.19041.423_neutral_neutral_cw5n1h2txyewy!App.AppXw3qcpc7p849541dp39vvqd01bn7z9ybh.mca did not register with DCOM within the required timeout.

Error: (03/29/2021 11:15:17 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/29/2021 10:42:20 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/29/2021 10:42:26 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 17:40:37 on ‎29/‎03/‎2021 was unexpected.

Error: (03/29/2021 10:42:18 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684A fatal error occurred processing the restoration data.

Error: (03/29/2021 06:09:34 PM) (Source: DCOM) (EventID: 10000) (User: SCORSESE)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (03/29/2021 11:00:29 AM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2


Windows Defender:
================
Date: 2020-12-05 11:48:15
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-12-05 11:19:56
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.323.580.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17400.5
Error code: 0x80240022
Error description: The program can't check for definition updates.

Date: 2020-12-05 11:19:56
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.323.580.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17400.5
Error code: 0x80240022
Error description: The program can't check for definition updates.

CodeIntegrity:
===============
Date: 2021-03-29 23:23:00
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F6 08/28/2020
Motherboard: Gigabyte Technology Co., Ltd. Z490 AORUS ULTRA
Processor: Intel(R) Core(TM) i7-10700K CPU @ 3.80GHz
Percentage of memory in use: 34%
Total physical RAM: 16301.11 MB
Available physical RAM: 10710.5 MB
Total Virtual: 34733.11 MB
Available Virtual: 26742.07 MB

==================== Drives ================================

Drive c: (Robert) (Fixed) (Total:155.63 GB) (Free:47.08 GB) NTFS
Drive d: (De Niro) (Fixed) (Total:775.26 GB) (Free:148.02 GB) NTFS
Drive e: (Goodfellas) (Fixed) (Total:931.51 GB) (Free:318.13 GB) NTFS
Drive f: (Casino) (Fixed) (Total:111.79 GB) (Free:30.47 GB) NTFS

\\?\Volume{9e86aaad-765c-4af0-b4e8-391aedf90cb2}\ () (Fixed) (Total:0.5 GB) (Free:0.04 GB) NTFS
\\?\Volume{27b2bf21-f9c1-4a4d-94ad-4510f71cfe9c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: CF291FF1)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: CF291F8C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: preventivni kontrola

#39 Příspěvek od Diallix »

Super.

Problem bol v antivírusu.

Logy su ciste, len nieco vam otvara port 9009

Pojde zrejme o neakeho Peer-To-Peer klienta.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#40 Příspěvek od fsubin »

Nie som si isty co by to mohlo sposobovat. Odstranil som cFosSpeed.exe - nejaky optimalizator internetoveho pripojenia, stabilizator ping - dostal som ho pri kupe noveho MB od Gigabyte.
Jedine dalsie co ma napadlo je Tor Browser? NordVPN?

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#41 Příspěvek od fsubin »

Nasiel som uTorrent podla logu FRST. Netusil som, ze ho mam nainstalovany, respektive uz je odinstalovany.

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: preventivni kontrola

#42 Příspěvek od Diallix »

Dobre.

Logy su ok. Mate s pocitacom este neake problemy?
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#43 Příspěvek od fsubin »

Nemám, ďakujem za pomoc pri preventivke.

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: preventivni kontrola

#44 Příspěvek od Diallix »

V pohode, nemate zac, aj na buduce :]]
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

Zamčeno