Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

preventivni kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: preventivni kontrola

#16 Příspěvek od Diallix »

Mozete stiahnut najnovsiu verziu FRST? Pretoze aj po fixliste v predoslych krokoch, sa zmeny mazania v novych logoch neprejavili. Zrejme bude chyba v programe. Skuste stiahnut najnovsiu verziu a vlozte sem nove logy.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#17 Příspěvek od fsubin »

FRST som stiahol znovu no je to ta ista verzia ako som pouzil predtym - dokonca z dnesneho dna 26/3/21. Stiahnute z BleepingComputer.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-03-2021
Ran by fsubi (administrator) on SCORSESE (Gigabyte Technology Co., Ltd. Z490 AORUS ULTRA) (26-03-2021 12:23:40)
Running from E:\Users\Filip\OneDrive\Downloads
Loaded Profiles: fsubi
Platform: Windows 10 Pro Version 20H2 19042.870 (X64) Language: English (United Kingdom)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
() [File not signed] C:\Program Files\Rainlendar2\Rainlendar2.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365057.inf_amd64_c4eff47eaf88e53e\B364966\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365057.inf_amd64_c4eff47eaf88e53e\B364966\atiesrxx.exe
(Amazon.com Services LLC -> Amazon.com Services LLC) C:\Users\fsubi\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <29>
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7aa6ca9dbb25bff8\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_5d10f2aad7f84bec\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_68966115f2eef4e5\RstMwService.exe
(LeapFrog Enterprises, Inc. -> LeapFrog Enterprises, Inc.) D:\Program Files (x86)\LeapReader\LeapFrog Connect2\LFHelper.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\fsubi\AppData\Local\Microsoft\OneDrive\21.030.0211.0002\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\fsubi\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) C:\Windows\V0700Mon.exe
(Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\TM Flight Series\drivers\amd64\tmHInstall.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe <2>
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) D:\Program Files\NordVPN\nordvpn-service.exe
(X-Rite Incorporated -> ) D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\ColorMunki Photo Tray.exe
(X-Rite Incorporated -> X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2019-01-31] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Gigabyte Speed] => C:\Program Files\cFosSpeed\cFosSpeed.exe [1724248 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
HKLM-x32\...\Run: [V0700Mon.exe] => C:\Windows\V0700Mon.exe [28672 2011-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992040 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [3389440 2020-03-31] () [File not signed]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536424 2021-03-06] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [QMxNetworkSync] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [NordVPN] => D:\Program Files\NordVPN\NordVPN.exe [274176 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Amazon Music Helper] => C:\Users\fsubi\AppData\Local\Amazon Music\Amazon Music Helper.exe [2098512 2021-02-10] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\MountPoints2: {c7064c84-f5a6-11ea-ad1d-18c04d29336b} - "G:\WD Drive Unlock.exe" autoplay=true
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\Canon iP4900 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAW.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP4900 series: C:\Windows\system32\CNMLMAW.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2012-09-27] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2020-09-05]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorMunki Gamma.lnk [2020-12-18]
ShortcutTarget: ColorMunki Gamma.lnk -> D:\Program Files (x86)\X-Rite\ColorMunki Photo\Gamma\CalibrationLoader.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorMunkiPhotoTray.exe.lnk [2020-12-18]
ShortcutTarget: ColorMunkiPhotoTray.exe.lnk -> D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\ColorMunki Photo Tray.exe (X-Rite Incorporated -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SetupRST_ModeSwitch.lnk [2021-03-10]
ShortcutTarget: SetupRST_ModeSwitch.lnk -> C:\Program Files (x86)\GIGABYTE\AppCenter\pack\SetupRST.exe (Intel(R) Rapid Storage Technology -> Intel Corporation)
Startup: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-12-18] ()

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {056A07D7-11AA-4A6E-BED6-DB6EB80948D9} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {125E5CB0-8E1B-4EBD-9809-4FF6C3E7C9FD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {19257E17-54BD-409B-82D6-BD9323798C97} - System32\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001 => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupdate.exe [31320 2021-03-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {2618028A-795D-488D-B7BE-2BB8A49723E4} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
Task: {2BD3A851-EDE3-4DA7-A9DB-56F091B71F2E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {2D9F587D-7707-4EE6-9DA9-41F5D1DD1BDC} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15768 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {38D5B7FE-F94F-4961-AECF-0291AA6A8F45} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {39A21086-5EA3-4DCD-8687-2F3FC26664BC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68176 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {428E89D9-8C38-4D47-931B-E6410811600D} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60496 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5D9F2634-C1D2-4A30-A406-BD26DED14AD4} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
Task: {5F22382B-246E-4162-8EF5-1A21E267A830} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5FF0D7CB-A573-487C-8D48-88318A79928A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2167464 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Task: {76AADFFE-8C8A-4453-AF34-31477891C1F3} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {81286C84-111F-4E37-9BE9-5452028FFED1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {828A2158-A8BC-41F1-841B-F0A50381E96E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {855353F1-8F68-46C1-9829-6FACAEA77639} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {863EE257-9599-4AB7-9386-447569E201A5} - System32\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001 => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupload.exe [31320 2021-03-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {8ECC6BC5-A1B7-4651-A428-5EC9AA551EB9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9198E8C5-5F0F-4749-97C0-F4C666E3BCF8} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [387992 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {A796589C-F8A4-48D1-B0A7-8D153F80868F} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2167464 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Task: {C5010CC4-3852-4BD1-B4A8-25DDD13059FE} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18328 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {D1634F2A-9D54-4719-A81E-A9E9CA2A7F4B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {E62AEDD9-EF72-427D-9E5F-FC162313B03A} - System32\Tasks\X-Rite Device Services Software Updater => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe [24432 2015-09-18] (X-Rite Incorporated -> X-Rite Inc.)
Task: {E8714478-ABE1-4B96-9E9C-D15B776B750F} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [252984 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {F07F579F-87D5-4893-8785-963455B5D0E9} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {F543737F-6F8C-4C1E-977A-E5F4B93417B5} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\IntelPTTEKRecertification.exe [919832 2020-12-20] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {F6A21BBB-2DFC-4A48-9522-0B72E3B590D3} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [233184 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001.job => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupdate.exe
Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001.job => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupload.exe
Task: C:\Windows\Tasks\X-Rite Device Services Software Updater.job => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{98dbab16-08c4-4647-a0d2-64f7cb3a0a64}: [NameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-26]
Edge HomePage: Default -> hxxp://www.seznam.cz/
Edge StartupUrls: Default -> "hxxps://google.sk/"
Edge Extension: (LastPass: Free Password Manager) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2021-03-15]
Edge Extension: (Outlook) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-14]
Edge Extension: (Logitech Smooth Scrolling) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-09-07]
Edge Extension: (Office) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2020-10-17]
Edge Extension: (Word) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-14]
Edge Extension: (Excel) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-14]
Edge Extension: (OneNote Web Clipper) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oogbnpmeihfgnccdnmmlgicknopghhma [2020-11-06]
Edge Extension: (PowerPoint) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-14]
Edge Extension: (AdBlocker Ultimate) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pciakllldcajllepkbbihkmfkikheffb [2020-12-11]

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2020-10-05] [not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2012-01-13] (Nero AG -> Nero AG)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-07] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-07] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default [2021-03-26]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Slides) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-05]
CHR Extension: (Docs) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-05]
CHR Extension: (Google Drive) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-05]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-02-25]
CHR Extension: (OneNote Online) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciniambnphakdoflgeamacamhfllbkmo [2020-09-05]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-09-05]
CHR Extension: (Adobe Acrobat) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-01]
CHR Extension: (Google Play Music) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-11-21]
CHR Extension: (Sheets) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-05]
CHR Extension: (NordVPN — #1 VPN Chrome Extension: Get a VPN) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2021-03-26]
CHR Extension: (Google Docs Offline) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-11]
CHR Extension: (OneNote Web Clipper) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2020-09-26]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-03-11]
CHR Extension: (Cisco Webex Extension) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2021-03-25]
CHR Extension: (Evernote Web) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2020-09-05]
CHR Extension: (Application launcher for Drive (by Google)) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Office) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2021-02-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-13]
CHR HKU\S-1-5-21-971254259-73155972-3602281376-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S4 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
S4 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\84.1.5542.138\elevation_service.exe [1332800 2020-08-19] (Piriform Software Ltd -> Piriform Software)
S4 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [595288 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8990072 2021-03-11] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44272 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-02-26] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142904 2021-02-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
S3 GalaxyClientService; D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128920 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LFHelper; D:\Program Files (x86)\LeapReader\LeapFrog Connect2\LFHelper.exe [3000056 2020-10-29] (LeapFrog Enterprises, Inc. -> LeapFrog Enterprises, Inc.)
R2 nordvpn-service; D:\Program Files\NordVPN\nordvpn-service.exe [275200 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125664 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1679240 2021-02-18] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkAudioUniversalService; C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 tmHInstall; C:\Program Files\Thrustmaster\TM Flight Series\drivers\amd64\tmHInstall.exe [110608 2020-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [83312 2015-09-18] (X-Rite Incorporated -> X-Rite Inc.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1595456 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
S3 colormunki; C:\Windows\System32\Drivers\colormunki_x64.sys [51600 2013-06-21] (USBIO Test -> Thesycon GmbH, Germany)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-09-05] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 GuiHidUsbDevLowerTFH; C:\Windows\System32\Drivers\GuiHidUsbDevLowerTFH.sys [129552 2020-07-31] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2020. All rights reserved.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2021-03-11] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 NDivert; C:\Windows\System32\drivers\NDivert.sys [105184 2021-02-01] (TEFINCOM S.A. -> )
R3 nlwt; C:\Windows\system32\DRIVERS\nlwt.sys [39360 2021-02-05] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 SaiH0C2D; C:\Windows\system32\DRIVERS\SaiH0C2D.sys [176128 2007-07-02] (Saitek -> Saitek)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R3 V0700Vid; C:\Windows\system32\DRIVERS\V0700Vid.sys [393920 2011-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239432 2020-10-16] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2020-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [429296 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-05] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-25 11:56 - 2021-03-25 11:56 - 000000000 ____D C:\Users\fsubi\AppData\Local\CADlogic Limited
2021-03-25 10:37 - 2021-03-25 11:56 - 000000000 ____D C:\ProgramData\CADlogic Limited
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\Users\fsubi\AppData\System
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\Users\fsubi\AppData\Local\SmartDraw
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartDraw 2020
2021-03-22 09:09 - 2021-03-22 09:09 - 000011357 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-03-20 16:01 - 2021-03-24 08:01 - 000000000 ____D C:\Users\fsubi\Počítač\Untitled Export
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {d8170687-85fa-4716-bafd-087205d0db72}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {9f9c9e51-d42f-4462-a27a-7d419da18045}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {29d6077f-6adb-42de-abac-1c60aeb0e237}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700}
2021-03-20 12:25 - 2020-12-02 16:04 - 000274672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll
2021-03-20 12:25 - 2020-12-02 16:04 - 000229616 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll
2021-03-20 12:25 - 2020-12-02 16:03 - 005968480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2021-03-20 12:25 - 2020-12-02 15:52 - 043277665 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2021-03-20 11:50 - 2021-03-26 12:23 - 000000000 ____D C:\FRST
2021-03-19 11:50 - 2021-03-19 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-03-18 17:05 - 2021-03-26 12:11 - 000003112 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2021-03-18 17:05 - 2021-03-18 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-03-18 17:05 - 2021-03-18 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-03-18 17:05 - 2021-03-10 19:43 - 002241008 _____ (AMD Inc.) C:\Windows\SysWOW64\AMDBugReportTool.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001857864 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001857864 _____ C:\Windows\system32\vulkaninfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001438520 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001438520 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001093736 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 001093736 _____ C:\Windows\system32\vulkan-1.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000946896 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000946896 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000799568 _____ (AMD) C:\Windows\system32\atieclxx.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000736568 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000620864 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000496432 _____ C:\Windows\system32\GameManager64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000492856 _____ C:\Windows\system32\dgtrayicon.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000456016 _____ C:\Windows\system32\atieah64.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000432432 _____ C:\Windows\system32\EEURestart.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000351568 _____ C:\Windows\SysWOW64\atieah32.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000346424 _____ C:\Windows\system32\clinfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000245072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000212816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000186680 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000166712 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000166200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000156472 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000142136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000140592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000135480 _____ (AMD) C:\Windows\system32\atimuixx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000125248 _____ C:\Windows\system32\atidxx64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000107344 _____ C:\Windows\SysWOW64\atidxx32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000090432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000075064 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000046400 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000043320 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000019856 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 081415488 _____ C:\Windows\system32\amd_comgr.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 072438584 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 066865984 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 005222216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 004987200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 001492800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiacm64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 001339200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000940880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000768336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000489272 _____ C:\Windows\system32\amdgfxinfo64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000468288 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000466256 _____ C:\Windows\system32\amdlogum.exe
2021-03-18 16:59 - 2021-03-17 11:44 - 000379704 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000182096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000158352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000149824 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000130368 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000130320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000122192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000108320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000106816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000069952 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 001685696 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 001365056 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000546864 _____ C:\Windows\system32\amdmiracast.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000136024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000130304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000120368 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000108320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2021-03-18 16:59 - 2021-03-10 19:26 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2021-03-18 16:59 - 2021-03-10 19:26 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2021-03-18 16:59 - 2021-03-10 19:22 - 058675112 _____ C:\Windows\system32\amdxc64.so
2021-03-18 16:59 - 2021-03-10 19:19 - 000556128 _____ C:\Windows\SysWOW64\atiapfxx.blb
2021-03-18 16:59 - 2021-03-10 19:19 - 000556128 _____ C:\Windows\system32\atiapfxx.blb
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000044272 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-03-14 14:31 - 2021-03-14 14:31 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime
2021-03-14 14:19 - 2021-03-14 14:19 - 000000000 ____D C:\Users\fsubi\AppData\Local\KojimaProductions
2021-03-13 17:44 - 2021-03-13 17:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-03-13 17:44 - 2021-03-13 17:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-03-13 17:44 - 2021-03-13 17:44 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-03-13 17:44 - 2021-03-13 17:44 - 000707016 _____ C:\Windows\system32\TextShaping.dll
2021-03-13 17:44 - 2021-03-13 17:44 - 000611952 _____ C:\Windows\SysWOW64\TextShaping.dll
2021-03-11 21:12 - 2021-03-11 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AORUS
2021-03-11 10:15 - 2021-03-11 10:15 - 000000000 ____D C:\Users\psubi\AppData\Local\cFos
2021-03-10 13:50 - 2021-03-10 13:50 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
2021-03-10 13:50 - 2021-03-10 13:50 - 000000000 ____D C:\Program Files (x86)\Belarc
2021-03-10 12:49 - 2021-03-10 12:49 - 000003356 _____ C:\Windows\system32\Tasks\SIV-VGA
2021-03-10 12:49 - 2021-03-10 12:49 - 000003350 _____ C:\Windows\system32\Tasks\SIV
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\Users\fsubi\AppData\Local\cFos
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte Speed
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\ProgramData\cFos
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\Program Files\cFosSpeed
2021-03-10 12:49 - 2019-03-21 04:06 - 001595456 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys
2021-03-10 12:45 - 2020-12-16 07:47 - 000027512 _____ (Intel Corporation) C:\Windows\system32\RstMwEventLogMsg.dll
2021-03-10 12:45 - 2020-12-16 07:46 - 002965880 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsService.exe
2021-03-10 12:45 - 2020-12-16 07:46 - 001474936 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAC.sys
2021-03-10 12:45 - 2020-12-16 07:46 - 000219512 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsNative.exe
2021-03-10 12:45 - 2020-12-16 07:46 - 000119672 _____ (Intel Corporation) C:\Windows\system32\Optane.dll
2021-03-10 12:45 - 2020-12-16 07:46 - 000073080 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAfs.sys
2021-03-10 12:45 - 2020-12-16 07:46 - 000023416 _____ (Intel Corporation) C:\Windows\system32\OptaneEventLogMsg.dll
2021-03-09 23:11 - 2021-03-11 22:46 - 001065984 _____ C:\Users\fsubi\AppData\Local\file__0.localstorage
2021-03-09 23:11 - 2021-03-09 23:21 - 000000000 ____D C:\Users\fsubi\Valley
2021-03-09 23:10 - 2021-03-09 23:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2021-03-08 23:24 - 2021-03-08 23:24 - 000000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2021-03-08 19:07 - 2021-03-11 21:12 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2021-03-08 19:04 - 2021-03-08 19:04 - 000003450 _____ C:\Windows\system32\Tasks\GraphicsCardEngine
2021-02-28 17:36 - 2021-02-28 17:36 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2021-02-27 22:01 - 2021-02-27 22:01 - 001822272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 001394024 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 000480256 _____ C:\Windows\system32\AssignedAccessCsp.dll
2021-02-27 22:01 - 2021-02-27 22:01 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-27 22:01 - 2021-02-27 22:01 - 000091136 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-02-27 11:56 - 2021-02-27 11:56 - 000000000 ____D C:\Users\fsubi\AppData\Local\Madness
2021-02-25 22:14 - 2021-02-25 22:15 - 000000000 ____D C:\AdwCleaner
2021-02-25 22:13 - 2021-02-25 22:13 - 000000000 ____D C:\Users\fsubi\AppData\Local\mbam
2021-02-25 22:13 - 2021-02-25 22:13 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-02-25 20:50 - 2021-02-25 20:50 - 000001185 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-26 12:21 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\AppReadiness
2021-03-26 12:20 - 2019-12-07 09:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-26 12:15 - 2020-09-05 17:10 - 000842942 _____ C:\Windows\system32\PerfStringBackup.INI
2021-03-26 12:15 - 2019-12-07 09:13 - 000000000 ____D C:\Windows\INF
2021-03-26 12:13 - 2020-09-07 09:00 - 000000000 ____D C:\Program Files\CCleaner
2021-03-26 12:11 - 2020-09-24 18:30 - 000003096 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-03-26 12:11 - 2020-09-05 20:40 - 000000000 ____D C:\Users\fsubi\.rainlendar2
2021-03-26 12:11 - 2020-09-05 17:04 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-26 12:11 - 2019-12-07 09:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-26 12:09 - 2019-12-07 09:03 - 001048576 _____ C:\Windows\system32\config\BBI
2021-03-26 12:02 - 2020-09-05 17:04 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-03-26 11:53 - 2020-09-05 17:18 - 000000000 ___RD C:\Users\fsubi\Počítač
2021-03-26 11:53 - 2020-09-05 17:13 - 000000000 ____D C:\Users\fsubi
2021-03-26 09:26 - 2020-11-24 17:10 - 000000652 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001.job
2021-03-26 09:26 - 2020-11-24 17:10 - 000000556 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001.job
2021-03-26 09:22 - 2021-02-01 16:38 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\Temp
2021-03-26 09:22 - 2020-09-05 17:32 - 000000000 ____D C:\Program Files (x86)\Google
2021-03-25 16:47 - 2020-11-24 17:10 - 000003802 _____ C:\Windows\system32\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-25 16:47 - 2020-11-24 17:10 - 000003706 _____ C:\Windows\system32\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-25 16:47 - 2020-11-24 17:10 - 000000000 ____D C:\Users\fsubi\AppData\Local\GoToMeeting
2021-03-25 14:55 - 2020-11-22 20:23 - 000000000 ____D C:\Users\fsubi\AppData\Local\CrashDumps
2021-03-25 14:45 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Local\Packages
2021-03-25 10:37 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Local\VirtualStore
2021-03-25 10:36 - 2020-12-15 09:06 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\uTorrent Web
2021-03-25 10:29 - 2020-12-15 09:07 - 000000000 ____D C:\Users\fsubi\AppData\Local\BitTorrentHelper
2021-03-24 08:02 - 2020-09-05 17:17 - 000000000 ____D C:\Users\fsubi\AppData\Local\D3DSCache
2021-03-24 07:36 - 2020-09-05 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2021-03-22 20:54 - 2021-02-22 22:52 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Microsoft Flight Simulator
2021-03-22 19:40 - 2020-10-10 09:10 - 000000000 ____D C:\Users\fsubi\AppData\Local\FlightSimulator
2021-03-22 19:31 - 2021-01-18 13:16 - 000000000 ____D C:\REX Weather Force 2020
2021-03-22 16:18 - 2020-09-05 17:04 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-22 12:52 - 2020-09-05 20:53 - 000000000 ____D C:\Program Files\Microsoft Office
2021-03-22 09:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\bcastdvr
2021-03-22 09:09 - 2019-12-07 09:03 - 000000000 ____D C:\Windows\CbsTemp
2021-03-20 12:33 - 2020-09-05 17:27 - 000003840 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-03-20 12:32 - 2020-09-05 19:38 - 000000000 ____D C:\Windows\SysWOW64\pack
2021-03-20 12:32 - 2020-09-05 17:34 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-20 12:30 - 2020-09-05 17:33 - 000000000 ____D C:\Program Files (x86)\Intel
2021-03-20 12:29 - 2020-09-05 17:34 - 000000000 ____D C:\Program Files\Intel
2021-03-20 12:25 - 2020-09-05 17:35 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-03-20 12:25 - 2020-09-05 17:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-03-20 12:21 - 2020-09-24 17:58 - 000000000 ____D C:\Users\fsubi\AppData\Local\ElevatedDiagnostics
2021-03-20 11:46 - 2021-02-05 09:26 - 000000895 _____ C:\Users\fsubi\Počítač\NordVPN.lnk
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\Users\fsubi\AppData\Local\NordVPN
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\ProgramData\NordVPN
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2021-03-20 11:27 - 2020-09-06 05:11 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-19 11:50 - 2020-12-05 11:07 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-03-18 17:16 - 2020-09-05 18:09 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\AMD
2021-03-18 17:05 - 2020-09-24 18:31 - 000000000 ____D C:\Users\fsubi\AppData\Local\AMD
2021-03-18 17:05 - 2020-09-24 18:30 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2021-03-18 17:05 - 2020-09-24 18:30 - 000003160 _____ C:\Windows\system32\Tasks\StartCN
2021-03-18 17:05 - 2020-09-24 18:30 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR
2021-03-18 17:05 - 2020-09-05 17:16 - 000000000 ____D C:\Program Files\AMD
2021-03-18 16:59 - 2021-01-21 20:20 - 000000000 ____D C:\AMD
2021-03-18 16:57 - 2020-11-21 11:17 - 000000000 ____D C:\Users\fsubi\AppData\Local\AMD_Common
2021-03-17 11:45 - 2021-02-23 08:16 - 000379704 _____ C:\Windows\SysWOW64\GameManager32.dll
2021-03-17 11:45 - 2021-02-23 08:16 - 000019856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2021-03-17 11:44 - 2020-09-16 12:04 - 001767232 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2021-03-17 11:44 - 2020-09-16 12:04 - 001339200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2021-03-17 11:44 - 2020-09-16 12:03 - 000202144 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll
2021-03-17 11:44 - 2020-09-16 12:03 - 000169688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll
2021-03-16 21:37 - 2020-09-05 17:32 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-15 10:07 - 2020-10-22 14:09 - 000015824 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys
2021-03-14 10:26 - 2019-12-07 09:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-03-13 20:46 - 2021-02-08 14:59 - 000000000 ____D C:\Users\fsubi\AppData\Local\Amazon Music
2021-03-13 20:08 - 2021-02-08 14:59 - 000001261 _____ C:\Users\fsubi\Počítač\Amazon Music.lnk
2021-03-13 18:01 - 2020-09-08 10:12 - 000000000 ____D C:\Users\fsubi\Počítač\Games
2021-03-13 18:01 - 2020-09-05 22:29 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-03-13 17:48 - 2020-09-05 17:04 - 000817928 _____ C:\Windows\system32\FNTCACHE.DAT
2021-03-13 17:48 - 2019-12-07 14:49 - 000000000 ___SD C:\Windows\system32\AppV
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SystemResources
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\setup
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\oobe
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\Dism
2021-03-13 10:20 - 2020-09-30 20:39 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\decrypt
2021-03-11 21:12 - 2020-09-05 17:50 - 000000000 ____D C:\Users\fsubi\AppData\Local\Downloaded Installations
2021-03-11 21:10 - 2020-10-05 15:28 - 000018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2021-03-11 20:53 - 2020-09-05 17:17 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-11 20:53 - 2020-09-05 17:13 - 000002365 _____ C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-11 20:06 - 2020-09-05 19:17 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-03-11 19:54 - 2020-09-21 19:31 - 000000000 ___RD C:\Users\psubi\OneDrive
2021-03-11 10:15 - 2020-09-21 19:31 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971254259-73155972-3602281376-1002
2021-03-11 10:15 - 2020-09-21 19:30 - 000002365 _____ C:\Users\psubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-10 18:15 - 2020-09-05 18:43 - 000000000 ____D C:\Windows\system32\MRT
2021-03-10 18:13 - 2020-09-05 18:43 - 131005360 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-03-10 14:28 - 2020-09-07 09:00 - 000000000 ____D C:\Users\fsubi\Počítač\Power Tools
2021-03-10 14:27 - 2020-09-07 09:00 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-03-10 14:25 - 2020-12-31 08:42 - 000000000 ____D C:\Program Files\CPUID
2021-03-10 14:25 - 2020-09-07 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2021-03-10 14:08 - 2020-10-03 13:56 - 001682352 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000216016 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000169400 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000159184 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000038320 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe
2021-03-10 13:11 - 2020-09-05 17:15 - 000000000 ____D C:\ProgramData\Packages
2021-03-10 12:45 - 2020-12-05 11:12 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2021-03-09 20:36 - 2020-09-05 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2021-03-09 20:36 - 2020-09-05 20:54 - 000000000 ____D C:\Program Files\HWiNFO64
2021-03-08 19:07 - 2020-09-05 19:13 - 000000000 ____D C:\Program Files\ENE
2021-03-08 19:04 - 2020-09-05 17:51 - 000003466 _____ C:\Windows\system32\Tasks\EasyTune 1
2021-03-08 19:04 - 2020-09-05 17:51 - 000003366 _____ C:\Windows\system32\Tasks\EasyTune
2021-03-08 18:53 - 2020-09-06 05:11 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-08 18:53 - 2020-09-06 05:11 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-01 17:05 - 2020-10-12 13:43 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\ABarthel
2021-03-01 16:25 - 2020-09-30 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2021-03-01 16:17 - 2020-09-30 20:39 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\.ePUBeedrmremoval
2021-02-27 22:06 - 2019-12-07 14:49 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\Provisioning
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-27 21:52 - 2021-02-06 18:41 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\EasyAntiCheat
2021-02-25 22:14 - 2019-12-07 09:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-02-25 20:50 - 2020-09-21 19:30 - 000000000 ____D C:\Users\psubi\AppData\Roaming\Adobe
2021-02-25 20:50 - 2020-09-05 19:17 - 000000000 ____D C:\ProgramData\Adobe
2021-02-25 20:50 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Adobe
2021-02-25 20:46 - 2020-11-08 11:23 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\Mozilla
2021-02-25 20:35 - 2020-12-18 14:57 - 000000000 ____D C:\Program Files\Adobe
2021-02-24 16:46 - 2020-09-21 19:30 - 000000000 ____D C:\Users\psubi\AppData\Local\Packages

==================== Files in the root of some directories ========

2021-03-09 23:11 - 2021-03-11 22:46 - 001065984 _____ () C:\Users\fsubi\AppData\Local\file__0.localstorage
2020-09-11 13:01 - 2020-09-11 13:01 - 000000056 _____ () C:\Users\fsubi\AppData\Local\X-Plane 11 Preferences.prf
2020-09-11 13:06 - 2020-09-11 13:32 - 000000015 _____ () C:\Users\fsubi\AppData\Local\X-Plane_drm_11.prf
2020-09-11 13:01 - 2020-09-11 13:01 - 000000059 _____ () C:\Users\fsubi\AppData\Local\x-plane_install_11.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#18 Příspěvek od fsubin »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-03-2021
Ran by fsubi (26-03-2021 12:24:25)
Running from E:\Users\Filip\OneDrive\Downloads
Windows 10 Pro Version 20H2 19042.870 (X64) (2020-09-05 17:06:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-971254259-73155972-3602281376-500 - Administrator - Disabled)
aslin (S-1-5-21-971254259-73155972-3602281376-1004 - Limited - Disabled)
DefaultAccount (S-1-5-21-971254259-73155972-3602281376-503 - Limited - Disabled)
filik (S-1-5-21-971254259-73155972-3602281376-1005 - Limited - Disabled)
fsubi (S-1-5-21-971254259-73155972-3602281376-1001 - Administrator - Enabled) => C:\Users\fsubi
Guest (S-1-5-21-971254259-73155972-3602281376-501 - Limited - Disabled)
lauri (S-1-5-21-971254259-73155972-3602281376-1003 - Limited - Disabled)
psubi (S-1-5-21-971254259-73155972-3602281376-1002 - Limited - Enabled) => C:\Users\psubi
WDAGUtilityAccount (S-1-5-21-971254259-73155972-3602281376-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0709.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0709.1 - GIGABYTE)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 21.001.20145 - Adobe Systems Incorporated)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_10_1) (Version: 10.1 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Inc.)
Amazon Music (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Amazon Amazon Music) (Version: 8.3.0.2240 - Amazon.com Services LLC)
Amazon Photos (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Amazon Photos) (Version: 7.6.2 - Amazon.com, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.3.1 - Advanced Micro Devices, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0317.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0317.1 - GIGABYTE)
Belarc Advisor 9.7 (HKLM-x32\...\Belarc Advisor) (Version: 9.7.0.0 - Belarc Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
calibre (HKLM-x32\...\{4E1FEEB8-45A5-4069-B948-B5DED59D406C}) (Version: 5.12.0 - Kovid Goyal)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.7.0 - Canon Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - ‪Canon Inc.‬)
Canon iP4900 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4900_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.4 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.13.10.0 - Canon Inc.)
Canon Utilities EOS Network Setting Tool (HKLM-x32\...\EOS Network Setting Tool) (Version: 1.1.0.9 - Canon Inc.)
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.)
Canon Utilities EOS Utility 3 (HKLM-x32\...\EOS Utility 3) (Version: 3.13.10.1 - Canon Inc.)
Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.10.0.0 - Canon Inc.)
CanoScan 9000F Mark II Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ9604) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 84.1.5542.138 - Piriform Software)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
Cisco Webex Meetings (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\ActiveTouchMeetingClient) (Version: 40.11.4 - Cisco Webex LLC)
ColorChecker Camera Calibration 2.2.0 (HKLM-x32\...\ColorChecker Camera Calibration_is1) (Version: 2.2.0 - X-Rite)
ColorMunki Photo 1.2.4 (HKLM-x32\...\ColorMunki Photo_is1) (Version: 1.2.4 - X-Rite)
CPUID CPU-Z 1.95 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.95 - CPUID, Inc.)
Creative Live! Cam Chat HD (VF0700) (1.00.06.00) (HKLM\...\Creative VF0700) (Version: - Creative Technology Ltd.)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.12 - GOG.com)
Documentation Manager (HKLM\...\{903A7EB3-3534-44FC-8E98-43D5050EF04E}) (Version: 22.10.0.7 - Intel Corporation) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 118.4.460 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{0BF9DD77-498D-4E9E-A968-CFC9249BDD9F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.21.0114.1 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.21.0114.1 - GIGABYTE)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.21.0202.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.21.0202.1 - GIGABYTE)
ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{0f607f07-7957-4887-9d5e-be8efe9595a9}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM-x32\...\{33f042cf-0ae3-4241-b8c8-7f544533ea8e}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Epic Games Launcher (HKLM-x32\...\{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ePUBee DRM Removal (HKLM-x32\...\ePUBee DRM Removal) (Version: 3.1.5.2 - ePUBee Inc.)
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
Excel (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Fast Boot (HKLM-x32\...\{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE)
Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Hidden
Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte)
Gigabyte Speed v10.50 (HKLM\...\Gigabyte Speed) (Version: 10.50 - cFos Software GmbH, Bonn)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 89.0.4389.90 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
GoTo Opener (HKLM-x32\...\{C2A61D74-BB65-42AD-B81F-AC25E1F7DE02}) (Version: 1.0.536 - LogMeIn, Inc.)
GoToMeeting 10.15.500.19584 (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\GoToMeeting) (Version: 10.15.500.19584 - LogMeIn, Inc.)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.19.0624.1 - GIGABYTE)
High-Definition Video Playback (HKLM-x32\...\{9193490D-5229-4FC4-9BB9-A6D63C09574A}) (Version: 11.1.11100.4.196 - Nero AG) Hidden
HWiNFO64 Version 7.00 (HKLM\...\HWiNFO64_is1) (Version: 7.00 - Martin Malik - REALiX)
Intel(R) Chipset Device Software (HKLM-x32\...\{99926fb7-5da9-4101-b79f-eec3674ca64b}) (Version: 10.1.18634.8254 - Intel(R) Corporation)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{7368d41d-24b9-4b1a-aef4-862e2571fa92}) (Version: 6.5.1.371 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2052.15.0.2069 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.8.0.1065 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000020-0220-1033-84C8-B8D95FA3C8C3}) (Version: 22.20.0.3 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{ded97635-a82a-48b1-b197-0e7c5e4c4ac3}) (Version: 22.10.0.7 - Intel Corporation) Hidden
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LeapFrog Connect 2 (HKLM-x32\...\LeapFrogConnect2) (Version: 4.1.9.448 - LeapFrog)
LeapFrogConnect2 (HKLM-x32\...\{816F787F-8448-45E6-AE87-25DB24131477}) (Version: 4.1.9.448 - LeapFrog) Hidden
LeapReader (HKLM-x32\...\{D751797E-949C-42BF-8E6C-F2CB4E8A6634}) (Version: 4.1.9.448 - LeapFrog Enterprises) Hidden
Learning Lodge™ (HKLM-x32\...\VTechDownloadManager) (Version: - VTech)
Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.126 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
MAGIX Content and Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Soundpool Music Maker - Feel good (HKLM\...\{677F8E85-8686-476B-829A-D5ED9ECA16E6}) (Version: 1.0.1.0 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM\...\{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Travel Maps (HKLM\...\{83EC0C28-33DB-467B-A919-52ECDD8F4B69}) (Version: 1.0.1.378 - MAGIX Software GmbH) Hidden
MAGIX Travel Maps (HKLM\...\MX.{83EC0C28-33DB-467B-A919-52ECDD8F4B69}) (Version: 1.0.1.378 - MAGIX Software GmbH)
MAGIX Video Pro X (Design elements) (HKLM\...\{F2A29913-41F4-4DBC-861C-4D033BC2ED4C}) (Version: 17.0.2.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Fade effects) (HKLM\...\{A1816F3A-47EF-47FE-A406-F7C73FCECEE3}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (HKLM\...\{4547085E-9FFE-4A8D-BA44-6F97C3927F3E}) (Version: 17.0.1.32 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (HKLM\...\MX.{4547085E-9FFE-4A8D-BA44-6F97C3927F3E}) (Version: 17.0.1.32 - MAGIX Software GmbH)
MAGIX Video Pro X (Menu templates) (HKLM\...\{00DD9BCE-E5A3-4B62-900E-193065C3BB49}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Migrate Content) (HKLM\...\{86096249-43A1-4C5D-919D-97DAFA52B28E}) (Version: 16.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Design elements) (HKLM\...\{C99F2C3F-ECC7-413B-9D7F-9E54585D991C}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Menu templates) (HKLM\...\{A0E0419E-413B-4BB3-B7DD-45325228C3E5}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Movie templates) (HKLM\...\{4518A9B7-A262-4D9B-906D-DBFD4549ADCA}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Slideshow Maker styles) (HKLM\...\{06680A3C-A2BD-4AD4-B172-CEA79DD5E3BC}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie templates) (HKLM\...\{1A266F02-9EFD-4E7E-82F2-7C682897A884}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Slideshow Maker styles) (HKLM\...\{DA144E48-B850-439A-BE92-600A14BB9197}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Soundtrack Maker styles) (HKLM\...\{2115BA04-C7F2-46F2-A3D7-7BFCD0D97C29}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Templates and effects) (HKLM-x32\...\MAGIX_GlobalContent.Video_Pro_X) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Video Pro X (Title effects) (HKLM\...\{8D139F22-4779-4AC3-A7DE-FB54F07E13A6}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Update Service 5.7.33.77) (HKLM\...\{8F07F018-6858-3E5F-8500-456430AA3069}) (Version: 5.7.33.77 - MAGIX Software GmbH) Hidden
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.13801.20360 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.57 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 89.0.774.63 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971254259-73155972-3602281376-1002\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Movie Studio 16.0 Platinum (HKLM\...\{661AE070-1B81-11EA-8676-9431242A7F22}) (Version: 16.0.175 - VEGAS)
Nero 11 (HKLM-x32\...\{810B7362-6B05-4714-AF6A-EF3A20CCD634}) (Version: 11.2.00600 - Nero AG)
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.11100.8.0 - Nero AG)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.35.9.0 - TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 - NordVPN)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20294 - Microsoft Corporation) Hidden
ON_OFF Charge 2 B19.1119.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.19.1119.1 - GIGABYTE) Hidden
ON_OFF Charge 2 B19.1119.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.19.1119.1 - GIGABYTE)
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Outlook (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Polar FlowSync version 3.0.0.1337 (HKLM-x32\...\{A1538F5C-7B65-4DB6-9FFB-FFC0DF2E85D8}_is1) (Version: 3.0.0.1337 - Polar Electro Oy)
PowerPoint (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 9.8.7.18 - Bitsum)
QT5.10.1 (HKLM-x32\...\{5C60E178-F792-4CF7-A2E7-E7124DF1B2F0}) (Version: 1.0.1.0 - LeapFrog) Hidden
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: 2.15.4 - Rainy)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9075.1 - Realtek Semiconductor Corp.)
REX Weather Force 2020 (HKLM\...\{868DE4BF-66FA-4211-91FD-4D699A1EE900}) (Version: 6.0.2021.0216 - REX Game Studios, LLC.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.21.0310.1 - GIGABYTE)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.34.337 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.21.0129.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.21.0129.1 - GIGABYTE)
Smart Backup (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.18.0911.1 - GIGABYTE)
SPAD.neXt (HKLM\...\{CE21AD13-50E6-474A-89B9-81E262E620A0}_is1) (Version: 0.9.8.6 - SPADneXt.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
T.Flight Hotas drivers (HKLM-x32\...\{E08E6F77-E66C-47FC-8565-0AA3389D48C8}) (Version: 1.TFHT.2020 - Thrustmaster)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Use the entry named LeapFrog Connect2 to uninstall QT5.10.1 (HKLM-x32\...\QT5.10.1) (Version: - LeapFrog)
Use the entry named LeapFrogConnect2 to uninstall LeapReader (HKLM-x32\...\LFC2_LeapReaderPlugin) (Version: - LeapFrog)
uTorrent Web (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\utweb) (Version: 1.1.2 - BitTorrent, Inc.)
Vita Concert Grand LE (HKLM\...\{2C61CE04-1EEF-4582-ABBA-B9CCFC3743EB}) (Version: 2.4.0.96 - MAGIX Software GmbH) Hidden
Welcome App (Start-up experience) (HKLM-x32\...\{51865D9D-8F63-46F2-87AB-9E72F93B618C}) (Version: 11.0.23500.0.0 - Nero AG) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2700 - Broadcom Corporation)
Word (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
X-Rite Device Services Manager (HKLM-x32\...\{C665E881-CE55-4156-A4A6-7C55D645FD4E}) (Version: 2.4.1 - X-Rite)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_EN_is1) (Version: 18.0.1.10 - ZONER software)

Packages:
=========
DTS:X Ultra -> C:\Program Files\WindowsApps\DTSInc.DTSXUltra_1.5.13.0_x64__t5j2fzbtdg37r [2021-03-09] (DTS, Inc.)
Files -> C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t [2021-03-24] (Yair A)
HEVC Video Extensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_1.0.40615.0_x64__8wekyb3d8bbwe [2021-03-19] (Microsoft Corporation)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1015.0_x64__8j3eq9eme6ctt [2021-03-13] (INTEL CORP)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-03-25] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_21.10208.5605.0_x64__8wekyb3d8bbwe [2021-03-08] (Microsoft Corporation)
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.21005.0_x64__8wekyb3d8bbwe [2021-03-09] (Microsoft Studios)
MPEG-2 Video Extension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-05] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-11-22] (Microsoft Corporation)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2108.9.0_x64__cv1g1gvanyjgm [2021-03-17] (WhatsApp Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\fsubi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\fsubi\AppData\Local\GoToMeeting\18962\G2MOutlookAddin64.dll (LogMeIn, Inc. -> LogMeIn, Inc.)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\fsubi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => E:\Users\Filip\Dropbox [2014-12-31 15:04]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_fac18e2da6ec7b25\OptaneShellExt.dll [2020-12-16] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_fac18e2da6ec7b25\OptaneShellExt.dll [2020-12-16] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-03-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm --app-url=hxxps://excel.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi --app-url=hxxps://word.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Play Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Loaded Modules (Whitelisted) =============

2021-03-10 19:53 - 2021-03-10 19:53 - 001868288 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2013-06-21 14:03 - 2013-06-21 14:03 - 002633728 _____ () [File not signed] C:\Program Files (x86)\X-Rite\Devices\colormunki\colormunki.dll
2015-07-13 10:33 - 2015-07-13 10:33 - 001592832 _____ () [File not signed] C:\Program Files (x86)\X-Rite\Devices\rm200\GoldenEye.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-08-02 11:24 - 2017-08-02 11:24 - 000017920 _____ () [File not signed] C:\Program Files\Rainlendar2\lfs.dll
2017-08-02 11:37 - 2017-08-02 11:37 - 000331776 _____ () [File not signed] C:\Program Files\Rainlendar2\libical.dll
2017-08-02 11:37 - 2017-08-02 11:37 - 000063488 _____ () [File not signed] C:\Program Files\Rainlendar2\libicalss.dll
2017-08-02 11:24 - 2017-08-02 11:24 - 000314880 _____ () [File not signed] C:\Program Files\Rainlendar2\lua53.dll
2020-03-31 18:47 - 2020-03-31 18:47 - 000295424 _____ () [File not signed] C:\Program Files\Rainlendar2\plugins\GoogleCalendarPlugin.dll
2020-03-31 18:46 - 2020-03-31 18:46 - 000129536 _____ () [File not signed] C:\Program Files\Rainlendar2\plugins\iCalendarPlugin.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 001970176 _____ () [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\QtCore4.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 007053312 _____ () [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\QtGui4.dll
2021-03-10 14:21 - 2021-03-10 14:21 - 001640448 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2021-02-08 14:59 - 2020-04-02 16:15 - 002266624 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Users\fsubi\AppData\Local\Amazon Music\QtCore4.dll
2021-02-08 14:59 - 2020-04-02 16:25 - 006267392 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Users\fsubi\AppData\Local\Amazon Music\QtGui4.dll
2021-02-08 14:59 - 2020-04-02 16:16 - 000802816 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Users\fsubi\AppData\Local\Amazon Music\QtNetwork4.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\SIV\yccV2.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 001088512 _____ (GretagMacbeth) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\Cxf.dll
2020-09-05 18:17 - 2019-02-21 16:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 000503808 _____ (Microsoft Corporation) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\MSVCP71.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 000348160 _____ (Microsoft Corporation) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\MSVCR71.dll
2019-10-10 14:13 - 2019-10-10 14:13 - 000422400 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files\Rainlendar2\libcurl.dll
2018-11-16 12:48 - 2018-11-16 12:48 - 002720768 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Rainlendar2\libcrypto-1_1-x64.dll
2018-11-16 12:49 - 2018-11-16 12:49 - 000658944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Rainlendar2\libssl-1_1-x64.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-03-10 14:32 - 2021-03-10 14:32 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
2015-10-14 01:15 - 2015-10-14 01:15 - 002042368 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll
2020-12-16 10:08 - 2020-12-16 10:08 - 002001920 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll
2019-12-02 11:10 - 2019-12-02 11:10 - 002874880 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxbase313u_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 000181248 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxbase313u_xml_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 008349184 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_core_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 000793600 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_html_vc_rny.dll
2019-12-02 11:16 - 2019-12-02 11:16 - 000914432 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_propgrid_vc_rny.dll
2019-12-02 11:15 - 2019-12-02 11:15 - 000954880 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_xrc_vc_rny.dll
2014-12-02 09:59 - 2014-12-02 09:59 - 001502208 _____ (X-Rite Inc.) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1iO.dll
2014-12-02 09:59 - 2014-12-02 09:59 - 003962368 _____ (X-Rite Inc.) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Pro.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 000269824 _____ (X-Rite Inc.) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\XRiteDevice.dll
2015-04-02 14:59 - 2015-04-02 14:59 - 002359296 _____ (X-Rite) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1isis\EyeOne_iSis.dll
2014-11-05 10:05 - 2014-11-05 10:05 - 001019392 _____ (X-Rite) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Fun.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-971254259-73155972-3602281376-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2019-01-31] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll => No File
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2019-01-31] (Logitech Inc -> Logitech, Inc.)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2020-10-15] (Belarc, Inc. -> Belarc, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 09:14 - 2019-12-07 09:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-971254259-73155972-3602281376-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\fsubi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\picasabackground-003.bmp
HKU\S-1-5-21-971254259-73155972-3602281376-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\psubi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img2.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)
WiFi: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
WiFi: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 2: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "CiscoMeetingDaemon"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "NordVPN"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "Amazon Photos"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2EF1C09D-5154-4AFE-A939-1ED4404E0502}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{C79537E7-DBA4-4D5E-9F48-2199D2C680BE}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B77F7887-1FC0-4E68-819C-DFB40566D571}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{B3FCFE0F-67CB-4D68-AD50-3EB98374364A}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [UDP Query User{7A2275EC-3B87-44BF-9C32-C49FED8E8776}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [{95CBCD59-7A02-4A27-9839-A613A8D94183}] => (Allow) LPort=9009
FirewallRules: [{A1452CEA-25E9-4F9D-AC37-0CD53C770AF2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{444578ED-08D5-44CD-A617-012AC0125730}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{EB08D9D6-EBC3-408C-86C5-D2EF6CC67B96}] => (Allow) LPort=9009
FirewallRules: [{4A617007-4636-4AC0-BAE1-A89A0F33C225}] => (Allow) LPort=9009
FirewallRules: [{4FC83B18-59A7-4BD3-8DE5-F77CE034D68B}] => (Allow) LPort=9009
FirewallRules: [{E29E455B-AA7F-438B-B9AC-7E59B5BB69D4}] => (Allow) LPort=9009
FirewallRules: [{389CDD71-81AF-4077-95DA-072C32A695E8}] => (Allow) LPort=9009
FirewallRules: [{652D7198-7A7E-4757-B671-241F0BE2DEF4}] => (Allow) LPort=9009
FirewallRules: [{1AA4FE23-9DF3-4267-96DF-C0D792841D9D}] => (Allow) LPort=9009
FirewallRules: [{B46C37A4-E449-48D3-BEE3-DAAFC72632E1}] => (Allow) LPort=9009
FirewallRules: [{2DF83964-82CE-41F9-92F1-CB6E59595578}] => (Allow) LPort=9009
FirewallRules: [{24B1E1F7-8C97-4AA2-94D6-4D983F6B0339}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8D9E0F45-EB17-4F03-B4EB-A5CA3A0AB55D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{D5C631FE-7C8E-48BA-A165-6331E7B7B6EE}] => (Allow) LPort=9009
FirewallRules: [{CF89B38B-8850-4842-B3BB-DD18A9E08ECC}] => (Allow) LPort=9009
FirewallRules: [{28667155-BF4D-4403-B2CB-F55E47AD87A3}] => (Allow) LPort=9009
FirewallRules: [{BD8B88BA-F919-42A3-A2BF-D4676EA9AFF4}] => (Allow) LPort=9009
FirewallRules: [{B8F5F605-B12E-40FC-A1C0-267C8B455F7B}] => (Allow) LPort=9009
FirewallRules: [{37E61BD7-0D25-4631-A5E5-0C6BB79976FE}] => (Allow) LPort=9009
FirewallRules: [{74BF8B90-64A2-45C0-B5E9-A44DF2C0286B}] => (Allow) LPort=9009
FirewallRules: [{4E7DF3DF-A7D9-4E14-BA23-61F6481EC986}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\YNAB 4\YNAB 4.exe (YouNeedABudget.com -> )
FirewallRules: [{A78CD105-CEF5-4A4B-A7A4-C0F5724FB11F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\YNAB 4\YNAB 4.exe (YouNeedABudget.com -> )
FirewallRules: [{850C4B1B-A7A5-4DE4-818C-BBBA7D255980}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
FirewallRules: [{3AC6D445-C159-4033-B914-A42B8837B45D}] => (Allow) LPort=9009
FirewallRules: [{55D5D798-C476-46E4-A8A6-4BF4A5F198D0}] => (Allow) LPort=9009
FirewallRules: [{6E15803A-D235-4AED-AC73-52CD68F68452}] => (Allow) LPort=9009
FirewallRules: [{D8A10306-2487-4AB7-8A12-171FD245FB3F}] => (Allow) LPort=9009
FirewallRules: [{43ACFC2B-7C52-4F3D-979C-A10C61349DB9}] => (Allow) LPort=9009
FirewallRules: [{7DD53090-09B0-4A7A-BA3A-106EC494B835}] => (Allow) LPort=9009
FirewallRules: [{81B635DF-8982-4A60-9307-154613CE4C19}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => No File
FirewallRules: [{E85E5691-681E-4132-B74E-6BDEEEE78D4F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => No File
FirewallRules: [{923E07A9-3973-4FDC-ADD0-E5A5A28088C1}] => (Allow) LPort=9009
FirewallRules: [{6CC43093-B3CC-4ECE-83E6-274D9C8B3C38}] => (Allow) LPort=9009
FirewallRules: [{14E8870F-A948-4131-8374-BB5DD5567D27}] => (Allow) LPort=9009
FirewallRules: [{ECB6468A-1B8E-4741-990E-20E3E0B6B83A}] => (Allow) LPort=9009
FirewallRules: [{5A25B191-CC84-40FC-8D23-143A9DC09052}] => (Allow) LPort=9009
FirewallRules: [{542B7853-B7E9-490C-8F3C-BFD353F305C7}] => (Allow) LPort=9009
FirewallRules: [{F176FA17-47A9-4A07-86A2-026011F9AB85}] => (Allow) LPort=9009
FirewallRules: [{7643B170-EA9C-42F9-8323-384B15C2897C}] => (Allow) LPort=9009
FirewallRules: [{684BAD0A-387E-4EDF-8B16-DE39B9C08E78}] => (Allow) LPort=9009
FirewallRules: [{5638F6D1-53C1-4B48-819C-C4F6AF3420CC}] => (Allow) LPort=9009
FirewallRules: [{F2B40A88-EBDA-4DBC-BE51-B7DAB96FCFBE}] => (Allow) LPort=9009
FirewallRules: [{EF2B0D2A-879C-4DE6-89E0-7C1D754FE69D}] => (Allow) LPort=9009
FirewallRules: [{81D4DA90-EA6F-4867-81DE-30340923587E}] => (Allow) LPort=9009
FirewallRules: [{FD7B3E84-9288-45B8-B8F0-CBE4E143F36F}] => (Allow) LPort=9009
FirewallRules: [{8A824E83-86B8-4EE5-9FA4-87182F4D63FE}] => (Allow) LPort=9009
FirewallRules: [{B92DB760-7904-415F-94D5-CE6E9D81AD34}] => (Allow) LPort=9009
FirewallRules: [{CD7FD727-D87C-47C9-ABE6-038F8C31E1FF}] => (Allow) LPort=9009
FirewallRules: [{F11EAA6D-72DB-44D4-81EB-95029DB3223D}] => (Allow) LPort=9009
FirewallRules: [{CEC7E2E8-0F93-402B-A495-5C8342430D64}] => (Allow) LPort=9009
FirewallRules: [{410F3158-74E5-4137-8983-9F505A1F9C6E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{3FC922AD-7A2C-4385-8E30-9F2AB45E907B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{54444C69-55B9-4395-851D-84472DD9C6FF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [File not signed]
FirewallRules: [{3E35454A-538E-4353-9655-87F22FFB6AED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [File not signed]
FirewallRules: [{08A58799-DDCC-4378-9510-37CBC2660634}] => (Allow) LPort=9009
FirewallRules: [{5FC0C8F6-1F9A-417B-BACF-93A86147A4D1}] => (Allow) LPort=9009
FirewallRules: [{62914916-60DC-40BF-8DCE-D35C3BB8D245}] => (Allow) LPort=9009
FirewallRules: [{EC4E4882-5C9A-4A7E-8068-C834E52FECA6}] => (Allow) LPort=9009
FirewallRules: [{1EC1F12E-3905-40F9-A48E-C2672C31B272}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37AD5553-F9D0-4E55-9BA9-1582CC5EF333}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{BCA8B29E-27A6-4F20-B7B0-0F99BA8C48D4}] => (Allow) LPort=9009
FirewallRules: [{45804EE5-FFDE-4E33-B272-3E6B0EFEA9C9}] => (Allow) LPort=9009
FirewallRules: [{17FC7FD9-18E1-4BDF-830D-D4E57EB256AB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FF4F1192-C893-4307-8687-DE48D17301B2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{863F4C13-1940-4849-956D-7834F6D9FA75}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F30A4321-0FF1-4D5E-852D-B3E2E494636D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{C20AE677-4579-41AD-99C5-B463FE9A6F5B}] => (Allow) LPort=9009
FirewallRules: [{F330BA7C-2201-48E2-887F-454942ED4392}] => (Allow) LPort=9009
FirewallRules: [{AA6F2409-7D49-4173-A332-04B15C058898}] => (Allow) LPort=9009
FirewallRules: [{A6212D22-5133-4708-9FD7-58B3EFD2CACD}] => (Allow) LPort=9009
FirewallRules: [{BE9BB85E-3266-480D-8D98-37E4FFF4A636}] => (Allow) LPort=9009
FirewallRules: [{8F1B572F-0B02-47C8-BF66-3B7FCF307236}] => (Allow) LPort=9009
FirewallRules: [{82D10970-0DFA-4045-8A2C-9F4A6C21EC5E}] => (Allow) LPort=9009
FirewallRules: [{FB948A41-7975-4237-AE4F-AE499E554064}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious2\CSD2.exe (Vertigo Gaming Inc.) [File not signed]
FirewallRules: [{F430DE73-BB30-4AED-A6EB-D23E47251354}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious2\CSD2.exe (Vertigo Gaming Inc.) [File not signed]
FirewallRules: [{3DE4759F-19BD-4215-87CD-1C88D4A7C16A}] => (Allow) LPort=9009
FirewallRules: [{E821C539-E423-4D5F-AE33-90F1E281C1F4}] => (Allow) LPort=9009
FirewallRules: [{BA7ACE54-4548-4A4F-9539-6E8954716B34}] => (Allow) LPort=9009
FirewallRules: [{D3BCFCD7-8239-44FC-B4A7-82A9D208BEC2}] => (Allow) LPort=9009
FirewallRules: [{2504C8E5-55E8-49A2-ACBD-69236266A49B}] => (Allow) LPort=9009
FirewallRules: [{D3C9D3C7-3DBA-4AA1-8599-E492CF8702A3}] => (Allow) LPort=9009
FirewallRules: [{D0F65DC9-130C-4BD7-A10F-E757730F8829}] => (Allow) LPort=9009
FirewallRules: [{ABCE5657-2805-4D96-A02E-8517B93AE317}] => (Allow) LPort=9009
FirewallRules: [{E693F0DE-ACDD-41A7-9C8C-D900CF70BD1F}] => (Allow) LPort=9009
FirewallRules: [{37B0C183-AAE7-432E-B086-6A80D3C811C9}] => (Allow) LPort=9009
FirewallRules: [{400135D0-3425-4E47-94B1-980F716145DC}] => (Allow) LPort=9009
FirewallRules: [{373E4645-ED29-470E-874E-D0114941A16F}] => (Allow) LPort=9009
FirewallRules: [{6F36507B-F629-4692-BADE-9A28F2E6F249}] => (Allow) LPort=9009
FirewallRules: [{D89A7BBD-5025-4E74-B2C9-144A8776446E}] => (Allow) LPort=9009
FirewallRules: [{C0C692E1-B805-414E-895D-8C039BE64FD7}] => (Allow) LPort=9009
FirewallRules: [{D5397CEE-3BAA-4046-8FA4-BD9EBBA018A2}] => (Allow) LPort=9009
FirewallRules: [{FE583904-6558-4F88-9DD2-5D3E6D8595A2}] => (Allow) LPort=9009
FirewallRules: [{59AD8877-8D8F-4241-97D7-7F4B3C8FAD03}] => (Allow) LPort=9009
FirewallRules: [{3AE9BCD2-7CA4-4518-B7E6-674DE522D01E}] => (Allow) LPort=9009
FirewallRules: [{76820791-8AC0-48F3-BCBE-494B2B5DE736}] => (Allow) LPort=9009
FirewallRules: [{5CC9C423-FCCE-4EDB-99E4-FB4BAFD32718}] => (Allow) LPort=9009
FirewallRules: [{6D7B9FEA-5268-4869-97C0-DFCF54CD6532}] => (Allow) LPort=9009
FirewallRules: [{45FBC764-AA7C-4524-AA80-71C96F3DB9D7}] => (Allow) LPort=9009
FirewallRules: [{1141DE47-490F-4E47-B8BC-2495DDCE56B0}] => (Allow) LPort=9009
FirewallRules: [{17DB257E-05A7-4617-B432-7CFD9F6E5D52}] => (Allow) LPort=9009
FirewallRules: [{43806569-873F-4BDD-BB71-13222C1DC74C}] => (Allow) LPort=9009
FirewallRules: [{1BD881F4-ACEE-4D09-B52D-DF6D353A2E12}] => (Allow) LPort=9009
FirewallRules: [{B7BBC310-325B-46CD-9320-4CCAA02E9BDF}] => (Allow) LPort=9009
FirewallRules: [{2CA95FEB-19F9-4577-AE46-B96AEB2386D3}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{86975E04-8911-4682-B790-1BC3D46E9DA7}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{88DA30F2-2EF7-491C-9B51-65BFA5DD299E}] => (Allow) LPort=9009
FirewallRules: [{A5A22D73-AA43-4D08-BE06-8B615A9CC1CF}] => (Allow) LPort=9009
FirewallRules: [{1CC17E8A-83DE-41AE-B5CD-86BEAF2AA12B}] => (Allow) LPort=9009
FirewallRules: [{0CA6A2E2-B1E2-4781-BD4F-9B2541D8A083}] => (Allow) LPort=9009
FirewallRules: [{4B863613-0CFF-4016-96AE-94BBEE576F94}] => (Allow) LPort=9009
FirewallRules: [{5800975D-BCE7-4559-8C3F-3DB301A973DC}] => (Allow) LPort=9009
FirewallRules: [{6881976B-7172-45DA-B60E-7A699E7E2D24}] => (Allow) LPort=9009
FirewallRules: [{378CA4EF-C7F9-45B4-9C33-B7F3DC4C4E79}] => (Allow) LPort=9009
FirewallRules: [{9AFEA613-C7A8-4958-871E-B218281F5170}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C4D234BB-0283-470F-859A-E1B08A9AF37D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{F991DA17-695A-4476-8795-CBC768384D2B}] => (Allow) LPort=9009
FirewallRules: [{F075DB9C-A7A5-490A-AA5E-9B723ED1BFD6}] => (Allow) LPort=9009
FirewallRules: [{BF723838-ED09-4DD6-B095-AB9A65A268C4}] => (Allow) LPort=9009
FirewallRules: [{D46A8EB6-DEB6-47B4-A22F-B9608AA6C9CD}] => (Allow) LPort=9009
FirewallRules: [{97D84B4B-70F6-461F-B840-7EF76C7D873C}] => (Allow) LPort=9009
FirewallRules: [{67C3E0F6-2FDD-45A9-BE21-8B61742479A5}] => (Allow) LPort=9009
FirewallRules: [{B6B6C2D5-A173-4293-ABAB-FF246DAEB5EE}] => (Allow) LPort=9009
FirewallRules: [{175DC71D-E1DC-4939-8F91-9594AD61269A}] => (Allow) LPort=9009
FirewallRules: [{007EB5AB-9A7F-4EB8-AB18-0B0A4C2D464B}] => (Allow) LPort=9009
FirewallRules: [{7FF3FE0B-2077-4C22-BC54-44303E4A0993}] => (Allow) LPort=9009
FirewallRules: [{B8587FC9-8C0C-4586-B1F7-A52E1B769615}] => (Allow) LPort=9009
FirewallRules: [{E190E9D9-CF18-451D-B17A-923934247A80}] => (Allow) LPort=9009
FirewallRules: [{5DEBFABF-DA4D-494A-92E9-F676247D2147}] => (Allow) LPort=9009
FirewallRules: [{0CB1FC4F-56D6-4FDF-9604-FF394EBA11BD}] => (Allow) LPort=9009
FirewallRules: [{27BB64C8-5F2D-4875-9A28-A2FF75D12736}] => (Allow) LPort=9009
FirewallRules: [{CB68BCAE-B01E-42C8-9C23-EDFAF73FEB7C}] => (Allow) LPort=9009
FirewallRules: [{DF4A752C-34C4-4996-B007-760C7AD31BBB}] => (Allow) LPort=9009
FirewallRules: [{D2B3A63F-F0CE-4FA2-B694-6567C94A4438}] => (Allow) LPort=9009
FirewallRules: [{FBACC781-74EF-4D59-8E8C-4D2E2FC02E46}] => (Allow) LPort=9009
FirewallRules: [{1A300089-8540-4F11-B62E-456CA2290878}] => (Allow) LPort=9009
FirewallRules: [{595B876C-7008-4BF3-9928-2C0996DF9AC8}] => (Allow) LPort=9009
FirewallRules: [{1E149926-0AE7-482A-8CF2-C779687DC76B}] => (Allow) LPort=9009
FirewallRules: [{3B976A87-F25F-4209-B36D-A0921AE0AE96}] => (Allow) LPort=9009
FirewallRules: [{5F03E14D-285C-4390-88EE-D9AA9CDFCA2B}] => (Allow) LPort=9009
FirewallRules: [{74BFA161-7281-4BFA-9B11-48866699C915}] => (Allow) LPort=9009
FirewallRules: [{76EE873F-B597-444F-8EF9-2278242F2561}] => (Allow) LPort=9009
FirewallRules: [{41207151-A878-4945-B529-DDB1296E8012}] => (Allow) LPort=9009
FirewallRules: [{E2F97833-71B1-4842-A003-3C6C08DD2103}] => (Allow) LPort=9009
FirewallRules: [{829C8DCE-B94F-4A7A-ABF7-2C6DCD6A1489}] => (Allow) LPort=9009
FirewallRules: [{21A5D4B9-394C-492E-A886-FD6C52DEBD7B}] => (Allow) LPort=9009
FirewallRules: [{46545D81-B0E4-4830-82B2-19B3AAA2322E}] => (Allow) LPort=9009
FirewallRules: [{B0555A55-C3CD-4C2F-984A-D1983DA47628}] => (Allow) LPort=9009
FirewallRules: [{1286EE57-1374-4BAD-B4FF-D8E75B2E07DB}] => (Allow) LPort=9009
FirewallRules: [{C4EC43ED-F96F-45B7-ADD5-A94ED2F7E72D}] => (Allow) C:\Users\fsubi\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
FirewallRules: [{6EF4D578-1ECA-4EB2-AE29-AB5E4DEDCA62}] => (Allow) C:\Users\fsubi\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
FirewallRules: [{C6BBB632-83EA-4314-9926-2EF086952AC0}] => (Allow) LPort=9009
FirewallRules: [{A8DF4779-0BCA-40CD-83DD-9E86D47B3B89}] => (Allow) LPort=9009
FirewallRules: [{153380D6-D739-4942-8802-CD8997522BEE}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Canon Inc. -> CANON INC.)
FirewallRules: [{16FE463D-A4AD-4D65-ADB3-EB25CB1ABE17}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Canon Inc. -> CANON INC.)
FirewallRules: [{AB949E24-A517-4BDC-A9C4-FDA29F54B7EE}] => (Allow) LPort=5454
FirewallRules: [{5E87AA9E-696B-42D6-BB1B-E60499163F88}] => (Allow) LPort=9009
FirewallRules: [{3F137B3B-82E8-4BD3-9A37-C0BF4E37D3B9}] => (Allow) LPort=9009
FirewallRules: [{AD817A49-9F11-4E1A-9480-A96F53DB3156}] => (Allow) LPort=9009
FirewallRules: [{DEE52412-DB21-4290-94E8-E9531E65DCB6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Indiana Jones and the Fate of Atlantis\Indiana Jones and the Fate of Atlantis.exe (LucasArts Entertainment Company) [File not signed]
FirewallRules: [{50D6DE88-B850-4EA4-8CDE-87EFF5C2B729}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Indiana Jones and the Fate of Atlantis\Indiana Jones and the Fate of Atlantis.exe (LucasArts Entertainment Company) [File not signed]
FirewallRules: [{38E14EED-BAC9-4E7F-BDBD-EB8887324698}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Disco Elysium\disco.exe () [File not signed]
FirewallRules: [{2D26774F-B223-4543-83B8-B12824297739}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Disco Elysium\disco.exe () [File not signed]
FirewallRules: [{E7CA7536-380B-4166-B1B1-E8C4A76105D4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{642C2D9D-0AAF-4FB2-A81D-498B7A469D9B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{009B3789-E538-494E-9CED-A39BB669870D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Worlds\LEGO_Worlds.exe (Travellers Tales (UK) Limited -> )
FirewallRules: [{206D4EF9-1319-43BC-8D14-3C4F214B1D04}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Worlds\LEGO_Worlds.exe (Travellers Tales (UK) Limited -> )
FirewallRules: [{B91C088A-6BDC-4F53-8D23-5886B37A6BE8}] => (Allow) LPort=9009
FirewallRules: [{3D24ACF3-22A4-4DF5-9CD5-58E5A965837A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{5E91677C-4211-4489-902C-E57CFA123218}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{86D9B9C8-5A2A-4A28-A989-A2FB38FD5D09}] => (Allow) LPort=9009
FirewallRules: [{4F7FF186-BD11-4796-8221-46328706D2F7}] => (Allow) LPort=9009
FirewallRules: [{1081D948-779F-4ADE-8648-A1720FBE7FB8}] => (Allow) LPort=9009
FirewallRules: [{CED34EF7-8E92-4372-9E13-F87A1204C9BD}] => (Allow) C:\Program Files\MAGIX\Video Pro X\11\Video_Pro_X.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{459B1DAD-35E8-444D-8868-6D6864ACDC16}] => (Allow) LPort=9009
FirewallRules: [{DEAF4AB1-4EEE-4615-AE74-CD004E6D5CE2}] => (Allow) LPort=9009
FirewallRules: [{7853EF27-6E47-4170-8486-BB064809E635}] => (Allow) LPort=9009
FirewallRules: [{BB0B45E4-12DB-47F6-8FC8-FA67307035C9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ACFD921A-0C05-42BC-BE74-4652CF19DD48}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe () [File not signed]
FirewallRules: [{BB36CFB0-72C5-4536-B33A-8A46EBC31F85}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe () [File not signed]
FirewallRules: [{895B38AE-0794-4681-8E2D-495657BE858F}] => (Allow) LPort=9009
FirewallRules: [{69F3B5B4-9BB6-4D85-88B7-47B562B8BB60}] => (Allow) LPort=9009
FirewallRules: [{7EF01CE9-FD15-435E-98D1-71A54AA743D0}] => (Allow) LPort=9009
FirewallRules: [{817E9515-7B42-4EDE-8EAF-732E6E80DAC5}] => (Allow) LPort=9009
FirewallRules: [{A3C5C974-13FE-44DE-9AE3-F5B0331CB4A3}] => (Allow) LPort=9009
FirewallRules: [{30C97E89-7691-4253-8836-F43483BB7A1A}] => (Allow) LPort=9009
FirewallRules: [{F9B35815-552D-494B-BAE0-A3B62124DA96}] => (Allow) LPort=9009
FirewallRules: [{C18B974B-E76F-47FB-B874-6DC1AD8C7482}] => (Allow) LPort=9009
FirewallRules: [{6071EDA1-827E-4C1F-AEA5-EE818912AEDD}] => (Allow) LPort=9009
FirewallRules: [{2CA28856-1DB7-4D79-BE08-79A911621C21}] => (Allow) LPort=9009
FirewallRules: [{9F7C797C-D6FB-4C31-BA81-747542928691}] => (Allow) LPort=9009
FirewallRules: [{FFC58480-BCAA-4B81-9189-1B6C4F82467D}] => (Allow) LPort=9009
FirewallRules: [{AD426262-B9C9-4F0E-A3E2-1F5158D63CBB}] => (Allow) LPort=9009
FirewallRules: [{E31AB2FF-BD0E-4B53-9504-15C5258F0449}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{341E47A7-412C-48EC-B340-F572060C7919}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{C26FBEB4-010A-495B-996E-AF975DA36942}] => (Allow) LPort=9009
FirewallRules: [{9850BCF4-D86C-4B6F-B7F4-21294E8974B7}] => (Allow) LPort=9009
FirewallRules: [{81F3ABBB-C218-41E0-BCE5-E377057164A3}] => (Allow) LPort=9009
FirewallRules: [{752407C3-DF06-4260-A702-561E519B0F37}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{079B8416-8A53-40EE-BFA0-A015D088667D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E51B1764-976C-4650-99DF-164B02AA8F09}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E5B0EC10-25BC-4AAF-937D-3D12582D1F4E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{75EB650E-1FF2-4E11-B171-6BCDFF343CD5}] => (Allow) LPort=9009
FirewallRules: [{739AA885-9EC2-4DDD-BA20-825D52FF42CF}] => (Allow) LPort=9009
FirewallRules: [{B181E00D-3D0B-49CC-A63C-E260384CF7B0}] => (Allow) LPort=9009
FirewallRules: [{CC27B110-253A-492B-A713-D8D4613670C7}] => (Allow) LPort=9009
FirewallRules: [{0313E2A9-5930-42AE-9155-6701BA169662}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B8173E86-C93F-4BEC-8715-FE3C4B5D0498}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7D4884AD-63CC-468C-B4FC-362604BBBBD5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{1F89427A-BFA7-469C-9254-21C832488128}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{4B735C2E-907D-448C-9AE8-7A871D05DBB6}] => (Allow) LPort=5354
FirewallRules: [{B5C886C5-ACB6-4DCE-B4FF-C75931A0A20D}] => (Allow) LPort=5354
FirewallRules: [{888159BE-7AFC-40E2-BA5B-76D60E8D7627}] => (Allow) LPort=5354
FirewallRules: [{4D88088D-3626-41B7-A4B8-F93D9E1FD9F4}] => (Allow) LPort=5354
FirewallRules: [{A0171FAF-C1FA-476E-AE74-BACAFC0C5E94}] => (Allow) LPort=9009
FirewallRules: [{E57113C1-A68D-41E5-B110-2DE11D3890BC}] => (Allow) LPort=9009
FirewallRules: [{14AC3137-3CC7-4109-90D3-B7517AF241AE}] => (Allow) LPort=9009
FirewallRules: [{EE19A341-0EA1-4A7A-A1E4-9046DF6C2DEF}] => (Allow) LPort=9009
FirewallRules: [{813F0577-FC0F-498A-A835-19C048345153}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6EBD3D48-1649-4363-AC51-BD0AF76ED04A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{06458D5B-F1E5-4263-B807-424CC87E16F5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{24722010-CE07-4534-A0DA-8066039DAA4C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{010165F6-F98E-49D1-BCAD-DE7746778BF9}] => (Allow) LPort=9009
FirewallRules: [{E23CEA62-D35C-4008-B0CC-3A09A7A94EBD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MicrosoftFlightSimulator\FlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{7707F3F7-94D4-4092-AE4F-E088F627A234}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MicrosoftFlightSimulator\FlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{4B63C1ED-581D-4089-8920-8883112CF764}] => (Allow) LPort=9009
FirewallRules: [{29614E04-E86C-4F58-972C-1B9E09776B16}] => (Allow) LPort=9009
FirewallRules: [{5FF47B47-29EA-45C2-BEA7-E3C21BF2DCCE}] => (Allow) LPort=9009
FirewallRules: [{3BEA98D3-CCF9-4247-A039-0007FBCAEF3F}] => (Allow) LPort=9009
FirewallRules: [{E36AF2E0-0B56-442D-9F28-306EAC027A79}] => (Allow) LPort=9009
FirewallRules: [{C01F8C10-CAD1-45ED-97A4-9ECCAAE58DA0}] => (Allow) LPort=9009
FirewallRules: [{2B8AE9A1-D1D3-410B-863E-C6F807EE3368}] => (Allow) LPort=9009
FirewallRules: [{5F76C018-B2DB-47E4-BE5E-55D426D1229B}] => (Allow) LPort=9009
FirewallRules: [{2C791805-A1D9-43C7-9471-D51F0BD4EDC3}] => (Allow) LPort=9009
FirewallRules: [{6FB67CCC-36AB-4532-B4D7-BABCADB6C733}] => (Allow) LPort=9009
FirewallRules: [{90327759-CF1D-467C-8EF7-9F19F425A5F4}] => (Allow) LPort=9009
FirewallRules: [{A4BE1A56-6737-40F9-9382-3B101F439121}] => (Allow) LPort=9009
FirewallRules: [{1BBC45E9-EE3F-406D-A6BD-AC905BE7FC43}] => (Allow) LPort=9009
FirewallRules: [{C6FF1A9B-A764-4F43-A8ED-8F8FF2FCBD32}] => (Allow) LPort=9009
FirewallRules: [{804210B8-A899-4538-BE91-8C8C475FC95C}] => (Allow) LPort=9009
FirewallRules: [{A0129950-11D1-44C5-BE75-93030F6CE862}] => (Allow) LPort=9009
FirewallRules: [{8481638D-59D4-464C-9B41-EB05E4A5DD5B}] => (Allow) LPort=9009
FirewallRules: [{7667BB08-DDA3-4C3E-A19E-20ACE7F8981B}] => (Allow) LPort=9009
FirewallRules: [{1657C98D-E2CC-4352-867D-6F819703C4D9}] => (Allow) LPort=9009
FirewallRules: [{4EF31C74-EA1F-4337-8A89-FD7A13C12BA0}] => (Allow) LPort=9009
FirewallRules: [{FCC0BBFD-10D5-49B2-9B2C-E4F3627F0DBD}] => (Allow) LPort=9009
FirewallRules: [{8100B011-4914-4931-900A-3E0D2998975C}] => (Allow) LPort=9009
FirewallRules: [{CE09A072-8623-4730-ADE2-0FB65F13C060}] => (Allow) LPort=9009
FirewallRules: [{705BE12D-C926-4EC3-9EE2-9974E85FCDEA}] => (Allow) LPort=9009
FirewallRules: [{A246D3AF-3B6D-479C-BB35-10CE64BDA778}] => (Allow) LPort=9009
FirewallRules: [{933F558C-1776-4291-91D4-4333F613C9AB}] => (Allow) LPort=9009
FirewallRules: [{5D23003C-2EF9-40BF-9F4C-AE3A6150FD80}] => (Allow) LPort=9009
FirewallRules: [{5287DB6A-6365-4DDF-AD9E-F08ADE89F3CA}] => (Allow) LPort=9009
FirewallRules: [{1CCCA45E-1750-458B-9037-FBC497E2912A}] => (Allow) LPort=9009
FirewallRules: [{566760D8-FCA6-4EE4-9CB9-13C34A82F604}] => (Allow) LPort=9009
FirewallRules: [{C87E82DF-7AE7-4AF7-BD68-2B6FC149519A}] => (Allow) LPort=9009
FirewallRules: [{C1D4C424-24D6-42CA-9DD6-1876B378A6BC}] => (Allow) LPort=9009
FirewallRules: [{C7851989-20BE-495A-A6D8-56EFAD8536AE}] => (Allow) LPort=9009
FirewallRules: [{044CD729-D4DE-415B-9605-E8DA6DEA1712}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B4E180BF-AA9A-482A-AA48-3E2D250B9852}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B7A17B74-D88F-4560-B688-FBAA908A9697}] => (Allow) LPort=9009
FirewallRules: [{50FBD781-014C-4B98-817B-EDD7D58E4A5D}] => (Allow) LPort=9009
FirewallRules: [{12F9EE3E-D3A6-4496-8930-592B0F0D3B47}] => (Allow) LPort=9009
FirewallRules: [{BDBC27C0-BB1F-411A-901B-3FBF7765DAB2}] => (Allow) LPort=9009
FirewallRules: [{514FD534-3EAA-483B-9BE9-4FE7B6A9418C}] => (Allow) LPort=9009
FirewallRules: [{19CE6C83-240C-4B57-8947-3C4E4D56D031}] => (Allow) LPort=9009
FirewallRules: [{F1A7F5BA-BFD5-4D97-A164-97A7B7E44BEF}] => (Allow) LPort=9009
FirewallRules: [{1C6A3E0B-BDA7-4F53-A082-E5F19D0E672F}] => (Allow) LPort=9009
FirewallRules: [{B74EB9F0-D1A1-4B20-B60B-BC2718C2D6B6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Death Stranding\ds.exe (KOJIMA PRODUCTIONS Co., Ltd.) [File not signed]
FirewallRules: [{EC4C4C62-71CC-4440-B5A8-D3A3EB349F02}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Death Stranding\ds.exe (KOJIMA PRODUCTIONS Co., Ltd.) [File not signed]
FirewallRules: [{4837CD10-EE84-41A7-8B69-5E65397286D4}] => (Allow) LPort=9009
FirewallRules: [{132939CE-1252-4C5E-877A-5755C3B45DA2}] => (Allow) LPort=9009
FirewallRules: [{CE829B87-1085-4C22-A6AB-2F5238E57095}] => (Allow) LPort=9009
FirewallRules: [{B3164246-07BB-4E85-B722-5CD627C3B610}] => (Allow) LPort=9009
FirewallRules: [{34F9242D-7853-48F3-9B44-8FD71D025D46}] => (Allow) LPort=9009
FirewallRules: [{9EAE6F35-9A2E-4F09-B1CA-E6619FD9ECF0}] => (Allow) LPort=9009
FirewallRules: [{4D8144FE-7B86-4BBF-89A7-53300C4BC320}] => (Allow) LPort=9009
FirewallRules: [{4C29D06D-07D4-4209-8916-9F26811B62BD}] => (Allow) LPort=9009
FirewallRules: [{01F65A0D-2C26-4590-88F6-3F661DCDB0F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{079FFAAE-E0B9-46DE-B855-6FEC969121B8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{D3617E6F-7970-449A-8A51-7D266430D79F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{C42810F9-090A-4588-BCBC-8F8A5AE3CA44}] => (Allow) LPort=9009
FirewallRules: [{2001267D-DE1B-48ED-96FF-9C1968A6C9ED}] => (Allow) LPort=9009
FirewallRules: [{4ABACCB7-E70B-4DBC-BCDF-5ECBB47036C4}] => (Allow) LPort=9009
FirewallRules: [{5140D376-9949-4C70-8D61-076A93A48FB4}] => (Allow) LPort=9009
FirewallRules: [{451ECB7B-D6F2-44B4-9A3F-9DBE2CB1175D}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{EF77C753-FF70-4243-9E1B-F92B0006320B}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{FD17C371-CE51-416E-BE38-5467B83AB7BD}] => (Allow) LPort=9009
FirewallRules: [{563D214B-A8D6-40C4-B2F1-1B0DC3BF0E5F}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{43E5187D-A86A-4B86-B62C-2BD5AFAA806A}] => (Allow) LPort=9009
FirewallRules: [{7FEDF933-B400-453E-A4D2-1793DC6B2914}] => (Allow) LPort=9009
FirewallRules: [{0968BE09-B5EA-4177-B48F-BBC1A4D6FB31}] => (Allow) LPort=9009
FirewallRules: [{1F079BE3-3F8A-416E-8E12-E68E8CB889C7}] => (Allow) LPort=9009
FirewallRules: [{720C0124-A353-4DD1-AE5B-4204FAA4C9FB}] => (Allow) LPort=9009
FirewallRules: [{3062C1C5-CBDC-4AE0-9FAF-391FA2B92D41}] => (Allow) LPort=9009
FirewallRules: [{62F1B393-A810-4AFE-923F-350A6315D2D8}] => (Allow) LPort=9009
FirewallRules: [{2270EE59-B1FC-46F1-9D2F-A4C0E44E1EBF}] => (Allow) LPort=9009
FirewallRules: [{C64ECB58-D7EF-4752-BCEA-7ED1787D656A}] => (Allow) LPort=9009
FirewallRules: [{49D23485-F5F1-4A31-BEFC-079C13D8E67E}] => (Allow) LPort=9009
FirewallRules: [{2691C416-306C-4CEE-ADCA-E2B67CE92F55}] => (Allow) LPort=9009
FirewallRules: [{69B42916-9F9B-4956-95B3-57470280FBEE}] => (Allow) LPort=9009
FirewallRules: [{997673BC-FE27-4CA3-ADCA-9CB8DAA5606B}] => (Allow) LPort=9009
FirewallRules: [{1762CA98-1C62-4EBF-8858-F09022C12FF9}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{F5D6B7FB-9A66-4D3C-B938-4E074E5F7358}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{3A936A07-E549-4EEB-86DD-706BF4C1D4E3}] => (Allow) LPort=9009
FirewallRules: [{BDEAE202-56FE-4003-8021-B95F2EAC14A3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\89.0.774.63\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AA0E18CA-91D7-418D-9203-C62161D3BE37}] => (Allow) LPort=9009
FirewallRules: [{10C5BF8E-D6A7-4140-9D0E-0E1383058006}] => (Allow) LPort=9009
FirewallRules: [{7C385996-6710-4064-BFC4-4F5E85386D5A}] => (Allow) LPort=9009
FirewallRules: [{79523D0A-012A-4708-BC96-8DF2F5EFC39C}] => (Allow) LPort=9009
FirewallRules: [{878BB43B-A168-4D93-BE76-14ECC29A1251}] => (Allow) LPort=9009

==================== Restore Points =========================

17-03-2021 10:05:13 Windows Modules Installer
18-03-2021 17:04:26 Radeon Installer
20-03-2021 12:24:18 Removed Realtek Audio Driver
22-03-2021 09:08:02 Windows Modules Installer
24-03-2021 07:35:54 Removed APP Center
25-03-2021 10:37:33 Installed Draft IT.

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/26/2021 09:38:55 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 09:38:55 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 09:38:55 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 09:38:55 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 09:38:16 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 09:38:16 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 09:38:16 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 09:38:16 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]


System errors:
=============
Error: (03/26/2021 12:11:04 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 12:09:02 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: The BITS service failed to start. Error 2147500053.

Error: (03/26/2021 12:08:54 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (03/26/2021 12:08:54 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (03/26/2021 12:08:54 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (03/26/2021 12:08:54 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (03/26/2021 12:08:54 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (03/26/2021 12:08:54 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2020-12-05 11:48:15
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-12-05 11:19:56
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.323.580.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17400.5
Error code: 0x80240022
Error description: The program can't check for definition updates.

Date: 2020-12-05 11:19:56
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.323.580.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17400.5
Error code: 0x80240022
Error description: The program can't check for definition updates.

CodeIntegrity:
===============
Date: 2021-03-26 12:13:14
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F6 08/28/2020
Motherboard: Gigabyte Technology Co., Ltd. Z490 AORUS ULTRA
Processor: Intel(R) Core(TM) i7-10700K CPU @ 3.80GHz
Percentage of memory in use: 39%
Total physical RAM: 16301.14 MB
Available physical RAM: 9855.29 MB
Total Virtual: 34733.14 MB
Available Virtual: 25494.83 MB

==================== Drives ================================

Drive c: (Robert) (Fixed) (Total:155.63 GB) (Free:49.42 GB) NTFS
Drive d: (De Niro) (Fixed) (Total:775.26 GB) (Free:149.65 GB) NTFS
Drive e: (Goodfellas) (Fixed) (Total:931.51 GB) (Free:318.13 GB) NTFS
Drive f: (Casino) (Fixed) (Total:111.79 GB) (Free:30.47 GB) NTFS

\\?\Volume{9e86aaad-765c-4af0-b4e8-391aedf90cb2}\ () (Fixed) (Total:0.5 GB) (Free:0.04 GB) NTFS
\\?\Volume{27b2bf21-f9c1-4a4d-94ad-4510f71cfe9c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: CF291FF1)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: CF291F8C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: preventivni kontrola

#19 Příspěvek od Diallix »

Hm. Zmeny po oprave sa neprejavili.

Urobte, prosim, znovu nasledne kroky:

Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše

CloseProcesses:

C:\Program Files (x86)\Google\Google Toolbar

HKLM-x32\...\Run: [NBAgent] => D:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe [1493288 2012-01-13] (Nero AG -> Nero AG)
HKLM-x32\...\Run: [AgentMonitor] => D:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [697408 2019-03-13] (Vtech Electronics North America, L.L.C. -> )
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [QMxNetworkSync] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Amazon Music Helper] => C:\Users\fsubi\AppData\Local\Amazon Music\Amazon Music Helper.exe [2098512 2021-02-10] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\MountPoints2: {c7064c84-f5a6-11ea-ad1d-18c04d29336b} - "G:\WD Drive Unlock.exe" autoplay=true
Task: {3C33982B-7BD6-4F18-9661-6211A7B6945E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {3E966867-AF57-4A75-A9BB-3D0CB037E651} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-09-05] (Google Inc -> Google Inc.)
Task: {72F0536A-BE1D-4BD7-A5D4-3094766D2F2B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-09-05] (Google Inc -> Google Inc.)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
SearchScopes: HKU\S-1-5-21-971254259-73155972-3602281376-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2020-09-05] (Google Inc -> Google Inc.)
BHO-x32: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2020-09-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2020-09-05] (Google Inc -> Google Inc.)
FirewallRules: [{B77F7887-1FC0-4E68-819C-DFB40566D571}] => (Allow) LPort=9009
FirewallRules: [{95CBCD59-7A02-4A27-9839-A613A8D94183}] => (Allow) LPort=9009
FirewallRules: [{EB08D9D6-EBC3-408C-86C5-D2EF6CC67B96}] => (Allow) LPort=9009
FirewallRules: [{4A617007-4636-4AC0-BAE1-A89A0F33C225}] => (Allow) LPort=9009
FirewallRules: [{4FC83B18-59A7-4BD3-8DE5-F77CE034D68B}] => (Allow) LPort=9009
FirewallRules: [{E29E455B-AA7F-438B-B9AC-7E59B5BB69D4}] => (Allow) LPort=9009
FirewallRules: [{389CDD71-81AF-4077-95DA-072C32A695E8}] => (Allow) LPort=9009
FirewallRules: [{652D7198-7A7E-4757-B671-241F0BE2DEF4}] => (Allow) LPort=9009
FirewallRules: [{1AA4FE23-9DF3-4267-96DF-C0D792841D9D}] => (Allow) LPort=9009
FirewallRules: [{B46C37A4-E449-48D3-BEE3-DAAFC72632E1}] => (Allow) LPort=9009
FirewallRules: [{2DF83964-82CE-41F9-92F1-CB6E59595578}] => (Allow) LPort=9009
FirewallRules: [{D5C631FE-7C8E-48BA-A165-6331E7B7B6EE}] => (Allow) LPort=9009
FirewallRules: [{CF89B38B-8850-4842-B3BB-DD18A9E08ECC}] => (Allow) LPort=9009
FirewallRules: [{28667155-BF4D-4403-B2CB-F55E47AD87A3}] => (Allow) LPort=9009
FirewallRules: [{BD8B88BA-F919-42A3-A2BF-D4676EA9AFF4}] => (Allow) LPort=9009
FirewallRules: [{B8F5F605-B12E-40FC-A1C0-267C8B455F7B}] => (Allow) LPort=9009
FirewallRules: [{37E61BD7-0D25-4631-A5E5-0C6BB79976FE}] => (Allow) LPort=9009
FirewallRules: [{74BF8B90-64A2-45C0-B5E9-A44DF2C0286B}] => (Allow) LPort=9009
FirewallRules: [{3AC6D445-C159-4033-B914-A42B8837B45D}] => (Allow) LPort=9009
FirewallRules: [{55D5D798-C476-46E4-A8A6-4BF4A5F198D0}] => (Allow) LPort=9009
FirewallRules: [{6E15803A-D235-4AED-AC73-52CD68F68452}] => (Allow) LPort=9009
FirewallRules: [{D8A10306-2487-4AB7-8A12-171FD245FB3F}] => (Allow) LPort=9009
FirewallRules: [{43ACFC2B-7C52-4F3D-979C-A10C61349DB9}] => (Allow) LPort=9009
FirewallRules: [{7DD53090-09B0-4A7A-BA3A-106EC494B835}] => (Allow) LPort=9009
FirewallRules: [{81B635DF-8982-4A60-9307-154613CE4C19}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => No File
FirewallRules: [{E85E5691-681E-4132-B74E-6BDEEEE78D4F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => No File
FirewallRules: [{923E07A9-3973-4FDC-ADD0-E5A5A28088C1}] => (Allow) LPort=9009
FirewallRules: [{6CC43093-B3CC-4ECE-83E6-274D9C8B3C38}] => (Allow) LPort=9009
FirewallRules: [{14E8870F-A948-4131-8374-BB5DD5567D27}] => (Allow) LPort=9009
FirewallRules: [{ECB6468A-1B8E-4741-990E-20E3E0B6B83A}] => (Allow) LPort=9009
FirewallRules: [{5A25B191-CC84-40FC-8D23-143A9DC09052}] => (Allow) LPort=9009
FirewallRules: [{542B7853-B7E9-490C-8F3C-BFD353F305C7}] => (Allow) LPort=9009
FirewallRules: [{F176FA17-47A9-4A07-86A2-026011F9AB85}] => (Allow) LPort=9009
FirewallRules: [{7643B170-EA9C-42F9-8323-384B15C2897C}] => (Allow) LPort=9009
FirewallRules: [{684BAD0A-387E-4EDF-8B16-DE39B9C08E78}] => (Allow) LPort=9009
FirewallRules: [{5638F6D1-53C1-4B48-819C-C4F6AF3420CC}] => (Allow) LPort=9009
FirewallRules: [{F2B40A88-EBDA-4DBC-BE51-B7DAB96FCFBE}] => (Allow) LPort=9009
FirewallRules: [{EF2B0D2A-879C-4DE6-89E0-7C1D754FE69D}] => (Allow) LPort=9009
FirewallRules: [{81D4DA90-EA6F-4867-81DE-30340923587E}] => (Allow) LPort=9009
FirewallRules: [{FD7B3E84-9288-45B8-B8F0-CBE4E143F36F}] => (Allow) LPort=9009
FirewallRules: [{8A824E83-86B8-4EE5-9FA4-87182F4D63FE}] => (Allow) LPort=9009
FirewallRules: [{B92DB760-7904-415F-94D5-CE6E9D81AD34}] => (Allow) LPort=9009
FirewallRules: [{CD7FD727-D87C-47C9-ABE6-038F8C31E1FF}] => (Allow) LPort=9009
FirewallRules: [{F11EAA6D-72DB-44D4-81EB-95029DB3223D}] => (Allow) LPort=9009
FirewallRules: [{CEC7E2E8-0F93-402B-A495-5C8342430D64}] => (Allow) LPort=9009
FirewallRules: [{08A58799-DDCC-4378-9510-37CBC2660634}] => (Allow) LPort=9009
FirewallRules: [{5FC0C8F6-1F9A-417B-BACF-93A86147A4D1}] => (Allow) LPort=9009
FirewallRules: [{62914916-60DC-40BF-8DCE-D35C3BB8D245}] => (Allow) LPort=9009
FirewallRules: [{EC4E4882-5C9A-4A7E-8068-C834E52FECA6}] => (Allow) LPort=9009
FirewallRules: [{BCA8B29E-27A6-4F20-B7B0-0F99BA8C48D4}] => (Allow) LPort=9009
FirewallRules: [{45804EE5-FFDE-4E33-B272-3E6B0EFEA9C9}] => (Allow) LPort=9009
FirewallRules: [{C20AE677-4579-41AD-99C5-B463FE9A6F5B}] => (Allow) LPort=9009
FirewallRules: [{F330BA7C-2201-48E2-887F-454942ED4392}] => (Allow) LPort=9009
FirewallRules: [{AA6F2409-7D49-4173-A332-04B15C058898}] => (Allow) LPort=9009
FirewallRules: [{A6212D22-5133-4708-9FD7-58B3EFD2CACD}] => (Allow) LPort=9009
FirewallRules: [{BE9BB85E-3266-480D-8D98-37E4FFF4A636}] => (Allow) LPort=9009
FirewallRules: [{8F1B572F-0B02-47C8-BF66-3B7FCF307236}] => (Allow) LPort=9009
FirewallRules: [{82D10970-0DFA-4045-8A2C-9F4A6C21EC5E}] => (Allow) LPort=9009
FirewallRules: [{3DE4759F-19BD-4215-87CD-1C88D4A7C16A}] => (Allow) LPort=9009
FirewallRules: [{E821C539-E423-4D5F-AE33-90F1E281C1F4}] => (Allow) LPort=9009
FirewallRules: [{BA7ACE54-4548-4A4F-9539-6E8954716B34}] => (Allow) LPort=9009
FirewallRules: [{D3BCFCD7-8239-44FC-B4A7-82A9D208BEC2}] => (Allow) LPort=9009
FirewallRules: [{2504C8E5-55E8-49A2-ACBD-69236266A49B}] => (Allow) LPort=9009
FirewallRules: [{D3C9D3C7-3DBA-4AA1-8599-E492CF8702A3}] => (Allow) LPort=9009
FirewallRules: [{D0F65DC9-130C-4BD7-A10F-E757730F8829}] => (Allow) LPort=9009
FirewallRules: [{ABCE5657-2805-4D96-A02E-8517B93AE317}] => (Allow) LPort=9009
FirewallRules: [{E693F0DE-ACDD-41A7-9C8C-D900CF70BD1F}] => (Allow) LPort=9009
FirewallRules: [{37B0C183-AAE7-432E-B086-6A80D3C811C9}] => (Allow) LPort=9009
FirewallRules: [{400135D0-3425-4E47-94B1-980F716145DC}] => (Allow) LPort=9009
FirewallRules: [{373E4645-ED29-470E-874E-D0114941A16F}] => (Allow) LPort=9009
FirewallRules: [{6F36507B-F629-4692-BADE-9A28F2E6F249}] => (Allow) LPort=9009
FirewallRules: [{D89A7BBD-5025-4E74-B2C9-144A8776446E}] => (Allow) LPort=9009
FirewallRules: [{C0C692E1-B805-414E-895D-8C039BE64FD7}] => (Allow) LPort=9009
FirewallRules: [{D5397CEE-3BAA-4046-8FA4-BD9EBBA018A2}] => (Allow) LPort=9009
FirewallRules: [{FE583904-6558-4F88-9DD2-5D3E6D8595A2}] => (Allow) LPort=9009
FirewallRules: [{59AD8877-8D8F-4241-97D7-7F4B3C8FAD03}] => (Allow) LPort=9009
FirewallRules: [{3AE9BCD2-7CA4-4518-B7E6-674DE522D01E}] => (Allow) LPort=9009
FirewallRules: [{76820791-8AC0-48F3-BCBE-494B2B5DE736}] => (Allow) LPort=9009
FirewallRules: [{5CC9C423-FCCE-4EDB-99E4-FB4BAFD32718}] => (Allow) LPort=9009
FirewallRules: [{6D7B9FEA-5268-4869-97C0-DFCF54CD6532}] => (Allow) LPort=9009
FirewallRules: [{45FBC764-AA7C-4524-AA80-71C96F3DB9D7}] => (Allow) LPort=9009
FirewallRules: [{1141DE47-490F-4E47-B8BC-2495DDCE56B0}] => (Allow) LPort=9009
FirewallRules: [{17DB257E-05A7-4617-B432-7CFD9F6E5D52}] => (Allow) LPort=9009
FirewallRules: [{43806569-873F-4BDD-BB71-13222C1DC74C}] => (Allow) LPort=9009
FirewallRules: [{1BD881F4-ACEE-4D09-B52D-DF6D353A2E12}] => (Allow) LPort=9009
FirewallRules: [{B7BBC310-325B-46CD-9320-4CCAA02E9BDF}] => (Allow) LPort=9009
FirewallRules: [{88DA30F2-2EF7-491C-9B51-65BFA5DD299E}] => (Allow) LPort=9009
FirewallRules: [{A5A22D73-AA43-4D08-BE06-8B615A9CC1CF}] => (Allow) LPort=9009
FirewallRules: [{1CC17E8A-83DE-41AE-B5CD-86BEAF2AA12B}] => (Allow) LPort=9009
FirewallRules: [{0CA6A2E2-B1E2-4781-BD4F-9B2541D8A083}] => (Allow) LPort=9009
FirewallRules: [{4B863613-0CFF-4016-96AE-94BBEE576F94}] => (Allow) LPort=9009
FirewallRules: [{5800975D-BCE7-4559-8C3F-3DB301A973DC}] => (Allow) LPort=9009
FirewallRules: [{6881976B-7172-45DA-B60E-7A699E7E2D24}] => (Allow) LPort=9009
FirewallRules: [{378CA4EF-C7F9-45B4-9C33-B7F3DC4C4E79}] => (Allow) LPort=9009
FirewallRules: [{F991DA17-695A-4476-8795-CBC768384D2B}] => (Allow) LPort=9009
FirewallRules: [{F075DB9C-A7A5-490A-AA5E-9B723ED1BFD6}] => (Allow) LPort=9009
FirewallRules: [{BF723838-ED09-4DD6-B095-AB9A65A268C4}] => (Allow) LPort=9009
FirewallRules: [{D46A8EB6-DEB6-47B4-A22F-B9608AA6C9CD}] => (Allow) LPort=9009
FirewallRules: [{97D84B4B-70F6-461F-B840-7EF76C7D873C}] => (Allow) LPort=9009
FirewallRules: [{67C3E0F6-2FDD-45A9-BE21-8B61742479A5}] => (Allow) LPort=9009
FirewallRules: [{B6B6C2D5-A173-4293-ABAB-FF246DAEB5EE}] => (Allow) LPort=9009
FirewallRules: [{175DC71D-E1DC-4939-8F91-9594AD61269A}] => (Allow) LPort=9009
FirewallRules: [{007EB5AB-9A7F-4EB8-AB18-0B0A4C2D464B}] => (Allow) LPort=9009
FirewallRules: [{7FF3FE0B-2077-4C22-BC54-44303E4A0993}] => (Allow) LPort=9009
FirewallRules: [{B8587FC9-8C0C-4586-B1F7-A52E1B769615}] => (Allow) LPort=9009
FirewallRules: [{E190E9D9-CF18-451D-B17A-923934247A80}] => (Allow) LPort=9009
FirewallRules: [{5DEBFABF-DA4D-494A-92E9-F676247D2147}] => (Allow) LPort=9009
FirewallRules: [{0CB1FC4F-56D6-4FDF-9604-FF394EBA11BD}] => (Allow) LPort=9009
FirewallRules: [{27BB64C8-5F2D-4875-9A28-A2FF75D12736}] => (Allow) LPort=9009
FirewallRules: [{CB68BCAE-B01E-42C8-9C23-EDFAF73FEB7C}] => (Allow) LPort=9009
FirewallRules: [{DF4A752C-34C4-4996-B007-760C7AD31BBB}] => (Allow) LPort=9009
FirewallRules: [{D2B3A63F-F0CE-4FA2-B694-6567C94A4438}] => (Allow) LPort=9009
FirewallRules: [{FBACC781-74EF-4D59-8E8C-4D2E2FC02E46}] => (Allow) LPort=9009
FirewallRules: [{1A300089-8540-4F11-B62E-456CA2290878}] => (Allow) LPort=9009
FirewallRules: [{595B876C-7008-4BF3-9928-2C0996DF9AC8}] => (Allow) LPort=9009
FirewallRules: [{1E149926-0AE7-482A-8CF2-C779687DC76B}] => (Allow) LPort=9009
FirewallRules: [{3B976A87-F25F-4209-B36D-A0921AE0AE96}] => (Allow) LPort=9009
FirewallRules: [{5F03E14D-285C-4390-88EE-D9AA9CDFCA2B}] => (Allow) LPort=9009
FirewallRules: [{74BFA161-7281-4BFA-9B11-48866699C915}] => (Allow) LPort=9009
FirewallRules: [{76EE873F-B597-444F-8EF9-2278242F2561}] => (Allow) LPort=9009
FirewallRules: [{41207151-A878-4945-B529-DDB1296E8012}] => (Allow) LPort=9009
FirewallRules: [{E2F97833-71B1-4842-A003-3C6C08DD2103}] => (Allow) LPort=9009
FirewallRules: [{829C8DCE-B94F-4A7A-ABF7-2C6DCD6A1489}] => (Allow) LPort=9009
FirewallRules: [{21A5D4B9-394C-492E-A886-FD6C52DEBD7B}] => (Allow) LPort=9009
FirewallRules: [{46545D81-B0E4-4830-82B2-19B3AAA2322E}] => (Allow) LPort=9009
FirewallRules: [{B0555A55-C3CD-4C2F-984A-D1983DA47628}] => (Allow) LPort=9009
FirewallRules: [{1286EE57-1374-4BAD-B4FF-D8E75B2E07DB}] => (Allow) LPort=9009
FirewallRules: [{C6BBB632-83EA-4314-9926-2EF086952AC0}] => (Allow) LPort=9009
FirewallRules: [{A8DF4779-0BCA-40CD-83DD-9E86D47B3B89}] => (Allow) LPort=9009
FirewallRules: [{AB949E24-A517-4BDC-A9C4-FDA29F54B7EE}] => (Allow) LPort=5454
FirewallRules: [{5E87AA9E-696B-42D6-BB1B-E60499163F88}] => (Allow) LPort=9009
FirewallRules: [{3F137B3B-82E8-4BD3-9A37-C0BF4E37D3B9}] => (Allow) LPort=9009
FirewallRules: [{AD817A49-9F11-4E1A-9480-A96F53DB3156}] => (Allow) LPort=9009
FirewallRules: [{B91C088A-6BDC-4F53-8D23-5886B37A6BE8}] => (Allow) LPort=9009
FirewallRules: [{86D9B9C8-5A2A-4A28-A989-A2FB38FD5D09}] => (Allow) LPort=9009
FirewallRules: [{4F7FF186-BD11-4796-8221-46328706D2F7}] => (Allow) LPort=9009
FirewallRules: [{1081D948-779F-4ADE-8648-A1720FBE7FB8}] => (Allow) LPort=9009
FirewallRules: [{459B1DAD-35E8-444D-8868-6D6864ACDC16}] => (Allow) LPort=9009
FirewallRules: [{DEAF4AB1-4EEE-4615-AE74-CD004E6D5CE2}] => (Allow) LPort=9009
FirewallRules: [{7853EF27-6E47-4170-8486-BB064809E635}] => (Allow) LPort=9009
FirewallRules: [{895B38AE-0794-4681-8E2D-495657BE858F}] => (Allow) LPort=9009
FirewallRules: [{69F3B5B4-9BB6-4D85-88B7-47B562B8BB60}] => (Allow) LPort=9009
FirewallRules: [{7EF01CE9-FD15-435E-98D1-71A54AA743D0}] => (Allow) LPort=9009
FirewallRules: [{817E9515-7B42-4EDE-8EAF-732E6E80DAC5}] => (Allow) LPort=9009
FirewallRules: [{A3C5C974-13FE-44DE-9AE3-F5B0331CB4A3}] => (Allow) LPort=9009
FirewallRules: [{30C97E89-7691-4253-8836-F43483BB7A1A}] => (Allow) LPort=9009
FirewallRules: [{F9B35815-552D-494B-BAE0-A3B62124DA96}] => (Allow) LPort=9009
FirewallRules: [{C18B974B-E76F-47FB-B874-6DC1AD8C7482}] => (Allow) LPort=9009
FirewallRules: [{6071EDA1-827E-4C1F-AEA5-EE818912AEDD}] => (Allow) LPort=9009
FirewallRules: [{2CA28856-1DB7-4D79-BE08-79A911621C21}] => (Allow) LPort=9009
FirewallRules: [{9F7C797C-D6FB-4C31-BA81-747542928691}] => (Allow) LPort=9009
FirewallRules: [{FFC58480-BCAA-4B81-9189-1B6C4F82467D}] => (Allow) LPort=9009
FirewallRules: [{AD426262-B9C9-4F0E-A3E2-1F5158D63CBB}] => (Allow) LPort=9009
FirewallRules: [{C26FBEB4-010A-495B-996E-AF975DA36942}] => (Allow) LPort=9009
FirewallRules: [{9850BCF4-D86C-4B6F-B7F4-21294E8974B7}] => (Allow) LPort=9009
FirewallRules: [{81F3ABBB-C218-41E0-BCE5-E377057164A3}] => (Allow) LPort=9009
FirewallRules: [{75EB650E-1FF2-4E11-B171-6BCDFF343CD5}] => (Allow) LPort=9009
FirewallRules: [{739AA885-9EC2-4DDD-BA20-825D52FF42CF}] => (Allow) LPort=9009
FirewallRules: [{B181E00D-3D0B-49CC-A63C-E260384CF7B0}] => (Allow) LPort=9009
FirewallRules: [{CC27B110-253A-492B-A713-D8D4613670C7}] => (Allow) LPort=9009
FirewallRules: [{4B735C2E-907D-448C-9AE8-7A871D05DBB6}] => (Allow) LPort=5354
FirewallRules: [{B5C886C5-ACB6-4DCE-B4FF-C75931A0A20D}] => (Allow) LPort=5354
FirewallRules: [{888159BE-7AFC-40E2-BA5B-76D60E8D7627}] => (Allow) LPort=5354
FirewallRules: [{4D88088D-3626-41B7-A4B8-F93D9E1FD9F4}] => (Allow) LPort=5354
FirewallRules: [{A0171FAF-C1FA-476E-AE74-BACAFC0C5E94}] => (Allow) LPort=9009
FirewallRules: [{E57113C1-A68D-41E5-B110-2DE11D3890BC}] => (Allow) LPort=9009
FirewallRules: [{14AC3137-3CC7-4109-90D3-B7517AF241AE}] => (Allow) LPort=9009
FirewallRules: [{EE19A341-0EA1-4A7A-A1E4-9046DF6C2DEF}] => (Allow) LPort=9009
FirewallRules: [{010165F6-F98E-49D1-BCAD-DE7746778BF9}] => (Allow) LPort=9009
FirewallRules: [{4B63C1ED-581D-4089-8920-8883112CF764}] => (Allow) LPort=9009
FirewallRules: [{29614E04-E86C-4F58-972C-1B9E09776B16}] => (Allow) LPort=9009
FirewallRules: [{5FF47B47-29EA-45C2-BEA7-E3C21BF2DCCE}] => (Allow) LPort=9009
FirewallRules: [{3BEA98D3-CCF9-4247-A039-0007FBCAEF3F}] => (Allow) LPort=9009
FirewallRules: [{E36AF2E0-0B56-442D-9F28-306EAC027A79}] => (Allow) LPort=9009
FirewallRules: [{C01F8C10-CAD1-45ED-97A4-9ECCAAE58DA0}] => (Allow) LPort=9009
FirewallRules: [{2B8AE9A1-D1D3-410B-863E-C6F807EE3368}] => (Allow) LPort=9009
FirewallRules: [{5F76C018-B2DB-47E4-BE5E-55D426D1229B}] => (Allow) LPort=9009
FirewallRules: [{2C791805-A1D9-43C7-9471-D51F0BD4EDC3}] => (Allow) LPort=9009
FirewallRules: [{6FB67CCC-36AB-4532-B4D7-BABCADB6C733}] => (Allow) LPort=9009
FirewallRules: [{90327759-CF1D-467C-8EF7-9F19F425A5F4}] => (Allow) LPort=9009
FirewallRules: [{A4BE1A56-6737-40F9-9382-3B101F439121}] => (Allow) LPort=9009
FirewallRules: [{1BBC45E9-EE3F-406D-A6BD-AC905BE7FC43}] => (Allow) LPort=9009
FirewallRules: [{C6FF1A9B-A764-4F43-A8ED-8F8FF2FCBD32}] => (Allow) LPort=9009
FirewallRules: [{804210B8-A899-4538-BE91-8C8C475FC95C}] => (Allow) LPort=9009
FirewallRules: [{A0129950-11D1-44C5-BE75-93030F6CE862}] => (Allow) LPort=9009
FirewallRules: [{8481638D-59D4-464C-9B41-EB05E4A5DD5B}] => (Allow) LPort=9009
FirewallRules: [{7667BB08-DDA3-4C3E-A19E-20ACE7F8981B}] => (Allow) LPort=9009
FirewallRules: [{1657C98D-E2CC-4352-867D-6F819703C4D9}] => (Allow) LPort=9009
FirewallRules: [{4EF31C74-EA1F-4337-8A89-FD7A13C12BA0}] => (Allow) LPort=9009
FirewallRules: [{FCC0BBFD-10D5-49B2-9B2C-E4F3627F0DBD}] => (Allow) LPort=9009
FirewallRules: [{8100B011-4914-4931-900A-3E0D2998975C}] => (Allow) LPort=9009
FirewallRules: [{CE09A072-8623-4730-ADE2-0FB65F13C060}] => (Allow) LPort=9009
FirewallRules: [{705BE12D-C926-4EC3-9EE2-9974E85FCDEA}] => (Allow) LPort=9009
FirewallRules: [{A246D3AF-3B6D-479C-BB35-10CE64BDA778}] => (Allow) LPort=9009
FirewallRules: [{933F558C-1776-4291-91D4-4333F613C9AB}] => (Allow) LPort=9009
FirewallRules: [{5D23003C-2EF9-40BF-9F4C-AE3A6150FD80}] => (Allow) LPort=9009
FirewallRules: [{5287DB6A-6365-4DDF-AD9E-F08ADE89F3CA}] => (Allow) LPort=9009
FirewallRules: [{1CCCA45E-1750-458B-9037-FBC497E2912A}] => (Allow) LPort=9009
FirewallRules: [{566760D8-FCA6-4EE4-9CB9-13C34A82F604}] => (Allow) LPort=9009
FirewallRules: [{C87E82DF-7AE7-4AF7-BD68-2B6FC149519A}] => (Allow) LPort=9009
FirewallRules: [{C1D4C424-24D6-42CA-9DD6-1876B378A6BC}] => (Allow) LPort=9009
FirewallRules: [{C7851989-20BE-495A-A6D8-56EFAD8536AE}] => (Allow) LPort=9009
FirewallRules: [{B7A17B74-D88F-4560-B688-FBAA908A9697}] => (Allow) LPort=9009
FirewallRules: [{50FBD781-014C-4B98-817B-EDD7D58E4A5D}] => (Allow) LPort=9009
FirewallRules: [{12F9EE3E-D3A6-4496-8930-592B0F0D3B47}] => (Allow) LPort=9009
FirewallRules: [{BDBC27C0-BB1F-411A-901B-3FBF7765DAB2}] => (Allow) LPort=9009
FirewallRules: [{514FD534-3EAA-483B-9BE9-4FE7B6A9418C}] => (Allow) LPort=9009
FirewallRules: [{19CE6C83-240C-4B57-8947-3C4E4D56D031}] => (Allow) LPort=9009
FirewallRules: [{F1A7F5BA-BFD5-4D97-A164-97A7B7E44BEF}] => (Allow) LPort=9009
FirewallRules: [{1C6A3E0B-BDA7-4F53-A082-E5F19D0E672F}] => (Allow) LPort=9009
FirewallRules: [{4837CD10-EE84-41A7-8B69-5E65397286D4}] => (Allow) LPort=9009
FirewallRules: [{132939CE-1252-4C5E-877A-5755C3B45DA2}] => (Allow) LPort=9009
FirewallRules: [{CE829B87-1085-4C22-A6AB-2F5238E57095}] => (Allow) LPort=9009
FirewallRules: [{B3164246-07BB-4E85-B722-5CD627C3B610}] => (Allow) LPort=9009
FirewallRules: [{34F9242D-7853-48F3-9B44-8FD71D025D46}] => (Allow) LPort=9009
FirewallRules: [{9EAE6F35-9A2E-4F09-B1CA-E6619FD9ECF0}] => (Allow) LPort=9009
FirewallRules: [{4D8144FE-7B86-4BBF-89A7-53300C4BC320}] => (Allow) LPort=9009
FirewallRules: [{4C29D06D-07D4-4209-8916-9F26811B62BD}] => (Allow) LPort=9009
FirewallRules: [{C42810F9-090A-4588-BCBC-8F8A5AE3CA44}] => (Allow) LPort=9009
FirewallRules: [{2001267D-DE1B-48ED-96FF-9C1968A6C9ED}] => (Allow) LPort=9009
FirewallRules: [{4ABACCB7-E70B-4DBC-BCDF-5ECBB47036C4}] => (Allow) LPort=9009
FirewallRules: [{5140D376-9949-4C70-8D61-076A93A48FB4}] => (Allow) LPort=9009
FirewallRules: [{FD17C371-CE51-416E-BE38-5467B83AB7BD}] => (Allow) LPort=9009
FirewallRules: [{43E5187D-A86A-4B86-B62C-2BD5AFAA806A}] => (Allow) LPort=9009
FirewallRules: [{7FEDF933-B400-453E-A4D2-1793DC6B2914}] => (Allow) LPort=9009
FirewallRules: [{0968BE09-B5EA-4177-B48F-BBC1A4D6FB31}] => (Allow) LPort=9009

EmptyTemp:

Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#20 Příspěvek od fsubin »

Toto bol velmi dlhy restart, zacinal som mat obavy, ci vobec system nastartuje.


Fix result of Farbar Recovery Scan Tool (x64) Version: 26-03-2021
Ran by fsubi (26-03-2021 12:37:20) Run:3
Running from E:\Users\Filip\OneDrive\Downloads
Loaded Profiles: fsubi & psubi
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:

C:\Program Files (x86)\Google\Google Toolbar

HKLM-x32\...\Run: [NBAgent] => D:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe [1493288 2012-01-13] (Nero AG -> Nero AG)
HKLM-x32\...\Run: [AgentMonitor] => D:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [697408 2019-03-13] (Vtech Electronics North America, L.L.C. -> )
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [QMxNetworkSync] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Amazon Music Helper] => C:\Users\fsubi\AppData\Local\Amazon Music\Amazon Music Helper.exe [2098512 2021-02-10] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\MountPoints2: {c7064c84-f5a6-11ea-ad1d-18c04d29336b} - "G:\WD Drive Unlock.exe" autoplay=true
Task: {3C33982B-7BD6-4F18-9661-6211A7B6945E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {3E966867-AF57-4A75-A9BB-3D0CB037E651} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-09-05] (Google Inc -> Google Inc.)
Task: {72F0536A-BE1D-4BD7-A5D4-3094766D2F2B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-09-05] (Google Inc -> Google Inc.)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
SearchScopes: HKU\S-1-5-21-971254259-73155972-3602281376-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2020-09-05] (Google Inc -> Google Inc.)
BHO-x32: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2020-09-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2020-09-05] (Google Inc -> Google Inc.)
FirewallRules: [{B77F7887-1FC0-4E68-819C-DFB40566D571}] => (Allow) LPort=9009
FirewallRules: [{95CBCD59-7A02-4A27-9839-A613A8D94183}] => (Allow) LPort=9009
FirewallRules: [{EB08D9D6-EBC3-408C-86C5-D2EF6CC67B96}] => (Allow) LPort=9009
FirewallRules: [{4A617007-4636-4AC0-BAE1-A89A0F33C225}] => (Allow) LPort=9009
FirewallRules: [{4FC83B18-59A7-4BD3-8DE5-F77CE034D68B}] => (Allow) LPort=9009
FirewallRules: [{E29E455B-AA7F-438B-B9AC-7E59B5BB69D4}] => (Allow) LPort=9009
FirewallRules: [{389CDD71-81AF-4077-95DA-072C32A695E8}] => (Allow) LPort=9009
FirewallRules: [{652D7198-7A7E-4757-B671-241F0BE2DEF4}] => (Allow) LPort=9009
FirewallRules: [{1AA4FE23-9DF3-4267-96DF-C0D792841D9D}] => (Allow) LPort=9009
FirewallRules: [{B46C37A4-E449-48D3-BEE3-DAAFC72632E1}] => (Allow) LPort=9009
FirewallRules: [{2DF83964-82CE-41F9-92F1-CB6E59595578}] => (Allow) LPort=9009
FirewallRules: [{D5C631FE-7C8E-48BA-A165-6331E7B7B6EE}] => (Allow) LPort=9009
FirewallRules: [{CF89B38B-8850-4842-B3BB-DD18A9E08ECC}] => (Allow) LPort=9009
FirewallRules: [{28667155-BF4D-4403-B2CB-F55E47AD87A3}] => (Allow) LPort=9009
FirewallRules: [{BD8B88BA-F919-42A3-A2BF-D4676EA9AFF4}] => (Allow) LPort=9009
FirewallRules: [{B8F5F605-B12E-40FC-A1C0-267C8B455F7B}] => (Allow) LPort=9009
FirewallRules: [{37E61BD7-0D25-4631-A5E5-0C6BB79976FE}] => (Allow) LPort=9009
FirewallRules: [{74BF8B90-64A2-45C0-B5E9-A44DF2C0286B}] => (Allow) LPort=9009
FirewallRules: [{3AC6D445-C159-4033-B914-A42B8837B45D}] => (Allow) LPort=9009
FirewallRules: [{55D5D798-C476-46E4-A8A6-4BF4A5F198D0}] => (Allow) LPort=9009
FirewallRules: [{6E15803A-D235-4AED-AC73-52CD68F68452}] => (Allow) LPort=9009
FirewallRules: [{D8A10306-2487-4AB7-8A12-171FD245FB3F}] => (Allow) LPort=9009
FirewallRules: [{43ACFC2B-7C52-4F3D-979C-A10C61349DB9}] => (Allow) LPort=9009
FirewallRules: [{7DD53090-09B0-4A7A-BA3A-106EC494B835}] => (Allow) LPort=9009
FirewallRules: [{81B635DF-8982-4A60-9307-154613CE4C19}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => No File
FirewallRules: [{E85E5691-681E-4132-B74E-6BDEEEE78D4F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => No File
FirewallRules: [{923E07A9-3973-4FDC-ADD0-E5A5A28088C1}] => (Allow) LPort=9009
FirewallRules: [{6CC43093-B3CC-4ECE-83E6-274D9C8B3C38}] => (Allow) LPort=9009
FirewallRules: [{14E8870F-A948-4131-8374-BB5DD5567D27}] => (Allow) LPort=9009
FirewallRules: [{ECB6468A-1B8E-4741-990E-20E3E0B6B83A}] => (Allow) LPort=9009
FirewallRules: [{5A25B191-CC84-40FC-8D23-143A9DC09052}] => (Allow) LPort=9009
FirewallRules: [{542B7853-B7E9-490C-8F3C-BFD353F305C7}] => (Allow) LPort=9009
FirewallRules: [{F176FA17-47A9-4A07-86A2-026011F9AB85}] => (Allow) LPort=9009
FirewallRules: [{7643B170-EA9C-42F9-8323-384B15C2897C}] => (Allow) LPort=9009
FirewallRules: [{684BAD0A-387E-4EDF-8B16-DE39B9C08E78}] => (Allow) LPort=9009
FirewallRules: [{5638F6D1-53C1-4B48-819C-C4F6AF3420CC}] => (Allow) LPort=9009
FirewallRules: [{F2B40A88-EBDA-4DBC-BE51-B7DAB96FCFBE}] => (Allow) LPort=9009
FirewallRules: [{EF2B0D2A-879C-4DE6-89E0-7C1D754FE69D}] => (Allow) LPort=9009
FirewallRules: [{81D4DA90-EA6F-4867-81DE-30340923587E}] => (Allow) LPort=9009
FirewallRules: [{FD7B3E84-9288-45B8-B8F0-CBE4E143F36F}] => (Allow) LPort=9009
FirewallRules: [{8A824E83-86B8-4EE5-9FA4-87182F4D63FE}] => (Allow) LPort=9009
FirewallRules: [{B92DB760-7904-415F-94D5-CE6E9D81AD34}] => (Allow) LPort=9009
FirewallRules: [{CD7FD727-D87C-47C9-ABE6-038F8C31E1FF}] => (Allow) LPort=9009
FirewallRules: [{F11EAA6D-72DB-44D4-81EB-95029DB3223D}] => (Allow) LPort=9009
FirewallRules: [{CEC7E2E8-0F93-402B-A495-5C8342430D64}] => (Allow) LPort=9009
FirewallRules: [{08A58799-DDCC-4378-9510-37CBC2660634}] => (Allow) LPort=9009
FirewallRules: [{5FC0C8F6-1F9A-417B-BACF-93A86147A4D1}] => (Allow) LPort=9009
FirewallRules: [{62914916-60DC-40BF-8DCE-D35C3BB8D245}] => (Allow) LPort=9009
FirewallRules: [{EC4E4882-5C9A-4A7E-8068-C834E52FECA6}] => (Allow) LPort=9009
FirewallRules: [{BCA8B29E-27A6-4F20-B7B0-0F99BA8C48D4}] => (Allow) LPort=9009
FirewallRules: [{45804EE5-FFDE-4E33-B272-3E6B0EFEA9C9}] => (Allow) LPort=9009
FirewallRules: [{C20AE677-4579-41AD-99C5-B463FE9A6F5B}] => (Allow) LPort=9009
FirewallRules: [{F330BA7C-2201-48E2-887F-454942ED4392}] => (Allow) LPort=9009
FirewallRules: [{AA6F2409-7D49-4173-A332-04B15C058898}] => (Allow) LPort=9009
FirewallRules: [{A6212D22-5133-4708-9FD7-58B3EFD2CACD}] => (Allow) LPort=9009
FirewallRules: [{BE9BB85E-3266-480D-8D98-37E4FFF4A636}] => (Allow) LPort=9009
FirewallRules: [{8F1B572F-0B02-47C8-BF66-3B7FCF307236}] => (Allow) LPort=9009
FirewallRules: [{82D10970-0DFA-4045-8A2C-9F4A6C21EC5E}] => (Allow) LPort=9009
FirewallRules: [{3DE4759F-19BD-4215-87CD-1C88D4A7C16A}] => (Allow) LPort=9009
FirewallRules: [{E821C539-E423-4D5F-AE33-90F1E281C1F4}] => (Allow) LPort=9009
FirewallRules: [{BA7ACE54-4548-4A4F-9539-6E8954716B34}] => (Allow) LPort=9009
FirewallRules: [{D3BCFCD7-8239-44FC-B4A7-82A9D208BEC2}] => (Allow) LPort=9009
FirewallRules: [{2504C8E5-55E8-49A2-ACBD-69236266A49B}] => (Allow) LPort=9009
FirewallRules: [{D3C9D3C7-3DBA-4AA1-8599-E492CF8702A3}] => (Allow) LPort=9009
FirewallRules: [{D0F65DC9-130C-4BD7-A10F-E757730F8829}] => (Allow) LPort=9009
FirewallRules: [{ABCE5657-2805-4D96-A02E-8517B93AE317}] => (Allow) LPort=9009
FirewallRules: [{E693F0DE-ACDD-41A7-9C8C-D900CF70BD1F}] => (Allow) LPort=9009
FirewallRules: [{37B0C183-AAE7-432E-B086-6A80D3C811C9}] => (Allow) LPort=9009
FirewallRules: [{400135D0-3425-4E47-94B1-980F716145DC}] => (Allow) LPort=9009
FirewallRules: [{373E4645-ED29-470E-874E-D0114941A16F}] => (Allow) LPort=9009
FirewallRules: [{6F36507B-F629-4692-BADE-9A28F2E6F249}] => (Allow) LPort=9009
FirewallRules: [{D89A7BBD-5025-4E74-B2C9-144A8776446E}] => (Allow) LPort=9009
FirewallRules: [{C0C692E1-B805-414E-895D-8C039BE64FD7}] => (Allow) LPort=9009
FirewallRules: [{D5397CEE-3BAA-4046-8FA4-BD9EBBA018A2}] => (Allow) LPort=9009
FirewallRules: [{FE583904-6558-4F88-9DD2-5D3E6D8595A2}] => (Allow) LPort=9009
FirewallRules: [{59AD8877-8D8F-4241-97D7-7F4B3C8FAD03}] => (Allow) LPort=9009
FirewallRules: [{3AE9BCD2-7CA4-4518-B7E6-674DE522D01E}] => (Allow) LPort=9009
FirewallRules: [{76820791-8AC0-48F3-BCBE-494B2B5DE736}] => (Allow) LPort=9009
FirewallRules: [{5CC9C423-FCCE-4EDB-99E4-FB4BAFD32718}] => (Allow) LPort=9009
FirewallRules: [{6D7B9FEA-5268-4869-97C0-DFCF54CD6532}] => (Allow) LPort=9009
FirewallRules: [{45FBC764-AA7C-4524-AA80-71C96F3DB9D7}] => (Allow) LPort=9009
FirewallRules: [{1141DE47-490F-4E47-B8BC-2495DDCE56B0}] => (Allow) LPort=9009
FirewallRules: [{17DB257E-05A7-4617-B432-7CFD9F6E5D52}] => (Allow) LPort=9009
FirewallRules: [{43806569-873F-4BDD-BB71-13222C1DC74C}] => (Allow) LPort=9009
FirewallRules: [{1BD881F4-ACEE-4D09-B52D-DF6D353A2E12}] => (Allow) LPort=9009
FirewallRules: [{B7BBC310-325B-46CD-9320-4CCAA02E9BDF}] => (Allow) LPort=9009
FirewallRules: [{88DA30F2-2EF7-491C-9B51-65BFA5DD299E}] => (Allow) LPort=9009
FirewallRules: [{A5A22D73-AA43-4D08-BE06-8B615A9CC1CF}] => (Allow) LPort=9009
FirewallRules: [{1CC17E8A-83DE-41AE-B5CD-86BEAF2AA12B}] => (Allow) LPort=9009
FirewallRules: [{0CA6A2E2-B1E2-4781-BD4F-9B2541D8A083}] => (Allow) LPort=9009
FirewallRules: [{4B863613-0CFF-4016-96AE-94BBEE576F94}] => (Allow) LPort=9009
FirewallRules: [{5800975D-BCE7-4559-8C3F-3DB301A973DC}] => (Allow) LPort=9009
FirewallRules: [{6881976B-7172-45DA-B60E-7A699E7E2D24}] => (Allow) LPort=9009
FirewallRules: [{378CA4EF-C7F9-45B4-9C33-B7F3DC4C4E79}] => (Allow) LPort=9009
FirewallRules: [{F991DA17-695A-4476-8795-CBC768384D2B}] => (Allow) LPort=9009
FirewallRules: [{F075DB9C-A7A5-490A-AA5E-9B723ED1BFD6}] => (Allow) LPort=9009
FirewallRules: [{BF723838-ED09-4DD6-B095-AB9A65A268C4}] => (Allow) LPort=9009
FirewallRules: [{D46A8EB6-DEB6-47B4-A22F-B9608AA6C9CD}] => (Allow) LPort=9009
FirewallRules: [{97D84B4B-70F6-461F-B840-7EF76C7D873C}] => (Allow) LPort=9009
FirewallRules: [{67C3E0F6-2FDD-45A9-BE21-8B61742479A5}] => (Allow) LPort=9009
FirewallRules: [{B6B6C2D5-A173-4293-ABAB-FF246DAEB5EE}] => (Allow) LPort=9009
FirewallRules: [{175DC71D-E1DC-4939-8F91-9594AD61269A}] => (Allow) LPort=9009
FirewallRules: [{007EB5AB-9A7F-4EB8-AB18-0B0A4C2D464B}] => (Allow) LPort=9009
FirewallRules: [{7FF3FE0B-2077-4C22-BC54-44303E4A0993}] => (Allow) LPort=9009
FirewallRules: [{B8587FC9-8C0C-4586-B1F7-A52E1B769615}] => (Allow) LPort=9009
FirewallRules: [{E190E9D9-CF18-451D-B17A-923934247A80}] => (Allow) LPort=9009
FirewallRules: [{5DEBFABF-DA4D-494A-92E9-F676247D2147}] => (Allow) LPort=9009
FirewallRules: [{0CB1FC4F-56D6-4FDF-9604-FF394EBA11BD}] => (Allow) LPort=9009
FirewallRules: [{27BB64C8-5F2D-4875-9A28-A2FF75D12736}] => (Allow) LPort=9009
FirewallRules: [{CB68BCAE-B01E-42C8-9C23-EDFAF73FEB7C}] => (Allow) LPort=9009
FirewallRules: [{DF4A752C-34C4-4996-B007-760C7AD31BBB}] => (Allow) LPort=9009
FirewallRules: [{D2B3A63F-F0CE-4FA2-B694-6567C94A4438}] => (Allow) LPort=9009
FirewallRules: [{FBACC781-74EF-4D59-8E8C-4D2E2FC02E46}] => (Allow) LPort=9009
FirewallRules: [{1A300089-8540-4F11-B62E-456CA2290878}] => (Allow) LPort=9009
FirewallRules: [{595B876C-7008-4BF3-9928-2C0996DF9AC8}] => (Allow) LPort=9009
FirewallRules: [{1E149926-0AE7-482A-8CF2-C779687DC76B}] => (Allow) LPort=9009
FirewallRules: [{3B976A87-F25F-4209-B36D-A0921AE0AE96}] => (Allow) LPort=9009
FirewallRules: [{5F03E14D-285C-4390-88EE-D9AA9CDFCA2B}] => (Allow) LPort=9009
FirewallRules: [{74BFA161-7281-4BFA-9B11-48866699C915}] => (Allow) LPort=9009
FirewallRules: [{76EE873F-B597-444F-8EF9-2278242F2561}] => (Allow) LPort=9009
FirewallRules: [{41207151-A878-4945-B529-DDB1296E8012}] => (Allow) LPort=9009
FirewallRules: [{E2F97833-71B1-4842-A003-3C6C08DD2103}] => (Allow) LPort=9009
FirewallRules: [{829C8DCE-B94F-4A7A-ABF7-2C6DCD6A1489}] => (Allow) LPort=9009
FirewallRules: [{21A5D4B9-394C-492E-A886-FD6C52DEBD7B}] => (Allow) LPort=9009
FirewallRules: [{46545D81-B0E4-4830-82B2-19B3AAA2322E}] => (Allow) LPort=9009
FirewallRules: [{B0555A55-C3CD-4C2F-984A-D1983DA47628}] => (Allow) LPort=9009
FirewallRules: [{1286EE57-1374-4BAD-B4FF-D8E75B2E07DB}] => (Allow) LPort=9009
FirewallRules: [{C6BBB632-83EA-4314-9926-2EF086952AC0}] => (Allow) LPort=9009
FirewallRules: [{A8DF4779-0BCA-40CD-83DD-9E86D47B3B89}] => (Allow) LPort=9009
FirewallRules: [{AB949E24-A517-4BDC-A9C4-FDA29F54B7EE}] => (Allow) LPort=5454
FirewallRules: [{5E87AA9E-696B-42D6-BB1B-E60499163F88}] => (Allow) LPort=9009
FirewallRules: [{3F137B3B-82E8-4BD3-9A37-C0BF4E37D3B9}] => (Allow) LPort=9009
FirewallRules: [{AD817A49-9F11-4E1A-9480-A96F53DB3156}] => (Allow) LPort=9009
FirewallRules: [{B91C088A-6BDC-4F53-8D23-5886B37A6BE8}] => (Allow) LPort=9009
FirewallRules: [{86D9B9C8-5A2A-4A28-A989-A2FB38FD5D09}] => (Allow) LPort=9009
FirewallRules: [{4F7FF186-BD11-4796-8221-46328706D2F7}] => (Allow) LPort=9009
FirewallRules: [{1081D948-779F-4ADE-8648-A1720FBE7FB8}] => (Allow) LPort=9009
FirewallRules: [{459B1DAD-35E8-444D-8868-6D6864ACDC16}] => (Allow) LPort=9009
FirewallRules: [{DEAF4AB1-4EEE-4615-AE74-CD004E6D5CE2}] => (Allow) LPort=9009
FirewallRules: [{7853EF27-6E47-4170-8486-BB064809E635}] => (Allow) LPort=9009
FirewallRules: [{895B38AE-0794-4681-8E2D-495657BE858F}] => (Allow) LPort=9009
FirewallRules: [{69F3B5B4-9BB6-4D85-88B7-47B562B8BB60}] => (Allow) LPort=9009
FirewallRules: [{7EF01CE9-FD15-435E-98D1-71A54AA743D0}] => (Allow) LPort=9009
FirewallRules: [{817E9515-7B42-4EDE-8EAF-732E6E80DAC5}] => (Allow) LPort=9009
FirewallRules: [{A3C5C974-13FE-44DE-9AE3-F5B0331CB4A3}] => (Allow) LPort=9009
FirewallRules: [{30C97E89-7691-4253-8836-F43483BB7A1A}] => (Allow) LPort=9009
FirewallRules: [{F9B35815-552D-494B-BAE0-A3B62124DA96}] => (Allow) LPort=9009
FirewallRules: [{C18B974B-E76F-47FB-B874-6DC1AD8C7482}] => (Allow) LPort=9009
FirewallRules: [{6071EDA1-827E-4C1F-AEA5-EE818912AEDD}] => (Allow) LPort=9009
FirewallRules: [{2CA28856-1DB7-4D79-BE08-79A911621C21}] => (Allow) LPort=9009
FirewallRules: [{9F7C797C-D6FB-4C31-BA81-747542928691}] => (Allow) LPort=9009
FirewallRules: [{FFC58480-BCAA-4B81-9189-1B6C4F82467D}] => (Allow) LPort=9009
FirewallRules: [{AD426262-B9C9-4F0E-A3E2-1F5158D63CBB}] => (Allow) LPort=9009
FirewallRules: [{C26FBEB4-010A-495B-996E-AF975DA36942}] => (Allow) LPort=9009
FirewallRules: [{9850BCF4-D86C-4B6F-B7F4-21294E8974B7}] => (Allow) LPort=9009
FirewallRules: [{81F3ABBB-C218-41E0-BCE5-E377057164A3}] => (Allow) LPort=9009
FirewallRules: [{75EB650E-1FF2-4E11-B171-6BCDFF343CD5}] => (Allow) LPort=9009
FirewallRules: [{739AA885-9EC2-4DDD-BA20-825D52FF42CF}] => (Allow) LPort=9009
FirewallRules: [{B181E00D-3D0B-49CC-A63C-E260384CF7B0}] => (Allow) LPort=9009
FirewallRules: [{CC27B110-253A-492B-A713-D8D4613670C7}] => (Allow) LPort=9009
FirewallRules: [{4B735C2E-907D-448C-9AE8-7A871D05DBB6}] => (Allow) LPort=5354
FirewallRules: [{B5C886C5-ACB6-4DCE-B4FF-C75931A0A20D}] => (Allow) LPort=5354
FirewallRules: [{888159BE-7AFC-40E2-BA5B-76D60E8D7627}] => (Allow) LPort=5354
FirewallRules: [{4D88088D-3626-41B7-A4B8-F93D9E1FD9F4}] => (Allow) LPort=5354
FirewallRules: [{A0171FAF-C1FA-476E-AE74-BACAFC0C5E94}] => (Allow) LPort=9009
FirewallRules: [{E57113C1-A68D-41E5-B110-2DE11D3890BC}] => (Allow) LPort=9009
FirewallRules: [{14AC3137-3CC7-4109-90D3-B7517AF241AE}] => (Allow) LPort=9009
FirewallRules: [{EE19A341-0EA1-4A7A-A1E4-9046DF6C2DEF}] => (Allow) LPort=9009
FirewallRules: [{010165F6-F98E-49D1-BCAD-DE7746778BF9}] => (Allow) LPort=9009
FirewallRules: [{4B63C1ED-581D-4089-8920-8883112CF764}] => (Allow) LPort=9009
FirewallRules: [{29614E04-E86C-4F58-972C-1B9E09776B16}] => (Allow) LPort=9009
FirewallRules: [{5FF47B47-29EA-45C2-BEA7-E3C21BF2DCCE}] => (Allow) LPort=9009
FirewallRules: [{3BEA98D3-CCF9-4247-A039-0007FBCAEF3F}] => (Allow) LPort=9009
FirewallRules: [{E36AF2E0-0B56-442D-9F28-306EAC027A79}] => (Allow) LPort=9009
FirewallRules: [{C01F8C10-CAD1-45ED-97A4-9ECCAAE58DA0}] => (Allow) LPort=9009
FirewallRules: [{2B8AE9A1-D1D3-410B-863E-C6F807EE3368}] => (Allow) LPort=9009
FirewallRules: [{5F76C018-B2DB-47E4-BE5E-55D426D1229B}] => (Allow) LPort=9009
FirewallRules: [{2C791805-A1D9-43C7-9471-D51F0BD4EDC3}] => (Allow) LPort=9009
FirewallRules: [{6FB67CCC-36AB-4532-B4D7-BABCADB6C733}] => (Allow) LPort=9009
FirewallRules: [{90327759-CF1D-467C-8EF7-9F19F425A5F4}] => (Allow) LPort=9009
FirewallRules: [{A4BE1A56-6737-40F9-9382-3B101F439121}] => (Allow) LPort=9009
FirewallRules: [{1BBC45E9-EE3F-406D-A6BD-AC905BE7FC43}] => (Allow) LPort=9009
FirewallRules: [{C6FF1A9B-A764-4F43-A8ED-8F8FF2FCBD32}] => (Allow) LPort=9009
FirewallRules: [{804210B8-A899-4538-BE91-8C8C475FC95C}] => (Allow) LPort=9009
FirewallRules: [{A0129950-11D1-44C5-BE75-93030F6CE862}] => (Allow) LPort=9009
FirewallRules: [{8481638D-59D4-464C-9B41-EB05E4A5DD5B}] => (Allow) LPort=9009
FirewallRules: [{7667BB08-DDA3-4C3E-A19E-20ACE7F8981B}] => (Allow) LPort=9009
FirewallRules: [{1657C98D-E2CC-4352-867D-6F819703C4D9}] => (Allow) LPort=9009
FirewallRules: [{4EF31C74-EA1F-4337-8A89-FD7A13C12BA0}] => (Allow) LPort=9009
FirewallRules: [{FCC0BBFD-10D5-49B2-9B2C-E4F3627F0DBD}] => (Allow) LPort=9009
FirewallRules: [{8100B011-4914-4931-900A-3E0D2998975C}] => (Allow) LPort=9009
FirewallRules: [{CE09A072-8623-4730-ADE2-0FB65F13C060}] => (Allow) LPort=9009
FirewallRules: [{705BE12D-C926-4EC3-9EE2-9974E85FCDEA}] => (Allow) LPort=9009
FirewallRules: [{A246D3AF-3B6D-479C-BB35-10CE64BDA778}] => (Allow) LPort=9009
FirewallRules: [{933F558C-1776-4291-91D4-4333F613C9AB}] => (Allow) LPort=9009
FirewallRules: [{5D23003C-2EF9-40BF-9F4C-AE3A6150FD80}] => (Allow) LPort=9009
FirewallRules: [{5287DB6A-6365-4DDF-AD9E-F08ADE89F3CA}] => (Allow) LPort=9009
FirewallRules: [{1CCCA45E-1750-458B-9037-FBC497E2912A}] => (Allow) LPort=9009
FirewallRules: [{566760D8-FCA6-4EE4-9CB9-13C34A82F604}] => (Allow) LPort=9009
FirewallRules: [{C87E82DF-7AE7-4AF7-BD68-2B6FC149519A}] => (Allow) LPort=9009
FirewallRules: [{C1D4C424-24D6-42CA-9DD6-1876B378A6BC}] => (Allow) LPort=9009
FirewallRules: [{C7851989-20BE-495A-A6D8-56EFAD8536AE}] => (Allow) LPort=9009
FirewallRules: [{B7A17B74-D88F-4560-B688-FBAA908A9697}] => (Allow) LPort=9009
FirewallRules: [{50FBD781-014C-4B98-817B-EDD7D58E4A5D}] => (Allow) LPort=9009
FirewallRules: [{12F9EE3E-D3A6-4496-8930-592B0F0D3B47}] => (Allow) LPort=9009
FirewallRules: [{BDBC27C0-BB1F-411A-901B-3FBF7765DAB2}] => (Allow) LPort=9009
FirewallRules: [{514FD534-3EAA-483B-9BE9-4FE7B6A9418C}] => (Allow) LPort=9009
FirewallRules: [{19CE6C83-240C-4B57-8947-3C4E4D56D031}] => (Allow) LPort=9009
FirewallRules: [{F1A7F5BA-BFD5-4D97-A164-97A7B7E44BEF}] => (Allow) LPort=9009
FirewallRules: [{1C6A3E0B-BDA7-4F53-A082-E5F19D0E672F}] => (Allow) LPort=9009
FirewallRules: [{4837CD10-EE84-41A7-8B69-5E65397286D4}] => (Allow) LPort=9009
FirewallRules: [{132939CE-1252-4C5E-877A-5755C3B45DA2}] => (Allow) LPort=9009
FirewallRules: [{CE829B87-1085-4C22-A6AB-2F5238E57095}] => (Allow) LPort=9009
FirewallRules: [{B3164246-07BB-4E85-B722-5CD627C3B610}] => (Allow) LPort=9009
FirewallRules: [{34F9242D-7853-48F3-9B44-8FD71D025D46}] => (Allow) LPort=9009
FirewallRules: [{9EAE6F35-9A2E-4F09-B1CA-E6619FD9ECF0}] => (Allow) LPort=9009
FirewallRules: [{4D8144FE-7B86-4BBF-89A7-53300C4BC320}] => (Allow) LPort=9009
FirewallRules: [{4C29D06D-07D4-4209-8916-9F26811B62BD}] => (Allow) LPort=9009
FirewallRules: [{C42810F9-090A-4588-BCBC-8F8A5AE3CA44}] => (Allow) LPort=9009
FirewallRules: [{2001267D-DE1B-48ED-96FF-9C1968A6C9ED}] => (Allow) LPort=9009
FirewallRules: [{4ABACCB7-E70B-4DBC-BCDF-5ECBB47036C4}] => (Allow) LPort=9009
FirewallRules: [{5140D376-9949-4C70-8D61-076A93A48FB4}] => (Allow) LPort=9009
FirewallRules: [{FD17C371-CE51-416E-BE38-5467B83AB7BD}] => (Allow) LPort=9009
FirewallRules: [{43E5187D-A86A-4B86-B62C-2BD5AFAA806A}] => (Allow) LPort=9009
FirewallRules: [{7FEDF933-B400-453E-A4D2-1793DC6B2914}] => (Allow) LPort=9009
FirewallRules: [{0968BE09-B5EA-4177-B48F-BBC1A4D6FB31}] => (Allow) LPort=9009

EmptyTemp:

*****************

Processes closed successfully.
"C:\Program Files (x86)\Google\Google Toolbar" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\NBAgent" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AgentMonitor" => not found
"HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Windows\CurrentVersion\Run\\QMxNetworkSync" => removed successfully
"HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => removed successfully
"HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Amazon Music Helper" => removed successfully
HKU\S-1-5-21-971254259-73155972-3602281376-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c7064c84-f5a6-11ea-ad1d-18c04d29336b} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C33982B-7BD6-4F18-9661-6211A7B6945E}" => not found
"C:\Windows\System32\Tasks\Adobe Acrobat Update Task" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E966867-AF57-4A75-A9BB-3D0CB037E651}" => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{72F0536A-BE1D-4BD7-A5D4-3094766D2F2B}" => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => not found
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => not found
"HKU\S-1-5-21-971254259-73155972-3602281376-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => not found
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => not found
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B77F7887-1FC0-4E68-819C-DFB40566D571}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{95CBCD59-7A02-4A27-9839-A613A8D94183}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EB08D9D6-EBC3-408C-86C5-D2EF6CC67B96}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4A617007-4636-4AC0-BAE1-A89A0F33C225}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4FC83B18-59A7-4BD3-8DE5-F77CE034D68B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E29E455B-AA7F-438B-B9AC-7E59B5BB69D4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{389CDD71-81AF-4077-95DA-072C32A695E8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{652D7198-7A7E-4757-B671-241F0BE2DEF4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1AA4FE23-9DF3-4267-96DF-C0D792841D9D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B46C37A4-E449-48D3-BEE3-DAAFC72632E1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2DF83964-82CE-41F9-92F1-CB6E59595578}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D5C631FE-7C8E-48BA-A165-6331E7B7B6EE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CF89B38B-8850-4842-B3BB-DD18A9E08ECC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{28667155-BF4D-4403-B2CB-F55E47AD87A3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BD8B88BA-F919-42A3-A2BF-D4676EA9AFF4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8F5F605-B12E-40FC-A1C0-267C8B455F7B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{37E61BD7-0D25-4631-A5E5-0C6BB79976FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74BF8B90-64A2-45C0-B5E9-A44DF2C0286B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3AC6D445-C159-4033-B914-A42B8837B45D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{55D5D798-C476-46E4-A8A6-4BF4A5F198D0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6E15803A-D235-4AED-AC73-52CD68F68452}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D8A10306-2487-4AB7-8A12-171FD245FB3F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{43ACFC2B-7C52-4F3D-979C-A10C61349DB9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7DD53090-09B0-4A7A-BA3A-106EC494B835}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{81B635DF-8982-4A60-9307-154613CE4C19}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E85E5691-681E-4132-B74E-6BDEEEE78D4F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{923E07A9-3973-4FDC-ADD0-E5A5A28088C1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6CC43093-B3CC-4ECE-83E6-274D9C8B3C38}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14E8870F-A948-4131-8374-BB5DD5567D27}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ECB6468A-1B8E-4741-990E-20E3E0B6B83A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A25B191-CC84-40FC-8D23-143A9DC09052}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{542B7853-B7E9-490C-8F3C-BFD353F305C7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F176FA17-47A9-4A07-86A2-026011F9AB85}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7643B170-EA9C-42F9-8323-384B15C2897C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{684BAD0A-387E-4EDF-8B16-DE39B9C08E78}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5638F6D1-53C1-4B48-819C-C4F6AF3420CC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F2B40A88-EBDA-4DBC-BE51-B7DAB96FCFBE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EF2B0D2A-879C-4DE6-89E0-7C1D754FE69D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{81D4DA90-EA6F-4867-81DE-30340923587E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FD7B3E84-9288-45B8-B8F0-CBE4E143F36F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8A824E83-86B8-4EE5-9FA4-87182F4D63FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B92DB760-7904-415F-94D5-CE6E9D81AD34}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CD7FD727-D87C-47C9-ABE6-038F8C31E1FF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F11EAA6D-72DB-44D4-81EB-95029DB3223D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CEC7E2E8-0F93-402B-A495-5C8342430D64}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{08A58799-DDCC-4378-9510-37CBC2660634}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5FC0C8F6-1F9A-417B-BACF-93A86147A4D1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{62914916-60DC-40BF-8DCE-D35C3BB8D245}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EC4E4882-5C9A-4A7E-8068-C834E52FECA6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BCA8B29E-27A6-4F20-B7B0-0F99BA8C48D4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{45804EE5-FFDE-4E33-B272-3E6B0EFEA9C9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C20AE677-4579-41AD-99C5-B463FE9A6F5B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F330BA7C-2201-48E2-887F-454942ED4392}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AA6F2409-7D49-4173-A332-04B15C058898}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A6212D22-5133-4708-9FD7-58B3EFD2CACD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BE9BB85E-3266-480D-8D98-37E4FFF4A636}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8F1B572F-0B02-47C8-BF66-3B7FCF307236}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{82D10970-0DFA-4045-8A2C-9F4A6C21EC5E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3DE4759F-19BD-4215-87CD-1C88D4A7C16A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E821C539-E423-4D5F-AE33-90F1E281C1F4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BA7ACE54-4548-4A4F-9539-6E8954716B34}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D3BCFCD7-8239-44FC-B4A7-82A9D208BEC2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2504C8E5-55E8-49A2-ACBD-69236266A49B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D3C9D3C7-3DBA-4AA1-8599-E492CF8702A3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D0F65DC9-130C-4BD7-A10F-E757730F8829}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ABCE5657-2805-4D96-A02E-8517B93AE317}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E693F0DE-ACDD-41A7-9C8C-D900CF70BD1F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{37B0C183-AAE7-432E-B086-6A80D3C811C9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{400135D0-3425-4E47-94B1-980F716145DC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{373E4645-ED29-470E-874E-D0114941A16F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F36507B-F629-4692-BADE-9A28F2E6F249}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D89A7BBD-5025-4E74-B2C9-144A8776446E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C0C692E1-B805-414E-895D-8C039BE64FD7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D5397CEE-3BAA-4046-8FA4-BD9EBBA018A2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FE583904-6558-4F88-9DD2-5D3E6D8595A2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{59AD8877-8D8F-4241-97D7-7F4B3C8FAD03}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3AE9BCD2-7CA4-4518-B7E6-674DE522D01E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{76820791-8AC0-48F3-BCBE-494B2B5DE736}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5CC9C423-FCCE-4EDB-99E4-FB4BAFD32718}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6D7B9FEA-5268-4869-97C0-DFCF54CD6532}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{45FBC764-AA7C-4524-AA80-71C96F3DB9D7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1141DE47-490F-4E47-B8BC-2495DDCE56B0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{17DB257E-05A7-4617-B432-7CFD9F6E5D52}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{43806569-873F-4BDD-BB71-13222C1DC74C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BD881F4-ACEE-4D09-B52D-DF6D353A2E12}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B7BBC310-325B-46CD-9320-4CCAA02E9BDF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{88DA30F2-2EF7-491C-9B51-65BFA5DD299E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A5A22D73-AA43-4D08-BE06-8B615A9CC1CF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1CC17E8A-83DE-41AE-B5CD-86BEAF2AA12B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0CA6A2E2-B1E2-4781-BD4F-9B2541D8A083}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4B863613-0CFF-4016-96AE-94BBEE576F94}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5800975D-BCE7-4559-8C3F-3DB301A973DC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6881976B-7172-45DA-B60E-7A699E7E2D24}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{378CA4EF-C7F9-45B4-9C33-B7F3DC4C4E79}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F991DA17-695A-4476-8795-CBC768384D2B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F075DB9C-A7A5-490A-AA5E-9B723ED1BFD6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BF723838-ED09-4DD6-B095-AB9A65A268C4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D46A8EB6-DEB6-47B4-A22F-B9608AA6C9CD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{97D84B4B-70F6-461F-B840-7EF76C7D873C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{67C3E0F6-2FDD-45A9-BE21-8B61742479A5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B6B6C2D5-A173-4293-ABAB-FF246DAEB5EE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{175DC71D-E1DC-4939-8F91-9594AD61269A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{007EB5AB-9A7F-4EB8-AB18-0B0A4C2D464B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7FF3FE0B-2077-4C22-BC54-44303E4A0993}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8587FC9-8C0C-4586-B1F7-A52E1B769615}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E190E9D9-CF18-451D-B17A-923934247A80}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5DEBFABF-DA4D-494A-92E9-F676247D2147}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0CB1FC4F-56D6-4FDF-9604-FF394EBA11BD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{27BB64C8-5F2D-4875-9A28-A2FF75D12736}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CB68BCAE-B01E-42C8-9C23-EDFAF73FEB7C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DF4A752C-34C4-4996-B007-760C7AD31BBB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D2B3A63F-F0CE-4FA2-B694-6567C94A4438}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FBACC781-74EF-4D59-8E8C-4D2E2FC02E46}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1A300089-8540-4F11-B62E-456CA2290878}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{595B876C-7008-4BF3-9928-2C0996DF9AC8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1E149926-0AE7-482A-8CF2-C779687DC76B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3B976A87-F25F-4209-B36D-A0921AE0AE96}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5F03E14D-285C-4390-88EE-D9AA9CDFCA2B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74BFA161-7281-4BFA-9B11-48866699C915}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{76EE873F-B597-444F-8EF9-2278242F2561}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{41207151-A878-4945-B529-DDB1296E8012}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E2F97833-71B1-4842-A003-3C6C08DD2103}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{829C8DCE-B94F-4A7A-ABF7-2C6DCD6A1489}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{21A5D4B9-394C-492E-A886-FD6C52DEBD7B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{46545D81-B0E4-4830-82B2-19B3AAA2322E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B0555A55-C3CD-4C2F-984A-D1983DA47628}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1286EE57-1374-4BAD-B4FF-D8E75B2E07DB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6BBB632-83EA-4314-9926-2EF086952AC0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A8DF4779-0BCA-40CD-83DD-9E86D47B3B89}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AB949E24-A517-4BDC-A9C4-FDA29F54B7EE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5E87AA9E-696B-42D6-BB1B-E60499163F88}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3F137B3B-82E8-4BD3-9A37-C0BF4E37D3B9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AD817A49-9F11-4E1A-9480-A96F53DB3156}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B91C088A-6BDC-4F53-8D23-5886B37A6BE8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{86D9B9C8-5A2A-4A28-A989-A2FB38FD5D09}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4F7FF186-BD11-4796-8221-46328706D2F7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1081D948-779F-4ADE-8648-A1720FBE7FB8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{459B1DAD-35E8-444D-8868-6D6864ACDC16}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DEAF4AB1-4EEE-4615-AE74-CD004E6D5CE2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7853EF27-6E47-4170-8486-BB064809E635}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{895B38AE-0794-4681-8E2D-495657BE858F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{69F3B5B4-9BB6-4D85-88B7-47B562B8BB60}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7EF01CE9-FD15-435E-98D1-71A54AA743D0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{817E9515-7B42-4EDE-8EAF-732E6E80DAC5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A3C5C974-13FE-44DE-9AE3-F5B0331CB4A3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{30C97E89-7691-4253-8836-F43483BB7A1A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F9B35815-552D-494B-BAE0-A3B62124DA96}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C18B974B-E76F-47FB-B874-6DC1AD8C7482}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6071EDA1-827E-4C1F-AEA5-EE818912AEDD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2CA28856-1DB7-4D79-BE08-79A911621C21}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9F7C797C-D6FB-4C31-BA81-747542928691}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FFC58480-BCAA-4B81-9189-1B6C4F82467D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AD426262-B9C9-4F0E-A3E2-1F5158D63CBB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C26FBEB4-010A-495B-996E-AF975DA36942}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9850BCF4-D86C-4B6F-B7F4-21294E8974B7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{81F3ABBB-C218-41E0-BCE5-E377057164A3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75EB650E-1FF2-4E11-B171-6BCDFF343CD5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{739AA885-9EC2-4DDD-BA20-825D52FF42CF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B181E00D-3D0B-49CC-A63C-E260384CF7B0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CC27B110-253A-492B-A713-D8D4613670C7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4B735C2E-907D-448C-9AE8-7A871D05DBB6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B5C886C5-ACB6-4DCE-B4FF-C75931A0A20D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{888159BE-7AFC-40E2-BA5B-76D60E8D7627}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D88088D-3626-41B7-A4B8-F93D9E1FD9F4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A0171FAF-C1FA-476E-AE74-BACAFC0C5E94}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E57113C1-A68D-41E5-B110-2DE11D3890BC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14AC3137-3CC7-4109-90D3-B7517AF241AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EE19A341-0EA1-4A7A-A1E4-9046DF6C2DEF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{010165F6-F98E-49D1-BCAD-DE7746778BF9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4B63C1ED-581D-4089-8920-8883112CF764}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{29614E04-E86C-4F58-972C-1B9E09776B16}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5FF47B47-29EA-45C2-BEA7-E3C21BF2DCCE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3BEA98D3-CCF9-4247-A039-0007FBCAEF3F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E36AF2E0-0B56-442D-9F28-306EAC027A79}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C01F8C10-CAD1-45ED-97A4-9ECCAAE58DA0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2B8AE9A1-D1D3-410B-863E-C6F807EE3368}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5F76C018-B2DB-47E4-BE5E-55D426D1229B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2C791805-A1D9-43C7-9471-D51F0BD4EDC3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6FB67CCC-36AB-4532-B4D7-BABCADB6C733}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{90327759-CF1D-467C-8EF7-9F19F425A5F4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A4BE1A56-6737-40F9-9382-3B101F439121}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BBC45E9-EE3F-406D-A6BD-AC905BE7FC43}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6FF1A9B-A764-4F43-A8ED-8F8FF2FCBD32}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{804210B8-A899-4538-BE91-8C8C475FC95C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A0129950-11D1-44C5-BE75-93030F6CE862}

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#21 Příspěvek od fsubin »

Log asi znovu nie je kompletny. Nic viac tom subore nie je.

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: preventivni kontrola

#22 Příspěvek od Diallix »

Mozete sem dat nove logy FRST a ADDITION?
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#23 Příspěvek od fsubin »

Bol to skor crash nez restart i nastavenia v BIOSe sa mi obnovili do default.

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#24 Příspěvek od fsubin »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-03-2021
Ran by fsubi (administrator) on SCORSESE (Gigabyte Technology Co., Ltd. Z490 AORUS ULTRA) (26-03-2021 12:47:57)
Running from E:\Users\Filip\OneDrive\Downloads
Loaded Profiles: fsubi
Platform: Windows 10 Pro Version 20H2 19042.870 (X64) Language: English (United Kingdom)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
() [File not signed] C:\Program Files\Rainlendar2\Rainlendar2.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365057.inf_amd64_c4eff47eaf88e53e\B364966\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365057.inf_amd64_c4eff47eaf88e53e\B364966\atiesrxx.exe
(Amazon.com Services LLC -> Amazon.com Services LLC) C:\Users\fsubi\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\cfosspeed.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7aa6ca9dbb25bff8\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_5d10f2aad7f84bec\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_68966115f2eef4e5\RstMwService.exe
(LeapFrog Enterprises, Inc. -> LeapFrog Enterprises, Inc.) D:\Program Files (x86)\LeapReader\LeapFrog Connect2\LFHelper.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\fsubi\AppData\Local\Microsoft\OneDrive\21.030.0211.0002\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\fsubi\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.3093.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.3093.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) C:\Windows\V0700Mon.exe
(Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\TM Flight Series\drivers\amd64\tmHInstall.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe <2>
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) D:\Program Files\NordVPN\nordvpn-service.exe
(X-Rite Incorporated -> ) D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\ColorMunki Photo Tray.exe
(X-Rite Incorporated -> X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2019-01-31] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Gigabyte Speed] => C:\Program Files\cFosSpeed\cFosSpeed.exe [1724248 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
HKLM-x32\...\Run: [V0700Mon.exe] => C:\Windows\V0700Mon.exe [28672 2011-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992040 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [3389440 2020-03-31] () [File not signed]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536424 2021-03-06] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [QMxNetworkSync] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [NordVPN] => D:\Program Files\NordVPN\NordVPN.exe [274176 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Amazon Music Helper] => C:\Users\fsubi\AppData\Local\Amazon Music\Amazon Music Helper.exe [2098512 2021-02-10] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\MountPoints2: {c7064c84-f5a6-11ea-ad1d-18c04d29336b} - "G:\WD Drive Unlock.exe" autoplay=true
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\Canon iP4900 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAW.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP4900 series: C:\Windows\system32\CNMLMAW.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2012-09-27] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2020-09-05]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorMunki Gamma.lnk [2020-12-18]
ShortcutTarget: ColorMunki Gamma.lnk -> D:\Program Files (x86)\X-Rite\ColorMunki Photo\Gamma\CalibrationLoader.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorMunkiPhotoTray.exe.lnk [2020-12-18]
ShortcutTarget: ColorMunkiPhotoTray.exe.lnk -> D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\ColorMunki Photo Tray.exe (X-Rite Incorporated -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SetupRST_ModeSwitch.lnk [2021-03-10]
ShortcutTarget: SetupRST_ModeSwitch.lnk -> C:\Program Files (x86)\GIGABYTE\AppCenter\pack\SetupRST.exe (Intel(R) Rapid Storage Technology -> Intel Corporation)
Startup: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-12-18] ()

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {125E5CB0-8E1B-4EBD-9809-4FF6C3E7C9FD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {19257E17-54BD-409B-82D6-BD9323798C97} - System32\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001 => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupdate.exe [31320 2021-03-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {2618028A-795D-488D-B7BE-2BB8A49723E4} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
Task: {2BD3A851-EDE3-4DA7-A9DB-56F091B71F2E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {2D9F587D-7707-4EE6-9DA9-41F5D1DD1BDC} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15768 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {38D5B7FE-F94F-4961-AECF-0291AA6A8F45} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {39A21086-5EA3-4DCD-8687-2F3FC26664BC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68176 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {428E89D9-8C38-4D47-931B-E6410811600D} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60496 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5D9F2634-C1D2-4A30-A406-BD26DED14AD4} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
Task: {5F22382B-246E-4162-8EF5-1A21E267A830} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5FF0D7CB-A573-487C-8D48-88318A79928A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2167464 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Task: {694B81DD-3E34-46B8-848D-18B7140FF304} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {76AADFFE-8C8A-4453-AF34-31477891C1F3} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {81286C84-111F-4E37-9BE9-5452028FFED1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {828A2158-A8BC-41F1-841B-F0A50381E96E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {855353F1-8F68-46C1-9829-6FACAEA77639} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {863EE257-9599-4AB7-9386-447569E201A5} - System32\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001 => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupload.exe [31320 2021-03-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {8ECC6BC5-A1B7-4651-A428-5EC9AA551EB9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {90F4BCD4-8798-4B90-9079-E36D9C9738D9} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9198E8C5-5F0F-4749-97C0-F4C666E3BCF8} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [387992 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {A796589C-F8A4-48D1-B0A7-8D153F80868F} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2167464 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Task: {C5010CC4-3852-4BD1-B4A8-25DDD13059FE} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18328 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {D1634F2A-9D54-4719-A81E-A9E9CA2A7F4B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {E62AEDD9-EF72-427D-9E5F-FC162313B03A} - System32\Tasks\X-Rite Device Services Software Updater => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe [24432 2015-09-18] (X-Rite Incorporated -> X-Rite Inc.)
Task: {E8714478-ABE1-4B96-9E9C-D15B776B750F} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [252984 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {F543737F-6F8C-4C1E-977A-E5F4B93417B5} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\IntelPTTEKRecertification.exe [919832 2020-12-20] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {F6A21BBB-2DFC-4A48-9522-0B72E3B590D3} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [233184 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001.job => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupdate.exe
Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001.job => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupload.exe
Task: C:\Windows\Tasks\X-Rite Device Services Software Updater.job => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{98dbab16-08c4-4647-a0d2-64f7cb3a0a64}: [NameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-26]
Edge HomePage: Default -> hxxp://www.seznam.cz/
Edge StartupUrls: Default -> "hxxps://google.sk/"
Edge Extension: (LastPass: Free Password Manager) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2021-03-15]
Edge Extension: (Outlook) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-14]
Edge Extension: (Logitech Smooth Scrolling) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-09-07]
Edge Extension: (Office) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2020-10-17]
Edge Extension: (Word) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-14]
Edge Extension: (Excel) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-14]
Edge Extension: (OneNote Web Clipper) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oogbnpmeihfgnccdnmmlgicknopghhma [2020-11-06]
Edge Extension: (PowerPoint) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-14]
Edge Extension: (AdBlocker Ultimate) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pciakllldcajllepkbbihkmfkikheffb [2020-12-11]

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2020-10-05] [not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2012-01-13] (Nero AG -> Nero AG)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-07] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-07] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default [2021-03-26]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Slides) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-05]
CHR Extension: (Docs) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-05]
CHR Extension: (Google Drive) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-05]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-02-25]
CHR Extension: (OneNote Online) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciniambnphakdoflgeamacamhfllbkmo [2020-09-05]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-09-05]
CHR Extension: (Adobe Acrobat) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-01]
CHR Extension: (Google Play Music) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-11-21]
CHR Extension: (Sheets) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-05]
CHR Extension: (NordVPN — #1 VPN Chrome Extension: Get a VPN) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2021-03-26]
CHR Extension: (Google Docs Offline) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-11]
CHR Extension: (OneNote Web Clipper) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2020-09-26]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-03-11]
CHR Extension: (Cisco Webex Extension) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2021-03-25]
CHR Extension: (Evernote Web) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2020-09-05]
CHR Extension: (Application launcher for Drive (by Google)) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Office) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2021-02-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-13]
CHR HKU\S-1-5-21-971254259-73155972-3602281376-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S4 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
S4 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\84.1.5542.138\elevation_service.exe [1332800 2020-08-19] (Piriform Software Ltd -> Piriform Software)
S4 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [595288 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8990072 2021-03-11] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44272 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-02-26] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142904 2021-02-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
S3 GalaxyClientService; D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128920 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LFHelper; D:\Program Files (x86)\LeapReader\LeapFrog Connect2\LFHelper.exe [3000056 2020-10-29] (LeapFrog Enterprises, Inc. -> LeapFrog Enterprises, Inc.)
R2 nordvpn-service; D:\Program Files\NordVPN\nordvpn-service.exe [275200 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125664 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1679240 2021-02-18] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkAudioUniversalService; C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 tmHInstall; C:\Program Files\Thrustmaster\TM Flight Series\drivers\amd64\tmHInstall.exe [110608 2020-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [83312 2015-09-18] (X-Rite Incorporated -> X-Rite Inc.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1595456 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
S3 colormunki; C:\Windows\System32\Drivers\colormunki_x64.sys [51600 2013-06-21] (USBIO Test -> Thesycon GmbH, Germany)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-09-05] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 GuiHidUsbDevLowerTFH; C:\Windows\System32\Drivers\GuiHidUsbDevLowerTFH.sys [129552 2020-07-31] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2020. All rights reserved.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2021-03-11] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 NDivert; C:\Windows\System32\drivers\NDivert.sys [105184 2021-02-01] (TEFINCOM S.A. -> )
R3 nlwt; C:\Windows\system32\DRIVERS\nlwt.sys [39360 2021-02-05] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 SaiH0C2D; C:\Windows\system32\DRIVERS\SaiH0C2D.sys [176128 2007-07-02] (Saitek -> Saitek)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R3 V0700Vid; C:\Windows\system32\DRIVERS\V0700Vid.sys [393920 2011-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239432 2020-10-16] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2020-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [429296 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-05] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-25 11:56 - 2021-03-25 11:56 - 000000000 ____D C:\Users\fsubi\AppData\Local\CADlogic Limited
2021-03-25 10:37 - 2021-03-25 11:56 - 000000000 ____D C:\ProgramData\CADlogic Limited
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\Users\fsubi\AppData\System
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\Users\fsubi\AppData\Local\SmartDraw
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartDraw 2020
2021-03-22 09:09 - 2021-03-22 09:09 - 000011357 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-03-20 16:01 - 2021-03-24 08:01 - 000000000 ____D C:\Users\fsubi\Počítač\Untitled Export
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {d8170687-85fa-4716-bafd-087205d0db72}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {9f9c9e51-d42f-4462-a27a-7d419da18045}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {29d6077f-6adb-42de-abac-1c60aeb0e237}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700}
2021-03-20 12:25 - 2020-12-02 16:04 - 000274672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll
2021-03-20 12:25 - 2020-12-02 16:04 - 000229616 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll
2021-03-20 12:25 - 2020-12-02 16:03 - 005968480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2021-03-20 12:25 - 2020-12-02 15:52 - 043277665 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2021-03-20 11:50 - 2021-03-26 12:48 - 000000000 ____D C:\FRST
2021-03-19 11:50 - 2021-03-19 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-03-18 17:05 - 2021-03-26 12:46 - 000003112 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2021-03-18 17:05 - 2021-03-18 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-03-18 17:05 - 2021-03-18 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-03-18 17:05 - 2021-03-10 19:43 - 002241008 _____ (AMD Inc.) C:\Windows\SysWOW64\AMDBugReportTool.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001857864 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001857864 _____ C:\Windows\system32\vulkaninfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001438520 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001438520 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001093736 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 001093736 _____ C:\Windows\system32\vulkan-1.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000946896 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000946896 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000799568 _____ (AMD) C:\Windows\system32\atieclxx.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000736568 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000620864 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000496432 _____ C:\Windows\system32\GameManager64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000492856 _____ C:\Windows\system32\dgtrayicon.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000456016 _____ C:\Windows\system32\atieah64.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000432432 _____ C:\Windows\system32\EEURestart.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000351568 _____ C:\Windows\SysWOW64\atieah32.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000346424 _____ C:\Windows\system32\clinfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000245072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000212816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000186680 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000166712 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000166200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000156472 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000142136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000140592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000135480 _____ (AMD) C:\Windows\system32\atimuixx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000125248 _____ C:\Windows\system32\atidxx64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000107344 _____ C:\Windows\SysWOW64\atidxx32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000090432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000075064 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000046400 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000043320 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000019856 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 081415488 _____ C:\Windows\system32\amd_comgr.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 072438584 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 066865984 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 005222216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 004987200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 001492800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiacm64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 001339200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000940880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000768336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000489272 _____ C:\Windows\system32\amdgfxinfo64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000468288 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000466256 _____ C:\Windows\system32\amdlogum.exe
2021-03-18 16:59 - 2021-03-17 11:44 - 000379704 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000182096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000158352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000149824 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000130368 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000130320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000122192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000108320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000106816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000069952 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 001685696 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 001365056 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000546864 _____ C:\Windows\system32\amdmiracast.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000136024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000130304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000120368 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000108320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2021-03-18 16:59 - 2021-03-10 19:26 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2021-03-18 16:59 - 2021-03-10 19:26 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2021-03-18 16:59 - 2021-03-10 19:22 - 058675112 _____ C:\Windows\system32\amdxc64.so
2021-03-18 16:59 - 2021-03-10 19:19 - 000556128 _____ C:\Windows\SysWOW64\atiapfxx.blb
2021-03-18 16:59 - 2021-03-10 19:19 - 000556128 _____ C:\Windows\system32\atiapfxx.blb
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000044272 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-03-14 14:31 - 2021-03-14 14:31 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime
2021-03-14 14:19 - 2021-03-14 14:19 - 000000000 ____D C:\Users\fsubi\AppData\Local\KojimaProductions
2021-03-13 17:44 - 2021-03-13 17:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-03-13 17:44 - 2021-03-13 17:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-03-13 17:44 - 2021-03-13 17:44 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-03-13 17:44 - 2021-03-13 17:44 - 000707016 _____ C:\Windows\system32\TextShaping.dll
2021-03-13 17:44 - 2021-03-13 17:44 - 000611952 _____ C:\Windows\SysWOW64\TextShaping.dll
2021-03-11 21:12 - 2021-03-11 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AORUS
2021-03-11 10:15 - 2021-03-11 10:15 - 000000000 ____D C:\Users\psubi\AppData\Local\cFos
2021-03-10 13:50 - 2021-03-10 13:50 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
2021-03-10 13:50 - 2021-03-10 13:50 - 000000000 ____D C:\Program Files (x86)\Belarc
2021-03-10 12:49 - 2021-03-10 12:49 - 000003356 _____ C:\Windows\system32\Tasks\SIV-VGA
2021-03-10 12:49 - 2021-03-10 12:49 - 000003350 _____ C:\Windows\system32\Tasks\SIV
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\Users\fsubi\AppData\Local\cFos
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte Speed
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\ProgramData\cFos
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\Program Files\cFosSpeed
2021-03-10 12:49 - 2019-03-21 04:06 - 001595456 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys
2021-03-10 12:45 - 2020-12-16 07:47 - 000027512 _____ (Intel Corporation) C:\Windows\system32\RstMwEventLogMsg.dll
2021-03-10 12:45 - 2020-12-16 07:46 - 002965880 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsService.exe
2021-03-10 12:45 - 2020-12-16 07:46 - 001474936 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAC.sys
2021-03-10 12:45 - 2020-12-16 07:46 - 000219512 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsNative.exe
2021-03-10 12:45 - 2020-12-16 07:46 - 000119672 _____ (Intel Corporation) C:\Windows\system32\Optane.dll
2021-03-10 12:45 - 2020-12-16 07:46 - 000073080 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAfs.sys
2021-03-10 12:45 - 2020-12-16 07:46 - 000023416 _____ (Intel Corporation) C:\Windows\system32\OptaneEventLogMsg.dll
2021-03-09 23:11 - 2021-03-11 22:46 - 001065984 _____ C:\Users\fsubi\AppData\Local\file__0.localstorage
2021-03-09 23:11 - 2021-03-09 23:21 - 000000000 ____D C:\Users\fsubi\Valley
2021-03-09 23:10 - 2021-03-09 23:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2021-03-08 23:24 - 2021-03-08 23:24 - 000000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2021-03-08 19:07 - 2021-03-11 21:12 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2021-03-08 19:04 - 2021-03-08 19:04 - 000003450 _____ C:\Windows\system32\Tasks\GraphicsCardEngine
2021-02-28 17:36 - 2021-02-28 17:36 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2021-02-27 22:01 - 2021-02-27 22:01 - 001822272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 001394024 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 000480256 _____ C:\Windows\system32\AssignedAccessCsp.dll
2021-02-27 22:01 - 2021-02-27 22:01 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-27 22:01 - 2021-02-27 22:01 - 000091136 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-02-27 11:56 - 2021-02-27 11:56 - 000000000 ____D C:\Users\fsubi\AppData\Local\Madness
2021-02-25 22:14 - 2021-02-25 22:15 - 000000000 ____D C:\AdwCleaner
2021-02-25 22:13 - 2021-02-25 22:13 - 000000000 ____D C:\Users\fsubi\AppData\Local\mbam
2021-02-25 22:13 - 2021-02-25 22:13 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-02-25 20:50 - 2021-02-25 20:50 - 000001185 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-26 12:48 - 2020-09-07 09:00 - 000000000 ____D C:\Program Files\CCleaner
2021-03-26 12:46 - 2020-09-24 18:30 - 000003096 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-03-26 12:46 - 2020-09-05 20:40 - 000000000 ____D C:\Users\fsubi\.rainlendar2
2021-03-26 12:46 - 2020-09-05 17:04 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-26 12:46 - 2019-12-07 09:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-26 12:44 - 2020-09-05 17:13 - 000000000 ____D C:\Users\fsubi
2021-03-26 12:44 - 2020-09-05 17:10 - 000842942 _____ C:\Windows\system32\PerfStringBackup.INI
2021-03-26 12:44 - 2019-12-07 09:13 - 000000000 ____D C:\Windows\INF
2021-03-26 12:44 - 2019-12-07 09:03 - 001048576 _____ C:\Windows\system32\config\BBI
2021-03-26 12:39 - 2020-09-05 17:04 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-03-26 12:21 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\AppReadiness
2021-03-26 12:20 - 2019-12-07 09:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-26 11:53 - 2020-09-05 17:18 - 000000000 ___RD C:\Users\fsubi\Počítač
2021-03-26 09:26 - 2020-11-24 17:10 - 000000652 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001.job
2021-03-26 09:26 - 2020-11-24 17:10 - 000000556 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001.job
2021-03-26 09:22 - 2021-02-01 16:38 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\Temp
2021-03-26 09:22 - 2020-09-05 17:32 - 000000000 ____D C:\Program Files (x86)\Google
2021-03-25 16:47 - 2020-11-24 17:10 - 000003802 _____ C:\Windows\system32\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-25 16:47 - 2020-11-24 17:10 - 000003706 _____ C:\Windows\system32\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-25 16:47 - 2020-11-24 17:10 - 000000000 ____D C:\Users\fsubi\AppData\Local\GoToMeeting
2021-03-25 14:55 - 2020-11-22 20:23 - 000000000 ____D C:\Users\fsubi\AppData\Local\CrashDumps
2021-03-25 14:45 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Local\Packages
2021-03-25 10:37 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Local\VirtualStore
2021-03-25 10:36 - 2020-12-15 09:06 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\uTorrent Web
2021-03-25 10:29 - 2020-12-15 09:07 - 000000000 ____D C:\Users\fsubi\AppData\Local\BitTorrentHelper
2021-03-24 08:02 - 2020-09-05 17:17 - 000000000 ____D C:\Users\fsubi\AppData\Local\D3DSCache
2021-03-24 07:36 - 2020-09-05 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2021-03-22 20:54 - 2021-02-22 22:52 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Microsoft Flight Simulator
2021-03-22 19:40 - 2020-10-10 09:10 - 000000000 ____D C:\Users\fsubi\AppData\Local\FlightSimulator
2021-03-22 19:31 - 2021-01-18 13:16 - 000000000 ____D C:\REX Weather Force 2020
2021-03-22 16:18 - 2020-09-05 17:04 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-22 12:52 - 2020-09-05 20:53 - 000000000 ____D C:\Program Files\Microsoft Office
2021-03-22 09:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\bcastdvr
2021-03-22 09:09 - 2019-12-07 09:03 - 000000000 ____D C:\Windows\CbsTemp
2021-03-20 12:33 - 2020-09-05 17:27 - 000003840 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-03-20 12:32 - 2020-09-05 19:38 - 000000000 ____D C:\Windows\SysWOW64\pack
2021-03-20 12:32 - 2020-09-05 17:34 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-20 12:30 - 2020-09-05 17:33 - 000000000 ____D C:\Program Files (x86)\Intel
2021-03-20 12:29 - 2020-09-05 17:34 - 000000000 ____D C:\Program Files\Intel
2021-03-20 12:25 - 2020-09-05 17:35 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-03-20 12:25 - 2020-09-05 17:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-03-20 12:21 - 2020-09-24 17:58 - 000000000 ____D C:\Users\fsubi\AppData\Local\ElevatedDiagnostics
2021-03-20 11:46 - 2021-02-05 09:26 - 000000895 _____ C:\Users\fsubi\Počítač\NordVPN.lnk
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\Users\fsubi\AppData\Local\NordVPN
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\ProgramData\NordVPN
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2021-03-20 11:27 - 2020-09-06 05:11 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-19 11:50 - 2020-12-05 11:07 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-03-18 17:16 - 2020-09-05 18:09 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\AMD
2021-03-18 17:05 - 2020-09-24 18:31 - 000000000 ____D C:\Users\fsubi\AppData\Local\AMD
2021-03-18 17:05 - 2020-09-24 18:30 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2021-03-18 17:05 - 2020-09-24 18:30 - 000003160 _____ C:\Windows\system32\Tasks\StartCN
2021-03-18 17:05 - 2020-09-24 18:30 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR
2021-03-18 17:05 - 2020-09-05 17:16 - 000000000 ____D C:\Program Files\AMD
2021-03-18 16:59 - 2021-01-21 20:20 - 000000000 ____D C:\AMD
2021-03-18 16:57 - 2020-11-21 11:17 - 000000000 ____D C:\Users\fsubi\AppData\Local\AMD_Common
2021-03-17 11:45 - 2021-02-23 08:16 - 000379704 _____ C:\Windows\SysWOW64\GameManager32.dll
2021-03-17 11:45 - 2021-02-23 08:16 - 000019856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2021-03-17 11:44 - 2020-09-16 12:04 - 001767232 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2021-03-17 11:44 - 2020-09-16 12:04 - 001339200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2021-03-17 11:44 - 2020-09-16 12:03 - 000202144 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll
2021-03-17 11:44 - 2020-09-16 12:03 - 000169688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll
2021-03-16 21:37 - 2020-09-05 17:32 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-15 10:07 - 2020-10-22 14:09 - 000015824 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys
2021-03-14 10:26 - 2019-12-07 09:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-03-13 20:46 - 2021-02-08 14:59 - 000000000 ____D C:\Users\fsubi\AppData\Local\Amazon Music
2021-03-13 20:08 - 2021-02-08 14:59 - 000001261 _____ C:\Users\fsubi\Počítač\Amazon Music.lnk
2021-03-13 18:01 - 2020-09-08 10:12 - 000000000 ____D C:\Users\fsubi\Počítač\Games
2021-03-13 18:01 - 2020-09-05 22:29 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-03-13 17:48 - 2020-09-05 17:04 - 000817928 _____ C:\Windows\system32\FNTCACHE.DAT
2021-03-13 17:48 - 2019-12-07 14:49 - 000000000 ___SD C:\Windows\system32\AppV
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SystemResources
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\setup
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\oobe
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\Dism
2021-03-13 10:20 - 2020-09-30 20:39 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\decrypt
2021-03-11 21:12 - 2020-09-05 17:50 - 000000000 ____D C:\Users\fsubi\AppData\Local\Downloaded Installations
2021-03-11 21:10 - 2020-10-05 15:28 - 000018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2021-03-11 20:53 - 2020-09-05 17:17 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-11 20:53 - 2020-09-05 17:13 - 000002365 _____ C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-11 20:06 - 2020-09-05 19:17 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-03-11 19:54 - 2020-09-21 19:31 - 000000000 ___RD C:\Users\psubi\OneDrive
2021-03-11 10:15 - 2020-09-21 19:31 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971254259-73155972-3602281376-1002
2021-03-11 10:15 - 2020-09-21 19:30 - 000002365 _____ C:\Users\psubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-10 18:15 - 2020-09-05 18:43 - 000000000 ____D C:\Windows\system32\MRT
2021-03-10 18:13 - 2020-09-05 18:43 - 131005360 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-03-10 14:28 - 2020-09-07 09:00 - 000000000 ____D C:\Users\fsubi\Počítač\Power Tools
2021-03-10 14:27 - 2020-09-07 09:00 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-03-10 14:25 - 2020-12-31 08:42 - 000000000 ____D C:\Program Files\CPUID
2021-03-10 14:25 - 2020-09-07 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2021-03-10 14:08 - 2020-10-03 13:56 - 001682352 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000216016 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000169400 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000159184 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000038320 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe
2021-03-10 13:11 - 2020-09-05 17:15 - 000000000 ____D C:\ProgramData\Packages
2021-03-10 12:45 - 2020-12-05 11:12 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2021-03-09 20:36 - 2020-09-05 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2021-03-09 20:36 - 2020-09-05 20:54 - 000000000 ____D C:\Program Files\HWiNFO64
2021-03-08 19:07 - 2020-09-05 19:13 - 000000000 ____D C:\Program Files\ENE
2021-03-08 19:04 - 2020-09-05 17:51 - 000003466 _____ C:\Windows\system32\Tasks\EasyTune 1
2021-03-08 19:04 - 2020-09-05 17:51 - 000003366 _____ C:\Windows\system32\Tasks\EasyTune
2021-03-08 18:53 - 2020-09-06 05:11 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-08 18:53 - 2020-09-06 05:11 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-01 17:05 - 2020-10-12 13:43 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\ABarthel
2021-03-01 16:25 - 2020-09-30 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2021-03-01 16:17 - 2020-09-30 20:39 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\.ePUBeedrmremoval
2021-02-27 22:06 - 2019-12-07 14:49 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\Provisioning
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-27 21:52 - 2021-02-06 18:41 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\EasyAntiCheat
2021-02-25 22:14 - 2019-12-07 09:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-02-25 20:50 - 2020-09-21 19:30 - 000000000 ____D C:\Users\psubi\AppData\Roaming\Adobe
2021-02-25 20:50 - 2020-09-05 19:17 - 000000000 ____D C:\ProgramData\Adobe
2021-02-25 20:50 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Adobe
2021-02-25 20:46 - 2020-11-08 11:23 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\Mozilla
2021-02-25 20:35 - 2020-12-18 14:57 - 000000000 ____D C:\Program Files\Adobe
2021-02-24 16:46 - 2020-09-21 19:30 - 000000000 ____D C:\Users\psubi\AppData\Local\Packages

==================== Files in the root of some directories ========

2021-03-09 23:11 - 2021-03-11 22:46 - 001065984 _____ () C:\Users\fsubi\AppData\Local\file__0.localstorage
2020-09-11 13:01 - 2020-09-11 13:01 - 000000056 _____ () C:\Users\fsubi\AppData\Local\X-Plane 11 Preferences.prf
2020-09-11 13:06 - 2020-09-11 13:32 - 000000015 _____ () C:\Users\fsubi\AppData\Local\X-Plane_drm_11.prf
2020-09-11 13:01 - 2020-09-11 13:01 - 000000059 _____ () C:\Users\fsubi\AppData\Local\x-plane_install_11.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#25 Příspěvek od fsubin »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-03-2021
Ran by fsubi (26-03-2021 12:48:42)
Running from E:\Users\Filip\OneDrive\Downloads
Windows 10 Pro Version 20H2 19042.870 (X64) (2020-09-05 17:06:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-971254259-73155972-3602281376-500 - Administrator - Disabled)
aslin (S-1-5-21-971254259-73155972-3602281376-1004 - Limited - Disabled)
DefaultAccount (S-1-5-21-971254259-73155972-3602281376-503 - Limited - Disabled)
filik (S-1-5-21-971254259-73155972-3602281376-1005 - Limited - Disabled)
fsubi (S-1-5-21-971254259-73155972-3602281376-1001 - Administrator - Enabled) => C:\Users\fsubi
Guest (S-1-5-21-971254259-73155972-3602281376-501 - Limited - Disabled)
lauri (S-1-5-21-971254259-73155972-3602281376-1003 - Limited - Disabled)
psubi (S-1-5-21-971254259-73155972-3602281376-1002 - Limited - Enabled) => C:\Users\psubi
WDAGUtilityAccount (S-1-5-21-971254259-73155972-3602281376-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0709.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0709.1 - GIGABYTE)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 21.001.20145 - Adobe Systems Incorporated)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_10_1) (Version: 10.1 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Inc.)
Amazon Music (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Amazon Amazon Music) (Version: 8.3.0.2240 - Amazon.com Services LLC)
Amazon Photos (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Amazon Photos) (Version: 7.6.2 - Amazon.com, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.3.1 - Advanced Micro Devices, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0317.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0317.1 - GIGABYTE)
Belarc Advisor 9.7 (HKLM-x32\...\Belarc Advisor) (Version: 9.7.0.0 - Belarc Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
calibre (HKLM-x32\...\{4E1FEEB8-45A5-4069-B948-B5DED59D406C}) (Version: 5.12.0 - Kovid Goyal)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.7.0 - Canon Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - ‪Canon Inc.‬)
Canon iP4900 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4900_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.4 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.13.10.0 - Canon Inc.)
Canon Utilities EOS Network Setting Tool (HKLM-x32\...\EOS Network Setting Tool) (Version: 1.1.0.9 - Canon Inc.)
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.)
Canon Utilities EOS Utility 3 (HKLM-x32\...\EOS Utility 3) (Version: 3.13.10.1 - Canon Inc.)
Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.10.0.0 - Canon Inc.)
CanoScan 9000F Mark II Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ9604) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 84.1.5542.138 - Piriform Software)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
Cisco Webex Meetings (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\ActiveTouchMeetingClient) (Version: 40.11.4 - Cisco Webex LLC)
ColorChecker Camera Calibration 2.2.0 (HKLM-x32\...\ColorChecker Camera Calibration_is1) (Version: 2.2.0 - X-Rite)
ColorMunki Photo 1.2.4 (HKLM-x32\...\ColorMunki Photo_is1) (Version: 1.2.4 - X-Rite)
CPUID CPU-Z 1.95 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.95 - CPUID, Inc.)
Creative Live! Cam Chat HD (VF0700) (1.00.06.00) (HKLM\...\Creative VF0700) (Version: - Creative Technology Ltd.)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.12 - GOG.com)
Documentation Manager (HKLM\...\{903A7EB3-3534-44FC-8E98-43D5050EF04E}) (Version: 22.10.0.7 - Intel Corporation) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 118.4.460 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{0BF9DD77-498D-4E9E-A968-CFC9249BDD9F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.21.0114.1 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.21.0114.1 - GIGABYTE)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.21.0202.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.21.0202.1 - GIGABYTE)
ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{0f607f07-7957-4887-9d5e-be8efe9595a9}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM-x32\...\{33f042cf-0ae3-4241-b8c8-7f544533ea8e}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Epic Games Launcher (HKLM-x32\...\{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ePUBee DRM Removal (HKLM-x32\...\ePUBee DRM Removal) (Version: 3.1.5.2 - ePUBee Inc.)
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
Excel (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Fast Boot (HKLM-x32\...\{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE)
Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Hidden
Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte)
Gigabyte Speed v10.50 (HKLM\...\Gigabyte Speed) (Version: 10.50 - cFos Software GmbH, Bonn)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 89.0.4389.90 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
GoTo Opener (HKLM-x32\...\{C2A61D74-BB65-42AD-B81F-AC25E1F7DE02}) (Version: 1.0.536 - LogMeIn, Inc.)
GoToMeeting 10.15.500.19584 (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\GoToMeeting) (Version: 10.15.500.19584 - LogMeIn, Inc.)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.19.0624.1 - GIGABYTE)
High-Definition Video Playback (HKLM-x32\...\{9193490D-5229-4FC4-9BB9-A6D63C09574A}) (Version: 11.1.11100.4.196 - Nero AG) Hidden
HWiNFO64 Version 7.00 (HKLM\...\HWiNFO64_is1) (Version: 7.00 - Martin Malik - REALiX)
Intel(R) Chipset Device Software (HKLM-x32\...\{99926fb7-5da9-4101-b79f-eec3674ca64b}) (Version: 10.1.18634.8254 - Intel(R) Corporation)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{7368d41d-24b9-4b1a-aef4-862e2571fa92}) (Version: 6.5.1.371 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2052.15.0.2069 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.8.0.1065 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000020-0220-1033-84C8-B8D95FA3C8C3}) (Version: 22.20.0.3 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{ded97635-a82a-48b1-b197-0e7c5e4c4ac3}) (Version: 22.10.0.7 - Intel Corporation) Hidden
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LeapFrog Connect 2 (HKLM-x32\...\LeapFrogConnect2) (Version: 4.1.9.448 - LeapFrog)
LeapFrogConnect2 (HKLM-x32\...\{816F787F-8448-45E6-AE87-25DB24131477}) (Version: 4.1.9.448 - LeapFrog) Hidden
LeapReader (HKLM-x32\...\{D751797E-949C-42BF-8E6C-F2CB4E8A6634}) (Version: 4.1.9.448 - LeapFrog Enterprises) Hidden
Learning Lodge™ (HKLM-x32\...\VTechDownloadManager) (Version: - VTech)
Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.126 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
MAGIX Content and Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Soundpool Music Maker - Feel good (HKLM\...\{677F8E85-8686-476B-829A-D5ED9ECA16E6}) (Version: 1.0.1.0 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM\...\{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Travel Maps (HKLM\...\{83EC0C28-33DB-467B-A919-52ECDD8F4B69}) (Version: 1.0.1.378 - MAGIX Software GmbH) Hidden
MAGIX Travel Maps (HKLM\...\MX.{83EC0C28-33DB-467B-A919-52ECDD8F4B69}) (Version: 1.0.1.378 - MAGIX Software GmbH)
MAGIX Video Pro X (Design elements) (HKLM\...\{F2A29913-41F4-4DBC-861C-4D033BC2ED4C}) (Version: 17.0.2.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Fade effects) (HKLM\...\{A1816F3A-47EF-47FE-A406-F7C73FCECEE3}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (HKLM\...\{4547085E-9FFE-4A8D-BA44-6F97C3927F3E}) (Version: 17.0.1.32 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (HKLM\...\MX.{4547085E-9FFE-4A8D-BA44-6F97C3927F3E}) (Version: 17.0.1.32 - MAGIX Software GmbH)
MAGIX Video Pro X (Menu templates) (HKLM\...\{00DD9BCE-E5A3-4B62-900E-193065C3BB49}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Migrate Content) (HKLM\...\{86096249-43A1-4C5D-919D-97DAFA52B28E}) (Version: 16.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Design elements) (HKLM\...\{C99F2C3F-ECC7-413B-9D7F-9E54585D991C}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Menu templates) (HKLM\...\{A0E0419E-413B-4BB3-B7DD-45325228C3E5}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Movie templates) (HKLM\...\{4518A9B7-A262-4D9B-906D-DBFD4549ADCA}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Slideshow Maker styles) (HKLM\...\{06680A3C-A2BD-4AD4-B172-CEA79DD5E3BC}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie templates) (HKLM\...\{1A266F02-9EFD-4E7E-82F2-7C682897A884}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Slideshow Maker styles) (HKLM\...\{DA144E48-B850-439A-BE92-600A14BB9197}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Soundtrack Maker styles) (HKLM\...\{2115BA04-C7F2-46F2-A3D7-7BFCD0D97C29}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Templates and effects) (HKLM-x32\...\MAGIX_GlobalContent.Video_Pro_X) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Video Pro X (Title effects) (HKLM\...\{8D139F22-4779-4AC3-A7DE-FB54F07E13A6}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Update Service 5.7.33.77) (HKLM\...\{8F07F018-6858-3E5F-8500-456430AA3069}) (Version: 5.7.33.77 - MAGIX Software GmbH) Hidden
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.13801.20360 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.57 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 89.0.774.63 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971254259-73155972-3602281376-1002\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Movie Studio 16.0 Platinum (HKLM\...\{661AE070-1B81-11EA-8676-9431242A7F22}) (Version: 16.0.175 - VEGAS)
Nero 11 (HKLM-x32\...\{810B7362-6B05-4714-AF6A-EF3A20CCD634}) (Version: 11.2.00600 - Nero AG)
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.11100.8.0 - Nero AG)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.35.9.0 - TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 - NordVPN)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20294 - Microsoft Corporation) Hidden
ON_OFF Charge 2 B19.1119.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.19.1119.1 - GIGABYTE) Hidden
ON_OFF Charge 2 B19.1119.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.19.1119.1 - GIGABYTE)
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Outlook (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Polar FlowSync version 3.0.0.1337 (HKLM-x32\...\{A1538F5C-7B65-4DB6-9FFB-FFC0DF2E85D8}_is1) (Version: 3.0.0.1337 - Polar Electro Oy)
PowerPoint (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 9.8.7.18 - Bitsum)
QT5.10.1 (HKLM-x32\...\{5C60E178-F792-4CF7-A2E7-E7124DF1B2F0}) (Version: 1.0.1.0 - LeapFrog) Hidden
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: 2.15.4 - Rainy)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9075.1 - Realtek Semiconductor Corp.)
REX Weather Force 2020 (HKLM\...\{868DE4BF-66FA-4211-91FD-4D699A1EE900}) (Version: 6.0.2021.0216 - REX Game Studios, LLC.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.21.0310.1 - GIGABYTE)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.34.337 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.21.0129.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.21.0129.1 - GIGABYTE)
Smart Backup (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.18.0911.1 - GIGABYTE)
SPAD.neXt (HKLM\...\{CE21AD13-50E6-474A-89B9-81E262E620A0}_is1) (Version: 0.9.8.6 - SPADneXt.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
T.Flight Hotas drivers (HKLM-x32\...\{E08E6F77-E66C-47FC-8565-0AA3389D48C8}) (Version: 1.TFHT.2020 - Thrustmaster)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Use the entry named LeapFrog Connect2 to uninstall QT5.10.1 (HKLM-x32\...\QT5.10.1) (Version: - LeapFrog)
Use the entry named LeapFrogConnect2 to uninstall LeapReader (HKLM-x32\...\LFC2_LeapReaderPlugin) (Version: - LeapFrog)
uTorrent Web (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\utweb) (Version: 1.1.2 - BitTorrent, Inc.)
Vita Concert Grand LE (HKLM\...\{2C61CE04-1EEF-4582-ABBA-B9CCFC3743EB}) (Version: 2.4.0.96 - MAGIX Software GmbH) Hidden
Welcome App (Start-up experience) (HKLM-x32\...\{51865D9D-8F63-46F2-87AB-9E72F93B618C}) (Version: 11.0.23500.0.0 - Nero AG) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2700 - Broadcom Corporation)
Word (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
X-Rite Device Services Manager (HKLM-x32\...\{C665E881-CE55-4156-A4A6-7C55D645FD4E}) (Version: 2.4.1 - X-Rite)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_EN_is1) (Version: 18.0.1.10 - ZONER software)

Packages:
=========
DTS:X Ultra -> C:\Program Files\WindowsApps\DTSInc.DTSXUltra_1.5.13.0_x64__t5j2fzbtdg37r [2021-03-09] (DTS, Inc.)
Files -> C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t [2021-03-24] (Yair A)
HEVC Video Extensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_1.0.40615.0_x64__8wekyb3d8bbwe [2021-03-19] (Microsoft Corporation)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1015.0_x64__8j3eq9eme6ctt [2021-03-13] (INTEL CORP)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-03-25] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_21.10208.5605.0_x64__8wekyb3d8bbwe [2021-03-08] (Microsoft Corporation)
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.21005.0_x64__8wekyb3d8bbwe [2021-03-09] (Microsoft Studios)
MPEG-2 Video Extension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-05] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-11-22] (Microsoft Corporation)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2108.9.0_x64__cv1g1gvanyjgm [2021-03-17] (WhatsApp Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\fsubi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\fsubi\AppData\Local\GoToMeeting\18962\G2MOutlookAddin64.dll (LogMeIn, Inc. -> LogMeIn, Inc.)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\fsubi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => E:\Users\Filip\Dropbox [2014-12-31 15:04]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_fac18e2da6ec7b25\OptaneShellExt.dll [2020-12-16] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_fac18e2da6ec7b25\OptaneShellExt.dll [2020-12-16] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-03-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm --app-url=hxxps://excel.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi --app-url=hxxps://word.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Play Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Loaded Modules (Whitelisted) =============

2021-03-10 19:53 - 2021-03-10 19:53 - 001868288 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2013-06-21 14:03 - 2013-06-21 14:03 - 002633728 _____ () [File not signed] C:\Program Files (x86)\X-Rite\Devices\colormunki\colormunki.dll
2015-07-13 10:33 - 2015-07-13 10:33 - 001592832 _____ () [File not signed] C:\Program Files (x86)\X-Rite\Devices\rm200\GoldenEye.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-08-02 11:24 - 2017-08-02 11:24 - 000017920 _____ () [File not signed] C:\Program Files\Rainlendar2\lfs.dll
2017-08-02 11:37 - 2017-08-02 11:37 - 000331776 _____ () [File not signed] C:\Program Files\Rainlendar2\libical.dll
2017-08-02 11:37 - 2017-08-02 11:37 - 000063488 _____ () [File not signed] C:\Program Files\Rainlendar2\libicalss.dll
2017-08-02 11:24 - 2017-08-02 11:24 - 000314880 _____ () [File not signed] C:\Program Files\Rainlendar2\lua53.dll
2020-03-31 18:47 - 2020-03-31 18:47 - 000295424 _____ () [File not signed] C:\Program Files\Rainlendar2\plugins\GoogleCalendarPlugin.dll
2020-03-31 18:46 - 2020-03-31 18:46 - 000129536 _____ () [File not signed] C:\Program Files\Rainlendar2\plugins\iCalendarPlugin.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 001970176 _____ () [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\QtCore4.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 007053312 _____ () [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\QtGui4.dll
2021-03-10 14:21 - 2021-03-10 14:21 - 001640448 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2021-02-08 14:59 - 2020-04-02 16:15 - 002266624 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Users\fsubi\AppData\Local\Amazon Music\QtCore4.dll
2021-02-08 14:59 - 2020-04-02 16:25 - 006267392 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Users\fsubi\AppData\Local\Amazon Music\QtGui4.dll
2021-02-08 14:59 - 2020-04-02 16:16 - 000802816 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Users\fsubi\AppData\Local\Amazon Music\QtNetwork4.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\SIV\yccV2.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 001088512 _____ (GretagMacbeth) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\Cxf.dll
2020-09-05 18:17 - 2019-02-21 16:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 000503808 _____ (Microsoft Corporation) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\MSVCP71.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 000348160 _____ (Microsoft Corporation) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\MSVCR71.dll
2019-10-10 14:13 - 2019-10-10 14:13 - 000422400 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files\Rainlendar2\libcurl.dll
2018-11-16 12:48 - 2018-11-16 12:48 - 002720768 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Rainlendar2\libcrypto-1_1-x64.dll
2018-11-16 12:49 - 2018-11-16 12:49 - 000658944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Rainlendar2\libssl-1_1-x64.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2015-10-14 01:15 - 2015-10-14 01:15 - 002042368 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll
2020-12-16 10:08 - 2020-12-16 10:08 - 002001920 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll
2019-12-02 11:10 - 2019-12-02 11:10 - 002874880 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxbase313u_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 000181248 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxbase313u_xml_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 008349184 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_core_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 000793600 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_html_vc_rny.dll
2019-12-02 11:16 - 2019-12-02 11:16 - 000914432 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_propgrid_vc_rny.dll
2019-12-02 11:15 - 2019-12-02 11:15 - 000954880 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_xrc_vc_rny.dll
2014-12-02 09:59 - 2014-12-02 09:59 - 001502208 _____ (X-Rite Inc.) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1iO.dll
2014-12-02 09:59 - 2014-12-02 09:59 - 003962368 _____ (X-Rite Inc.) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Pro.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 000269824 _____ (X-Rite Inc.) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\XRiteDevice.dll
2015-04-02 14:59 - 2015-04-02 14:59 - 002359296 _____ (X-Rite) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1isis\EyeOne_iSis.dll
2014-11-05 10:05 - 2014-11-05 10:05 - 001019392 _____ (X-Rite) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Fun.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-971254259-73155972-3602281376-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2019-01-31] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll => No File
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2019-01-31] (Logitech Inc -> Logitech, Inc.)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2020-10-15] (Belarc, Inc. -> Belarc, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 09:14 - 2019-12-07 09:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-971254259-73155972-3602281376-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\fsubi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\picasabackground-003.bmp
HKU\S-1-5-21-971254259-73155972-3602281376-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\psubi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img2.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)
WiFi: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
WiFi: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 2: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "CiscoMeetingDaemon"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "NordVPN"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "Amazon Photos"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2EF1C09D-5154-4AFE-A939-1ED4404E0502}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{C79537E7-DBA4-4D5E-9F48-2199D2C680BE}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{B3FCFE0F-67CB-4D68-AD50-3EB98374364A}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [UDP Query User{7A2275EC-3B87-44BF-9C32-C49FED8E8776}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [{A1452CEA-25E9-4F9D-AC37-0CD53C770AF2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{444578ED-08D5-44CD-A617-012AC0125730}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{24B1E1F7-8C97-4AA2-94D6-4D983F6B0339}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8D9E0F45-EB17-4F03-B4EB-A5CA3A0AB55D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4E7DF3DF-A7D9-4E14-BA23-61F6481EC986}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\YNAB 4\YNAB 4.exe (YouNeedABudget.com -> )
FirewallRules: [{A78CD105-CEF5-4A4B-A7A4-C0F5724FB11F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\YNAB 4\YNAB 4.exe (YouNeedABudget.com -> )
FirewallRules: [{850C4B1B-A7A5-4DE4-818C-BBBA7D255980}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
FirewallRules: [{410F3158-74E5-4137-8983-9F505A1F9C6E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{3FC922AD-7A2C-4385-8E30-9F2AB45E907B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{54444C69-55B9-4395-851D-84472DD9C6FF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [File not signed]
FirewallRules: [{3E35454A-538E-4353-9655-87F22FFB6AED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [File not signed]
FirewallRules: [{1EC1F12E-3905-40F9-A48E-C2672C31B272}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37AD5553-F9D0-4E55-9BA9-1582CC5EF333}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{17FC7FD9-18E1-4BDF-830D-D4E57EB256AB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FF4F1192-C893-4307-8687-DE48D17301B2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{863F4C13-1940-4849-956D-7834F6D9FA75}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F30A4321-0FF1-4D5E-852D-B3E2E494636D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FB948A41-7975-4237-AE4F-AE499E554064}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious2\CSD2.exe (Vertigo Gaming Inc.) [File not signed]
FirewallRules: [{F430DE73-BB30-4AED-A6EB-D23E47251354}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious2\CSD2.exe (Vertigo Gaming Inc.) [File not signed]
FirewallRules: [{2CA95FEB-19F9-4577-AE46-B96AEB2386D3}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{86975E04-8911-4682-B790-1BC3D46E9DA7}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{9AFEA613-C7A8-4958-871E-B218281F5170}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C4D234BB-0283-470F-859A-E1B08A9AF37D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C4EC43ED-F96F-45B7-ADD5-A94ED2F7E72D}] => (Allow) C:\Users\fsubi\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
FirewallRules: [{6EF4D578-1ECA-4EB2-AE29-AB5E4DEDCA62}] => (Allow) C:\Users\fsubi\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
FirewallRules: [{153380D6-D739-4942-8802-CD8997522BEE}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Canon Inc. -> CANON INC.)
FirewallRules: [{16FE463D-A4AD-4D65-ADB3-EB25CB1ABE17}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Canon Inc. -> CANON INC.)
FirewallRules: [{DEE52412-DB21-4290-94E8-E9531E65DCB6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Indiana Jones and the Fate of Atlantis\Indiana Jones and the Fate of Atlantis.exe (LucasArts Entertainment Company) [File not signed]
FirewallRules: [{50D6DE88-B850-4EA4-8CDE-87EFF5C2B729}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Indiana Jones and the Fate of Atlantis\Indiana Jones and the Fate of Atlantis.exe (LucasArts Entertainment Company) [File not signed]
FirewallRules: [{38E14EED-BAC9-4E7F-BDBD-EB8887324698}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Disco Elysium\disco.exe () [File not signed]
FirewallRules: [{2D26774F-B223-4543-83B8-B12824297739}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Disco Elysium\disco.exe () [File not signed]
FirewallRules: [{E7CA7536-380B-4166-B1B1-E8C4A76105D4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{642C2D9D-0AAF-4FB2-A81D-498B7A469D9B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{009B3789-E538-494E-9CED-A39BB669870D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Worlds\LEGO_Worlds.exe (Travellers Tales (UK) Limited -> )
FirewallRules: [{206D4EF9-1319-43BC-8D14-3C4F214B1D04}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Worlds\LEGO_Worlds.exe (Travellers Tales (UK) Limited -> )
FirewallRules: [{3D24ACF3-22A4-4DF5-9CD5-58E5A965837A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{5E91677C-4211-4489-902C-E57CFA123218}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{CED34EF7-8E92-4372-9E13-F87A1204C9BD}] => (Allow) C:\Program Files\MAGIX\Video Pro X\11\Video_Pro_X.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{BB0B45E4-12DB-47F6-8FC8-FA67307035C9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ACFD921A-0C05-42BC-BE74-4652CF19DD48}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe () [File not signed]
FirewallRules: [{BB36CFB0-72C5-4536-B33A-8A46EBC31F85}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe () [File not signed]
FirewallRules: [{E31AB2FF-BD0E-4B53-9504-15C5258F0449}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{341E47A7-412C-48EC-B340-F572060C7919}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{752407C3-DF06-4260-A702-561E519B0F37}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{079B8416-8A53-40EE-BFA0-A015D088667D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E51B1764-976C-4650-99DF-164B02AA8F09}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E5B0EC10-25BC-4AAF-937D-3D12582D1F4E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0313E2A9-5930-42AE-9155-6701BA169662}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B8173E86-C93F-4BEC-8715-FE3C4B5D0498}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7D4884AD-63CC-468C-B4FC-362604BBBBD5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{1F89427A-BFA7-469C-9254-21C832488128}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{813F0577-FC0F-498A-A835-19C048345153}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6EBD3D48-1649-4363-AC51-BD0AF76ED04A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{06458D5B-F1E5-4263-B807-424CC87E16F5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{24722010-CE07-4534-A0DA-8066039DAA4C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E23CEA62-D35C-4008-B0CC-3A09A7A94EBD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MicrosoftFlightSimulator\FlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{7707F3F7-94D4-4092-AE4F-E088F627A234}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MicrosoftFlightSimulator\FlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{044CD729-D4DE-415B-9605-E8DA6DEA1712}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B4E180BF-AA9A-482A-AA48-3E2D250B9852}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B74EB9F0-D1A1-4B20-B60B-BC2718C2D6B6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Death Stranding\ds.exe (KOJIMA PRODUCTIONS Co., Ltd.) [File not signed]
FirewallRules: [{EC4C4C62-71CC-4440-B5A8-D3A3EB349F02}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Death Stranding\ds.exe (KOJIMA PRODUCTIONS Co., Ltd.) [File not signed]
FirewallRules: [{01F65A0D-2C26-4590-88F6-3F661DCDB0F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{079FFAAE-E0B9-46DE-B855-6FEC969121B8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{D3617E6F-7970-449A-8A51-7D266430D79F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{451ECB7B-D6F2-44B4-9A3F-9DBE2CB1175D}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{EF77C753-FF70-4243-9E1B-F92B0006320B}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{563D214B-A8D6-40C4-B2F1-1B0DC3BF0E5F}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{1F079BE3-3F8A-416E-8E12-E68E8CB889C7}] => (Allow) LPort=9009
FirewallRules: [{720C0124-A353-4DD1-AE5B-4204FAA4C9FB}] => (Allow) LPort=9009
FirewallRules: [{3062C1C5-CBDC-4AE0-9FAF-391FA2B92D41}] => (Allow) LPort=9009
FirewallRules: [{62F1B393-A810-4AFE-923F-350A6315D2D8}] => (Allow) LPort=9009
FirewallRules: [{2270EE59-B1FC-46F1-9D2F-A4C0E44E1EBF}] => (Allow) LPort=9009
FirewallRules: [{C64ECB58-D7EF-4752-BCEA-7ED1787D656A}] => (Allow) LPort=9009
FirewallRules: [{49D23485-F5F1-4A31-BEFC-079C13D8E67E}] => (Allow) LPort=9009
FirewallRules: [{2691C416-306C-4CEE-ADCA-E2B67CE92F55}] => (Allow) LPort=9009
FirewallRules: [{69B42916-9F9B-4956-95B3-57470280FBEE}] => (Allow) LPort=9009
FirewallRules: [{997673BC-FE27-4CA3-ADCA-9CB8DAA5606B}] => (Allow) LPort=9009
FirewallRules: [{1762CA98-1C62-4EBF-8858-F09022C12FF9}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{F5D6B7FB-9A66-4D3C-B938-4E074E5F7358}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{3A936A07-E549-4EEB-86DD-706BF4C1D4E3}] => (Allow) LPort=9009
FirewallRules: [{BDEAE202-56FE-4003-8021-B95F2EAC14A3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\89.0.774.63\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AA0E18CA-91D7-418D-9203-C62161D3BE37}] => (Allow) LPort=9009
FirewallRules: [{10C5BF8E-D6A7-4140-9D0E-0E1383058006}] => (Allow) LPort=9009
FirewallRules: [{7C385996-6710-4064-BFC4-4F5E85386D5A}] => (Allow) LPort=9009
FirewallRules: [{79523D0A-012A-4708-BC96-8DF2F5EFC39C}] => (Allow) LPort=9009
FirewallRules: [{878BB43B-A168-4D93-BE76-14ECC29A1251}] => (Allow) LPort=9009
FirewallRules: [{DD94E7E5-D4A5-45E6-921F-FC88DC16E781}] => (Allow) LPort=9009
FirewallRules: [{97C8976D-41DC-4B2C-9DC4-7E1B8276ADAC}] => (Allow) LPort=9009

==================== Restore Points =========================

17-03-2021 10:05:13 Windows Modules Installer
18-03-2021 17:04:26 Radeon Installer
20-03-2021 12:24:18 Removed Realtek Audio Driver
22-03-2021 09:08:02 Windows Modules Installer
24-03-2021 07:35:54 Removed APP Center
25-03-2021 10:37:33 Installed Draft IT.

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/26/2021 12:44:50 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 12:44:50 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 12:44:50 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 09:38:55 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 09:38:55 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 09:38:55 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 09:38:55 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 09:38:16 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.


System errors:
=============
Error: (03/26/2021 12:45:57 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 12:39:31 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 12:39:36 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 12:11:09 on ‎26/‎03/‎2021 was unexpected.

Error: (03/26/2021 12:11:04 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 12:09:02 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: The BITS service failed to start. Error 2147500053.

Error: (03/26/2021 12:08:54 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (03/26/2021 12:08:54 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (03/26/2021 12:08:54 PM) (Source: DCOM) (EventID: 10010) (User: SCORSESE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2020-12-05 11:48:15
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-12-05 11:19:56
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.323.580.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17400.5
Error code: 0x80240022
Error description: The program can't check for definition updates.

Date: 2020-12-05 11:19:56
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.323.580.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17400.5
Error code: 0x80240022
Error description: The program can't check for definition updates.

CodeIntegrity:
===============
Date: 2021-03-26 12:48:08
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F6 08/28/2020
Motherboard: Gigabyte Technology Co., Ltd. Z490 AORUS ULTRA
Processor: Intel(R) Core(TM) i7-10700K CPU @ 3.80GHz
Percentage of memory in use: 35%
Total physical RAM: 16301.11 MB
Available physical RAM: 10594.85 MB
Total Virtual: 34733.11 MB
Available Virtual: 26702.4 MB

==================== Drives ================================

Drive c: (Robert) (Fixed) (Total:155.63 GB) (Free:49.06 GB) NTFS
Drive d: (De Niro) (Fixed) (Total:775.26 GB) (Free:149.65 GB) NTFS
Drive e: (Goodfellas) (Fixed) (Total:931.51 GB) (Free:318.13 GB) NTFS
Drive f: (Casino) (Fixed) (Total:111.79 GB) (Free:30.47 GB) NTFS

\\?\Volume{9e86aaad-765c-4af0-b4e8-391aedf90cb2}\ () (Fixed) (Total:0.5 GB) (Free:0.04 GB) NTFS
\\?\Volume{27b2bf21-f9c1-4a4d-94ad-4510f71cfe9c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: CF291FF1)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: CF291F8C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: preventivni kontrola

#26 Příspěvek od Diallix »

Nemaze sa nic, aby nastavali crashy. Navyse tie logy su chaoticke, bude zrejme problem programu.

Chodte do nudzoveho rezimu a vykonajte nasledovne s upravenym scriptom:

Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše


C:\Program Files (x86)\Google\Google Toolbar

HKLM-x32\...\Run: [NBAgent] => D:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe [1493288 2012-01-13] (Nero AG -> Nero AG)
HKLM-x32\...\Run: [AgentMonitor] => D:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [697408 2019-03-13] (Vtech Electronics North America, L.L.C. -> )
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [QMxNetworkSync] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Amazon Music Helper] => C:\Users\fsubi\AppData\Local\Amazon Music\Amazon Music Helper.exe [2098512 2021-02-10] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\MountPoints2: {c7064c84-f5a6-11ea-ad1d-18c04d29336b} - "G:\WD Drive Unlock.exe" autoplay=true
Task: {3C33982B-7BD6-4F18-9661-6211A7B6945E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {3E966867-AF57-4A75-A9BB-3D0CB037E651} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-09-05] (Google Inc -> Google Inc.)
Task: {72F0536A-BE1D-4BD7-A5D4-3094766D2F2B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-09-05] (Google Inc -> Google Inc.)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
SearchScopes: HKU\S-1-5-21-971254259-73155972-3602281376-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2020-09-05] (Google Inc -> Google Inc.)
BHO-x32: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2020-09-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2020-09-05] (Google Inc -> Google Inc.)
FirewallRules: [{B77F7887-1FC0-4E68-819C-DFB40566D571}] => (Allow) LPort=9009
FirewallRules: [{95CBCD59-7A02-4A27-9839-A613A8D94183}] => (Allow) LPort=9009
FirewallRules: [{EB08D9D6-EBC3-408C-86C5-D2EF6CC67B96}] => (Allow) LPort=9009
FirewallRules: [{4A617007-4636-4AC0-BAE1-A89A0F33C225}] => (Allow) LPort=9009
FirewallRules: [{4FC83B18-59A7-4BD3-8DE5-F77CE034D68B}] => (Allow) LPort=9009
FirewallRules: [{E29E455B-AA7F-438B-B9AC-7E59B5BB69D4}] => (Allow) LPort=9009
FirewallRules: [{389CDD71-81AF-4077-95DA-072C32A695E8}] => (Allow) LPort=9009
FirewallRules: [{652D7198-7A7E-4757-B671-241F0BE2DEF4}] => (Allow) LPort=9009
FirewallRules: [{1AA4FE23-9DF3-4267-96DF-C0D792841D9D}] => (Allow) LPort=9009
FirewallRules: [{B46C37A4-E449-48D3-BEE3-DAAFC72632E1}] => (Allow) LPort=9009
FirewallRules: [{2DF83964-82CE-41F9-92F1-CB6E59595578}] => (Allow) LPort=9009
FirewallRules: [{D5C631FE-7C8E-48BA-A165-6331E7B7B6EE}] => (Allow) LPort=9009
FirewallRules: [{CF89B38B-8850-4842-B3BB-DD18A9E08ECC}] => (Allow) LPort=9009
FirewallRules: [{28667155-BF4D-4403-B2CB-F55E47AD87A3}] => (Allow) LPort=9009
FirewallRules: [{BD8B88BA-F919-42A3-A2BF-D4676EA9AFF4}] => (Allow) LPort=9009
FirewallRules: [{B8F5F605-B12E-40FC-A1C0-267C8B455F7B}] => (Allow) LPort=9009
FirewallRules: [{37E61BD7-0D25-4631-A5E5-0C6BB79976FE}] => (Allow) LPort=9009
FirewallRules: [{74BF8B90-64A2-45C0-B5E9-A44DF2C0286B}] => (Allow) LPort=9009
FirewallRules: [{3AC6D445-C159-4033-B914-A42B8837B45D}] => (Allow) LPort=9009
FirewallRules: [{55D5D798-C476-46E4-A8A6-4BF4A5F198D0}] => (Allow) LPort=9009
FirewallRules: [{6E15803A-D235-4AED-AC73-52CD68F68452}] => (Allow) LPort=9009
FirewallRules: [{D8A10306-2487-4AB7-8A12-171FD245FB3F}] => (Allow) LPort=9009
FirewallRules: [{43ACFC2B-7C52-4F3D-979C-A10C61349DB9}] => (Allow) LPort=9009
FirewallRules: [{7DD53090-09B0-4A7A-BA3A-106EC494B835}] => (Allow) LPort=9009
FirewallRules: [{81B635DF-8982-4A60-9307-154613CE4C19}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => No File
FirewallRules: [{E85E5691-681E-4132-B74E-6BDEEEE78D4F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => No File
FirewallRules: [{923E07A9-3973-4FDC-ADD0-E5A5A28088C1}] => (Allow) LPort=9009
FirewallRules: [{6CC43093-B3CC-4ECE-83E6-274D9C8B3C38}] => (Allow) LPort=9009
FirewallRules: [{14E8870F-A948-4131-8374-BB5DD5567D27}] => (Allow) LPort=9009
FirewallRules: [{ECB6468A-1B8E-4741-990E-20E3E0B6B83A}] => (Allow) LPort=9009
FirewallRules: [{5A25B191-CC84-40FC-8D23-143A9DC09052}] => (Allow) LPort=9009
FirewallRules: [{542B7853-B7E9-490C-8F3C-BFD353F305C7}] => (Allow) LPort=9009
FirewallRules: [{F176FA17-47A9-4A07-86A2-026011F9AB85}] => (Allow) LPort=9009
FirewallRules: [{7643B170-EA9C-42F9-8323-384B15C2897C}] => (Allow) LPort=9009
FirewallRules: [{684BAD0A-387E-4EDF-8B16-DE39B9C08E78}] => (Allow) LPort=9009
FirewallRules: [{5638F6D1-53C1-4B48-819C-C4F6AF3420CC}] => (Allow) LPort=9009
FirewallRules: [{F2B40A88-EBDA-4DBC-BE51-B7DAB96FCFBE}] => (Allow) LPort=9009
FirewallRules: [{EF2B0D2A-879C-4DE6-89E0-7C1D754FE69D}] => (Allow) LPort=9009
FirewallRules: [{81D4DA90-EA6F-4867-81DE-30340923587E}] => (Allow) LPort=9009
FirewallRules: [{FD7B3E84-9288-45B8-B8F0-CBE4E143F36F}] => (Allow) LPort=9009
FirewallRules: [{8A824E83-86B8-4EE5-9FA4-87182F4D63FE}] => (Allow) LPort=9009
FirewallRules: [{B92DB760-7904-415F-94D5-CE6E9D81AD34}] => (Allow) LPort=9009
FirewallRules: [{CD7FD727-D87C-47C9-ABE6-038F8C31E1FF}] => (Allow) LPort=9009
FirewallRules: [{F11EAA6D-72DB-44D4-81EB-95029DB3223D}] => (Allow) LPort=9009
FirewallRules: [{CEC7E2E8-0F93-402B-A495-5C8342430D64}] => (Allow) LPort=9009
FirewallRules: [{08A58799-DDCC-4378-9510-37CBC2660634}] => (Allow) LPort=9009
FirewallRules: [{5FC0C8F6-1F9A-417B-BACF-93A86147A4D1}] => (Allow) LPort=9009
FirewallRules: [{62914916-60DC-40BF-8DCE-D35C3BB8D245}] => (Allow) LPort=9009
FirewallRules: [{EC4E4882-5C9A-4A7E-8068-C834E52FECA6}] => (Allow) LPort=9009
FirewallRules: [{BCA8B29E-27A6-4F20-B7B0-0F99BA8C48D4}] => (Allow) LPort=9009
FirewallRules: [{45804EE5-FFDE-4E33-B272-3E6B0EFEA9C9}] => (Allow) LPort=9009
FirewallRules: [{C20AE677-4579-41AD-99C5-B463FE9A6F5B}] => (Allow) LPort=9009
FirewallRules: [{F330BA7C-2201-48E2-887F-454942ED4392}] => (Allow) LPort=9009
FirewallRules: [{AA6F2409-7D49-4173-A332-04B15C058898}] => (Allow) LPort=9009
FirewallRules: [{A6212D22-5133-4708-9FD7-58B3EFD2CACD}] => (Allow) LPort=9009
FirewallRules: [{BE9BB85E-3266-480D-8D98-37E4FFF4A636}] => (Allow) LPort=9009
FirewallRules: [{8F1B572F-0B02-47C8-BF66-3B7FCF307236}] => (Allow) LPort=9009
FirewallRules: [{82D10970-0DFA-4045-8A2C-9F4A6C21EC5E}] => (Allow) LPort=9009
FirewallRules: [{3DE4759F-19BD-4215-87CD-1C88D4A7C16A}] => (Allow) LPort=9009
FirewallRules: [{E821C539-E423-4D5F-AE33-90F1E281C1F4}] => (Allow) LPort=9009
FirewallRules: [{BA7ACE54-4548-4A4F-9539-6E8954716B34}] => (Allow) LPort=9009
FirewallRules: [{D3BCFCD7-8239-44FC-B4A7-82A9D208BEC2}] => (Allow) LPort=9009
FirewallRules: [{2504C8E5-55E8-49A2-ACBD-69236266A49B}] => (Allow) LPort=9009
FirewallRules: [{D3C9D3C7-3DBA-4AA1-8599-E492CF8702A3}] => (Allow) LPort=9009
FirewallRules: [{D0F65DC9-130C-4BD7-A10F-E757730F8829}] => (Allow) LPort=9009
FirewallRules: [{ABCE5657-2805-4D96-A02E-8517B93AE317}] => (Allow) LPort=9009
FirewallRules: [{E693F0DE-ACDD-41A7-9C8C-D900CF70BD1F}] => (Allow) LPort=9009
FirewallRules: [{37B0C183-AAE7-432E-B086-6A80D3C811C9}] => (Allow) LPort=9009
FirewallRules: [{400135D0-3425-4E47-94B1-980F716145DC}] => (Allow) LPort=9009
FirewallRules: [{373E4645-ED29-470E-874E-D0114941A16F}] => (Allow) LPort=9009
FirewallRules: [{6F36507B-F629-4692-BADE-9A28F2E6F249}] => (Allow) LPort=9009
FirewallRules: [{D89A7BBD-5025-4E74-B2C9-144A8776446E}] => (Allow) LPort=9009
FirewallRules: [{C0C692E1-B805-414E-895D-8C039BE64FD7}] => (Allow) LPort=9009
FirewallRules: [{D5397CEE-3BAA-4046-8FA4-BD9EBBA018A2}] => (Allow) LPort=9009
FirewallRules: [{FE583904-6558-4F88-9DD2-5D3E6D8595A2}] => (Allow) LPort=9009
FirewallRules: [{59AD8877-8D8F-4241-97D7-7F4B3C8FAD03}] => (Allow) LPort=9009
FirewallRules: [{3AE9BCD2-7CA4-4518-B7E6-674DE522D01E}] => (Allow) LPort=9009
FirewallRules: [{76820791-8AC0-48F3-BCBE-494B2B5DE736}] => (Allow) LPort=9009
FirewallRules: [{5CC9C423-FCCE-4EDB-99E4-FB4BAFD32718}] => (Allow) LPort=9009
FirewallRules: [{6D7B9FEA-5268-4869-97C0-DFCF54CD6532}] => (Allow) LPort=9009
FirewallRules: [{45FBC764-AA7C-4524-AA80-71C96F3DB9D7}] => (Allow) LPort=9009
FirewallRules: [{1141DE47-490F-4E47-B8BC-2495DDCE56B0}] => (Allow) LPort=9009
FirewallRules: [{17DB257E-05A7-4617-B432-7CFD9F6E5D52}] => (Allow) LPort=9009
FirewallRules: [{43806569-873F-4BDD-BB71-13222C1DC74C}] => (Allow) LPort=9009
FirewallRules: [{1BD881F4-ACEE-4D09-B52D-DF6D353A2E12}] => (Allow) LPort=9009
FirewallRules: [{B7BBC310-325B-46CD-9320-4CCAA02E9BDF}] => (Allow) LPort=9009
FirewallRules: [{88DA30F2-2EF7-491C-9B51-65BFA5DD299E}] => (Allow) LPort=9009
FirewallRules: [{A5A22D73-AA43-4D08-BE06-8B615A9CC1CF}] => (Allow) LPort=9009
FirewallRules: [{1CC17E8A-83DE-41AE-B5CD-86BEAF2AA12B}] => (Allow) LPort=9009
FirewallRules: [{0CA6A2E2-B1E2-4781-BD4F-9B2541D8A083}] => (Allow) LPort=9009
FirewallRules: [{4B863613-0CFF-4016-96AE-94BBEE576F94}] => (Allow) LPort=9009
FirewallRules: [{5800975D-BCE7-4559-8C3F-3DB301A973DC}] => (Allow) LPort=9009
FirewallRules: [{6881976B-7172-45DA-B60E-7A699E7E2D24}] => (Allow) LPort=9009
FirewallRules: [{378CA4EF-C7F9-45B4-9C33-B7F3DC4C4E79}] => (Allow) LPort=9009
FirewallRules: [{F991DA17-695A-4476-8795-CBC768384D2B}] => (Allow) LPort=9009
FirewallRules: [{F075DB9C-A7A5-490A-AA5E-9B723ED1BFD6}] => (Allow) LPort=9009
FirewallRules: [{BF723838-ED09-4DD6-B095-AB9A65A268C4}] => (Allow) LPort=9009
FirewallRules: [{D46A8EB6-DEB6-47B4-A22F-B9608AA6C9CD}] => (Allow) LPort=9009
FirewallRules: [{97D84B4B-70F6-461F-B840-7EF76C7D873C}] => (Allow) LPort=9009
FirewallRules: [{67C3E0F6-2FDD-45A9-BE21-8B61742479A5}] => (Allow) LPort=9009
FirewallRules: [{B6B6C2D5-A173-4293-ABAB-FF246DAEB5EE}] => (Allow) LPort=9009
FirewallRules: [{175DC71D-E1DC-4939-8F91-9594AD61269A}] => (Allow) LPort=9009
FirewallRules: [{007EB5AB-9A7F-4EB8-AB18-0B0A4C2D464B}] => (Allow) LPort=9009
FirewallRules: [{7FF3FE0B-2077-4C22-BC54-44303E4A0993}] => (Allow) LPort=9009
FirewallRules: [{B8587FC9-8C0C-4586-B1F7-A52E1B769615}] => (Allow) LPort=9009
FirewallRules: [{E190E9D9-CF18-451D-B17A-923934247A80}] => (Allow) LPort=9009
FirewallRules: [{5DEBFABF-DA4D-494A-92E9-F676247D2147}] => (Allow) LPort=9009
FirewallRules: [{0CB1FC4F-56D6-4FDF-9604-FF394EBA11BD}] => (Allow) LPort=9009
FirewallRules: [{27BB64C8-5F2D-4875-9A28-A2FF75D12736}] => (Allow) LPort=9009
FirewallRules: [{CB68BCAE-B01E-42C8-9C23-EDFAF73FEB7C}] => (Allow) LPort=9009
FirewallRules: [{DF4A752C-34C4-4996-B007-760C7AD31BBB}] => (Allow) LPort=9009
FirewallRules: [{D2B3A63F-F0CE-4FA2-B694-6567C94A4438}] => (Allow) LPort=9009
FirewallRules: [{FBACC781-74EF-4D59-8E8C-4D2E2FC02E46}] => (Allow) LPort=9009
FirewallRules: [{1A300089-8540-4F11-B62E-456CA2290878}] => (Allow) LPort=9009
FirewallRules: [{595B876C-7008-4BF3-9928-2C0996DF9AC8}] => (Allow) LPort=9009
FirewallRules: [{1E149926-0AE7-482A-8CF2-C779687DC76B}] => (Allow) LPort=9009
FirewallRules: [{3B976A87-F25F-4209-B36D-A0921AE0AE96}] => (Allow) LPort=9009
FirewallRules: [{5F03E14D-285C-4390-88EE-D9AA9CDFCA2B}] => (Allow) LPort=9009
FirewallRules: [{74BFA161-7281-4BFA-9B11-48866699C915}] => (Allow) LPort=9009
FirewallRules: [{76EE873F-B597-444F-8EF9-2278242F2561}] => (Allow) LPort=9009
FirewallRules: [{41207151-A878-4945-B529-DDB1296E8012}] => (Allow) LPort=9009
FirewallRules: [{E2F97833-71B1-4842-A003-3C6C08DD2103}] => (Allow) LPort=9009
FirewallRules: [{829C8DCE-B94F-4A7A-ABF7-2C6DCD6A1489}] => (Allow) LPort=9009
FirewallRules: [{21A5D4B9-394C-492E-A886-FD6C52DEBD7B}] => (Allow) LPort=9009
FirewallRules: [{46545D81-B0E4-4830-82B2-19B3AAA2322E}] => (Allow) LPort=9009
FirewallRules: [{B0555A55-C3CD-4C2F-984A-D1983DA47628}] => (Allow) LPort=9009
FirewallRules: [{1286EE57-1374-4BAD-B4FF-D8E75B2E07DB}] => (Allow) LPort=9009
FirewallRules: [{C6BBB632-83EA-4314-9926-2EF086952AC0}] => (Allow) LPort=9009
FirewallRules: [{A8DF4779-0BCA-40CD-83DD-9E86D47B3B89}] => (Allow) LPort=9009
FirewallRules: [{AB949E24-A517-4BDC-A9C4-FDA29F54B7EE}] => (Allow) LPort=5454
FirewallRules: [{5E87AA9E-696B-42D6-BB1B-E60499163F88}] => (Allow) LPort=9009
FirewallRules: [{3F137B3B-82E8-4BD3-9A37-C0BF4E37D3B9}] => (Allow) LPort=9009
FirewallRules: [{AD817A49-9F11-4E1A-9480-A96F53DB3156}] => (Allow) LPort=9009
FirewallRules: [{B91C088A-6BDC-4F53-8D23-5886B37A6BE8}] => (Allow) LPort=9009
FirewallRules: [{86D9B9C8-5A2A-4A28-A989-A2FB38FD5D09}] => (Allow) LPort=9009
FirewallRules: [{4F7FF186-BD11-4796-8221-46328706D2F7}] => (Allow) LPort=9009
FirewallRules: [{1081D948-779F-4ADE-8648-A1720FBE7FB8}] => (Allow) LPort=9009
FirewallRules: [{459B1DAD-35E8-444D-8868-6D6864ACDC16}] => (Allow) LPort=9009
FirewallRules: [{DEAF4AB1-4EEE-4615-AE74-CD004E6D5CE2}] => (Allow) LPort=9009
FirewallRules: [{7853EF27-6E47-4170-8486-BB064809E635}] => (Allow) LPort=9009
FirewallRules: [{895B38AE-0794-4681-8E2D-495657BE858F}] => (Allow) LPort=9009
FirewallRules: [{69F3B5B4-9BB6-4D85-88B7-47B562B8BB60}] => (Allow) LPort=9009
FirewallRules: [{7EF01CE9-FD15-435E-98D1-71A54AA743D0}] => (Allow) LPort=9009
FirewallRules: [{817E9515-7B42-4EDE-8EAF-732E6E80DAC5}] => (Allow) LPort=9009
FirewallRules: [{A3C5C974-13FE-44DE-9AE3-F5B0331CB4A3}] => (Allow) LPort=9009
FirewallRules: [{30C97E89-7691-4253-8836-F43483BB7A1A}] => (Allow) LPort=9009
FirewallRules: [{F9B35815-552D-494B-BAE0-A3B62124DA96}] => (Allow) LPort=9009
FirewallRules: [{C18B974B-E76F-47FB-B874-6DC1AD8C7482}] => (Allow) LPort=9009
FirewallRules: [{6071EDA1-827E-4C1F-AEA5-EE818912AEDD}] => (Allow) LPort=9009
FirewallRules: [{2CA28856-1DB7-4D79-BE08-79A911621C21}] => (Allow) LPort=9009
FirewallRules: [{9F7C797C-D6FB-4C31-BA81-747542928691}] => (Allow) LPort=9009
FirewallRules: [{FFC58480-BCAA-4B81-9189-1B6C4F82467D}] => (Allow) LPort=9009
FirewallRules: [{AD426262-B9C9-4F0E-A3E2-1F5158D63CBB}] => (Allow) LPort=9009
FirewallRules: [{C26FBEB4-010A-495B-996E-AF975DA36942}] => (Allow) LPort=9009
FirewallRules: [{9850BCF4-D86C-4B6F-B7F4-21294E8974B7}] => (Allow) LPort=9009
FirewallRules: [{81F3ABBB-C218-41E0-BCE5-E377057164A3}] => (Allow) LPort=9009
FirewallRules: [{75EB650E-1FF2-4E11-B171-6BCDFF343CD5}] => (Allow) LPort=9009
FirewallRules: [{739AA885-9EC2-4DDD-BA20-825D52FF42CF}] => (Allow) LPort=9009
FirewallRules: [{B181E00D-3D0B-49CC-A63C-E260384CF7B0}] => (Allow) LPort=9009
FirewallRules: [{CC27B110-253A-492B-A713-D8D4613670C7}] => (Allow) LPort=9009
FirewallRules: [{4B735C2E-907D-448C-9AE8-7A871D05DBB6}] => (Allow) LPort=5354
FirewallRules: [{B5C886C5-ACB6-4DCE-B4FF-C75931A0A20D}] => (Allow) LPort=5354
FirewallRules: [{888159BE-7AFC-40E2-BA5B-76D60E8D7627}] => (Allow) LPort=5354
FirewallRules: [{4D88088D-3626-41B7-A4B8-F93D9E1FD9F4}] => (Allow) LPort=5354
FirewallRules: [{A0171FAF-C1FA-476E-AE74-BACAFC0C5E94}] => (Allow) LPort=9009
FirewallRules: [{E57113C1-A68D-41E5-B110-2DE11D3890BC}] => (Allow) LPort=9009
FirewallRules: [{14AC3137-3CC7-4109-90D3-B7517AF241AE}] => (Allow) LPort=9009
FirewallRules: [{EE19A341-0EA1-4A7A-A1E4-9046DF6C2DEF}] => (Allow) LPort=9009
FirewallRules: [{010165F6-F98E-49D1-BCAD-DE7746778BF9}] => (Allow) LPort=9009
FirewallRules: [{4B63C1ED-581D-4089-8920-8883112CF764}] => (Allow) LPort=9009
FirewallRules: [{29614E04-E86C-4F58-972C-1B9E09776B16}] => (Allow) LPort=9009
FirewallRules: [{5FF47B47-29EA-45C2-BEA7-E3C21BF2DCCE}] => (Allow) LPort=9009
FirewallRules: [{3BEA98D3-CCF9-4247-A039-0007FBCAEF3F}] => (Allow) LPort=9009
FirewallRules: [{E36AF2E0-0B56-442D-9F28-306EAC027A79}] => (Allow) LPort=9009
FirewallRules: [{C01F8C10-CAD1-45ED-97A4-9ECCAAE58DA0}] => (Allow) LPort=9009
FirewallRules: [{2B8AE9A1-D1D3-410B-863E-C6F807EE3368}] => (Allow) LPort=9009
FirewallRules: [{5F76C018-B2DB-47E4-BE5E-55D426D1229B}] => (Allow) LPort=9009
FirewallRules: [{2C791805-A1D9-43C7-9471-D51F0BD4EDC3}] => (Allow) LPort=9009
FirewallRules: [{6FB67CCC-36AB-4532-B4D7-BABCADB6C733}] => (Allow) LPort=9009
FirewallRules: [{90327759-CF1D-467C-8EF7-9F19F425A5F4}] => (Allow) LPort=9009
FirewallRules: [{A4BE1A56-6737-40F9-9382-3B101F439121}] => (Allow) LPort=9009
FirewallRules: [{1BBC45E9-EE3F-406D-A6BD-AC905BE7FC43}] => (Allow) LPort=9009
FirewallRules: [{C6FF1A9B-A764-4F43-A8ED-8F8FF2FCBD32}] => (Allow) LPort=9009
FirewallRules: [{804210B8-A899-4538-BE91-8C8C475FC95C}] => (Allow) LPort=9009
FirewallRules: [{A0129950-11D1-44C5-BE75-93030F6CE862}] => (Allow) LPort=9009
FirewallRules: [{8481638D-59D4-464C-9B41-EB05E4A5DD5B}] => (Allow) LPort=9009
FirewallRules: [{7667BB08-DDA3-4C3E-A19E-20ACE7F8981B}] => (Allow) LPort=9009
FirewallRules: [{1657C98D-E2CC-4352-867D-6F819703C4D9}] => (Allow) LPort=9009
FirewallRules: [{4EF31C74-EA1F-4337-8A89-FD7A13C12BA0}] => (Allow) LPort=9009
FirewallRules: [{FCC0BBFD-10D5-49B2-9B2C-E4F3627F0DBD}] => (Allow) LPort=9009
FirewallRules: [{8100B011-4914-4931-900A-3E0D2998975C}] => (Allow) LPort=9009
FirewallRules: [{CE09A072-8623-4730-ADE2-0FB65F13C060}] => (Allow) LPort=9009
FirewallRules: [{705BE12D-C926-4EC3-9EE2-9974E85FCDEA}] => (Allow) LPort=9009
FirewallRules: [{A246D3AF-3B6D-479C-BB35-10CE64BDA778}] => (Allow) LPort=9009
FirewallRules: [{933F558C-1776-4291-91D4-4333F613C9AB}] => (Allow) LPort=9009
FirewallRules: [{5D23003C-2EF9-40BF-9F4C-AE3A6150FD80}] => (Allow) LPort=9009
FirewallRules: [{5287DB6A-6365-4DDF-AD9E-F08ADE89F3CA}] => (Allow) LPort=9009
FirewallRules: [{1CCCA45E-1750-458B-9037-FBC497E2912A}] => (Allow) LPort=9009
FirewallRules: [{566760D8-FCA6-4EE4-9CB9-13C34A82F604}] => (Allow) LPort=9009
FirewallRules: [{C87E82DF-7AE7-4AF7-BD68-2B6FC149519A}] => (Allow) LPort=9009
FirewallRules: [{C1D4C424-24D6-42CA-9DD6-1876B378A6BC}] => (Allow) LPort=9009
FirewallRules: [{C7851989-20BE-495A-A6D8-56EFAD8536AE}] => (Allow) LPort=9009
FirewallRules: [{B7A17B74-D88F-4560-B688-FBAA908A9697}] => (Allow) LPort=9009
FirewallRules: [{50FBD781-014C-4B98-817B-EDD7D58E4A5D}] => (Allow) LPort=9009
FirewallRules: [{12F9EE3E-D3A6-4496-8930-592B0F0D3B47}] => (Allow) LPort=9009
FirewallRules: [{BDBC27C0-BB1F-411A-901B-3FBF7765DAB2}] => (Allow) LPort=9009
FirewallRules: [{514FD534-3EAA-483B-9BE9-4FE7B6A9418C}] => (Allow) LPort=9009
FirewallRules: [{19CE6C83-240C-4B57-8947-3C4E4D56D031}] => (Allow) LPort=9009
FirewallRules: [{F1A7F5BA-BFD5-4D97-A164-97A7B7E44BEF}] => (Allow) LPort=9009
FirewallRules: [{1C6A3E0B-BDA7-4F53-A082-E5F19D0E672F}] => (Allow) LPort=9009
FirewallRules: [{4837CD10-EE84-41A7-8B69-5E65397286D4}] => (Allow) LPort=9009
FirewallRules: [{132939CE-1252-4C5E-877A-5755C3B45DA2}] => (Allow) LPort=9009
FirewallRules: [{CE829B87-1085-4C22-A6AB-2F5238E57095}] => (Allow) LPort=9009
FirewallRules: [{B3164246-07BB-4E85-B722-5CD627C3B610}] => (Allow) LPort=9009
FirewallRules: [{34F9242D-7853-48F3-9B44-8FD71D025D46}] => (Allow) LPort=9009
FirewallRules: [{9EAE6F35-9A2E-4F09-B1CA-E6619FD9ECF0}] => (Allow) LPort=9009
FirewallRules: [{4D8144FE-7B86-4BBF-89A7-53300C4BC320}] => (Allow) LPort=9009
FirewallRules: [{4C29D06D-07D4-4209-8916-9F26811B62BD}] => (Allow) LPort=9009
FirewallRules: [{C42810F9-090A-4588-BCBC-8F8A5AE3CA44}] => (Allow) LPort=9009
FirewallRules: [{2001267D-DE1B-48ED-96FF-9C1968A6C9ED}] => (Allow) LPort=9009
FirewallRules: [{4ABACCB7-E70B-4DBC-BCDF-5ECBB47036C4}] => (Allow) LPort=9009
FirewallRules: [{5140D376-9949-4C70-8D61-076A93A48FB4}] => (Allow) LPort=9009
FirewallRules: [{FD17C371-CE51-416E-BE38-5467B83AB7BD}] => (Allow) LPort=9009
FirewallRules: [{43E5187D-A86A-4B86-B62C-2BD5AFAA806A}] => (Allow) LPort=9009
FirewallRules: [{7FEDF933-B400-453E-A4D2-1793DC6B2914}] => (Allow) LPort=9009
FirewallRules: [{0968BE09-B5EA-4177-B48F-BBC1A4D6FB31}] => (Allow) LPort=9009

Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Pocitac sa neresetuje.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#27 Příspěvek od fsubin »

Tak toto bolo zvlastne. V Safe Mode FRST znovu padol, vyprodukovany log obsahoval iba hlavicku a bol nepouzitelny. Nasledne som presunul FRST na iny disk, vykonal som znovu fix s tym istym fixlist.txt a konecne mam - po prvy krat
- kompletny log i ked to vyzera, ze nejake zmeny to uz muselo predtym urobit. Urobim novy scan a prilozim znovu FRST + Addition log.


Fix result of Farbar Recovery Scan Tool (x64) Version: 26-03-2021
Ran by fsubi (26-03-2021 16:57:11) Run:5
Running from D:\
Loaded Profiles: fsubi & psubi
Boot Mode: Normal
==============================================

fixlist content:
*****************

C:\Program Files (x86)\Google\Google Toolbar

HKLM-x32\...\Run: [NBAgent] => D:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe [1493288 2012-01-13] (Nero AG -> Nero AG)
HKLM-x32\...\Run: [AgentMonitor] => D:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [697408 2019-03-13] (Vtech Electronics North America, L.L.C. -> )
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [QMxNetworkSync] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Amazon Music Helper] => C:\Users\fsubi\AppData\Local\Amazon Music\Amazon Music Helper.exe [2098512 2021-02-10] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\MountPoints2: {c7064c84-f5a6-11ea-ad1d-18c04d29336b} - "G:\WD Drive Unlock.exe" autoplay=true
Task: {3C33982B-7BD6-4F18-9661-6211A7B6945E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {3E966867-AF57-4A75-A9BB-3D0CB037E651} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-09-05] (Google Inc -> Google Inc.)
Task: {72F0536A-BE1D-4BD7-A5D4-3094766D2F2B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-09-05] (Google Inc -> Google Inc.)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
SearchScopes: HKU\S-1-5-21-971254259-73155972-3602281376-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2020-09-05] (Google Inc -> Google Inc.)
BHO-x32: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2020-09-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2020-09-05] (Google Inc -> Google Inc.)
FirewallRules: [{B77F7887-1FC0-4E68-819C-DFB40566D571}] => (Allow) LPort=9009
FirewallRules: [{95CBCD59-7A02-4A27-9839-A613A8D94183}] => (Allow) LPort=9009
FirewallRules: [{EB08D9D6-EBC3-408C-86C5-D2EF6CC67B96}] => (Allow) LPort=9009
FirewallRules: [{4A617007-4636-4AC0-BAE1-A89A0F33C225}] => (Allow) LPort=9009
FirewallRules: [{4FC83B18-59A7-4BD3-8DE5-F77CE034D68B}] => (Allow) LPort=9009
FirewallRules: [{E29E455B-AA7F-438B-B9AC-7E59B5BB69D4}] => (Allow) LPort=9009
FirewallRules: [{389CDD71-81AF-4077-95DA-072C32A695E8}] => (Allow) LPort=9009
FirewallRules: [{652D7198-7A7E-4757-B671-241F0BE2DEF4}] => (Allow) LPort=9009
FirewallRules: [{1AA4FE23-9DF3-4267-96DF-C0D792841D9D}] => (Allow) LPort=9009
FirewallRules: [{B46C37A4-E449-48D3-BEE3-DAAFC72632E1}] => (Allow) LPort=9009
FirewallRules: [{2DF83964-82CE-41F9-92F1-CB6E59595578}] => (Allow) LPort=9009
FirewallRules: [{D5C631FE-7C8E-48BA-A165-6331E7B7B6EE}] => (Allow) LPort=9009
FirewallRules: [{CF89B38B-8850-4842-B3BB-DD18A9E08ECC}] => (Allow) LPort=9009
FirewallRules: [{28667155-BF4D-4403-B2CB-F55E47AD87A3}] => (Allow) LPort=9009
FirewallRules: [{BD8B88BA-F919-42A3-A2BF-D4676EA9AFF4}] => (Allow) LPort=9009
FirewallRules: [{B8F5F605-B12E-40FC-A1C0-267C8B455F7B}] => (Allow) LPort=9009
FirewallRules: [{37E61BD7-0D25-4631-A5E5-0C6BB79976FE}] => (Allow) LPort=9009
FirewallRules: [{74BF8B90-64A2-45C0-B5E9-A44DF2C0286B}] => (Allow) LPort=9009
FirewallRules: [{3AC6D445-C159-4033-B914-A42B8837B45D}] => (Allow) LPort=9009
FirewallRules: [{55D5D798-C476-46E4-A8A6-4BF4A5F198D0}] => (Allow) LPort=9009
FirewallRules: [{6E15803A-D235-4AED-AC73-52CD68F68452}] => (Allow) LPort=9009
FirewallRules: [{D8A10306-2487-4AB7-8A12-171FD245FB3F}] => (Allow) LPort=9009
FirewallRules: [{43ACFC2B-7C52-4F3D-979C-A10C61349DB9}] => (Allow) LPort=9009
FirewallRules: [{7DD53090-09B0-4A7A-BA3A-106EC494B835}] => (Allow) LPort=9009
FirewallRules: [{81B635DF-8982-4A60-9307-154613CE4C19}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => No File
FirewallRules: [{E85E5691-681E-4132-B74E-6BDEEEE78D4F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe => No File
FirewallRules: [{923E07A9-3973-4FDC-ADD0-E5A5A28088C1}] => (Allow) LPort=9009
FirewallRules: [{6CC43093-B3CC-4ECE-83E6-274D9C8B3C38}] => (Allow) LPort=9009
FirewallRules: [{14E8870F-A948-4131-8374-BB5DD5567D27}] => (Allow) LPort=9009
FirewallRules: [{ECB6468A-1B8E-4741-990E-20E3E0B6B83A}] => (Allow) LPort=9009
FirewallRules: [{5A25B191-CC84-40FC-8D23-143A9DC09052}] => (Allow) LPort=9009
FirewallRules: [{542B7853-B7E9-490C-8F3C-BFD353F305C7}] => (Allow) LPort=9009
FirewallRules: [{F176FA17-47A9-4A07-86A2-026011F9AB85}] => (Allow) LPort=9009
FirewallRules: [{7643B170-EA9C-42F9-8323-384B15C2897C}] => (Allow) LPort=9009
FirewallRules: [{684BAD0A-387E-4EDF-8B16-DE39B9C08E78}] => (Allow) LPort=9009
FirewallRules: [{5638F6D1-53C1-4B48-819C-C4F6AF3420CC}] => (Allow) LPort=9009
FirewallRules: [{F2B40A88-EBDA-4DBC-BE51-B7DAB96FCFBE}] => (Allow) LPort=9009
FirewallRules: [{EF2B0D2A-879C-4DE6-89E0-7C1D754FE69D}] => (Allow) LPort=9009
FirewallRules: [{81D4DA90-EA6F-4867-81DE-30340923587E}] => (Allow) LPort=9009
FirewallRules: [{FD7B3E84-9288-45B8-B8F0-CBE4E143F36F}] => (Allow) LPort=9009
FirewallRules: [{8A824E83-86B8-4EE5-9FA4-87182F4D63FE}] => (Allow) LPort=9009
FirewallRules: [{B92DB760-7904-415F-94D5-CE6E9D81AD34}] => (Allow) LPort=9009
FirewallRules: [{CD7FD727-D87C-47C9-ABE6-038F8C31E1FF}] => (Allow) LPort=9009
FirewallRules: [{F11EAA6D-72DB-44D4-81EB-95029DB3223D}] => (Allow) LPort=9009
FirewallRules: [{CEC7E2E8-0F93-402B-A495-5C8342430D64}] => (Allow) LPort=9009
FirewallRules: [{08A58799-DDCC-4378-9510-37CBC2660634}] => (Allow) LPort=9009
FirewallRules: [{5FC0C8F6-1F9A-417B-BACF-93A86147A4D1}] => (Allow) LPort=9009
FirewallRules: [{62914916-60DC-40BF-8DCE-D35C3BB8D245}] => (Allow) LPort=9009
FirewallRules: [{EC4E4882-5C9A-4A7E-8068-C834E52FECA6}] => (Allow) LPort=9009
FirewallRules: [{BCA8B29E-27A6-4F20-B7B0-0F99BA8C48D4}] => (Allow) LPort=9009
FirewallRules: [{45804EE5-FFDE-4E33-B272-3E6B0EFEA9C9}] => (Allow) LPort=9009
FirewallRules: [{C20AE677-4579-41AD-99C5-B463FE9A6F5B}] => (Allow) LPort=9009
FirewallRules: [{F330BA7C-2201-48E2-887F-454942ED4392}] => (Allow) LPort=9009
FirewallRules: [{AA6F2409-7D49-4173-A332-04B15C058898}] => (Allow) LPort=9009
FirewallRules: [{A6212D22-5133-4708-9FD7-58B3EFD2CACD}] => (Allow) LPort=9009
FirewallRules: [{BE9BB85E-3266-480D-8D98-37E4FFF4A636}] => (Allow) LPort=9009
FirewallRules: [{8F1B572F-0B02-47C8-BF66-3B7FCF307236}] => (Allow) LPort=9009
FirewallRules: [{82D10970-0DFA-4045-8A2C-9F4A6C21EC5E}] => (Allow) LPort=9009
FirewallRules: [{3DE4759F-19BD-4215-87CD-1C88D4A7C16A}] => (Allow) LPort=9009
FirewallRules: [{E821C539-E423-4D5F-AE33-90F1E281C1F4}] => (Allow) LPort=9009
FirewallRules: [{BA7ACE54-4548-4A4F-9539-6E8954716B34}] => (Allow) LPort=9009
FirewallRules: [{D3BCFCD7-8239-44FC-B4A7-82A9D208BEC2}] => (Allow) LPort=9009
FirewallRules: [{2504C8E5-55E8-49A2-ACBD-69236266A49B}] => (Allow) LPort=9009
FirewallRules: [{D3C9D3C7-3DBA-4AA1-8599-E492CF8702A3}] => (Allow) LPort=9009
FirewallRules: [{D0F65DC9-130C-4BD7-A10F-E757730F8829}] => (Allow) LPort=9009
FirewallRules: [{ABCE5657-2805-4D96-A02E-8517B93AE317}] => (Allow) LPort=9009
FirewallRules: [{E693F0DE-ACDD-41A7-9C8C-D900CF70BD1F}] => (Allow) LPort=9009
FirewallRules: [{37B0C183-AAE7-432E-B086-6A80D3C811C9}] => (Allow) LPort=9009
FirewallRules: [{400135D0-3425-4E47-94B1-980F716145DC}] => (Allow) LPort=9009
FirewallRules: [{373E4645-ED29-470E-874E-D0114941A16F}] => (Allow) LPort=9009
FirewallRules: [{6F36507B-F629-4692-BADE-9A28F2E6F249}] => (Allow) LPort=9009
FirewallRules: [{D89A7BBD-5025-4E74-B2C9-144A8776446E}] => (Allow) LPort=9009
FirewallRules: [{C0C692E1-B805-414E-895D-8C039BE64FD7}] => (Allow) LPort=9009
FirewallRules: [{D5397CEE-3BAA-4046-8FA4-BD9EBBA018A2}] => (Allow) LPort=9009
FirewallRules: [{FE583904-6558-4F88-9DD2-5D3E6D8595A2}] => (Allow) LPort=9009
FirewallRules: [{59AD8877-8D8F-4241-97D7-7F4B3C8FAD03}] => (Allow) LPort=9009
FirewallRules: [{3AE9BCD2-7CA4-4518-B7E6-674DE522D01E}] => (Allow) LPort=9009
FirewallRules: [{76820791-8AC0-48F3-BCBE-494B2B5DE736}] => (Allow) LPort=9009
FirewallRules: [{5CC9C423-FCCE-4EDB-99E4-FB4BAFD32718}] => (Allow) LPort=9009
FirewallRules: [{6D7B9FEA-5268-4869-97C0-DFCF54CD6532}] => (Allow) LPort=9009
FirewallRules: [{45FBC764-AA7C-4524-AA80-71C96F3DB9D7}] => (Allow) LPort=9009
FirewallRules: [{1141DE47-490F-4E47-B8BC-2495DDCE56B0}] => (Allow) LPort=9009
FirewallRules: [{17DB257E-05A7-4617-B432-7CFD9F6E5D52}] => (Allow) LPort=9009
FirewallRules: [{43806569-873F-4BDD-BB71-13222C1DC74C}] => (Allow) LPort=9009
FirewallRules: [{1BD881F4-ACEE-4D09-B52D-DF6D353A2E12}] => (Allow) LPort=9009
FirewallRules: [{B7BBC310-325B-46CD-9320-4CCAA02E9BDF}] => (Allow) LPort=9009
FirewallRules: [{88DA30F2-2EF7-491C-9B51-65BFA5DD299E}] => (Allow) LPort=9009
FirewallRules: [{A5A22D73-AA43-4D08-BE06-8B615A9CC1CF}] => (Allow) LPort=9009
FirewallRules: [{1CC17E8A-83DE-41AE-B5CD-86BEAF2AA12B}] => (Allow) LPort=9009
FirewallRules: [{0CA6A2E2-B1E2-4781-BD4F-9B2541D8A083}] => (Allow) LPort=9009
FirewallRules: [{4B863613-0CFF-4016-96AE-94BBEE576F94}] => (Allow) LPort=9009
FirewallRules: [{5800975D-BCE7-4559-8C3F-3DB301A973DC}] => (Allow) LPort=9009
FirewallRules: [{6881976B-7172-45DA-B60E-7A699E7E2D24}] => (Allow) LPort=9009
FirewallRules: [{378CA4EF-C7F9-45B4-9C33-B7F3DC4C4E79}] => (Allow) LPort=9009
FirewallRules: [{F991DA17-695A-4476-8795-CBC768384D2B}] => (Allow) LPort=9009
FirewallRules: [{F075DB9C-A7A5-490A-AA5E-9B723ED1BFD6}] => (Allow) LPort=9009
FirewallRules: [{BF723838-ED09-4DD6-B095-AB9A65A268C4}] => (Allow) LPort=9009
FirewallRules: [{D46A8EB6-DEB6-47B4-A22F-B9608AA6C9CD}] => (Allow) LPort=9009
FirewallRules: [{97D84B4B-70F6-461F-B840-7EF76C7D873C}] => (Allow) LPort=9009
FirewallRules: [{67C3E0F6-2FDD-45A9-BE21-8B61742479A5}] => (Allow) LPort=9009
FirewallRules: [{B6B6C2D5-A173-4293-ABAB-FF246DAEB5EE}] => (Allow) LPort=9009
FirewallRules: [{175DC71D-E1DC-4939-8F91-9594AD61269A}] => (Allow) LPort=9009
FirewallRules: [{007EB5AB-9A7F-4EB8-AB18-0B0A4C2D464B}] => (Allow) LPort=9009
FirewallRules: [{7FF3FE0B-2077-4C22-BC54-44303E4A0993}] => (Allow) LPort=9009
FirewallRules: [{B8587FC9-8C0C-4586-B1F7-A52E1B769615}] => (Allow) LPort=9009
FirewallRules: [{E190E9D9-CF18-451D-B17A-923934247A80}] => (Allow) LPort=9009
FirewallRules: [{5DEBFABF-DA4D-494A-92E9-F676247D2147}] => (Allow) LPort=9009
FirewallRules: [{0CB1FC4F-56D6-4FDF-9604-FF394EBA11BD}] => (Allow) LPort=9009
FirewallRules: [{27BB64C8-5F2D-4875-9A28-A2FF75D12736}] => (Allow) LPort=9009
FirewallRules: [{CB68BCAE-B01E-42C8-9C23-EDFAF73FEB7C}] => (Allow) LPort=9009
FirewallRules: [{DF4A752C-34C4-4996-B007-760C7AD31BBB}] => (Allow) LPort=9009
FirewallRules: [{D2B3A63F-F0CE-4FA2-B694-6567C94A4438}] => (Allow) LPort=9009
FirewallRules: [{FBACC781-74EF-4D59-8E8C-4D2E2FC02E46}] => (Allow) LPort=9009
FirewallRules: [{1A300089-8540-4F11-B62E-456CA2290878}] => (Allow) LPort=9009
FirewallRules: [{595B876C-7008-4BF3-9928-2C0996DF9AC8}] => (Allow) LPort=9009
FirewallRules: [{1E149926-0AE7-482A-8CF2-C779687DC76B}] => (Allow) LPort=9009
FirewallRules: [{3B976A87-F25F-4209-B36D-A0921AE0AE96}] => (Allow) LPort=9009
FirewallRules: [{5F03E14D-285C-4390-88EE-D9AA9CDFCA2B}] => (Allow) LPort=9009
FirewallRules: [{74BFA161-7281-4BFA-9B11-48866699C915}] => (Allow) LPort=9009
FirewallRules: [{76EE873F-B597-444F-8EF9-2278242F2561}] => (Allow) LPort=9009
FirewallRules: [{41207151-A878-4945-B529-DDB1296E8012}] => (Allow) LPort=9009
FirewallRules: [{E2F97833-71B1-4842-A003-3C6C08DD2103}] => (Allow) LPort=9009
FirewallRules: [{829C8DCE-B94F-4A7A-ABF7-2C6DCD6A1489}] => (Allow) LPort=9009
FirewallRules: [{21A5D4B9-394C-492E-A886-FD6C52DEBD7B}] => (Allow) LPort=9009
FirewallRules: [{46545D81-B0E4-4830-82B2-19B3AAA2322E}] => (Allow) LPort=9009
FirewallRules: [{B0555A55-C3CD-4C2F-984A-D1983DA47628}] => (Allow) LPort=9009
FirewallRules: [{1286EE57-1374-4BAD-B4FF-D8E75B2E07DB}] => (Allow) LPort=9009
FirewallRules: [{C6BBB632-83EA-4314-9926-2EF086952AC0}] => (Allow) LPort=9009
FirewallRules: [{A8DF4779-0BCA-40CD-83DD-9E86D47B3B89}] => (Allow) LPort=9009
FirewallRules: [{AB949E24-A517-4BDC-A9C4-FDA29F54B7EE}] => (Allow) LPort=5454
FirewallRules: [{5E87AA9E-696B-42D6-BB1B-E60499163F88}] => (Allow) LPort=9009
FirewallRules: [{3F137B3B-82E8-4BD3-9A37-C0BF4E37D3B9}] => (Allow) LPort=9009
FirewallRules: [{AD817A49-9F11-4E1A-9480-A96F53DB3156}] => (Allow) LPort=9009
FirewallRules: [{B91C088A-6BDC-4F53-8D23-5886B37A6BE8}] => (Allow) LPort=9009
FirewallRules: [{86D9B9C8-5A2A-4A28-A989-A2FB38FD5D09}] => (Allow) LPort=9009
FirewallRules: [{4F7FF186-BD11-4796-8221-46328706D2F7}] => (Allow) LPort=9009
FirewallRules: [{1081D948-779F-4ADE-8648-A1720FBE7FB8}] => (Allow) LPort=9009
FirewallRules: [{459B1DAD-35E8-444D-8868-6D6864ACDC16}] => (Allow) LPort=9009
FirewallRules: [{DEAF4AB1-4EEE-4615-AE74-CD004E6D5CE2}] => (Allow) LPort=9009
FirewallRules: [{7853EF27-6E47-4170-8486-BB064809E635}] => (Allow) LPort=9009
FirewallRules: [{895B38AE-0794-4681-8E2D-495657BE858F}] => (Allow) LPort=9009
FirewallRules: [{69F3B5B4-9BB6-4D85-88B7-47B562B8BB60}] => (Allow) LPort=9009
FirewallRules: [{7EF01CE9-FD15-435E-98D1-71A54AA743D0}] => (Allow) LPort=9009
FirewallRules: [{817E9515-7B42-4EDE-8EAF-732E6E80DAC5}] => (Allow) LPort=9009
FirewallRules: [{A3C5C974-13FE-44DE-9AE3-F5B0331CB4A3}] => (Allow) LPort=9009
FirewallRules: [{30C97E89-7691-4253-8836-F43483BB7A1A}] => (Allow) LPort=9009
FirewallRules: [{F9B35815-552D-494B-BAE0-A3B62124DA96}] => (Allow) LPort=9009
FirewallRules: [{C18B974B-E76F-47FB-B874-6DC1AD8C7482}] => (Allow) LPort=9009
FirewallRules: [{6071EDA1-827E-4C1F-AEA5-EE818912AEDD}] => (Allow) LPort=9009
FirewallRules: [{2CA28856-1DB7-4D79-BE08-79A911621C21}] => (Allow) LPort=9009
FirewallRules: [{9F7C797C-D6FB-4C31-BA81-747542928691}] => (Allow) LPort=9009
FirewallRules: [{FFC58480-BCAA-4B81-9189-1B6C4F82467D}] => (Allow) LPort=9009
FirewallRules: [{AD426262-B9C9-4F0E-A3E2-1F5158D63CBB}] => (Allow) LPort=9009
FirewallRules: [{C26FBEB4-010A-495B-996E-AF975DA36942}] => (Allow) LPort=9009
FirewallRules: [{9850BCF4-D86C-4B6F-B7F4-21294E8974B7}] => (Allow) LPort=9009
FirewallRules: [{81F3ABBB-C218-41E0-BCE5-E377057164A3}] => (Allow) LPort=9009
FirewallRules: [{75EB650E-1FF2-4E11-B171-6BCDFF343CD5}] => (Allow) LPort=9009
FirewallRules: [{739AA885-9EC2-4DDD-BA20-825D52FF42CF}] => (Allow) LPort=9009
FirewallRules: [{B181E00D-3D0B-49CC-A63C-E260384CF7B0}] => (Allow) LPort=9009
FirewallRules: [{CC27B110-253A-492B-A713-D8D4613670C7}] => (Allow) LPort=9009
FirewallRules: [{4B735C2E-907D-448C-9AE8-7A871D05DBB6}] => (Allow) LPort=5354
FirewallRules: [{B5C886C5-ACB6-4DCE-B4FF-C75931A0A20D}] => (Allow) LPort=5354
FirewallRules: [{888159BE-7AFC-40E2-BA5B-76D60E8D7627}] => (Allow) LPort=5354
FirewallRules: [{4D88088D-3626-41B7-A4B8-F93D9E1FD9F4}] => (Allow) LPort=5354
FirewallRules: [{A0171FAF-C1FA-476E-AE74-BACAFC0C5E94}] => (Allow) LPort=9009
FirewallRules: [{E57113C1-A68D-41E5-B110-2DE11D3890BC}] => (Allow) LPort=9009
FirewallRules: [{14AC3137-3CC7-4109-90D3-B7517AF241AE}] => (Allow) LPort=9009
FirewallRules: [{EE19A341-0EA1-4A7A-A1E4-9046DF6C2DEF}] => (Allow) LPort=9009
FirewallRules: [{010165F6-F98E-49D1-BCAD-DE7746778BF9}] => (Allow) LPort=9009
FirewallRules: [{4B63C1ED-581D-4089-8920-8883112CF764}] => (Allow) LPort=9009
FirewallRules: [{29614E04-E86C-4F58-972C-1B9E09776B16}] => (Allow) LPort=9009
FirewallRules: [{5FF47B47-29EA-45C2-BEA7-E3C21BF2DCCE}] => (Allow) LPort=9009
FirewallRules: [{3BEA98D3-CCF9-4247-A039-0007FBCAEF3F}] => (Allow) LPort=9009
FirewallRules: [{E36AF2E0-0B56-442D-9F28-306EAC027A79}] => (Allow) LPort=9009
FirewallRules: [{C01F8C10-CAD1-45ED-97A4-9ECCAAE58DA0}] => (Allow) LPort=9009
FirewallRules: [{2B8AE9A1-D1D3-410B-863E-C6F807EE3368}] => (Allow) LPort=9009
FirewallRules: [{5F76C018-B2DB-47E4-BE5E-55D426D1229B}] => (Allow) LPort=9009
FirewallRules: [{2C791805-A1D9-43C7-9471-D51F0BD4EDC3}] => (Allow) LPort=9009
FirewallRules: [{6FB67CCC-36AB-4532-B4D7-BABCADB6C733}] => (Allow) LPort=9009
FirewallRules: [{90327759-CF1D-467C-8EF7-9F19F425A5F4}] => (Allow) LPort=9009
FirewallRules: [{A4BE1A56-6737-40F9-9382-3B101F439121}] => (Allow) LPort=9009
FirewallRules: [{1BBC45E9-EE3F-406D-A6BD-AC905BE7FC43}] => (Allow) LPort=9009
FirewallRules: [{C6FF1A9B-A764-4F43-A8ED-8F8FF2FCBD32}] => (Allow) LPort=9009
FirewallRules: [{804210B8-A899-4538-BE91-8C8C475FC95C}] => (Allow) LPort=9009
FirewallRules: [{A0129950-11D1-44C5-BE75-93030F6CE862}] => (Allow) LPort=9009
FirewallRules: [{8481638D-59D4-464C-9B41-EB05E4A5DD5B}] => (Allow) LPort=9009
FirewallRules: [{7667BB08-DDA3-4C3E-A19E-20ACE7F8981B}] => (Allow) LPort=9009
FirewallRules: [{1657C98D-E2CC-4352-867D-6F819703C4D9}] => (Allow) LPort=9009
FirewallRules: [{4EF31C74-EA1F-4337-8A89-FD7A13C12BA0}] => (Allow) LPort=9009
FirewallRules: [{FCC0BBFD-10D5-49B2-9B2C-E4F3627F0DBD}] => (Allow) LPort=9009
FirewallRules: [{8100B011-4914-4931-900A-3E0D2998975C}] => (Allow) LPort=9009
FirewallRules: [{CE09A072-8623-4730-ADE2-0FB65F13C060}] => (Allow) LPort=9009
FirewallRules: [{705BE12D-C926-4EC3-9EE2-9974E85FCDEA}] => (Allow) LPort=9009
FirewallRules: [{A246D3AF-3B6D-479C-BB35-10CE64BDA778}] => (Allow) LPort=9009
FirewallRules: [{933F558C-1776-4291-91D4-4333F613C9AB}] => (Allow) LPort=9009
FirewallRules: [{5D23003C-2EF9-40BF-9F4C-AE3A6150FD80}] => (Allow) LPort=9009
FirewallRules: [{5287DB6A-6365-4DDF-AD9E-F08ADE89F3CA}] => (Allow) LPort=9009
FirewallRules: [{1CCCA45E-1750-458B-9037-FBC497E2912A}] => (Allow) LPort=9009
FirewallRules: [{566760D8-FCA6-4EE4-9CB9-13C34A82F604}] => (Allow) LPort=9009
FirewallRules: [{C87E82DF-7AE7-4AF7-BD68-2B6FC149519A}] => (Allow) LPort=9009
FirewallRules: [{C1D4C424-24D6-42CA-9DD6-1876B378A6BC}] => (Allow) LPort=9009
FirewallRules: [{C7851989-20BE-495A-A6D8-56EFAD8536AE}] => (Allow) LPort=9009
FirewallRules: [{B7A17B74-D88F-4560-B688-FBAA908A9697}] => (Allow) LPort=9009
FirewallRules: [{50FBD781-014C-4B98-817B-EDD7D58E4A5D}] => (Allow) LPort=9009
FirewallRules: [{12F9EE3E-D3A6-4496-8930-592B0F0D3B47}] => (Allow) LPort=9009
FirewallRules: [{BDBC27C0-BB1F-411A-901B-3FBF7765DAB2}] => (Allow) LPort=9009
FirewallRules: [{514FD534-3EAA-483B-9BE9-4FE7B6A9418C}] => (Allow) LPort=9009
FirewallRules: [{19CE6C83-240C-4B57-8947-3C4E4D56D031}] => (Allow) LPort=9009
FirewallRules: [{F1A7F5BA-BFD5-4D97-A164-97A7B7E44BEF}] => (Allow) LPort=9009
FirewallRules: [{1C6A3E0B-BDA7-4F53-A082-E5F19D0E672F}] => (Allow) LPort=9009
FirewallRules: [{4837CD10-EE84-41A7-8B69-5E65397286D4}] => (Allow) LPort=9009
FirewallRules: [{132939CE-1252-4C5E-877A-5755C3B45DA2}] => (Allow) LPort=9009
FirewallRules: [{CE829B87-1085-4C22-A6AB-2F5238E57095}] => (Allow) LPort=9009
FirewallRules: [{B3164246-07BB-4E85-B722-5CD627C3B610}] => (Allow) LPort=9009
FirewallRules: [{34F9242D-7853-48F3-9B44-8FD71D025D46}] => (Allow) LPort=9009
FirewallRules: [{9EAE6F35-9A2E-4F09-B1CA-E6619FD9ECF0}] => (Allow) LPort=9009
FirewallRules: [{4D8144FE-7B86-4BBF-89A7-53300C4BC320}] => (Allow) LPort=9009
FirewallRules: [{4C29D06D-07D4-4209-8916-9F26811B62BD}] => (Allow) LPort=9009
FirewallRules: [{C42810F9-090A-4588-BCBC-8F8A5AE3CA44}] => (Allow) LPort=9009
FirewallRules: [{2001267D-DE1B-48ED-96FF-9C1968A6C9ED}] => (Allow) LPort=9009
FirewallRules: [{4ABACCB7-E70B-4DBC-BCDF-5ECBB47036C4}] => (Allow) LPort=9009
FirewallRules: [{5140D376-9949-4C70-8D61-076A93A48FB4}] => (Allow) LPort=9009
FirewallRules: [{FD17C371-CE51-416E-BE38-5467B83AB7BD}] => (Allow) LPort=9009
FirewallRules: [{43E5187D-A86A-4B86-B62C-2BD5AFAA806A}] => (Allow) LPort=9009
FirewallRules: [{7FEDF933-B400-453E-A4D2-1793DC6B2914}] => (Allow) LPort=9009
FirewallRules: [{0968BE09-B5EA-4177-B48F-BBC1A4D6FB31}] => (Allow) LPort=9009

*****************

"C:\Program Files (x86)\Google\Google Toolbar" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\NBAgent" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AgentMonitor" => not found
"HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Windows\CurrentVersion\Run\\QMxNetworkSync" => not found
"HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => not found
"HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Amazon Music Helper" => not found
HKU\S-1-5-21-971254259-73155972-3602281376-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c7064c84-f5a6-11ea-ad1d-18c04d29336b} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C33982B-7BD6-4F18-9661-6211A7B6945E}" => not found
"C:\Windows\System32\Tasks\Adobe Acrobat Update Task" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E966867-AF57-4A75-A9BB-3D0CB037E651}" => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{72F0536A-BE1D-4BD7-A5D4-3094766D2F2B}" => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => not found
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => not found
"HKU\S-1-5-21-971254259-73155972-3602281376-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => not found
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => not found
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B77F7887-1FC0-4E68-819C-DFB40566D571}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{95CBCD59-7A02-4A27-9839-A613A8D94183}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EB08D9D6-EBC3-408C-86C5-D2EF6CC67B96}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4A617007-4636-4AC0-BAE1-A89A0F33C225}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4FC83B18-59A7-4BD3-8DE5-F77CE034D68B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E29E455B-AA7F-438B-B9AC-7E59B5BB69D4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{389CDD71-81AF-4077-95DA-072C32A695E8}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{652D7198-7A7E-4757-B671-241F0BE2DEF4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1AA4FE23-9DF3-4267-96DF-C0D792841D9D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B46C37A4-E449-48D3-BEE3-DAAFC72632E1}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2DF83964-82CE-41F9-92F1-CB6E59595578}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D5C631FE-7C8E-48BA-A165-6331E7B7B6EE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CF89B38B-8850-4842-B3BB-DD18A9E08ECC}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{28667155-BF4D-4403-B2CB-F55E47AD87A3}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BD8B88BA-F919-42A3-A2BF-D4676EA9AFF4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8F5F605-B12E-40FC-A1C0-267C8B455F7B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{37E61BD7-0D25-4631-A5E5-0C6BB79976FE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74BF8B90-64A2-45C0-B5E9-A44DF2C0286B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3AC6D445-C159-4033-B914-A42B8837B45D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{55D5D798-C476-46E4-A8A6-4BF4A5F198D0}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6E15803A-D235-4AED-AC73-52CD68F68452}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D8A10306-2487-4AB7-8A12-171FD245FB3F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{43ACFC2B-7C52-4F3D-979C-A10C61349DB9}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7DD53090-09B0-4A7A-BA3A-106EC494B835}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{81B635DF-8982-4A60-9307-154613CE4C19}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E85E5691-681E-4132-B74E-6BDEEEE78D4F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{923E07A9-3973-4FDC-ADD0-E5A5A28088C1}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6CC43093-B3CC-4ECE-83E6-274D9C8B3C38}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14E8870F-A948-4131-8374-BB5DD5567D27}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ECB6468A-1B8E-4741-990E-20E3E0B6B83A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A25B191-CC84-40FC-8D23-143A9DC09052}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{542B7853-B7E9-490C-8F3C-BFD353F305C7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F176FA17-47A9-4A07-86A2-026011F9AB85}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7643B170-EA9C-42F9-8323-384B15C2897C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{684BAD0A-387E-4EDF-8B16-DE39B9C08E78}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5638F6D1-53C1-4B48-819C-C4F6AF3420CC}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F2B40A88-EBDA-4DBC-BE51-B7DAB96FCFBE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EF2B0D2A-879C-4DE6-89E0-7C1D754FE69D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{81D4DA90-EA6F-4867-81DE-30340923587E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FD7B3E84-9288-45B8-B8F0-CBE4E143F36F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8A824E83-86B8-4EE5-9FA4-87182F4D63FE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B92DB760-7904-415F-94D5-CE6E9D81AD34}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CD7FD727-D87C-47C9-ABE6-038F8C31E1FF}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F11EAA6D-72DB-44D4-81EB-95029DB3223D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CEC7E2E8-0F93-402B-A495-5C8342430D64}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{08A58799-DDCC-4378-9510-37CBC2660634}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5FC0C8F6-1F9A-417B-BACF-93A86147A4D1}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{62914916-60DC-40BF-8DCE-D35C3BB8D245}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EC4E4882-5C9A-4A7E-8068-C834E52FECA6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BCA8B29E-27A6-4F20-B7B0-0F99BA8C48D4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{45804EE5-FFDE-4E33-B272-3E6B0EFEA9C9}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C20AE677-4579-41AD-99C5-B463FE9A6F5B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F330BA7C-2201-48E2-887F-454942ED4392}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AA6F2409-7D49-4173-A332-04B15C058898}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A6212D22-5133-4708-9FD7-58B3EFD2CACD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BE9BB85E-3266-480D-8D98-37E4FFF4A636}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8F1B572F-0B02-47C8-BF66-3B7FCF307236}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{82D10970-0DFA-4045-8A2C-9F4A6C21EC5E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3DE4759F-19BD-4215-87CD-1C88D4A7C16A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E821C539-E423-4D5F-AE33-90F1E281C1F4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BA7ACE54-4548-4A4F-9539-6E8954716B34}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D3BCFCD7-8239-44FC-B4A7-82A9D208BEC2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2504C8E5-55E8-49A2-ACBD-69236266A49B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D3C9D3C7-3DBA-4AA1-8599-E492CF8702A3}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D0F65DC9-130C-4BD7-A10F-E757730F8829}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ABCE5657-2805-4D96-A02E-8517B93AE317}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E693F0DE-ACDD-41A7-9C8C-D900CF70BD1F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{37B0C183-AAE7-432E-B086-6A80D3C811C9}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{400135D0-3425-4E47-94B1-980F716145DC}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{373E4645-ED29-470E-874E-D0114941A16F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F36507B-F629-4692-BADE-9A28F2E6F249}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D89A7BBD-5025-4E74-B2C9-144A8776446E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C0C692E1-B805-414E-895D-8C039BE64FD7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D5397CEE-3BAA-4046-8FA4-BD9EBBA018A2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FE583904-6558-4F88-9DD2-5D3E6D8595A2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{59AD8877-8D8F-4241-97D7-7F4B3C8FAD03}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3AE9BCD2-7CA4-4518-B7E6-674DE522D01E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{76820791-8AC0-48F3-BCBE-494B2B5DE736}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5CC9C423-FCCE-4EDB-99E4-FB4BAFD32718}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6D7B9FEA-5268-4869-97C0-DFCF54CD6532}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{45FBC764-AA7C-4524-AA80-71C96F3DB9D7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1141DE47-490F-4E47-B8BC-2495DDCE56B0}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{17DB257E-05A7-4617-B432-7CFD9F6E5D52}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{43806569-873F-4BDD-BB71-13222C1DC74C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BD881F4-ACEE-4D09-B52D-DF6D353A2E12}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B7BBC310-325B-46CD-9320-4CCAA02E9BDF}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{88DA30F2-2EF7-491C-9B51-65BFA5DD299E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A5A22D73-AA43-4D08-BE06-8B615A9CC1CF}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1CC17E8A-83DE-41AE-B5CD-86BEAF2AA12B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0CA6A2E2-B1E2-4781-BD4F-9B2541D8A083}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4B863613-0CFF-4016-96AE-94BBEE576F94}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5800975D-BCE7-4559-8C3F-3DB301A973DC}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6881976B-7172-45DA-B60E-7A699E7E2D24}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{378CA4EF-C7F9-45B4-9C33-B7F3DC4C4E79}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F991DA17-695A-4476-8795-CBC768384D2B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F075DB9C-A7A5-490A-AA5E-9B723ED1BFD6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BF723838-ED09-4DD6-B095-AB9A65A268C4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D46A8EB6-DEB6-47B4-A22F-B9608AA6C9CD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{97D84B4B-70F6-461F-B840-7EF76C7D873C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{67C3E0F6-2FDD-45A9-BE21-8B61742479A5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B6B6C2D5-A173-4293-ABAB-FF246DAEB5EE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{175DC71D-E1DC-4939-8F91-9594AD61269A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{007EB5AB-9A7F-4EB8-AB18-0B0A4C2D464B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7FF3FE0B-2077-4C22-BC54-44303E4A0993}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8587FC9-8C0C-4586-B1F7-A52E1B769615}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E190E9D9-CF18-451D-B17A-923934247A80}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5DEBFABF-DA4D-494A-92E9-F676247D2147}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0CB1FC4F-56D6-4FDF-9604-FF394EBA11BD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{27BB64C8-5F2D-4875-9A28-A2FF75D12736}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CB68BCAE-B01E-42C8-9C23-EDFAF73FEB7C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DF4A752C-34C4-4996-B007-760C7AD31BBB}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D2B3A63F-F0CE-4FA2-B694-6567C94A4438}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FBACC781-74EF-4D59-8E8C-4D2E2FC02E46}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1A300089-8540-4F11-B62E-456CA2290878}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{595B876C-7008-4BF3-9928-2C0996DF9AC8}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1E149926-0AE7-482A-8CF2-C779687DC76B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3B976A87-F25F-4209-B36D-A0921AE0AE96}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5F03E14D-285C-4390-88EE-D9AA9CDFCA2B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74BFA161-7281-4BFA-9B11-48866699C915}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{76EE873F-B597-444F-8EF9-2278242F2561}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{41207151-A878-4945-B529-DDB1296E8012}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E2F97833-71B1-4842-A003-3C6C08DD2103}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{829C8DCE-B94F-4A7A-ABF7-2C6DCD6A1489}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{21A5D4B9-394C-492E-A886-FD6C52DEBD7B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{46545D81-B0E4-4830-82B2-19B3AAA2322E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B0555A55-C3CD-4C2F-984A-D1983DA47628}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1286EE57-1374-4BAD-B4FF-D8E75B2E07DB}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6BBB632-83EA-4314-9926-2EF086952AC0}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A8DF4779-0BCA-40CD-83DD-9E86D47B3B89}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AB949E24-A517-4BDC-A9C4-FDA29F54B7EE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5E87AA9E-696B-42D6-BB1B-E60499163F88}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3F137B3B-82E8-4BD3-9A37-C0BF4E37D3B9}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AD817A49-9F11-4E1A-9480-A96F53DB3156}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B91C088A-6BDC-4F53-8D23-5886B37A6BE8}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{86D9B9C8-5A2A-4A28-A989-A2FB38FD5D09}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4F7FF186-BD11-4796-8221-46328706D2F7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1081D948-779F-4ADE-8648-A1720FBE7FB8}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{459B1DAD-35E8-444D-8868-6D6864ACDC16}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DEAF4AB1-4EEE-4615-AE74-CD004E6D5CE2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7853EF27-6E47-4170-8486-BB064809E635}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{895B38AE-0794-4681-8E2D-495657BE858F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{69F3B5B4-9BB6-4D85-88B7-47B562B8BB60}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7EF01CE9-FD15-435E-98D1-71A54AA743D0}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{817E9515-7B42-4EDE-8EAF-732E6E80DAC5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A3C5C974-13FE-44DE-9AE3-F5B0331CB4A3}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{30C97E89-7691-4253-8836-F43483BB7A1A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F9B35815-552D-494B-BAE0-A3B62124DA96}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C18B974B-E76F-47FB-B874-6DC1AD8C7482}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6071EDA1-827E-4C1F-AEA5-EE818912AEDD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2CA28856-1DB7-4D79-BE08-79A911621C21}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9F7C797C-D6FB-4C31-BA81-747542928691}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FFC58480-BCAA-4B81-9189-1B6C4F82467D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AD426262-B9C9-4F0E-A3E2-1F5158D63CBB}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C26FBEB4-010A-495B-996E-AF975DA36942}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9850BCF4-D86C-4B6F-B7F4-21294E8974B7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{81F3ABBB-C218-41E0-BCE5-E377057164A3}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75EB650E-1FF2-4E11-B171-6BCDFF343CD5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{739AA885-9EC2-4DDD-BA20-825D52FF42CF}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B181E00D-3D0B-49CC-A63C-E260384CF7B0}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CC27B110-253A-492B-A713-D8D4613670C7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4B735C2E-907D-448C-9AE8-7A871D05DBB6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B5C886C5-ACB6-4DCE-B4FF-C75931A0A20D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{888159BE-7AFC-40E2-BA5B-76D60E8D7627}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D88088D-3626-41B7-A4B8-F93D9E1FD9F4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A0171FAF-C1FA-476E-AE74-BACAFC0C5E94}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E57113C1-A68D-41E5-B110-2DE11D3890BC}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14AC3137-3CC7-4109-90D3-B7517AF241AE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EE19A341-0EA1-4A7A-A1E4-9046DF6C2DEF}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{010165F6-F98E-49D1-BCAD-DE7746778BF9}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4B63C1ED-581D-4089-8920-8883112CF764}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{29614E04-E86C-4F58-972C-1B9E09776B16}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5FF47B47-29EA-45C2-BEA7-E3C21BF2DCCE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3BEA98D3-CCF9-4247-A039-0007FBCAEF3F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E36AF2E0-0B56-442D-9F28-306EAC027A79}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C01F8C10-CAD1-45ED-97A4-9ECCAAE58DA0}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2B8AE9A1-D1D3-410B-863E-C6F807EE3368}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5F76C018-B2DB-47E4-BE5E-55D426D1229B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2C791805-A1D9-43C7-9471-D51F0BD4EDC3}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6FB67CCC-36AB-4532-B4D7-BABCADB6C733}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{90327759-CF1D-467C-8EF7-9F19F425A5F4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A4BE1A56-6737-40F9-9382-3B101F439121}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BBC45E9-EE3F-406D-A6BD-AC905BE7FC43}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6FF1A9B-A764-4F43-A8ED-8F8FF2FCBD32}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{804210B8-A899-4538-BE91-8C8C475FC95C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A0129950-11D1-44C5-BE75-93030F6CE862}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8481638D-59D4-464C-9B41-EB05E4A5DD5B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7667BB08-DDA3-4C3E-A19E-20ACE7F8981B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1657C98D-E2CC-4352-867D-6F819703C4D9}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4EF31C74-EA1F-4337-8A89-FD7A13C12BA0}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FCC0BBFD-10D5-49B2-9B2C-E4F3627F0DBD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8100B011-4914-4931-900A-3E0D2998975C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CE09A072-8623-4730-ADE2-0FB65F13C060}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{705BE12D-C926-4EC3-9EE2-9974E85FCDEA}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A246D3AF-3B6D-479C-BB35-10CE64BDA778}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{933F558C-1776-4291-91D4-4333F613C9AB}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5D23003C-2EF9-40BF-9F4C-AE3A6150FD80}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5287DB6A-6365-4DDF-AD9E-F08ADE89F3CA}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1CCCA45E-1750-458B-9037-FBC497E2912A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{566760D8-FCA6-4EE4-9CB9-13C34A82F604}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C87E82DF-7AE7-4AF7-BD68-2B6FC149519A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C1D4C424-24D6-42CA-9DD6-1876B378A6BC}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C7851989-20BE-495A-A6D8-56EFAD8536AE}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B7A17B74-D88F-4560-B688-FBAA908A9697}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50FBD781-014C-4B98-817B-EDD7D58E4A5D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{12F9EE3E-D3A6-4496-8930-592B0F0D3B47}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BDBC27C0-BB1F-411A-901B-3FBF7765DAB2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{514FD534-3EAA-483B-9BE9-4FE7B6A9418C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{19CE6C83-240C-4B57-8947-3C4E4D56D031}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F1A7F5BA-BFD5-4D97-A164-97A7B7E44BEF}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1C6A3E0B-BDA7-4F53-A082-E5F19D0E672F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4837CD10-EE84-41A7-8B69-5E65397286D4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{132939CE-1252-4C5E-877A-5755C3B45DA2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CE829B87-1085-4C22-A6AB-2F5238E57095}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B3164246-07BB-4E85-B722-5CD627C3B610}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{34F9242D-7853-48F3-9B44-8FD71D025D46}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9EAE6F35-9A2E-4F09-B1CA-E6619FD9ECF0}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D8144FE-7B86-4BBF-89A7-53300C4BC320}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4C29D06D-07D4-4209-8916-9F26811B62BD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C42810F9-090A-4588-BCBC-8F8A5AE3CA44}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2001267D-DE1B-48ED-96FF-9C1968A6C9ED}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4ABACCB7-E70B-4DBC-BCDF-5ECBB47036C4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5140D376-9949-4C70-8D61-076A93A48FB4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FD17C371-CE51-416E-BE38-5467B83AB7BD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{43E5187D-A86A-4B86-B62C-2BD5AFAA806A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7FEDF933-B400-453E-A4D2-1793DC6B2914}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0968BE09-B5EA-4177-B48F-BBC1A4D6FB31}" => not found

==== End of Fixlog 17:05:19 ====

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#28 Příspěvek od fsubin »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-03-2021
Ran by fsubi (administrator) on SCORSESE (Gigabyte Technology Co., Ltd. Z490 AORUS ULTRA) (26-03-2021 17:16:02)
Running from D:\
Loaded Profiles: fsubi & psubi
Platform: Windows 10 Pro Version 20H2 19042.870 (X64) Language: English (United Kingdom)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
() [File not signed] C:\Program Files\Rainlendar2\Rainlendar2.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365057.inf_amd64_c4eff47eaf88e53e\B364966\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0365057.inf_amd64_c4eff47eaf88e53e\B364966\atiesrxx.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7aa6ca9dbb25bff8\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_5d10f2aad7f84bec\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_68966115f2eef4e5\RstMwService.exe
(LeapFrog Enterprises, Inc. -> LeapFrog Enterprises, Inc.) D:\Program Files (x86)\LeapReader\LeapFrog Connect2\LFHelper.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\fsubi\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.51.3002.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) C:\Windows\V0700Mon.exe
(Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\TM Flight Series\drivers\amd64\tmHInstall.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe <2>
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) D:\Program Files\NordVPN\nordvpn-service.exe
(X-Rite Incorporated -> ) D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\ColorMunki Photo Tray.exe
(X-Rite Incorporated -> X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2019-01-31] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Gigabyte Speed] => C:\Program Files\cFosSpeed\cFosSpeed.exe [1724248 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
HKLM-x32\...\Run: [V0700Mon.exe] => C:\Windows\V0700Mon.exe [28672 2011-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992040 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [3389440 2020-03-31] () [File not signed]
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536424 2021-03-06] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Run: [NordVPN] => D:\Program Files\NordVPN\NordVPN.exe [274176 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\Canon iP4900 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAW.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP4900 series: C:\Windows\system32\CNMLMAW.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2012-09-27] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2020-09-05]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorMunki Gamma.lnk [2020-12-18]
ShortcutTarget: ColorMunki Gamma.lnk -> D:\Program Files (x86)\X-Rite\ColorMunki Photo\Gamma\CalibrationLoader.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorMunkiPhotoTray.exe.lnk [2020-12-18]
ShortcutTarget: ColorMunkiPhotoTray.exe.lnk -> D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\ColorMunki Photo Tray.exe (X-Rite Incorporated -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SetupRST_ModeSwitch.lnk [2021-03-10]
ShortcutTarget: SetupRST_ModeSwitch.lnk -> C:\Program Files (x86)\GIGABYTE\AppCenter\pack\SetupRST.exe (Intel(R) Rapid Storage Technology -> Intel Corporation)
Startup: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-12-18] ()

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0DC8EA6F-9A33-4DF4-8BD3-8ECD10C45595} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {125E5CB0-8E1B-4EBD-9809-4FF6C3E7C9FD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {13EBA1FF-22DA-4702-B578-A31ECFB19AB2} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {19257E17-54BD-409B-82D6-BD9323798C97} - System32\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001 => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupdate.exe [31320 2021-03-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {2618028A-795D-488D-B7BE-2BB8A49723E4} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
Task: {2BD3A851-EDE3-4DA7-A9DB-56F091B71F2E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {2D9F587D-7707-4EE6-9DA9-41F5D1DD1BDC} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15768 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {38D5B7FE-F94F-4961-AECF-0291AA6A8F45} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {39A21086-5EA3-4DCD-8687-2F3FC26664BC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68176 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {428E89D9-8C38-4D47-931B-E6410811600D} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60496 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {5D9F2634-C1D2-4A30-A406-BD26DED14AD4} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
Task: {5F22382B-246E-4162-8EF5-1A21E267A830} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5FF0D7CB-A573-487C-8D48-88318A79928A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2167464 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Task: {76AADFFE-8C8A-4453-AF34-31477891C1F3} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {81286C84-111F-4E37-9BE9-5452028FFED1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {828A2158-A8BC-41F1-841B-F0A50381E96E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {855353F1-8F68-46C1-9829-6FACAEA77639} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-03-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {863EE257-9599-4AB7-9386-447569E201A5} - System32\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001 => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupload.exe [31320 2021-03-25] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {8ECC6BC5-A1B7-4651-A428-5EC9AA551EB9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9198E8C5-5F0F-4749-97C0-F4C666E3BCF8} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [387992 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {A796589C-F8A4-48D1-B0A7-8D153F80868F} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2167464 2020-08-19] (Piriform Software Ltd -> Piriform Software)
Task: {C5010CC4-3852-4BD1-B4A8-25DDD13059FE} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18328 2021-01-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {D1634F2A-9D54-4719-A81E-A9E9CA2A7F4B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {E62AEDD9-EF72-427D-9E5F-FC162313B03A} - System32\Tasks\X-Rite Device Services Software Updater => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe [24432 2015-09-18] (X-Rite Incorporated -> X-Rite Inc.)
Task: {E8714478-ABE1-4B96-9E9C-D15B776B750F} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [252984 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {F543737F-6F8C-4C1E-977A-E5F4B93417B5} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\IntelPTTEKRecertification.exe [919832 2020-12-20] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {F6A21BBB-2DFC-4A48-9522-0B72E3B590D3} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [233184 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001.job => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupdate.exe
Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001.job => C:\Users\fsubi\AppData\Local\GoToMeeting\19584\g2mupload.exe
Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\IntelPTTEKRecertification.exe
Task: C:\Windows\Tasks\X-Rite Device Services Software Updater.job => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{98dbab16-08c4-4647-a0d2-64f7cb3a0a64}: [NameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-26]
Edge HomePage: Default -> hxxp://www.seznam.cz/
Edge StartupUrls: Default -> "hxxps://google.sk/"
Edge Extension: (LastPass: Free Password Manager) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2021-03-15]
Edge Extension: (Outlook) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-14]
Edge Extension: (Logitech Smooth Scrolling) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-09-07]
Edge Extension: (Office) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2020-10-17]
Edge Extension: (Word) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-14]
Edge Extension: (Excel) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-14]
Edge Extension: (OneNote Web Clipper) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oogbnpmeihfgnccdnmmlgicknopghhma [2020-11-06]
Edge Extension: (PowerPoint) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-14]
Edge Extension: (AdBlocker Ultimate) - C:\Users\fsubi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pciakllldcajllepkbbihkmfkikheffb [2020-12-11]

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2020-10-05] [not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2012-01-13] (Nero AG -> Nero AG)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-07] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-09-07] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default [2021-03-26]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Slides) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-05]
CHR Extension: (Docs) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-05]
CHR Extension: (Google Drive) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-05]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-02-25]
CHR Extension: (OneNote Online) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciniambnphakdoflgeamacamhfllbkmo [2020-09-05]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2020-09-05]
CHR Extension: (Adobe Acrobat) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-01]
CHR Extension: (Google Play Music) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-11-21]
CHR Extension: (Sheets) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-05]
CHR Extension: (NordVPN — #1 VPN Chrome Extension: Get a VPN) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2021-03-26]
CHR Extension: (Google Docs Offline) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-11]
CHR Extension: (OneNote Web Clipper) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2020-09-26]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-03-26]
CHR Extension: (Cisco Webex Extension) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2021-03-25]
CHR Extension: (Evernote Web) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2020-09-05]
CHR Extension: (Application launcher for Drive (by Google)) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Office) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2021-02-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\fsubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-13]
CHR HKU\S-1-5-21-971254259-73155972-3602281376-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S4 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
S4 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\84.1.5542.138\elevation_service.exe [1332800 2020-08-19] (Piriform Software Ltd -> Piriform Software)
S4 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-09-07] (Piriform Software Ltd -> Piriform Software)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [595288 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8990072 2021-03-11] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44272 2021-03-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-02-26] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142904 2021-02-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
S3 GalaxyClientService; D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128920 2021-01-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LFHelper; D:\Program Files (x86)\LeapReader\LeapFrog Connect2\LFHelper.exe [3000056 2020-10-29] (LeapFrog Enterprises, Inc. -> LeapFrog Enterprises, Inc.)
R2 nordvpn-service; D:\Program Files\NordVPN\nordvpn-service.exe [275200 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125664 2020-12-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1679240 2021-02-18] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkAudioUniversalService; C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 tmHInstall; C:\Program Files\Thrustmaster\TM Flight Series\drivers\amd64\tmHInstall.exe [110608 2020-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [83312 2015-09-18] (X-Rite Incorporated -> X-Rite Inc.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1595456 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
S3 colormunki; C:\Windows\System32\Drivers\colormunki_x64.sys [51600 2013-06-21] (USBIO Test -> Thesycon GmbH, Germany)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2020-09-05] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 GuiHidUsbDevLowerTFH; C:\Windows\System32\Drivers\GuiHidUsbDevLowerTFH.sys [129552 2020-07-31] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2020. All rights reserved.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2021-03-11] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 NDivert; C:\Windows\System32\drivers\NDivert.sys [105184 2021-02-01] (TEFINCOM S.A. -> )
R3 nlwt; C:\Windows\system32\DRIVERS\nlwt.sys [39360 2021-02-05] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 SaiH0C2D; C:\Windows\system32\DRIVERS\SaiH0C2D.sys [176128 2007-07-02] (Saitek -> Saitek)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R3 V0700Vid; C:\Windows\system32\DRIVERS\V0700Vid.sys [393920 2011-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239432 2020-10-16] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2020-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [429296 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-05] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-26 17:12 - 2021-03-26 17:12 - 000000250 _____ C:\Users\fsubi\Počítač\text.txt
2021-03-26 16:45 - 2021-03-26 16:56 - 000850310 _____ C:\Windows\ntbtlog.txt
2021-03-26 16:44 - 2021-03-26 16:44 - 000000368 ____H C:\Windows\Tasks\Intel PTT EK Recertification.job
2021-03-25 11:56 - 2021-03-25 11:56 - 000000000 ____D C:\Users\fsubi\AppData\Local\CADlogic Limited
2021-03-25 10:37 - 2021-03-25 11:56 - 000000000 ____D C:\ProgramData\CADlogic Limited
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\Users\fsubi\AppData\System
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\Users\fsubi\AppData\Local\SmartDraw
2021-03-25 10:02 - 2021-03-25 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartDraw 2020
2021-03-22 09:09 - 2021-03-22 09:09 - 000011357 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-03-20 16:01 - 2021-03-24 08:01 - 000000000 ____D C:\Users\fsubi\Počítač\Untitled Export
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {d8170687-85fa-4716-bafd-087205d0db72}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {9f9c9e51-d42f-4462-a27a-7d419da18045}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {29d6077f-6adb-42de-abac-1c60aeb0e237}
2021-03-20 12:30 - 2021-03-20 12:30 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700}
2021-03-20 12:25 - 2020-12-02 16:04 - 000274672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll
2021-03-20 12:25 - 2020-12-02 16:04 - 000229616 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll
2021-03-20 12:25 - 2020-12-02 16:03 - 005968480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2021-03-20 12:25 - 2020-12-02 15:52 - 043277665 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2021-03-20 11:50 - 2021-03-26 17:16 - 000000000 ____D C:\FRST
2021-03-19 11:50 - 2021-03-19 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-03-18 17:05 - 2021-03-26 17:12 - 000003112 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2021-03-18 17:05 - 2021-03-18 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-03-18 17:05 - 2021-03-18 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-03-18 17:05 - 2021-03-10 19:43 - 002241008 _____ (AMD Inc.) C:\Windows\SysWOW64\AMDBugReportTool.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001857864 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001857864 _____ C:\Windows\system32\vulkaninfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001438520 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001438520 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 001093736 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 001093736 _____ C:\Windows\system32\vulkan-1.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000946896 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000946896 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000799568 _____ (AMD) C:\Windows\system32\atieclxx.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000736568 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000620864 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000496432 _____ C:\Windows\system32\GameManager64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000492856 _____ C:\Windows\system32\dgtrayicon.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000456016 _____ C:\Windows\system32\atieah64.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000432432 _____ C:\Windows\system32\EEURestart.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000351568 _____ C:\Windows\SysWOW64\atieah32.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000346424 _____ C:\Windows\system32\clinfo.exe
2021-03-18 16:59 - 2021-03-17 11:45 - 000245072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000212816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000186680 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000166712 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000166200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000156472 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000142136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000140592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000135480 _____ (AMD) C:\Windows\system32\atimuixx.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000125248 _____ C:\Windows\system32\atidxx64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000107344 _____ C:\Windows\SysWOW64\atidxx32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000090432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000075064 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000046400 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000043320 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2021-03-18 16:59 - 2021-03-17 11:45 - 000019856 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 081415488 _____ C:\Windows\system32\amd_comgr.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 072438584 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 066865984 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 005222216 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 004987200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 001492800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiacm64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 001339200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000940880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000768336 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000489272 _____ C:\Windows\system32\amdgfxinfo64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000468288 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000466256 _____ C:\Windows\system32\amdlogum.exe
2021-03-18 16:59 - 2021-03-17 11:44 - 000379704 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000182096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000158352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000149824 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000130368 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000130320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000122192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000108320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000106816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2021-03-18 16:59 - 2021-03-17 11:44 - 000069952 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 001685696 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 001365056 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000546864 _____ C:\Windows\system32\amdmiracast.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000136024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000130304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000120368 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2021-03-18 16:59 - 2021-03-17 11:43 - 000108320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2021-03-18 16:59 - 2021-03-10 19:26 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2021-03-18 16:59 - 2021-03-10 19:26 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2021-03-18 16:59 - 2021-03-10 19:22 - 058675112 _____ C:\Windows\system32\amdxc64.so
2021-03-18 16:59 - 2021-03-10 19:19 - 000556128 _____ C:\Windows\SysWOW64\atiapfxx.blb
2021-03-18 16:59 - 2021-03-10 19:19 - 000556128 _____ C:\Windows\system32\atiapfxx.blb
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-03-16 17:49 - 2021-03-16 17:49 - 000044272 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-03-14 14:31 - 2021-03-14 14:31 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime
2021-03-14 14:19 - 2021-03-14 14:19 - 000000000 ____D C:\Users\fsubi\AppData\Local\KojimaProductions
2021-03-13 17:44 - 2021-03-13 17:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-03-13 17:44 - 2021-03-13 17:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-03-13 17:44 - 2021-03-13 17:44 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-03-13 17:44 - 2021-03-13 17:44 - 000707016 _____ C:\Windows\system32\TextShaping.dll
2021-03-13 17:44 - 2021-03-13 17:44 - 000611952 _____ C:\Windows\SysWOW64\TextShaping.dll
2021-03-11 21:12 - 2021-03-11 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AORUS
2021-03-11 10:15 - 2021-03-11 10:15 - 000000000 ____D C:\Users\psubi\AppData\Local\cFos
2021-03-10 13:50 - 2021-03-10 13:50 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
2021-03-10 13:50 - 2021-03-10 13:50 - 000000000 ____D C:\Program Files (x86)\Belarc
2021-03-10 12:49 - 2021-03-10 12:49 - 000003356 _____ C:\Windows\system32\Tasks\SIV-VGA
2021-03-10 12:49 - 2021-03-10 12:49 - 000003350 _____ C:\Windows\system32\Tasks\SIV
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\Users\fsubi\AppData\Local\cFos
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte Speed
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\ProgramData\cFos
2021-03-10 12:49 - 2021-03-10 12:49 - 000000000 ____D C:\Program Files\cFosSpeed
2021-03-10 12:49 - 2019-03-21 04:06 - 001595456 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys
2021-03-10 12:45 - 2020-12-16 07:47 - 000027512 _____ (Intel Corporation) C:\Windows\system32\RstMwEventLogMsg.dll
2021-03-10 12:45 - 2020-12-16 07:46 - 002965880 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsService.exe
2021-03-10 12:45 - 2020-12-16 07:46 - 001474936 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAC.sys
2021-03-10 12:45 - 2020-12-16 07:46 - 000219512 _____ (Intel Corporation) C:\Windows\system32\iaStorAfsNative.exe
2021-03-10 12:45 - 2020-12-16 07:46 - 000119672 _____ (Intel Corporation) C:\Windows\system32\Optane.dll
2021-03-10 12:45 - 2020-12-16 07:46 - 000073080 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAfs.sys
2021-03-10 12:45 - 2020-12-16 07:46 - 000023416 _____ (Intel Corporation) C:\Windows\system32\OptaneEventLogMsg.dll
2021-03-09 23:11 - 2021-03-11 22:46 - 001065984 _____ C:\Users\fsubi\AppData\Local\file__0.localstorage
2021-03-09 23:11 - 2021-03-09 23:21 - 000000000 ____D C:\Users\fsubi\Valley
2021-03-09 23:10 - 2021-03-09 23:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2021-03-08 23:24 - 2021-03-08 23:24 - 000000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2021-03-08 19:07 - 2021-03-11 21:12 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2021-03-08 19:04 - 2021-03-08 19:04 - 000003450 _____ C:\Windows\system32\Tasks\GraphicsCardEngine
2021-02-28 17:36 - 2021-02-28 17:36 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2021-02-27 22:01 - 2021-02-27 22:01 - 001822272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 001394024 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-27 22:01 - 2021-02-27 22:01 - 000480256 _____ C:\Windows\system32\AssignedAccessCsp.dll
2021-02-27 22:01 - 2021-02-27 22:01 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-27 22:01 - 2021-02-27 22:01 - 000091136 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-02-27 11:56 - 2021-02-27 11:56 - 000000000 ____D C:\Users\fsubi\AppData\Local\Madness
2021-02-25 22:14 - 2021-02-25 22:15 - 000000000 ____D C:\AdwCleaner
2021-02-25 22:13 - 2021-02-25 22:13 - 000000000 ____D C:\Users\fsubi\AppData\Local\mbam
2021-02-25 22:13 - 2021-02-25 22:13 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-02-25 20:50 - 2021-02-25 20:50 - 000001185 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-26 17:14 - 2020-09-07 09:00 - 000000000 ____D C:\Program Files\CCleaner
2021-03-26 17:13 - 2020-09-05 20:40 - 000000000 ____D C:\Users\fsubi\.rainlendar2
2021-03-26 17:12 - 2020-09-24 18:30 - 000003096 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-03-26 17:12 - 2020-09-05 17:18 - 000000000 ___RD C:\Users\fsubi\Počítač
2021-03-26 17:12 - 2020-09-05 17:04 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-26 17:12 - 2019-12-07 09:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-26 17:12 - 2019-12-07 09:03 - 001048576 _____ C:\Windows\system32\config\BBI
2021-03-26 17:01 - 2020-09-05 17:10 - 000842942 _____ C:\Windows\system32\PerfStringBackup.INI
2021-03-26 17:01 - 2019-12-07 09:13 - 000000000 ____D C:\Windows\INF
2021-03-26 16:51 - 2020-09-05 17:17 - 000000000 ____D C:\Users\fsubi\AppData\Local\D3DSCache
2021-03-26 16:48 - 2020-12-05 11:12 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2021-03-26 16:38 - 2020-09-05 17:04 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-03-26 12:44 - 2020-09-05 17:13 - 000000000 ____D C:\Users\fsubi
2021-03-26 12:21 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\AppReadiness
2021-03-26 12:20 - 2019-12-07 09:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-26 09:26 - 2020-11-24 17:10 - 000000652 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001.job
2021-03-26 09:26 - 2020-11-24 17:10 - 000000556 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001.job
2021-03-26 09:22 - 2021-02-01 16:38 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\Temp
2021-03-26 09:22 - 2020-09-05 17:32 - 000000000 ____D C:\Program Files (x86)\Google
2021-03-25 16:47 - 2020-11-24 17:10 - 000003802 _____ C:\Windows\system32\Tasks\G2MUploadTask-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-25 16:47 - 2020-11-24 17:10 - 000003706 _____ C:\Windows\system32\Tasks\G2MUpdateTask-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-25 16:47 - 2020-11-24 17:10 - 000000000 ____D C:\Users\fsubi\AppData\Local\GoToMeeting
2021-03-25 14:55 - 2020-11-22 20:23 - 000000000 ____D C:\Users\fsubi\AppData\Local\CrashDumps
2021-03-25 14:45 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Local\Packages
2021-03-25 10:37 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Local\VirtualStore
2021-03-25 10:36 - 2020-12-15 09:06 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\uTorrent Web
2021-03-25 10:29 - 2020-12-15 09:07 - 000000000 ____D C:\Users\fsubi\AppData\Local\BitTorrentHelper
2021-03-24 07:36 - 2020-09-05 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2021-03-22 20:54 - 2021-02-22 22:52 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Microsoft Flight Simulator
2021-03-22 19:40 - 2020-10-10 09:10 - 000000000 ____D C:\Users\fsubi\AppData\Local\FlightSimulator
2021-03-22 19:31 - 2021-01-18 13:16 - 000000000 ____D C:\REX Weather Force 2020
2021-03-22 16:18 - 2020-09-05 17:04 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-22 12:52 - 2020-09-05 20:53 - 000000000 ____D C:\Program Files\Microsoft Office
2021-03-22 09:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\bcastdvr
2021-03-22 09:09 - 2019-12-07 09:03 - 000000000 ____D C:\Windows\CbsTemp
2021-03-20 12:33 - 2020-09-05 17:27 - 000003840 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-03-20 12:32 - 2020-09-05 19:38 - 000000000 ____D C:\Windows\SysWOW64\pack
2021-03-20 12:32 - 2020-09-05 17:34 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-20 12:30 - 2020-09-05 17:33 - 000000000 ____D C:\Program Files (x86)\Intel
2021-03-20 12:29 - 2020-09-05 17:34 - 000000000 ____D C:\Program Files\Intel
2021-03-20 12:25 - 2020-09-05 17:35 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-03-20 12:25 - 2020-09-05 17:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-03-20 12:21 - 2020-09-24 17:58 - 000000000 ____D C:\Users\fsubi\AppData\Local\ElevatedDiagnostics
2021-03-20 11:46 - 2021-02-05 09:26 - 000000895 _____ C:\Users\fsubi\Počítač\NordVPN.lnk
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\Users\fsubi\AppData\Local\NordVPN
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\ProgramData\NordVPN
2021-03-20 11:46 - 2021-02-05 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2021-03-20 11:27 - 2020-09-06 05:11 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-19 11:50 - 2020-12-05 11:07 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-03-18 17:16 - 2020-09-05 18:09 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\AMD
2021-03-18 17:05 - 2020-09-24 18:31 - 000000000 ____D C:\Users\fsubi\AppData\Local\AMD
2021-03-18 17:05 - 2020-09-24 18:30 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2021-03-18 17:05 - 2020-09-24 18:30 - 000003160 _____ C:\Windows\system32\Tasks\StartCN
2021-03-18 17:05 - 2020-09-24 18:30 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR
2021-03-18 17:05 - 2020-09-05 17:16 - 000000000 ____D C:\Program Files\AMD
2021-03-18 16:59 - 2021-01-21 20:20 - 000000000 ____D C:\AMD
2021-03-18 16:57 - 2020-11-21 11:17 - 000000000 ____D C:\Users\fsubi\AppData\Local\AMD_Common
2021-03-17 11:45 - 2021-02-23 08:16 - 000379704 _____ C:\Windows\SysWOW64\GameManager32.dll
2021-03-17 11:45 - 2021-02-23 08:16 - 000019856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2021-03-17 11:44 - 2020-09-16 12:04 - 001767232 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2021-03-17 11:44 - 2020-09-16 12:04 - 001339200 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2021-03-17 11:44 - 2020-09-16 12:03 - 000202144 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll
2021-03-17 11:44 - 2020-09-16 12:03 - 000169688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll
2021-03-16 21:37 - 2020-09-05 17:32 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-15 10:07 - 2020-10-22 14:09 - 000015824 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys
2021-03-14 10:26 - 2019-12-07 09:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-03-13 20:46 - 2021-02-08 14:59 - 000000000 ____D C:\Users\fsubi\AppData\Local\Amazon Music
2021-03-13 20:08 - 2021-02-08 14:59 - 000001261 _____ C:\Users\fsubi\Počítač\Amazon Music.lnk
2021-03-13 18:01 - 2020-09-08 10:12 - 000000000 ____D C:\Users\fsubi\Počítač\Games
2021-03-13 18:01 - 2020-09-05 22:29 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-03-13 17:48 - 2020-09-05 17:04 - 000817928 _____ C:\Windows\system32\FNTCACHE.DAT
2021-03-13 17:48 - 2019-12-07 14:49 - 000000000 ___SD C:\Windows\system32\AppV
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\SystemResources
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\setup
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\oobe
2021-03-13 17:48 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\Dism
2021-03-13 10:20 - 2020-09-30 20:39 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\decrypt
2021-03-11 21:12 - 2020-09-05 17:50 - 000000000 ____D C:\Users\fsubi\AppData\Local\Downloaded Installations
2021-03-11 21:10 - 2020-10-05 15:28 - 000018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2021-03-11 20:53 - 2020-09-05 17:17 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971254259-73155972-3602281376-1001
2021-03-11 20:53 - 2020-09-05 17:13 - 000002365 _____ C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-11 20:06 - 2020-09-05 19:17 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-03-11 19:54 - 2020-09-21 19:31 - 000000000 ___RD C:\Users\psubi\OneDrive
2021-03-11 10:15 - 2020-09-21 19:31 - 000003360 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971254259-73155972-3602281376-1002
2021-03-11 10:15 - 2020-09-21 19:30 - 000002365 _____ C:\Users\psubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-10 18:15 - 2020-09-05 18:43 - 000000000 ____D C:\Windows\system32\MRT
2021-03-10 18:13 - 2020-09-05 18:43 - 131005360 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-03-10 14:28 - 2020-09-07 09:00 - 000000000 ____D C:\Users\fsubi\Počítač\Power Tools
2021-03-10 14:27 - 2020-09-07 09:00 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-03-10 14:25 - 2020-12-31 08:42 - 000000000 ____D C:\Program Files\CPUID
2021-03-10 14:25 - 2020-09-07 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2021-03-10 14:08 - 2020-10-03 13:56 - 001682352 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000216016 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000169400 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000159184 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2021-03-10 14:08 - 2020-10-03 13:56 - 000038320 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe
2021-03-10 13:11 - 2020-09-05 17:15 - 000000000 ____D C:\ProgramData\Packages
2021-03-09 20:36 - 2020-09-05 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2021-03-09 20:36 - 2020-09-05 20:54 - 000000000 ____D C:\Program Files\HWiNFO64
2021-03-08 19:07 - 2020-09-05 19:13 - 000000000 ____D C:\Program Files\ENE
2021-03-08 19:04 - 2020-09-05 17:51 - 000003466 _____ C:\Windows\system32\Tasks\EasyTune 1
2021-03-08 19:04 - 2020-09-05 17:51 - 000003366 _____ C:\Windows\system32\Tasks\EasyTune
2021-03-08 18:53 - 2020-09-06 05:11 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-08 18:53 - 2020-09-06 05:11 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-01 17:05 - 2020-10-12 13:43 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\ABarthel
2021-03-01 16:25 - 2020-09-30 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2021-03-01 16:17 - 2020-09-30 20:39 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\.ePUBeedrmremoval
2021-02-27 22:06 - 2019-12-07 14:49 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\Provisioning
2021-02-27 22:06 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-27 21:52 - 2021-02-06 18:41 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\EasyAntiCheat
2021-02-25 22:14 - 2019-12-07 09:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-02-25 20:50 - 2020-09-21 19:30 - 000000000 ____D C:\Users\psubi\AppData\Roaming\Adobe
2021-02-25 20:50 - 2020-09-05 19:17 - 000000000 ____D C:\ProgramData\Adobe
2021-02-25 20:50 - 2020-09-05 17:15 - 000000000 ____D C:\Users\fsubi\AppData\Roaming\Adobe
2021-02-25 20:46 - 2020-11-08 11:23 - 000000000 ____D C:\Users\fsubi\AppData\LocalLow\Mozilla
2021-02-25 20:35 - 2020-12-18 14:57 - 000000000 ____D C:\Program Files\Adobe
2021-02-24 16:46 - 2020-09-21 19:30 - 000000000 ____D C:\Users\psubi\AppData\Local\Packages

==================== Files in the root of some directories ========

2021-03-09 23:11 - 2021-03-11 22:46 - 001065984 _____ () C:\Users\fsubi\AppData\Local\file__0.localstorage
2020-09-11 13:01 - 2020-09-11 13:01 - 000000056 _____ () C:\Users\fsubi\AppData\Local\X-Plane 11 Preferences.prf
2020-09-11 13:06 - 2020-09-11 13:32 - 000000015 _____ () C:\Users\fsubi\AppData\Local\X-Plane_drm_11.prf
2020-09-11 13:01 - 2020-09-11 13:01 - 000000059 _____ () C:\Users\fsubi\AppData\Local\x-plane_install_11.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

fsubin
Návštěvník
Návštěvník
Příspěvky: 48
Registrován: 20 dub 2008 19:02

Re: preventivni kontrola

#29 Příspěvek od fsubin »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-03-2021
Ran by fsubi (26-03-2021 17:16:46)
Running from D:\
Windows 10 Pro Version 20H2 19042.870 (X64) (2020-09-05 17:06:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-971254259-73155972-3602281376-500 - Administrator - Disabled)
aslin (S-1-5-21-971254259-73155972-3602281376-1004 - Limited - Disabled)
DefaultAccount (S-1-5-21-971254259-73155972-3602281376-503 - Limited - Disabled)
filik (S-1-5-21-971254259-73155972-3602281376-1005 - Limited - Disabled)
fsubi (S-1-5-21-971254259-73155972-3602281376-1001 - Administrator - Enabled) => C:\Users\fsubi
Guest (S-1-5-21-971254259-73155972-3602281376-501 - Limited - Disabled)
lauri (S-1-5-21-971254259-73155972-3602281376-1003 - Limited - Disabled)
psubi (S-1-5-21-971254259-73155972-3602281376-1002 - Limited - Enabled) => C:\Users\psubi
WDAGUtilityAccount (S-1-5-21-971254259-73155972-3602281376-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0709.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0709.1 - GIGABYTE)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 21.001.20145 - Adobe Systems Incorporated)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_10_1) (Version: 10.1 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Inc.)
Amazon Music (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Amazon Amazon Music) (Version: 8.3.0.2240 - Amazon.com Services LLC)
Amazon Photos (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Amazon Photos) (Version: 7.6.2 - Amazon.com, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.3.1 - Advanced Micro Devices, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0317.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0317.1 - GIGABYTE)
Belarc Advisor 9.7 (HKLM-x32\...\Belarc Advisor) (Version: 9.7.0.0 - Belarc Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
calibre (HKLM-x32\...\{4E1FEEB8-45A5-4069-B948-B5DED59D406C}) (Version: 5.12.0 - Kovid Goyal)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.7.0 - Canon Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - ‪Canon Inc.‬)
Canon iP4900 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4900_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.4 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.13.10.0 - Canon Inc.)
Canon Utilities EOS Network Setting Tool (HKLM-x32\...\EOS Network Setting Tool) (Version: 1.1.0.9 - Canon Inc.)
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.)
Canon Utilities EOS Utility 3 (HKLM-x32\...\EOS Utility 3) (Version: 3.13.10.1 - Canon Inc.)
Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.10.0.0 - Canon Inc.)
CanoScan 9000F Mark II Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ9604) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 84.1.5542.138 - Piriform Software)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
Cisco Webex Meetings (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\ActiveTouchMeetingClient) (Version: 40.11.4 - Cisco Webex LLC)
ColorChecker Camera Calibration 2.2.0 (HKLM-x32\...\ColorChecker Camera Calibration_is1) (Version: 2.2.0 - X-Rite)
ColorMunki Photo 1.2.4 (HKLM-x32\...\ColorMunki Photo_is1) (Version: 1.2.4 - X-Rite)
CPUID CPU-Z 1.95 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.95 - CPUID, Inc.)
Creative Live! Cam Chat HD (VF0700) (1.00.06.00) (HKLM\...\Creative VF0700) (Version: - Creative Technology Ltd.)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.12 - GOG.com)
Documentation Manager (HKLM\...\{903A7EB3-3534-44FC-8E98-43D5050EF04E}) (Version: 22.10.0.7 - Intel Corporation) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 118.4.460 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{0BF9DD77-498D-4E9E-A968-CFC9249BDD9F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.21.0114.1 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.21.0114.1 - GIGABYTE)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.21.0202.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.21.0202.1 - GIGABYTE)
ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{0f607f07-7957-4887-9d5e-be8efe9595a9}) (Version: 1.0.8.4 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM-x32\...\{33f042cf-0ae3-4241-b8c8-7f544533ea8e}) (Version: 1.0.3.1 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Epic Games Launcher (HKLM-x32\...\{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ePUBee DRM Removal (HKLM-x32\...\ePUBee DRM Removal) (Version: 3.1.5.2 - ePUBee Inc.)
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
Excel (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Fast Boot (HKLM-x32\...\{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.20.0420.1 - GIGABYTE)
Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Hidden
Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte)
Gigabyte Speed v10.50 (HKLM\...\Gigabyte Speed) (Version: 10.50 - cFos Software GmbH, Bonn)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 89.0.4389.90 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
GoTo Opener (HKLM-x32\...\{C2A61D74-BB65-42AD-B81F-AC25E1F7DE02}) (Version: 1.0.536 - LogMeIn, Inc.)
GoToMeeting 10.15.500.19584 (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\GoToMeeting) (Version: 10.15.500.19584 - LogMeIn, Inc.)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.19.0624.1 - GIGABYTE)
High-Definition Video Playback (HKLM-x32\...\{9193490D-5229-4FC4-9BB9-A6D63C09574A}) (Version: 11.1.11100.4.196 - Nero AG) Hidden
HWiNFO64 Version 7.00 (HKLM\...\HWiNFO64_is1) (Version: 7.00 - Martin Malik - REALiX)
Intel(R) Chipset Device Software (HKLM-x32\...\{99926fb7-5da9-4101-b79f-eec3674ca64b}) (Version: 10.1.18634.8254 - Intel(R) Corporation)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{7368d41d-24b9-4b1a-aef4-862e2571fa92}) (Version: 6.5.1.371 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2052.15.0.2069 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.8.0.1065 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000020-0220-1033-84C8-B8D95FA3C8C3}) (Version: 22.20.0.3 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{ded97635-a82a-48b1-b197-0e7c5e4c4ac3}) (Version: 22.10.0.7 - Intel Corporation) Hidden
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LeapFrog Connect 2 (HKLM-x32\...\LeapFrogConnect2) (Version: 4.1.9.448 - LeapFrog)
LeapFrogConnect2 (HKLM-x32\...\{816F787F-8448-45E6-AE87-25DB24131477}) (Version: 4.1.9.448 - LeapFrog) Hidden
LeapReader (HKLM-x32\...\{D751797E-949C-42BF-8E6C-F2CB4E8A6634}) (Version: 4.1.9.448 - LeapFrog Enterprises) Hidden
Learning Lodge™ (HKLM-x32\...\VTechDownloadManager) (Version: - VTech)
Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.126 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
MAGIX Content and Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Soundpool Music Maker - Feel good (HKLM\...\{677F8E85-8686-476B-829A-D5ED9ECA16E6}) (Version: 1.0.1.0 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM\...\{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Travel Maps (HKLM\...\{83EC0C28-33DB-467B-A919-52ECDD8F4B69}) (Version: 1.0.1.378 - MAGIX Software GmbH) Hidden
MAGIX Travel Maps (HKLM\...\MX.{83EC0C28-33DB-467B-A919-52ECDD8F4B69}) (Version: 1.0.1.378 - MAGIX Software GmbH)
MAGIX Video Pro X (Design elements) (HKLM\...\{F2A29913-41F4-4DBC-861C-4D033BC2ED4C}) (Version: 17.0.2.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Fade effects) (HKLM\...\{A1816F3A-47EF-47FE-A406-F7C73FCECEE3}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (HKLM\...\{4547085E-9FFE-4A8D-BA44-6F97C3927F3E}) (Version: 17.0.1.32 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (HKLM\...\MX.{4547085E-9FFE-4A8D-BA44-6F97C3927F3E}) (Version: 17.0.1.32 - MAGIX Software GmbH)
MAGIX Video Pro X (Menu templates) (HKLM\...\{00DD9BCE-E5A3-4B62-900E-193065C3BB49}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Migrate Content) (HKLM\...\{86096249-43A1-4C5D-919D-97DAFA52B28E}) (Version: 16.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Design elements) (HKLM\...\{C99F2C3F-ECC7-413B-9D7F-9E54585D991C}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Menu templates) (HKLM\...\{A0E0419E-413B-4BB3-B7DD-45325228C3E5}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Movie templates) (HKLM\...\{4518A9B7-A262-4D9B-906D-DBFD4549ADCA}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie Edit Pro - Slideshow Maker styles) (HKLM\...\{06680A3C-A2BD-4AD4-B172-CEA79DD5E3BC}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Movie templates) (HKLM\...\{1A266F02-9EFD-4E7E-82F2-7C682897A884}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Slideshow Maker styles) (HKLM\...\{DA144E48-B850-439A-BE92-600A14BB9197}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Soundtrack Maker styles) (HKLM\...\{2115BA04-C7F2-46F2-A3D7-7BFCD0D97C29}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Templates and effects) (HKLM-x32\...\MAGIX_GlobalContent.Video_Pro_X) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Video Pro X (Title effects) (HKLM\...\{8D139F22-4779-4AC3-A7DE-FB54F07E13A6}) (Version: 17.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Video Pro X (Update Service 5.7.33.77) (HKLM\...\{8F07F018-6858-3E5F-8500-456430AA3069}) (Version: 5.7.33.77 - MAGIX Software GmbH) Hidden
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.13801.20360 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.57 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 89.0.774.63 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971254259-73155972-3602281376-1002\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Movie Studio 16.0 Platinum (HKLM\...\{661AE070-1B81-11EA-8676-9431242A7F22}) (Version: 16.0.175 - VEGAS)
Nero 11 (HKLM-x32\...\{810B7362-6B05-4714-AF6A-EF3A20CCD634}) (Version: 11.2.00600 - Nero AG)
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.11100.8.0 - Nero AG)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.35.9.0 - TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 - NordVPN)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20294 - Microsoft Corporation) Hidden
ON_OFF Charge 2 B19.1119.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.19.1119.1 - GIGABYTE) Hidden
ON_OFF Charge 2 B19.1119.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.19.1119.1 - GIGABYTE)
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Outlook (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Polar FlowSync version 3.0.0.1337 (HKLM-x32\...\{A1538F5C-7B65-4DB6-9FFB-FFC0DF2E85D8}_is1) (Version: 3.0.0.1337 - Polar Electro Oy)
PowerPoint (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 9.8.7.18 - Bitsum)
QT5.10.1 (HKLM-x32\...\{5C60E178-F792-4CF7-A2E7-E7124DF1B2F0}) (Version: 1.0.1.0 - LeapFrog) Hidden
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: 2.15.4 - Rainy)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9075.1 - Realtek Semiconductor Corp.)
REX Weather Force 2020 (HKLM\...\{868DE4BF-66FA-4211-91FD-4D699A1EE900}) (Version: 6.0.2021.0216 - REX Game Studios, LLC.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.21.0310.1 - GIGABYTE)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.34.337 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.21.0129.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.21.0129.1 - GIGABYTE)
Smart Backup (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.18.0911.1 - GIGABYTE)
SPAD.neXt (HKLM\...\{CE21AD13-50E6-474A-89B9-81E262E620A0}_is1) (Version: 0.9.8.6 - SPADneXt.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
T.Flight Hotas drivers (HKLM-x32\...\{E08E6F77-E66C-47FC-8565-0AA3389D48C8}) (Version: 1.TFHT.2020 - Thrustmaster)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Use the entry named LeapFrog Connect2 to uninstall QT5.10.1 (HKLM-x32\...\QT5.10.1) (Version: - LeapFrog)
Use the entry named LeapFrogConnect2 to uninstall LeapReader (HKLM-x32\...\LFC2_LeapReaderPlugin) (Version: - LeapFrog)
uTorrent Web (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\utweb) (Version: 1.1.2 - BitTorrent, Inc.)
Vita Concert Grand LE (HKLM\...\{2C61CE04-1EEF-4582-ABBA-B9CCFC3743EB}) (Version: 2.4.0.96 - MAGIX Software GmbH) Hidden
Welcome App (Start-up experience) (HKLM-x32\...\{51865D9D-8F63-46F2-87AB-9E72F93B618C}) (Version: 11.0.23500.0.0 - Nero AG) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2700 - Broadcom Corporation)
Word (HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
X-Rite Device Services Manager (HKLM-x32\...\{C665E881-CE55-4156-A4A6-7C55D645FD4E}) (Version: 2.4.1 - X-Rite)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_EN_is1) (Version: 18.0.1.10 - ZONER software)

Packages:
=========
DTS:X Ultra -> C:\Program Files\WindowsApps\DTSInc.DTSXUltra_1.5.13.0_x64__t5j2fzbtdg37r [2021-03-09] (DTS, Inc.)
Files -> C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t [2021-03-24] (Yair A)
HEVC Video Extensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_1.0.40615.0_x64__8wekyb3d8bbwe [2021-03-19] (Microsoft Corporation)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1015.0_x64__8j3eq9eme6ctt [2021-03-13] (INTEL CORP)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-03-25] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_21.10208.5605.0_x64__8wekyb3d8bbwe [2021-03-08] (Microsoft Corporation)
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.21005.0_x64__8wekyb3d8bbwe [2021-03-09] (Microsoft Studios)
MPEG-2 Video Extension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-05] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-11-22] (Microsoft Corporation)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2108.9.0_x64__cv1g1gvanyjgm [2021-03-17] (WhatsApp Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\fsubi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\fsubi\AppData\Local\GoToMeeting\18962\G2MOutlookAddin64.dll (LogMeIn, Inc. -> LogMeIn, Inc.)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\fsubi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-971254259-73155972-3602281376-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => E:\Users\Filip\Dropbox [2014-12-31 15:04]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_fac18e2da6ec7b25\OptaneShellExt.dll [2020-12-16] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_fac18e2da6ec7b25\OptaneShellExt.dll [2020-12-16] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-03-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm --app-url=hxxps://excel.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi --app-url=hxxps://word.office.com/
ShortcutWithArgument: C:\Users\fsubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Play Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Loaded Modules (Whitelisted) =============

2021-03-10 19:53 - 2021-03-10 19:53 - 001868288 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2013-06-21 14:03 - 2013-06-21 14:03 - 002633728 _____ () [File not signed] C:\Program Files (x86)\X-Rite\Devices\colormunki\colormunki.dll
2015-07-13 10:33 - 2015-07-13 10:33 - 001592832 _____ () [File not signed] C:\Program Files (x86)\X-Rite\Devices\rm200\GoldenEye.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-08-02 11:24 - 2017-08-02 11:24 - 000017920 _____ () [File not signed] C:\Program Files\Rainlendar2\lfs.dll
2017-08-02 11:37 - 2017-08-02 11:37 - 000331776 _____ () [File not signed] C:\Program Files\Rainlendar2\libical.dll
2017-08-02 11:37 - 2017-08-02 11:37 - 000063488 _____ () [File not signed] C:\Program Files\Rainlendar2\libicalss.dll
2017-08-02 11:24 - 2017-08-02 11:24 - 000314880 _____ () [File not signed] C:\Program Files\Rainlendar2\lua53.dll
2020-03-31 18:47 - 2020-03-31 18:47 - 000295424 _____ () [File not signed] C:\Program Files\Rainlendar2\plugins\GoogleCalendarPlugin.dll
2020-03-31 18:46 - 2020-03-31 18:46 - 000129536 _____ () [File not signed] C:\Program Files\Rainlendar2\plugins\iCalendarPlugin.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 001970176 _____ () [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\QtCore4.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 007053312 _____ () [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\QtGui4.dll
2021-03-10 14:21 - 2021-03-10 14:21 - 001640448 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\SIV\yccV2.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 001088512 _____ (GretagMacbeth) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\Cxf.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 000503808 _____ (Microsoft Corporation) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\MSVCP71.dll
2020-12-18 16:09 - 2017-03-07 04:29 - 000348160 _____ (Microsoft Corporation) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\MSVCR71.dll
2019-10-10 14:13 - 2019-10-10 14:13 - 000422400 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files\Rainlendar2\libcurl.dll
2018-11-16 12:48 - 2018-11-16 12:48 - 002720768 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Rainlendar2\libcrypto-1_1-x64.dll
2018-11-16 12:49 - 2018-11-16 12:49 - 000658944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Rainlendar2\libssl-1_1-x64.dll
2021-01-05 11:57 - 2021-01-05 11:57 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-01-05 11:56 - 2021-01-05 11:56 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2015-10-14 01:15 - 2015-10-14 01:15 - 002042368 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll
2020-12-16 10:08 - 2020-12-16 10:08 - 002001920 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll
2019-12-02 11:10 - 2019-12-02 11:10 - 002874880 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxbase313u_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 000181248 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxbase313u_xml_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 008349184 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_core_vc_rny.dll
2019-12-02 11:14 - 2019-12-02 11:14 - 000793600 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_html_vc_rny.dll
2019-12-02 11:16 - 2019-12-02 11:16 - 000914432 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_propgrid_vc_rny.dll
2019-12-02 11:15 - 2019-12-02 11:15 - 000954880 _____ (wxWidgets development team) [File not signed] C:\Program Files\Rainlendar2\wxmsw313u_xrc_vc_rny.dll
2014-12-02 09:59 - 2014-12-02 09:59 - 001502208 _____ (X-Rite Inc.) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1iO.dll
2014-12-02 09:59 - 2014-12-02 09:59 - 003962368 _____ (X-Rite Inc.) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Pro.dll
2020-12-18 16:09 - 2017-01-10 11:15 - 000269824 _____ (X-Rite Inc.) [File not signed] D:\Program Files (x86)\X-Rite\ColorMunki Photo\Tray\XRiteDevice.dll
2015-04-02 14:59 - 2015-04-02 14:59 - 002359296 _____ (X-Rite) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1isis\EyeOne_iSis.dll
2014-11-05 10:05 - 2014-11-05 10:05 - 001019392 _____ (X-Rite) [File not signed] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Fun.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-971254259-73155972-3602281376-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2019-01-31] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll => No File
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2019-01-31] (Logitech Inc -> Logitech, Inc.)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2020-10-15] (Belarc, Inc. -> Belarc, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 09:14 - 2019-12-07 09:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-971254259-73155972-3602281376-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\fsubi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\picasabackground-003.bmp
HKU\S-1-5-21-971254259-73155972-3602281376-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\psubi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img2.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)
WiFi: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
WiFi: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 2: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "CiscoMeetingDaemon"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "NordVPN"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-971254259-73155972-3602281376-1001\...\StartupApproved\Run: => "Amazon Photos"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2EF1C09D-5154-4AFE-A939-1ED4404E0502}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{C79537E7-DBA4-4D5E-9F48-2199D2C680BE}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{B3FCFE0F-67CB-4D68-AD50-3EB98374364A}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [UDP Query User{7A2275EC-3B87-44BF-9C32-C49FED8E8776}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [{A1452CEA-25E9-4F9D-AC37-0CD53C770AF2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{444578ED-08D5-44CD-A617-012AC0125730}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{24B1E1F7-8C97-4AA2-94D6-4D983F6B0339}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8D9E0F45-EB17-4F03-B4EB-A5CA3A0AB55D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4E7DF3DF-A7D9-4E14-BA23-61F6481EC986}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\YNAB 4\YNAB 4.exe (YouNeedABudget.com -> )
FirewallRules: [{A78CD105-CEF5-4A4B-A7A4-C0F5724FB11F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\YNAB 4\YNAB 4.exe (YouNeedABudget.com -> )
FirewallRules: [{850C4B1B-A7A5-4DE4-818C-BBBA7D255980}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
FirewallRules: [{410F3158-74E5-4137-8983-9F505A1F9C6E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{3FC922AD-7A2C-4385-8E30-9F2AB45E907B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{54444C69-55B9-4395-851D-84472DD9C6FF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [File not signed]
FirewallRules: [{3E35454A-538E-4353-9655-87F22FFB6AED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [File not signed]
FirewallRules: [{1EC1F12E-3905-40F9-A48E-C2672C31B272}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37AD5553-F9D0-4E55-9BA9-1582CC5EF333}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{17FC7FD9-18E1-4BDF-830D-D4E57EB256AB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FF4F1192-C893-4307-8687-DE48D17301B2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{863F4C13-1940-4849-956D-7834F6D9FA75}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F30A4321-0FF1-4D5E-852D-B3E2E494636D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FB948A41-7975-4237-AE4F-AE499E554064}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious2\CSD2.exe (Vertigo Gaming Inc.) [File not signed]
FirewallRules: [{F430DE73-BB30-4AED-A6EB-D23E47251354}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious2\CSD2.exe (Vertigo Gaming Inc.) [File not signed]
FirewallRules: [{2CA95FEB-19F9-4577-AE46-B96AEB2386D3}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{86975E04-8911-4682-B790-1BC3D46E9DA7}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{9AFEA613-C7A8-4958-871E-B218281F5170}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C4D234BB-0283-470F-859A-E1B08A9AF37D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C4EC43ED-F96F-45B7-ADD5-A94ED2F7E72D}] => (Allow) C:\Users\fsubi\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
FirewallRules: [{6EF4D578-1ECA-4EB2-AE29-AB5E4DEDCA62}] => (Allow) C:\Users\fsubi\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
FirewallRules: [{153380D6-D739-4942-8802-CD8997522BEE}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Canon Inc. -> CANON INC.)
FirewallRules: [{16FE463D-A4AD-4D65-ADB3-EB25CB1ABE17}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe (Canon Inc. -> CANON INC.)
FirewallRules: [{DEE52412-DB21-4290-94E8-E9531E65DCB6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Indiana Jones and the Fate of Atlantis\Indiana Jones and the Fate of Atlantis.exe (LucasArts Entertainment Company) [File not signed]
FirewallRules: [{50D6DE88-B850-4EA4-8CDE-87EFF5C2B729}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Indiana Jones and the Fate of Atlantis\Indiana Jones and the Fate of Atlantis.exe (LucasArts Entertainment Company) [File not signed]
FirewallRules: [{38E14EED-BAC9-4E7F-BDBD-EB8887324698}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Disco Elysium\disco.exe () [File not signed]
FirewallRules: [{2D26774F-B223-4543-83B8-B12824297739}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Disco Elysium\disco.exe () [File not signed]
FirewallRules: [{E7CA7536-380B-4166-B1B1-E8C4A76105D4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{642C2D9D-0AAF-4FB2-A81D-498B7A469D9B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{009B3789-E538-494E-9CED-A39BB669870D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Worlds\LEGO_Worlds.exe (Travellers Tales (UK) Limited -> )
FirewallRules: [{206D4EF9-1319-43BC-8D14-3C4F214B1D04}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Worlds\LEGO_Worlds.exe (Travellers Tales (UK) Limited -> )
FirewallRules: [{3D24ACF3-22A4-4DF5-9CD5-58E5A965837A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{5E91677C-4211-4489-902C-E57CFA123218}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LEGO Marvel's Avengers\LEGOMARVELAvengers.exe (Travellers Tales (UK) Ltd -> Warner Bros. Interactive Entertainment)
FirewallRules: [{CED34EF7-8E92-4372-9E13-F87A1204C9BD}] => (Allow) C:\Program Files\MAGIX\Video Pro X\11\Video_Pro_X.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{BB0B45E4-12DB-47F6-8FC8-FA67307035C9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ACFD921A-0C05-42BC-BE74-4652CF19DD48}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe () [File not signed]
FirewallRules: [{BB36CFB0-72C5-4536-B33A-8A46EBC31F85}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe () [File not signed]
FirewallRules: [{E31AB2FF-BD0E-4B53-9504-15C5258F0449}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{341E47A7-412C-48EC-B340-F572060C7919}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{752407C3-DF06-4260-A702-561E519B0F37}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{079B8416-8A53-40EE-BFA0-A015D088667D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E51B1764-976C-4650-99DF-164B02AA8F09}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E5B0EC10-25BC-4AAF-937D-3D12582D1F4E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0313E2A9-5930-42AE-9155-6701BA169662}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B8173E86-C93F-4BEC-8715-FE3C4B5D0498}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7D4884AD-63CC-468C-B4FC-362604BBBBD5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{1F89427A-BFA7-469C-9254-21C832488128}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{813F0577-FC0F-498A-A835-19C048345153}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6EBD3D48-1649-4363-AC51-BD0AF76ED04A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{06458D5B-F1E5-4263-B807-424CC87E16F5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{24722010-CE07-4534-A0DA-8066039DAA4C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E23CEA62-D35C-4008-B0CC-3A09A7A94EBD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MicrosoftFlightSimulator\FlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{7707F3F7-94D4-4092-AE4F-E088F627A234}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MicrosoftFlightSimulator\FlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{044CD729-D4DE-415B-9605-E8DA6DEA1712}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B4E180BF-AA9A-482A-AA48-3E2D250B9852}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B74EB9F0-D1A1-4B20-B60B-BC2718C2D6B6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Death Stranding\ds.exe (KOJIMA PRODUCTIONS Co., Ltd.) [File not signed]
FirewallRules: [{EC4C4C62-71CC-4440-B5A8-D3A3EB349F02}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Death Stranding\ds.exe (KOJIMA PRODUCTIONS Co., Ltd.) [File not signed]
FirewallRules: [{01F65A0D-2C26-4590-88F6-3F661DCDB0F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{079FFAAE-E0B9-46DE-B855-6FEC969121B8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{D3617E6F-7970-449A-8A51-7D266430D79F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{451ECB7B-D6F2-44B4-9A3F-9DBE2CB1175D}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{EF77C753-FF70-4243-9E1B-F92B0006320B}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{563D214B-A8D6-40C4-B2F1-1B0DC3BF0E5F}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{1F079BE3-3F8A-416E-8E12-E68E8CB889C7}] => (Allow) LPort=9009
FirewallRules: [{720C0124-A353-4DD1-AE5B-4204FAA4C9FB}] => (Allow) LPort=9009
FirewallRules: [{3062C1C5-CBDC-4AE0-9FAF-391FA2B92D41}] => (Allow) LPort=9009
FirewallRules: [{62F1B393-A810-4AFE-923F-350A6315D2D8}] => (Allow) LPort=9009
FirewallRules: [{2270EE59-B1FC-46F1-9D2F-A4C0E44E1EBF}] => (Allow) LPort=9009
FirewallRules: [{C64ECB58-D7EF-4752-BCEA-7ED1787D656A}] => (Allow) LPort=9009
FirewallRules: [{49D23485-F5F1-4A31-BEFC-079C13D8E67E}] => (Allow) LPort=9009
FirewallRules: [{2691C416-306C-4CEE-ADCA-E2B67CE92F55}] => (Allow) LPort=9009
FirewallRules: [{69B42916-9F9B-4956-95B3-57470280FBEE}] => (Allow) LPort=9009
FirewallRules: [{997673BC-FE27-4CA3-ADCA-9CB8DAA5606B}] => (Allow) LPort=9009
FirewallRules: [{1762CA98-1C62-4EBF-8858-F09022C12FF9}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{F5D6B7FB-9A66-4D3C-B938-4E074E5F7358}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{3A936A07-E549-4EEB-86DD-706BF4C1D4E3}] => (Allow) LPort=9009
FirewallRules: [{BDEAE202-56FE-4003-8021-B95F2EAC14A3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\89.0.774.63\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AA0E18CA-91D7-418D-9203-C62161D3BE37}] => (Allow) LPort=9009
FirewallRules: [{10C5BF8E-D6A7-4140-9D0E-0E1383058006}] => (Allow) LPort=9009
FirewallRules: [{7C385996-6710-4064-BFC4-4F5E85386D5A}] => (Allow) LPort=9009
FirewallRules: [{79523D0A-012A-4708-BC96-8DF2F5EFC39C}] => (Allow) LPort=9009
FirewallRules: [{878BB43B-A168-4D93-BE76-14ECC29A1251}] => (Allow) LPort=9009
FirewallRules: [{DD94E7E5-D4A5-45E6-921F-FC88DC16E781}] => (Allow) LPort=9009
FirewallRules: [{97C8976D-41DC-4B2C-9DC4-7E1B8276ADAC}] => (Allow) LPort=9009
FirewallRules: [{2A57BDD5-AA7C-455A-BBCE-82AF256AC8B5}] => (Allow) LPort=9009
FirewallRules: [{10DE0991-BD0F-4FEB-8787-B06E9EF6B77A}] => (Allow) LPort=9009
FirewallRules: [{4A0B101F-E5DF-4650-A68A-86DBB7FFA644}] => (Allow) LPort=9009

==================== Restore Points =========================

17-03-2021 10:05:13 Windows Modules Installer
18-03-2021 17:04:26 Radeon Installer
20-03-2021 12:24:18 Removed Realtek Audio Driver
22-03-2021 09:08:02 Windows Modules Installer
24-03-2021 07:35:54 Removed APP Center
25-03-2021 10:37:33 Installed Draft IT.

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/26/2021 05:12:25 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 05:12:25 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 04:47:18 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 04:47:18 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 04:47:18 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (03/26/2021 04:47:18 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (03/26/2021 12:56:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program GameBar.exe version 5.521.3093.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2a18

Start Time: 01d7223dfe528004

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.3093.0_x64__8wekyb3d8bbwe\GameBar.exe

Report Id: 6aa65679-1573-496b-bd7f-c4a113da9755

Faulting package full name: Microsoft.XboxGamingOverlay_5.521.3093.0_x64__8wekyb3d8bbwe

Faulting package-relative application ID: App

Hang type: Navigation

Error: (03/26/2021 12:44:50 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]


System errors:
=============
Error: (03/26/2021 05:12:48 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 04:56:30 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2

Error: (03/26/2021 04:56:11 PM) (Source: DCOM) (EventID: 10005) (User: SCORSESE)
Description: DCOM got error "1084" attempting to start the service camsvc with arguments "Unavailable" in order to run the server:
Windows.Internal.CapabilityAccess.CapabilityAccess

Error: (03/26/2021 04:56:08 PM) (Source: DCOM) (EventID: 10005) (User: SCORSESE)
Description: DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (03/26/2021 04:56:02 PM) (Source: DCOM) (EventID: 10005) (User: SCORSESE)
Description: DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (03/26/2021 04:55:57 PM) (Source: DCOM) (EventID: 10005) (User: SCORSESE)
Description: DCOM got error "1084" attempting to start the service dps with arguments "Unavailable" in order to run the server:
{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}

Error: (03/26/2021 04:55:54 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1084" attempting to start the service netprofm with arguments "Unavailable" in order to run the server:
{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (03/26/2021 04:55:54 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1084" attempting to start the service RmSvc with arguments "Unavailable" in order to run the server:
{581333F6-28DB-41BE-BC7A-FF201F12F3F6}


Windows Defender:
================
Date: 2020-12-05 11:48:15
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-12-05 11:19:56
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.323.580.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17400.5
Error code: 0x80240022
Error description: The program can't check for definition updates.

Date: 2020-12-05 11:19:56
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.323.580.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17400.5
Error code: 0x80240022
Error description: The program can't check for definition updates.

CodeIntegrity:
===============
Date: 2021-03-26 17:14:58
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F6 08/28/2020
Motherboard: Gigabyte Technology Co., Ltd. Z490 AORUS ULTRA
Processor: Intel(R) Core(TM) i7-10700K CPU @ 3.80GHz
Percentage of memory in use: 36%
Total physical RAM: 16301.11 MB
Available physical RAM: 10339.52 MB
Total Virtual: 34733.11 MB
Available Virtual: 26287.67 MB

==================== Drives ================================

Drive c: (Robert) (Fixed) (Total:155.63 GB) (Free:48.44 GB) NTFS
Drive d: (De Niro) (Fixed) (Total:775.26 GB) (Free:149.65 GB) NTFS
Drive e: (Goodfellas) (Fixed) (Total:931.51 GB) (Free:318.13 GB) NTFS
Drive f: (Casino) (Fixed) (Total:111.79 GB) (Free:30.47 GB) NTFS

\\?\Volume{9e86aaad-765c-4af0-b4e8-391aedf90cb2}\ () (Fixed) (Total:0.5 GB) (Free:0.04 GB) NTFS
\\?\Volume{27b2bf21-f9c1-4a4d-94ad-4510f71cfe9c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: CF291FF1)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: CF291F8C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: preventivni kontrola

#30 Příspěvek od Diallix »

Ano, veci, ktore zmazat malo zmazalo, no zaujimalo by ma v ktorom kroku ten script presiel a skutocne sa vykonal. Tie scripty, ktore ste urobil, oznacilo za vykonane ale nasledne v novych logoch sa zmeny neprejavili.

Frst ste presunul na rovnaky disk len inu particiu alebo uplne na ine, pripojene medium?

V kazdom pripade neni prijatelne, aby sa resetoval bios.

Nespozoroval ste problemy s HDD? Prilisne pracovanie, velke vytazenie, zamrzanie systemu, mysi, klavesnice?
Problem resetov je tu:
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.

Teraz docistime system, a podla vasich odpovedi na otazky budeme pokracovat dalej.

Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše

BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll => No File
FirewallRules: [{1F079BE3-3F8A-416E-8E12-E68E8CB889C7}] => (Allow) LPort=9009
FirewallRules: [{720C0124-A353-4DD1-AE5B-4204FAA4C9FB}] => (Allow) LPort=9009
FirewallRules: [{3062C1C5-CBDC-4AE0-9FAF-391FA2B92D41}] => (Allow) LPort=9009
FirewallRules: [{62F1B393-A810-4AFE-923F-350A6315D2D8}] => (Allow) LPort=9009
FirewallRules: [{2270EE59-B1FC-46F1-9D2F-A4C0E44E1EBF}] => (Allow) LPort=9009
FirewallRules: [{C64ECB58-D7EF-4752-BCEA-7ED1787D656A}] => (Allow) LPort=9009
FirewallRules: [{49D23485-F5F1-4A31-BEFC-079C13D8E67E}] => (Allow) LPort=9009
FirewallRules: [{2691C416-306C-4CEE-ADCA-E2B67CE92F55}] => (Allow) LPort=9009
FirewallRules: [{69B42916-9F9B-4956-95B3-57470280FBEE}] => (Allow) LPort=9009
FirewallRules: [{997673BC-FE27-4CA3-ADCA-9CB8DAA5606B}] => (Allow) LPort=9009
FirewallRules: [{3A936A07-E549-4EEB-86DD-706BF4C1D4E3}] => (Allow) LPort=9009
FirewallRules: [{AA0E18CA-91D7-418D-9203-C62161D3BE37}] => (Allow) LPort=9009
FirewallRules: [{10C5BF8E-D6A7-4140-9D0E-0E1383058006}] => (Allow) LPort=9009
FirewallRules: [{7C385996-6710-4064-BFC4-4F5E85386D5A}] => (Allow) LPort=9009
FirewallRules: [{79523D0A-012A-4708-BC96-8DF2F5EFC39C}] => (Allow) LPort=9009
FirewallRules: [{878BB43B-A168-4D93-BE76-14ECC29A1251}] => (Allow) LPort=9009
FirewallRules: [{DD94E7E5-D4A5-45E6-921F-FC88DC16E781}] => (Allow) LPort=9009
FirewallRules: [{97C8976D-41DC-4B2C-9DC4-7E1B8276ADAC}] => (Allow) LPort=9009
FirewallRules: [{2A57BDD5-AA7C-455A-BBCE-82AF256AC8B5}] => (Allow) LPort=9009
FirewallRules: [{10DE0991-BD0F-4FEB-8787-B06E9EF6B77A}] => (Allow) LPort=9009
FirewallRules: [{4A0B101F-E5DF-4650-A68A-86DBB7FFA644}] => (Allow) LPort=9009

Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

Zamčeno