Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu.PC trošku pomalejší

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
thermoval
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 25 úno 2026 15:45

Prosím o kontrolu logu.PC trošku pomalejší

#1 Příspěvek od thermoval »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-02-2026
Ran by Roman (administrator) on DESKTOP-IK5Q154 (25-02-2026 15:58:24)
Running from C:\Users\Roman\Desktop\VIRY\FRST64.exe
Loaded Profiles: Roman
Platform: Microsoft Windows 10 Home Version 22H2 19045.6466 (X64) Language: Čeština (Česko)
Default browser: "C:\Users\Roman\AppData\Local\Programs\Opera\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Users\Roman\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Roman\AppData\Local\Programs\Opera\127.0.5778.76\opera_crashreporter.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTHKCtrl.exe
(DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe
(explorer.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe <4>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Roman\AppData\Local\Programs\Opera\opera.exe <18>
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesGG.exe
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(services.exe ->) (RealDefense LLC -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [887976 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesGG.exe [15176528 2021-05-24] (SteelSeries ApS -> SteelSeries ApS)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [Creative Hot Key Control] => C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTHKCtrl.exe [650752 2013-07-19] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL (No File)
HKLM-x32\...\Run: [CTHelper] => C:\Windows\SysWOW64\CTHELPER.EXE* [29776 0] () [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 <==== ATTENTION
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [uTorrent] => C:\Users\Roman\AppData\Roaming\uTorrent\uTorrent.exe [1823472 2019-09-29] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [Opera Browser Assistant] => C:\Users\Roman\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45875504 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [41732568 2026-02-17] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [AvastBrowserAutoLaunch_64839AA0100A9B8EE305C1C0CFD5988B] => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3810208 2026-02-04] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [GoogleUpdaterTaskUser147.0.7683.0] => C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe [8478872 2026-02-12] (Google LLC -> Google LLC)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {176f2e72-ca99-11ea-8302-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {281de702-7c3d-11eb-832b-7085c2b676ed} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {31672966-0638-11ea-82d5-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {4fdc54b9-2e8e-11eb-8317-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {686e1fb6-4155-11eb-831d-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {8165dc15-8b41-11eb-832e-7085c2b676ed} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {c4ae8152-d64b-11eb-833f-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {d5bfd995-8057-11eb-832b-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\145.0.7632.110\Installer\chrmstp.exe [2026-02-24] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\144.0.33853.133\Installer\chrmstp.exe [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2025-12-22]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Gen Digital Inc. -> Gen Digital Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-06-14]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {83694D76-2CE0-44C2-BFA4-3CDDCDA208C8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1612800 2026-01-23] (Adobe Inc. -> Adobe Inc.)
Task: {E9186384-07CF-48AA-8C48-C60FDCDCC129} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_445_pepper.exe [1497656 2020-10-18] (Adobe Inc. -> Adobe)
Task: {BB2C3E33-7738-48D1-A4DE-11B5995E01A6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3810208 2026-02-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {F6022929-1176-4E25-BD9C-FC762ADAA9C1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3810208 2026-02-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {50E53944-F0F3-4516-9195-34AFB6CC0C20} - System32\Tasks\Avast Secure Browser VPS Differential Update => C:\Program Files\AVAST Software\Browser\Application\vps_helper.exe [1944560 2026-02-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {74B3D49A-A03A-4E89-850E-C0984759C6FB} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [9246944 2026-01-27] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {110C2BC6-9827-42D5-B1E6-5585F8C296B5} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5623464 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3E983250-6341-4EC3-9290-74C56DF00082} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [6193832 2025-12-21] (Gen Digital Inc. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {200D2B69-C9D2-436A-888A-39B5C3BFFB83} - System32\Tasks\Avast Software\Avast SecureLine VPN Emergency Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [3959464 2025-12-21] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {CD841B67-1109-41C8-9E48-036B0C23613A} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [9176800 2025-12-09] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {553C3AD6-EE38-4EC9-AB40-FE75DAE08B64} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2977504 2025-10-13] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {F48AAB0A-2C93-41F7-9507-328835E8EC44} - System32\Tasks\AvastBrowserProtectS-1-5-21-1302697886-3810365050-4072786658-1002 => C:\Program Files\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1762528 2025-10-07] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {4A5F4F3C-C2AA-448A-A435-651BF46AF82F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194016 2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3D4A4A12-7658-4CBE-A1E1-02BFA3CD9796} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194016 2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {0241D2A4-2AB3-45C9-93E2-042FC1FEEF62} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {C0425056-0FD5-46AE-83EF-178B251312E5} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6139696 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "b6cef11d-16aa-4c80-a9c2-19f977ade949" --version "6.34.0.11482" --silent
Task: {5069A954-0C60-4378-8FD1-5B3A289173AA} - System32\Tasks\CCleanerSkipUAC - Roman => C:\Program Files\CCleaner\CCleaner.exe [39616304 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {273954C9-B799-41EC-8CDE-8A70CDD28015} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem147.0.7683.0{60EDE1AB-824C-435D-89F1-706DF3933882} => C:\Program Files (x86)\Google\GoogleUpdater\147.0.7683.0\updater.exe [8478872 2026-02-12] (Google LLC -> Google LLC)
Task: {353E0DCD-6438-4D7E-A4BF-9E82D88C425D} - System32\Tasks\GoogleUser\GoogleUpdater\GoogleUpdaterTaskUser147.0.7683.0{A717FE32-5428-4439-824C-F532E0833412} => C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe [8478872 2026-02-12] (Google LLC -> Google LLC)
Task: {BACCEA5F-CACD-4FD7-90C1-52F3500F4E57} - System32\Tasks\Opera scheduled assistant Autoupdate 1582725837 => C:\Users\Roman\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Roman\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {B414E4A4-38AE-409D-85E5-91D1E21AD19F} - System32\Tasks\Opera scheduled Autoupdate 1569700776 => C:\Users\Roman\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [6271448 2026-02-18] (Opera Norway AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.88.1 91.219.243.2 91.219.240.1
Tcpip\..\Interfaces\{b148121d-4542-42ab-938e-427e76de7b66}: [NameServer] 100.122.0.0
Tcpip\..\Interfaces\{c1b8ff42-edc1-45f5-ba56-822a846ffdd1}: [DhcpNameServer] 192.168.88.1 91.219.243.2 91.219.240.1

FireFox:
========
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2026-02-17] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1995.6\npAvastBrowserUpdate3.dll [2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1995.6\npAvastBrowserUpdate3.dll [2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default [2026-02-17]
Edge Extension: (Dokumenty Google offline) - C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2026-01-29]
Edge Extension: (Edge relevant text changes) - C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default [2023-03-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-04]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]

Opera:
=======
OPR DefaultProfile: Default

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [374872 2026-01-12] (RealDefense LLC -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [180216 2026-01-23] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7844520 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194016 2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [1039528 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2635432 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1092776 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194016 2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\144.0.33853.133\elevation_service.exe [2724992 2026-02-04] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-31] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1088816 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-12-10] (Creative Technology Ltd) [File not signed]
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2021-06-03] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [14622376 2025-12-21] (Gen Digital Inc. -> Gen Digital Inc.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28760 2019-11-30] (LAVASOFT SOFTWARE CANADA INC -> ) <==== ATTENTION
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; "C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [54720 2022-09-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [286816 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [435808 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [304736 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [88160 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [29144 2025-07-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [32864 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [289888 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [586336 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97376 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [73312 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [898656 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1315424 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [231008 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [404064 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [85776 2025-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-01-24] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [23072 2024-12-15] (RealDefense LLC -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-05-24] (SteelSeries ApS -> )
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 aswArDisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error Reading file: "C:\ProgramData\Desktop\VLC media player.lnk"
Error Reading file: "C:\ProgramData\Desktop\SUPERAntiSpyware Free Edition.lnk"
Error Reading file: "C:\ProgramData\Desktop\Google Chrome.lnk"
Error Reading file: "C:\ProgramData\Desktop\desktop.ini"
Error Reading file: "C:\ProgramData\Desktop\Creative Product Registration.lnk"
Error Reading file: "C:\ProgramData\Desktop\CCleaner.lnk"
Error Reading file: "C:\ProgramData\Desktop\Avast SecureLine VPN.lnk"
Error Reading file: "C:\ProgramData\Desktop\Avast Secure Browser.lnk"
Error Reading file: "C:\ProgramData\Desktop\Avast Premium Security.lnk"
Error Reading file: "C:\ProgramData\Desktop\Adobe Acrobat.lnk"
Error Reading file: "C:\ProgramData\Desktop\4K Video Downloader+.lnk"
Error Reading file: "C:\ProgramData\Desktop\4K Video Downloader.lnk"
2026-02-25 15:58 - 2026-02-25 15:58 - 000000000 ____D C:\FRST
2026-02-25 15:56 - 2026-02-25 15:58 - 000000000 ____D C:\Users\Roman\Desktop\VIRY
2026-02-10 15:46 - 2026-02-10 15:46 - 000323752 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2026-02-25 15:58 - 2020-07-09 22:59 - 000028680 _____ C:\WINDOWS\system32\BMXBkpCtrlState-{00000025-00000000-00000000-00001102-00000008-10241102}.rfx
2026-02-25 15:58 - 2020-07-09 22:59 - 000011564 _____ C:\WINDOWS\system32\DVCState-{00000025-00000000-00000000-00001102-00000008-10241102}.rfx
2026-02-25 15:58 - 2019-12-16 17:44 - 000028680 _____ C:\WINDOWS\system32\BMXCtrlState-{00000025-00000000-00000000-00001102-00000008-10241102}.rfx
2026-02-25 15:58 - 2019-12-16 17:20 - 000034080 _____ C:\WINDOWS\system32\BMXStateBkp-{00000025-00000000-00000000-00001102-00000008-10241102}.rfx
2026-02-25 15:58 - 2019-12-16 17:20 - 000034080 _____ C:\WINDOWS\system32\BMXState-{00000025-00000000-00000000-00001102-00000008-10241102}.rfx
2026-02-25 15:43 - 2021-12-18 11:53 - 000000000 ____D C:\WINDOWS\SystemTemp
2026-02-25 15:30 - 2026-01-23 17:55 - 000002788 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2026-02-25 15:30 - 2025-02-05 21:37 - 000003108 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-1302697886-3810365050-4072786658-1002
2026-02-25 15:30 - 2024-05-16 17:53 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1302697886-3810365050-4072786658-1002
2026-02-25 15:30 - 2023-05-13 18:16 - 000000670 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2026-02-25 15:30 - 2021-12-20 21:48 - 000002254 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Roman
2026-02-25 15:30 - 2020-08-13 19:58 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2026-02-25 15:30 - 2020-08-13 19:58 - 000003340 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2026-02-25 15:30 - 2020-07-09 23:01 - 000003540 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1569700776
2026-02-25 15:30 - 2020-07-09 23:01 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2026-02-25 15:30 - 2020-07-09 23:01 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2026-02-25 15:30 - 2020-07-09 23:01 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1302697886-3810365050-4072786658-1002
2026-02-25 15:30 - 2020-07-09 23:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2026-02-25 15:30 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2026-02-25 15:11 - 2020-05-06 16:29 - 000002502 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2026-02-25 15:11 - 2020-05-06 16:29 - 000002465 _____ C:\Users\Roman\Desktop\Google Chrome.lnk
2026-02-24 22:44 - 2020-07-09 22:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2026-02-24 19:59 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2026-02-24 19:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2026-02-24 19:31 - 2019-09-27 20:58 - 000000000 ____D C:\Users\Roman\AppData\Roaming\vlc
2026-02-24 18:38 - 2020-12-18 18:50 - 000000000 ____D C:\Counter-Strike 1.6
2026-02-24 15:45 - 2022-10-15 12:19 - 001598646 _____ C:\WINDOWS\system32\perfh019.dat
2026-02-24 15:45 - 2022-10-15 12:19 - 000954006 _____ C:\WINDOWS\system32\perfc019.dat
2026-02-24 15:45 - 2020-07-09 23:02 - 000005852 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2026-02-24 15:45 - 2019-12-07 15:41 - 003398476 _____ C:\WINDOWS\system32\perfh005.dat
2026-02-24 15:45 - 2019-12-07 15:41 - 000972978 _____ C:\WINDOWS\system32\perfc005.dat
2026-02-24 15:39 - 2019-09-29 18:39 - 000000000 ____D C:\Users\Roman\AppData\Local\CrashDumps
2026-02-24 15:38 - 2020-07-09 23:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2026-02-24 15:37 - 2025-10-10 19:56 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2026-02-24 15:37 - 2025-10-10 19:56 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2026-02-23 17:03 - 2020-07-09 22:41 - 000002383 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2026-02-23 15:16 - 2020-08-13 19:58 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2026-02-22 11:24 - 2022-10-13 14:16 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2026-02-22 11:24 - 2022-10-13 14:16 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2026-02-21 22:51 - 2019-12-23 23:29 - 000000000 ____D C:\Users\Roman\AppData\Roaming\TIDAL
2026-02-21 00:12 - 2022-12-02 23:34 - 000000000 ____D C:\Users\Roman\Desktop\Nože
2026-02-19 15:31 - 2019-09-28 20:59 - 000001390 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2026-02-11 17:43 - 2019-09-27 19:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2026-02-11 17:42 - 2019-09-27 18:59 - 000000000 ____D C:\Users\Roman\AppData\Local\D3DSCache
2026-02-11 17:41 - 2019-09-27 19:04 - 221154392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2026-02-11 15:14 - 2019-09-29 11:49 - 000000000 ____D C:\ProgramData\AVAST Software
2026-02-11 15:13 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2026-02-10 23:03 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2026-02-10 15:46 - 2020-10-21 14:36 - 000289888 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2026-02-10 15:46 - 2020-04-19 13:08 - 000586336 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 001315424 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000898656 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000435808 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000404064 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000304736 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000286816 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000097376 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000088160 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000073312 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000032864 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2026-02-10 15:45 - 2025-10-10 19:47 - 000003642 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser VPS Differential Update
2026-02-10 15:45 - 2025-10-10 19:47 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2026-02-10 15:45 - 2025-10-10 19:47 - 000002409 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2026-02-08 11:23 - 2025-03-15 21:37 - 000000000 ____D C:\Users\Roman\Desktop\kodi

==================== Files in the root of some directories ========

2019-11-27 22:47 - 2019-11-27 22:47 - 000099678 _____ () C:\Users\Roman\AppData\Roaming\logo_bigfarm_desktop.ico
2019-11-27 22:47 - 2019-11-27 22:47 - 000370070 _____ () C:\Users\Roman\AppData\Roaming\logo_empire_desktop.ico

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-02-2026
Ran by Roman (25-02-2026 16:00:06)
Running from C:\Users\Roman\Desktop\VIRY
Microsoft Windows 10 Home Version 22H2 19045.6466 (X64) (2020-07-09 22:01:58)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1302697886-3810365050-4072786658-500 - Administrators - Disabled)
DefaultAccount (S-1-5-21-1302697886-3810365050-4072786658-503 - Limited - Disabled)
Guest (S-1-5-21-1302697886-3810365050-4072786658-501 - Limited - Disabled)
Roman (S-1-5-21-1302697886-3810365050-4072786658-1002 - Administrators - Enabled) => C:\Users\Roman
WDAGUtilityAccount (S-1-5-21-1302697886-3810365050-4072786658-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\uTorrent) (Version: 3.5.5.45341 - BitTorrent Inc.)
4K Video Downloader (HKLM\...\{44E23473-28B4-47E2-BD69-46E9307294DB}) (Version: 4.33.5.0172 - Open Media LLC) Hidden
4K Video Downloader (HKLM-x32\...\{ceabdf45-a262-45f9-9621-7a45be3dc900}) (Version: 4.33.5.172 - Open Media LLC)
4K Video Downloader+ (HKLM-x32\...\{2AF3DBB3-7A69-4778-B089-3A8C2405D1C7}) (Version: 1.10.2.0160 - Open Media LLC) Hidden
4K Video Downloader+ (HKLM-x32\...\{d2b1ed26-249a-43ce-9f36-a441eaa309ab}) (Version: 1.10.2.160 - Open Media LLC)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.21223 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.445 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601149}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AIMP (HKLM-x32\...\AIMP) (Version: 5.30.2563 - Artem Izmaylov)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.10.16 - Advanced Micro Devices, Inc.)
AV Audio Converter (HKLM-x32\...\AV Audio Converter) (Version: 2.0.5 - AVSoft Corp. (VN))
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 26.1.10738.3400 - Gen Digital Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 144.0.33853.133 - Autoři prohlížeče Avast Secure Browser)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 25.12.12124.16698 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1995.6 - AVAST Software) Hidden
Balanced (HKLM-x32\...\{0EA45DD4-A825-420C-AFED-C659EFE3B84F}) (Version: 4.00.0000 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.34 - Piriform)
Counter-Strike 1.6 (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Counter-Strike 1.6) (Version: - )
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.14 - Creative Technology Limited)
FastStone Image Viewer 7.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.4 - FastStone Soft)
Free Video Downloader for YouTube 0.5.4 (HKLM-x32\...\Free Video Downloader for YouTube_is1) (Version: 0.5.4 - NotMP3.com)
Google Chrome (HKLM\...\{D8756D27-79B8-30DE-9331-8EB0A19B2607}) (Version: 145.0.7632.110 - Google LLC)
Google Chrome (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Google Chrome) (Version: 145.0.7632.110 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.550 - Huawei Technologies Co., Ltd.)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
Kodi (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Kodi) (Version: 20.0.0.0 - XBMC Foundation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 145.0.3800.70 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 145.0.3800.70 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\OneDriveSetup.exe) (Version: 26.012.0119.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29913 (HKLM-x32\...\{572DCD10-CF2E-43D1-8151-8BD9AC9086D0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29913 (HKLM-x32\...\{6236EBBD-F50F-40B3-B819-8DB0C608308C}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 127.0.5778.76 (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Opera 127.0.5778.76) (Version: 127.0.5778.76 - Opera Software)
Sound Blaster Audigy 5_Audigy Rx (HKLM-x32\...\{81440118-F1CE-4C87-BC8B-F1EB8D3FA190}) (Version: 1.0 - Creative Technology Limited)
SteelSeries Engine 3.16.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.16.1 - SteelSeries ApS)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1282 - SUPERAntiSpyware.com)
TIDAL (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\TIDAL) (Version: 2.39.5 - TIDAL Music AS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{B8D93870-98D1-4980-AFCA-E26563CDFB79}) (Version: 8.94.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Web Companion (HKLM-x32\...\{66d3b702-197b-46e9-aa9c-853fcf0d970d}) (Version: 4.9.2159.4024 - Lavasoft) <==== ATTENTION
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2026-02-22] ()
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.19.10006.0_x64__0a9344xs7nr4m [2021-10-06] (Advanced Micro Devices Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-10-15] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-01] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{041F9391-C79D-44EE-AA4E-AF4E029C4B47}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.112\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{1F9E0710-2073-435F-9C1B-F29946205947}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.152\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{2919A592-BF5E-4AF5-A658-84454D70841E}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.202\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{3B96E164-0102-441D-B5BB-08FBDA5578E6}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.303\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{547E9AEF-8043-5D26-879F-01E7664192DC}\localserver32 -> C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{5D33E038-8083-402A-A928-D035C4C30A88}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.283\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{5D44759C-CF3F-433D-9EA0-267E45577C77}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.212\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{69545769-8D02-4B07-A481-AD374CD8D5D1}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.132\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{6D264B70-DA18-401D-910C-B202D89670C6}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.31\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{6DDCE70D-A4AE-4E97-908C-BE7B2DB750AD}\localserver32 -> C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{75399D28-E622-4973-8752-BC0F7DC47AF3}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.122\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{816E4B50-C8D5-4AA6-A5DD-65187BE041F5}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.363\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{85D8EE2F-794F-41F0-BB03-49D56A23BEF4}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.363\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{8B480070-D37D-4090-A063-7A429F849652}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.92\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{90301EC6-0EDC-45B4-AED8-72572E27A6C4}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.323\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Roman\AppData\Local\Google\Chrome\Application\145.0.7632.110\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{B53B0E75-9135-540F-BBA6-2DE6470338A2}\localserver32 -> C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{BE5C2E39-090F-46A2-AFAA-47540743B4FE}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.102\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{CA07EE63-A212-4373-AE82-FBF92FCA8DCC}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.242\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{CA8FA699-91CD-412F-9D13-9B1222F4370E}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.82\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{CA919489-0396-4164-A6E7-94CDED45A707}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.52\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{DA06AAE8-5748-4509-850F-17AA522F8372}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.272\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{DEDF773D-E27B-485E-8E7D-85C5B0EB5A67}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.72\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Roman\AppData\Local\Google\Update\1.3.36.363\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2026-02-17] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2024-11-15] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2024-11-15] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2025-08-15 03:15 - 2025-08-15 03:15 - 000030720 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\cs_cz\Acrobat Elements\ContextMenuShim64.cze
2019-12-16 17:52 - 2012-12-10 12:51 - 000535552 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTAudEp.dll
2019-12-16 17:52 - 2011-09-16 18:04 - 000238080 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTLoadRs.dll
2019-12-16 17:52 - 2013-06-21 13:20 - 000836608 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\HookWndU.DLL
2019-03-06 19:18 - 2019-03-06 19:18 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2019-03-06 19:18 - 2019-03-06 19:18 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10454__190929
SearchScopes: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 192.168.88.1 - 91.219.243.2
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys
SecureLine: Avast SecureLine Wintun Adapter -> aswWintun.sys

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Roman\Desktop\Tapety\09544-w.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 5) (TamperProtectionSource: )
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths|C:\Users\Roman\Downloads\KMSpico 10.2.0 FINAL + Portable (Office and Windows 10 Activator) [TechTools.NET]
HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths|C:\Program Files\KMSpico
HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths|C:\Windows\SECOH-QAD.exe
HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths|C:\Windows\SECOH-QAD.dll


==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\StartupApproved\Run: => "SUPERAntiSpyware"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_66D161819F0EAC1A9819F518A968ED0B"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{FAD7C3F6-661B-4E6C-96D2-FA5384A2649C}C:\users\roman\appdata\local\programs\opera\68.0.3618.173\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.173\opera.exe => No File
FirewallRules: [TCP Query User{DD76444D-FFD1-4F2F-BF96-C65003D3B18D}C:\users\roman\appdata\local\programs\opera\68.0.3618.173\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.173\opera.exe => No File
FirewallRules: [UDP Query User{5F58244F-28BC-4DD8-A2CD-5C83ACEA124C}C:\users\roman\appdata\local\programs\opera\68.0.3618.165\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.165\opera.exe => No File
FirewallRules: [TCP Query User{60323F1C-52AF-4501-8916-D977F259E737}C:\users\roman\appdata\local\programs\opera\68.0.3618.165\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.165\opera.exe => No File
FirewallRules: [UDP Query User{70935F5A-0EC6-41AC-8A12-B27580C4C662}C:\users\roman\appdata\local\programs\opera\68.0.3618.125\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.125\opera.exe => No File
FirewallRules: [TCP Query User{841FD97E-C289-4FE7-98A1-265ED67EEF7A}C:\users\roman\appdata\local\programs\opera\68.0.3618.125\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.125\opera.exe => No File
FirewallRules: [UDP Query User{01C0B932-A1D5-49BF-BAFA-5944F3D91FAE}C:\users\roman\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\roman\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{81B85226-096C-45FF-9C50-3DB613113053}C:\users\roman\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\roman\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{4FB0FC9C-53C9-4188-9F14-37A6E69D1A6F}C:\users\roman\appdata\local\programs\opera\68.0.3618.104\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.104\opera.exe => No File
FirewallRules: [TCP Query User{046A3A50-828B-4C7E-ADED-8E457149B414}C:\users\roman\appdata\local\programs\opera\68.0.3618.104\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.104\opera.exe => No File
FirewallRules: [UDP Query User{E25453F9-F0AE-4A1C-8AFF-AA8B2C20E566}C:\users\roman\appdata\local\programs\opera\68.0.3618.63\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.63\opera.exe => No File
FirewallRules: [TCP Query User{CC6039A8-9FAC-49E2-9F92-5A0AF641759C}C:\users\roman\appdata\local\programs\opera\68.0.3618.63\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.63\opera.exe => No File
FirewallRules: [UDP Query User{A7CAA3FD-6C7C-4ECC-A596-2C5B377A145D}C:\users\roman\appdata\local\programs\opera\68.0.3618.56\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.56\opera.exe => No File
FirewallRules: [TCP Query User{9F1B4813-F70B-41B3-9FBB-4529BA928EF5}C:\users\roman\appdata\local\programs\opera\68.0.3618.56\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\68.0.3618.56\opera.exe => No File
FirewallRules: [UDP Query User{33FE3B41-97AB-4CBA-9B69-ED2CDC374125}C:\users\roman\appdata\local\programs\opera\67.0.3575.137\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\67.0.3575.137\opera.exe => No File
FirewallRules: [TCP Query User{8D4AA4B9-BA64-4700-99BB-A30E6C227340}C:\users\roman\appdata\local\programs\opera\67.0.3575.137\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\67.0.3575.137\opera.exe => No File
FirewallRules: [UDP Query User{8B8CBB40-ECFC-4C27-831D-7471131F3AC4}C:\users\roman\appdata\local\programs\opera\67.0.3575.115\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\67.0.3575.115\opera.exe => No File
FirewallRules: [TCP Query User{31F031E8-B925-4356-A85C-019944D791F8}C:\users\roman\appdata\local\programs\opera\67.0.3575.115\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\67.0.3575.115\opera.exe => No File
FirewallRules: [UDP Query User{347C0478-B811-4DE0-A67E-A3078691F3B1}C:\users\roman\appdata\local\programs\opera\67.0.3575.97\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\67.0.3575.97\opera.exe => No File
FirewallRules: [TCP Query User{48F7E577-C9CD-4382-9CED-406979A50F99}C:\users\roman\appdata\local\programs\opera\67.0.3575.97\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\67.0.3575.97\opera.exe => No File
FirewallRules: [UDP Query User{1BA5C31E-16FB-42D8-A041-70A1CF12CA95}C:\users\roman\appdata\local\programs\opera\67.0.3575.79\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\67.0.3575.79\opera.exe => No File
FirewallRules: [TCP Query User{3C01B46D-C44C-4BBD-9A0C-7823C50AFE1A}C:\users\roman\appdata\local\programs\opera\67.0.3575.79\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\67.0.3575.79\opera.exe => No File
FirewallRules: [UDP Query User{76634433-C168-4EB8-B368-6E2EB9C33985}C:\users\roman\appdata\local\programs\opera\67.0.3575.53\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\67.0.3575.53\opera.exe => No File
FirewallRules: [TCP Query User{4922B92A-E838-4BB3-BF91-868E0023FA4B}C:\users\roman\appdata\local\programs\opera\67.0.3575.53\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\67.0.3575.53\opera.exe => No File
FirewallRules: [UDP Query User{56485106-F3C3-4E53-91A8-946FB0E85198}C:\users\roman\appdata\local\programs\opera\66.0.3515.115\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\66.0.3515.115\opera.exe => No File
FirewallRules: [TCP Query User{C161E02F-0275-4BA7-8544-CB5025DF0776}C:\users\roman\appdata\local\programs\opera\66.0.3515.115\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\66.0.3515.115\opera.exe => No File
FirewallRules: [UDP Query User{F3781675-934E-4440-AF35-F90D5D01D753}C:\users\roman\appdata\local\programs\opera\66.0.3515.103\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\66.0.3515.103\opera.exe => No File
FirewallRules: [TCP Query User{91368037-D617-47CA-90C8-4909AB43626A}C:\users\roman\appdata\local\programs\opera\66.0.3515.103\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\66.0.3515.103\opera.exe => No File
FirewallRules: [UDP Query User{76D4E293-3E60-4E9A-92CA-C43B938ECA4E}C:\users\roman\appdata\local\programs\opera\66.0.3515.72\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\66.0.3515.72\opera.exe => No File
FirewallRules: [TCP Query User{1AC99C73-D704-41B6-A624-D07898661E17}C:\users\roman\appdata\local\programs\opera\66.0.3515.72\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\66.0.3515.72\opera.exe => No File
FirewallRules: [UDP Query User{B25D9B04-70F5-4936-BE6A-DED226F337EB}C:\users\roman\appdata\local\programs\opera\66.0.3515.44\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\66.0.3515.44\opera.exe => No File
FirewallRules: [TCP Query User{5EFFA908-1797-4ED3-BB23-08DC202E68B7}C:\users\roman\appdata\local\programs\opera\66.0.3515.44\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\66.0.3515.44\opera.exe => No File
FirewallRules: [UDP Query User{3A1D4525-0F47-4CFC-9852-C4AF579B7846}C:\users\roman\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\65.0.3467.78\opera.exe => No File
FirewallRules: [TCP Query User{5A7655C2-D471-4593-ACBA-618F6F8ABAF9}C:\users\roman\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\65.0.3467.78\opera.exe => No File
FirewallRules: [UDP Query User{98985A56-DC7E-43F6-AB29-AC1EFD262283}C:\users\roman\appdata\local\programs\opera\65.0.3467.72\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\65.0.3467.72\opera.exe => No File
FirewallRules: [TCP Query User{26931D8B-5054-4BD7-845B-75E979AE2CB7}C:\users\roman\appdata\local\programs\opera\65.0.3467.72\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\65.0.3467.72\opera.exe => No File
FirewallRules: [UDP Query User{A0EB334C-BC50-4371-920C-7DADD0ED0935}C:\users\roman\appdata\local\programs\opera\65.0.3467.62\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\65.0.3467.62\opera.exe => No File
FirewallRules: [TCP Query User{1FB45BEE-F7C4-477B-AE99-A071C60EC89C}C:\users\roman\appdata\local\programs\opera\65.0.3467.62\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\65.0.3467.62\opera.exe => No File
FirewallRules: [UDP Query User{491B0807-E2B2-4884-B96F-5EB9883F3DD3}C:\users\roman\appdata\local\programs\opera\65.0.3467.48\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\65.0.3467.48\opera.exe => No File
FirewallRules: [TCP Query User{16C72D75-2CC9-4858-A8C3-CFA0C1CAEC8E}C:\users\roman\appdata\local\programs\opera\65.0.3467.48\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\65.0.3467.48\opera.exe => No File
FirewallRules: [UDP Query User{E6A7A476-1657-4AA2-8C8C-8997F26822F5}C:\counter-strike 1.62\hl.exe] => (Allow) C:\counter-strike 1.62\hl.exe => No File
FirewallRules: [TCP Query User{9B699107-FABA-4DAF-9C4E-13545035F878}C:\counter-strike 1.62\hl.exe] => (Allow) C:\counter-strike 1.62\hl.exe => No File
FirewallRules: [{978D7991-ADE6-47A0-B11C-78C90B72C4E3}] => (Allow) C:\Users\Roman\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2327D1A6-1F43-4635-90EC-1944073A447C}] => (Allow) C:\Users\Roman\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{8DFB9EE6-8952-4224-BCDE-8D3F84D5CD2C}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe => No File
FirewallRules: [TCP Query User{2AD296C7-1773-4C4D-8454-76D3DA0B939D}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe => No File
FirewallRules: [TCP Query User{BADAC5DE-0141-4338-957F-DC1B7DD3EA8C}C:\users\roman\appdata\local\programs\opera\69.0.3686.57\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\69.0.3686.57\opera.exe => No File
FirewallRules: [UDP Query User{B70C4CD3-D844-4E8E-BAA9-06CF0E69CF0C}C:\users\roman\appdata\local\programs\opera\69.0.3686.57\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\69.0.3686.57\opera.exe => No File
FirewallRules: [TCP Query User{DEDC6C5F-8CA3-4B57-BC7F-5C1F30947764}C:\users\roman\appdata\local\programs\opera\69.0.3686.77\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\69.0.3686.77\opera.exe => No File
FirewallRules: [UDP Query User{3813CB86-355A-4BA4-B830-B1C39B3ED86D}C:\users\roman\appdata\local\programs\opera\69.0.3686.77\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\69.0.3686.77\opera.exe => No File
FirewallRules: [TCP Query User{E4D97635-82A4-40CB-A546-59E73FAE6130}C:\users\roman\appdata\local\programs\opera\69.0.3686.95\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\69.0.3686.95\opera.exe => No File
FirewallRules: [UDP Query User{E1176310-8BB5-483B-8B23-EAEBD2997FB2}C:\users\roman\appdata\local\programs\opera\69.0.3686.95\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\69.0.3686.95\opera.exe => No File
FirewallRules: [TCP Query User{91F6C43A-ACB1-48FC-A620-6B10CA28D968}C:\users\roman\appdata\local\programs\opera\70.0.3728.95\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.95\opera.exe => No File
FirewallRules: [UDP Query User{E667506A-C3E6-4B27-AD7E-33665D0FDAE4}C:\users\roman\appdata\local\programs\opera\70.0.3728.95\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.95\opera.exe => No File
FirewallRules: [TCP Query User{75A0341C-47B6-411D-987B-5D0C3C078D68}C:\users\roman\appdata\local\programs\opera\70.0.3728.106\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.106\opera.exe => No File
FirewallRules: [UDP Query User{31193FE9-34B6-4247-AB18-0BF4C780FC04}C:\users\roman\appdata\local\programs\opera\70.0.3728.106\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.106\opera.exe => No File
FirewallRules: [TCP Query User{38557E9D-11E8-433E-99C9-5E72F30306C4}C:\cs\hl.exe] => (Block) C:\cs\hl.exe => No File
FirewallRules: [UDP Query User{005E1A52-329B-4746-BA07-69A5594BF016}C:\cs\hl.exe] => (Block) C:\cs\hl.exe => No File
FirewallRules: [TCP Query User{C264ABAA-90EB-4FC9-BDF8-11814033E773}C:\counter-strike 1.6\hl.exe] => (Block) C:\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [UDP Query User{1B21F13E-9861-4687-9CED-87A90935CF3C}C:\counter-strike 1.6\hl.exe] => (Block) C:\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [TCP Query User{31622A8F-1864-4C9F-9A0C-7404DBBD0189}C:\users\roman\appdata\local\programs\opera\70.0.3728.133\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.133\opera.exe => No File
FirewallRules: [UDP Query User{277D84FE-2D24-4D7E-BDC9-871050C7D6CE}C:\users\roman\appdata\local\programs\opera\70.0.3728.133\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.133\opera.exe => No File
FirewallRules: [TCP Query User{4F74D703-94C4-4DF0-A646-1D53A744BC23}C:\users\roman\appdata\local\programs\opera\70.0.3728.154\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.154\opera.exe => No File
FirewallRules: [UDP Query User{9670D06D-7DBC-412C-9ECF-EB1511984824}C:\users\roman\appdata\local\programs\opera\70.0.3728.154\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.154\opera.exe => No File
FirewallRules: [TCP Query User{18BD3E51-09C1-459E-9733-D4B07CB0372A}C:\users\roman\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.178\opera.exe => No File
FirewallRules: [UDP Query User{4C27637B-7AFD-43BF-BA03-3336F9E35AC2}C:\users\roman\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.178\opera.exe => No File
FirewallRules: [TCP Query User{D453A2BA-B1B1-48E9-B26E-5CD889BD1CA4}C:\users\roman\appdata\local\programs\opera\70.0.3728.189\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.189\opera.exe => No File
FirewallRules: [UDP Query User{64CCD79E-4D1C-4D7C-9F88-A2B9681059BF}C:\users\roman\appdata\local\programs\opera\70.0.3728.189\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\70.0.3728.189\opera.exe => No File
FirewallRules: [TCP Query User{5D5609E4-966A-408A-BBE5-C1B58D58AB27}C:\users\roman\appdata\local\tidal\app-2.21.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.21.0\tidal.exe => No File
FirewallRules: [UDP Query User{65707517-369A-4ACA-B700-48A57F2A3D16}C:\users\roman\appdata\local\tidal\app-2.21.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.21.0\tidal.exe => No File
FirewallRules: [TCP Query User{25A89BEB-63D7-4A00-886C-DFDDA2B331FA}C:\users\roman\appdata\local\programs\opera\71.0.3770.198\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\71.0.3770.198\opera.exe => No File
FirewallRules: [UDP Query User{53FA9C06-4432-472F-BC04-1DC0AF9B31CF}C:\users\roman\appdata\local\programs\opera\71.0.3770.198\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\71.0.3770.198\opera.exe => No File
FirewallRules: [TCP Query User{F49AB5A6-4973-44E0-AA4E-7B7D7A17F7C8}C:\users\roman\appdata\local\programs\opera\71.0.3770.228\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\71.0.3770.228\opera.exe => No File
FirewallRules: [UDP Query User{0552335F-01E1-48FA-AA50-BF5122C1052F}C:\users\roman\appdata\local\programs\opera\71.0.3770.228\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\71.0.3770.228\opera.exe => No File
FirewallRules: [TCP Query User{77249E07-8304-4B48-A537-BDC1BE93E1B4}C:\users\roman\appdata\local\programs\opera\71.0.3770.271\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\71.0.3770.271\opera.exe => No File
FirewallRules: [UDP Query User{0A3580A0-F91A-4C79-994B-C36698DBA6D7}C:\users\roman\appdata\local\programs\opera\71.0.3770.271\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\71.0.3770.271\opera.exe => No File
FirewallRules: [TCP Query User{35D3927A-1B30-435C-BD72-DA94E1292B1E}C:\users\roman\appdata\local\programs\opera\71.0.3770.284\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\71.0.3770.284\opera.exe => No File
FirewallRules: [UDP Query User{7D255AF2-0C23-411A-9794-954FC560D1A7}C:\users\roman\appdata\local\programs\opera\71.0.3770.284\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\71.0.3770.284\opera.exe => No File
FirewallRules: [TCP Query User{203099DE-B128-48A0-9F04-908E095A272F}C:\users\roman\appdata\local\tidal\app-2.23.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.23.0\tidal.exe => No File
FirewallRules: [UDP Query User{F988E7AB-10D9-47C5-B11F-06EF9040877B}C:\users\roman\appdata\local\tidal\app-2.23.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.23.0\tidal.exe => No File
FirewallRules: [TCP Query User{46F7C3EC-1AC4-460A-A7CE-60DB81EAD628}C:\users\roman\appdata\local\programs\opera\72.0.3815.186\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\72.0.3815.186\opera.exe => No File
FirewallRules: [UDP Query User{2DD3A8E1-A68F-4EF2-8833-E8DD0E93E6F4}C:\users\roman\appdata\local\programs\opera\72.0.3815.186\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\72.0.3815.186\opera.exe => No File
FirewallRules: [TCP Query User{48738503-43F6-4E9A-97EE-0CEF9AD74B8B}C:\users\roman\appdata\local\programs\opera\72.0.3815.320\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\72.0.3815.320\opera.exe => No File
FirewallRules: [UDP Query User{4E0D859E-1DC4-405A-A01A-8BB4A451AE49}C:\users\roman\appdata\local\programs\opera\72.0.3815.320\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\72.0.3815.320\opera.exe => No File
FirewallRules: [TCP Query User{3B175BEA-00C2-487B-94AE-A7EF0BC42F68}C:\users\roman\appdata\local\programs\opera\72.0.3815.400\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\72.0.3815.400\opera.exe => No File
FirewallRules: [UDP Query User{458471B0-B200-43C3-940C-59AF79E8CBE3}C:\users\roman\appdata\local\programs\opera\72.0.3815.400\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\72.0.3815.400\opera.exe => No File
FirewallRules: [TCP Query User{F340E3AF-5ACC-434F-80F3-1C5D01B4A30E}C:\users\roman\appdata\local\programs\opera\73.0.3856.257\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\73.0.3856.257\opera.exe => No File
FirewallRules: [UDP Query User{4ED1BCC6-9A7E-4946-82CD-6E6472E9D7F9}C:\users\roman\appdata\local\programs\opera\73.0.3856.257\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\73.0.3856.257\opera.exe => No File
FirewallRules: [TCP Query User{663052FF-238A-457E-BA65-629EF47A0D32}F:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) F:\program files (x86)\counter-strike 1.6\hl.exe => No File
FirewallRules: [UDP Query User{D0B3E3C4-D386-4261-ACFE-0A0F5993DB83}F:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) F:\program files (x86)\counter-strike 1.6\hl.exe => No File
FirewallRules: [TCP Query User{CFBF5F4D-0FD3-42C9-AA7B-23031F1F197D}C:\users\roman\appdata\local\programs\opera\73.0.3856.284\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\73.0.3856.284\opera.exe => No File
FirewallRules: [UDP Query User{81019638-1C99-4F36-A5AF-5F89620C9E1A}C:\users\roman\appdata\local\programs\opera\73.0.3856.284\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\73.0.3856.284\opera.exe => No File
FirewallRules: [{9AD800F0-A530-4AAE-A0E6-1EAF69A6D5AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{75CC637A-7BE9-4645-B079-474396AD9C00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF55400D-2B7B-455A-A500-C11AD00EBDC9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{59DAEC55-86D3-4B5E-8B5E-27366C388FFA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{08ED1F83-4485-484E-B81F-B6A2E0DD0B68}C:\users\roman\appdata\local\programs\opera\73.0.3856.329\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\73.0.3856.329\opera.exe => No File
FirewallRules: [UDP Query User{757721CA-311C-4FA5-B6FE-17DDF7E90D4E}C:\users\roman\appdata\local\programs\opera\73.0.3856.329\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\73.0.3856.329\opera.exe => No File
FirewallRules: [TCP Query User{3D7DBB3A-F009-459D-90DF-682BCDDA1300}C:\users\roman\appdata\local\programs\opera\73.0.3856.344\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\73.0.3856.344\opera.exe => No File
FirewallRules: [UDP Query User{2B7981F4-2FF9-44B0-B56B-67DC33A39951}C:\users\roman\appdata\local\programs\opera\73.0.3856.344\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\73.0.3856.344\opera.exe => No File
FirewallRules: [TCP Query User{CE89B33C-9E7C-49D9-9FB4-3ADE77C7D004}C:\users\roman\appdata\local\tidal\app-2.24.2\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.24.2\tidal.exe => No File
FirewallRules: [UDP Query User{520CB204-2C02-44FD-A570-4D2ED63A1D98}C:\users\roman\appdata\local\tidal\app-2.24.2\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.24.2\tidal.exe => No File
FirewallRules: [TCP Query User{A375A07E-2A5A-47FD-8E13-D1D7FACF6911}C:\users\roman\appdata\local\programs\opera\74.0.3911.107\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\74.0.3911.107\opera.exe => No File
FirewallRules: [UDP Query User{7ADD95C6-CD4E-4BA9-A77E-06D5D30CF28D}C:\users\roman\appdata\local\programs\opera\74.0.3911.107\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\74.0.3911.107\opera.exe => No File
FirewallRules: [TCP Query User{0D16AFC9-09F7-4720-B9E8-D8CF355F56D4}C:\users\roman\appdata\local\programs\opera\74.0.3911.160\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\74.0.3911.160\opera.exe => No File
FirewallRules: [UDP Query User{BEFC8485-74EB-43F2-A292-D7F5E6E33004}C:\users\roman\appdata\local\programs\opera\74.0.3911.160\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\74.0.3911.160\opera.exe => No File
FirewallRules: [TCP Query User{24385960-5487-4E0E-893D-E008141E2012}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{5323EA93-6CAA-47A4-BD08-3DA1108E69B4}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{6655C208-8347-4E76-8993-92487E331E7C}C:\users\roman\appdata\local\programs\opera\74.0.3911.203\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\74.0.3911.203\opera.exe => No File
FirewallRules: [UDP Query User{E9CF6154-8AFC-49DC-853F-3B80B0166652}C:\users\roman\appdata\local\programs\opera\74.0.3911.203\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\74.0.3911.203\opera.exe => No File
FirewallRules: [TCP Query User{BB8D1BBE-2956-44A4-A7FB-455E1DABAF07}C:\users\roman\appdata\local\tidal\app-2.25.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.25.0\tidal.exe => No File
FirewallRules: [UDP Query User{0D4C4AC2-A572-4861-8A5B-DE6633EF9855}C:\users\roman\appdata\local\tidal\app-2.25.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.25.0\tidal.exe => No File
FirewallRules: [TCP Query User{54250D82-889C-4FCD-B1AF-059C29E9135D}C:\users\roman\appdata\local\programs\opera\74.0.3911.218\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\74.0.3911.218\opera.exe => No File
FirewallRules: [UDP Query User{DA14A527-8672-42C6-A0AF-4D8E0A5F1B2A}C:\users\roman\appdata\local\programs\opera\74.0.3911.218\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\74.0.3911.218\opera.exe => No File
FirewallRules: [TCP Query User{8F2C4D83-2E17-4384-9A97-48437B8F3707}C:\users\roman\appdata\local\programs\opera\75.0.3969.149\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\75.0.3969.149\opera.exe => No File
FirewallRules: [UDP Query User{3A35053B-60B3-455E-8561-AC09AD808DBB}C:\users\roman\appdata\local\programs\opera\75.0.3969.149\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\75.0.3969.149\opera.exe => No File
FirewallRules: [TCP Query User{DBE8E6C8-FA87-4C0E-AFC7-3182D67362FF}C:\users\roman\appdata\local\programs\opera\75.0.3969.171\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\75.0.3969.171\opera.exe => No File
FirewallRules: [UDP Query User{5CD73069-951A-4DC0-A6EC-A483267AC16F}C:\users\roman\appdata\local\programs\opera\75.0.3969.171\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\75.0.3969.171\opera.exe => No File
FirewallRules: [TCP Query User{77AD8660-A949-4B06-94E8-3B0C1A12F8A0}C:\users\roman\appdata\local\programs\opera\75.0.3969.218\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\75.0.3969.218\opera.exe => No File
FirewallRules: [UDP Query User{43924F53-F85A-4D01-8D1A-092AE6968B27}C:\users\roman\appdata\local\programs\opera\75.0.3969.218\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\75.0.3969.218\opera.exe => No File
FirewallRules: [TCP Query User{F7706025-1B93-4185-8A06-1E8CA5F63DBC}C:\users\roman\appdata\local\programs\opera\75.0.3969.243\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\75.0.3969.243\opera.exe => No File
FirewallRules: [UDP Query User{C0380F61-28EE-427D-8BD6-F836EC28FCDB}C:\users\roman\appdata\local\programs\opera\75.0.3969.243\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\75.0.3969.243\opera.exe => No File
FirewallRules: [TCP Query User{FD07C3CB-3AA5-41BE-B916-11BCFD062A1A}C:\users\roman\appdata\local\tidal\app-2.27.6\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.27.6\tidal.exe => No File
FirewallRules: [UDP Query User{D46D3184-A5B7-4520-8DB3-6712D3669AA5}C:\users\roman\appdata\local\tidal\app-2.27.6\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.27.6\tidal.exe => No File
FirewallRules: [TCP Query User{054B05A4-EC88-4E7F-B8DE-81FD64A96DAA}C:\users\roman\appdata\local\programs\opera\76.0.4017.107\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\76.0.4017.107\opera.exe => No File
FirewallRules: [UDP Query User{C0D0F364-D685-44DD-8F74-3D22555A5CEB}C:\users\roman\appdata\local\programs\opera\76.0.4017.107\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\76.0.4017.107\opera.exe => No File
FirewallRules: [TCP Query User{4ED157EC-EEAC-45CB-8F23-254D5BB5997D}C:\users\roman\appdata\local\programs\opera\76.0.4017.123\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\76.0.4017.123\opera.exe => No File
FirewallRules: [UDP Query User{C77694AF-F9FD-4A15-8AF5-48C9899D9388}C:\users\roman\appdata\local\programs\opera\76.0.4017.123\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\76.0.4017.123\opera.exe => No File
FirewallRules: [TCP Query User{7C461DD9-3617-468F-A29F-DE0E8E041519}C:\users\roman\appdata\local\programs\opera\76.0.4017.154\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\76.0.4017.154\opera.exe => No File
FirewallRules: [UDP Query User{F8BBDE0E-7C95-46FB-BFE7-15BEA9F54B60}C:\users\roman\appdata\local\programs\opera\76.0.4017.154\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\76.0.4017.154\opera.exe => No File
FirewallRules: [TCP Query User{5A07205B-F18A-482A-B409-CA3168771223}C:\users\roman\appdata\local\programs\opera\76.0.4017.177\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\76.0.4017.177\opera.exe => No File
FirewallRules: [UDP Query User{F61A3603-0C1D-4DB7-B926-07317B67E0B2}C:\users\roman\appdata\local\programs\opera\76.0.4017.177\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\76.0.4017.177\opera.exe => No File
FirewallRules: [TCP Query User{6926E774-64EA-4D45-97FC-594424EF9EB3}C:\users\roman\appdata\local\tidal\app-2.28.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.28.0\tidal.exe => No File
FirewallRules: [UDP Query User{8233F787-C144-4156-B1D7-C28E52EEE393}C:\users\roman\appdata\local\tidal\app-2.28.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.28.0\tidal.exe => No File
FirewallRules: [TCP Query User{0E62FD5F-E402-461D-9161-E693B478C18E}C:\users\roman\appdata\local\programs\opera\77.0.4054.64\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\77.0.4054.64\opera.exe => No File
FirewallRules: [UDP Query User{54D0C324-782B-44A0-89DB-B35DBF77001C}C:\users\roman\appdata\local\programs\opera\77.0.4054.64\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\77.0.4054.64\opera.exe => No File
FirewallRules: [TCP Query User{7FA4341D-E4F5-4A5C-AC7C-CF60CF6CC250}C:\users\roman\appdata\local\programs\opera\77.0.4054.90\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\77.0.4054.90\opera.exe => No File
FirewallRules: [UDP Query User{7D48AE7B-6AF8-4D80-926F-5D8731E6B29D}C:\users\roman\appdata\local\programs\opera\77.0.4054.90\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\77.0.4054.90\opera.exe => No File
FirewallRules: [TCP Query User{62DB7AAB-046C-4B69-AFE0-05AE46425E7C}C:\users\roman\appdata\local\programs\opera\77.0.4054.172\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\77.0.4054.172\opera.exe => No File
FirewallRules: [UDP Query User{20EDC759-3DB7-41C5-AC7F-DBBE284AD879}C:\users\roman\appdata\local\programs\opera\77.0.4054.172\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\77.0.4054.172\opera.exe => No File
FirewallRules: [TCP Query User{8C66E0B7-B1D9-4240-BF2A-EEA7B8405B45}C:\users\roman\appdata\local\programs\opera\77.0.4054.203\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\77.0.4054.203\opera.exe => No File
FirewallRules: [UDP Query User{DE44CC24-7646-427F-804A-CE4C011A36F9}C:\users\roman\appdata\local\programs\opera\77.0.4054.203\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\77.0.4054.203\opera.exe => No File
FirewallRules: [TCP Query User{811A2741-9E67-4DC9-AA68-1C0171EF1DF5}C:\users\roman\appdata\local\programs\opera\77.0.4054.278\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\77.0.4054.278\opera.exe => No File
FirewallRules: [UDP Query User{5C87FC53-B88B-431B-ACD9-174E05CE3A68}C:\users\roman\appdata\local\programs\opera\77.0.4054.278\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\77.0.4054.278\opera.exe => No File
FirewallRules: [TCP Query User{FEC8DB5C-5535-46FE-9EC4-DC786E022938}C:\users\roman\appdata\local\programs\opera\78.0.4093.147\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\78.0.4093.147\opera.exe => No File
FirewallRules: [UDP Query User{92D5B3CE-A74F-4BE0-85BA-7DBDC066EF89}C:\users\roman\appdata\local\programs\opera\78.0.4093.147\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\78.0.4093.147\opera.exe => No File
FirewallRules: [TCP Query User{59F03495-6D01-4106-83C8-669A3EC64DF9}C:\users\roman\appdata\local\programs\opera\78.0.4093.184\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\78.0.4093.184\opera.exe => No File
FirewallRules: [UDP Query User{65C2C30E-D26C-468D-B3E1-D4F5018024EB}C:\users\roman\appdata\local\programs\opera\78.0.4093.184\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\78.0.4093.184\opera.exe => No File
FirewallRules: [{F180D6D8-A42C-4582-938E-AF5934D2B963}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{B9250CB1-A81D-4E3E-8A5E-51DCC13DEEA1}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [TCP Query User{3A4294A7-70FC-4AC4-AC10-467097BAD493}C:\users\roman\appdata\local\programs\opera\78.0.4093.231\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\78.0.4093.231\opera.exe => No File
FirewallRules: [UDP Query User{DD95FCBC-1E4C-452F-9ED1-B70B15800588}C:\users\roman\appdata\local\programs\opera\78.0.4093.231\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\78.0.4093.231\opera.exe => No File
FirewallRules: [TCP Query User{48560722-0EE6-444A-A04D-529A8F2FA9EC}C:\users\roman\appdata\local\programs\opera\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{9371ED0A-44A2-43AE-AA8B-23EAA49D8250}C:\users\roman\appdata\local\programs\opera\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{7F9EAA04-7D15-4648-9346-1E05CCA9EFB1}C:\users\roman\appdata\local\tidal\app-2.29.7\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.29.7\tidal.exe => No File
FirewallRules: [UDP Query User{B7FBAD25-7864-44BE-B6CA-8A812DE234BA}C:\users\roman\appdata\local\tidal\app-2.29.7\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.29.7\tidal.exe => No File
FirewallRules: [{B8CB87BC-1D10-4091-AB60-4DDA9079F31D}] => (Allow) LPort=1688
FirewallRules: [TCP Query User{2D3AA2C6-F474-4DE3-8AED-F09C8B3557A3}C:\users\roman\appdata\local\tidal\app-2.30.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.30.0\tidal.exe => No File
FirewallRules: [UDP Query User{42463895-D729-4BDA-BB35-DBED3D93B0E9}C:\users\roman\appdata\local\tidal\app-2.30.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.30.0\tidal.exe => No File
FirewallRules: [TCP Query User{1B780A88-C0B5-4EA9-AEE1-08D2AED4A2DE}C:\users\roman\appdata\local\tidal\app-2.30.1\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.30.1\tidal.exe => No File
FirewallRules: [UDP Query User{409442CE-133B-4BA4-868F-B2587EF8843A}C:\users\roman\appdata\local\tidal\app-2.30.1\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.30.1\tidal.exe => No File
FirewallRules: [TCP Query User{5271B21B-705D-4147-A128-68CB02D47509}C:\users\roman\appdata\local\tidal\app-2.30.4\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.30.4\tidal.exe => No File
FirewallRules: [UDP Query User{4F928242-EEB0-4F04-AF52-060710AD2D35}C:\users\roman\appdata\local\tidal\app-2.30.4\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.30.4\tidal.exe => No File
FirewallRules: [{BD66CA86-6351-48C6-82EC-F79CB2887BA2}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{985BF48D-FFC2-4E6C-9B5E-2AB4B0DC2D96}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [TCP Query User{33A02C03-E47B-4E44-8823-9609CD8BA7FB}C:\users\roman\appdata\local\tidal\app-2.32.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.32.0\tidal.exe => No File
FirewallRules: [UDP Query User{44973E4E-4647-4C06-8C4E-4AA8CBD8E914}C:\users\roman\appdata\local\tidal\app-2.32.0\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.32.0\tidal.exe => No File
FirewallRules: [TCP Query User{15F84648-4052-44D5-8AA2-03D690F8DDCF}C:\users\roman\appdata\local\tidal\app-2.33.2\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.33.2\tidal.exe => No File
FirewallRules: [UDP Query User{6D1CE088-228B-443A-B966-D298353D416A}C:\users\roman\appdata\local\tidal\app-2.33.2\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.33.2\tidal.exe => No File
FirewallRules: [TCP Query User{7C6E65D4-E69A-4F69-B31C-A347E0E9E1FA}C:\users\roman\appdata\local\tidal\app-2.34.2\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.34.2\tidal.exe => No File
FirewallRules: [UDP Query User{3FB602E9-A1F8-4F2E-8E29-97EA83639483}C:\users\roman\appdata\local\tidal\app-2.34.2\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.34.2\tidal.exe => No File
FirewallRules: [TCP Query User{1B473CF8-3B9A-4E6C-9609-5B1E98C64030}C:\program files\kodi\kodi.exe] => (Block) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{786F1D77-1D47-47D8-9C18-939CFA71770B}C:\program files\kodi\kodi.exe] => (Block) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [TCP Query User{0DDCF200-EEED-4FEC-9A67-551BA2B3BFF0}C:\users\roman\appdata\local\tidal\app-2.38.6\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.38.6\tidal.exe => No File
FirewallRules: [UDP Query User{BB392C23-AEA0-4098-8670-68241AAB730D}C:\users\roman\appdata\local\tidal\app-2.38.6\tidal.exe] => (Block) C:\users\roman\appdata\local\tidal\app-2.38.6\tidal.exe => No File
FirewallRules: [{661DFFC5-4808-42CB-AB5F-C9DCF2C2AB54}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{5A729B96-91A1-4FFA-87E9-6649194156E9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (02/24/2026 03:39:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AdobeCollabSync.exe, verze: 25.1.21223.0, časové razítko: 0x699380e0
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.6456, časové razítko: 0x7ec9c15d
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000000a2910
ID chybujícího procesu: 0x2c20
Čas spuštění chybující aplikace: 0x01dca59b546a9f5c
Cesta k chybující aplikaci: C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 17af9b1c-44d9-4bfe-ab25-d24e8a052695
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/21/2026 09:36:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: taskhostw.exe, verze: 10.0.19041.5794, časové razítko: 0x5599b21c
Název chybujícího modulu: combase.dll, verze: 10.0.19041.6456, časové razítko: 0x089be9fd
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000b6a92
ID chybujícího procesu: 0x17d0
Čas spuštění chybující aplikace: 0x01dca371b2d4b661
Cesta k chybující aplikaci: C:\WINDOWS\system32\taskhostw.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: 833b8bc2-a37a-4cbf-b385-b796acc2b142
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/21/2026 09:03:19 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Disk (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (02/14/2026 05:47:50 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Disk (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (02/13/2026 06:08:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program TextInputHost.exe verze 125.1700.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2280

Čas spuštění: 01dc9d0b312ad693

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe

ID hlášení: 459a3bf3-a104-4154-b320-09418518ca60

Úplný název balíčku s chybou: MicrosoftWindows.Client.CBS_1000.19062.1000.0_x64__cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: InputApp

Typ zablokování: Activation

Error: (02/13/2026 06:08:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program StartMenuExperienceHost.exe verze 0.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2580

Čas spuštění: 01dc9d0b2b5483b0

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe

ID hlášení: 0d6041e1-d9c8-436f-89a5-9b44b9e832bf

Úplný název balíčku s chybou: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.5438_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Activation

Error: (02/07/2026 05:22:00 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Disk (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (02/01/2026 12:51:48 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Disk (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)


System errors:
=============
Error: (02/24/2026 06:38:34 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IK5Q154)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/24/2026 05:03:01 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IK5Q154)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/24/2026 03:43:23 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1801) (User: NT AUTHORITY)
Description: Secure Boot CA/keys need to be updated. This device signature information is included here.
DeviceAttributes: BaseBoardManufacturer:ASRock;FirmwareManufacturer:American Megatrends Inc.;FirmwareVersion:P1.00;OEMModelNumber:To Be Filled By O.E.M.;OEMModelBaseBoard:B450M-HDV R4.0;OEMModelSystemFamily:To Be Filled By O.E.M.;OEMManufacturerName:To Be Filled By O.E.M.;OEMModelSKU:To Be Filled By O.E.M.;OSArchitecture:amd64;
BucketId: 5f26b7bbc9975c938e48e465f7462c05e8c88ca013ade3148d11f86f99547f48
BucketConfidenceLevel:
UpdateType: 0
HResult: 0

Error: (02/24/2026 03:38:22 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:37:28, ‎23.‎02.‎2026) bylo neočekávané.

Error: (02/23/2026 07:42:31 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IK5Q154)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/23/2026 05:31:28 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IK5Q154)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/23/2026 04:23:24 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IK5Q154)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/23/2026 04:23:24 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IK5Q154)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===============
Date: 2026-02-24 15:39:26
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2026-02-24 15:38:12
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

BIOS: American Megatrends Inc. P1.00 11/26/2018
Motherboard: ASRock B450M-HDV R4.0
Processor: AMD Ryzen 3 2200G with Radeon Vega Graphics
Percentage of memory in use: 32%
Total physical RAM: 15289.89 MB
Available physical RAM: 10322.16 MB
Total Virtual: 30649.89 MB
Available Virtual: 25448.39 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.37 GB) (Free:5.53 GB) (Model: XPG SPECTRIX S40G) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:897.27 GB) (Model: ST2000DM008-2UB102) NTFS
Drive e: (Disk) (Fixed) (Total:931.39 GB) (Free:4.94 GB) (Model: WDC WD10EZEX-08M2NA0) NTFS
Drive m: (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.13 GB) (Model: XPG SPECTRIX S40G) NTFS ==>[system with boot components (obtained from drive)]


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: C1E4C15C)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: F234345F)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=476.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15822
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu.PC trošku pomalejší

#2 Příspěvek od JaRon »

Ahoj,
1. vycisti PC vcetne registrov Ccleanerom
Restart
2. vycisti PC s Adwcleanerom - log sem
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
thermoval
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 25 úno 2026 15:45

Re: Prosím o kontrolu logu.PC trošku pomalejší

#3 Příspěvek od thermoval »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-02-2026
Ran by Roman (25-02-2026 21:41:09)
Running from C:\Users\Roman\Desktop\VIRY
Microsoft Windows 10 Home Version 22H2 19045.6466 (X64) (2020-07-09 22:01:58)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1302697886-3810365050-4072786658-500 - Administrators - Disabled)
DefaultAccount (S-1-5-21-1302697886-3810365050-4072786658-503 - Limited - Disabled)
Guest (S-1-5-21-1302697886-3810365050-4072786658-501 - Limited - Disabled)
Roman (S-1-5-21-1302697886-3810365050-4072786658-1002 - Administrators - Enabled) => C:\Users\Roman
WDAGUtilityAccount (S-1-5-21-1302697886-3810365050-4072786658-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\uTorrent) (Version: 3.5.5.45341 - BitTorrent Inc.)
4K Video Downloader (HKLM\...\{44E23473-28B4-47E2-BD69-46E9307294DB}) (Version: 4.33.5.0172 - Open Media LLC) Hidden
4K Video Downloader (HKLM-x32\...\{ceabdf45-a262-45f9-9621-7a45be3dc900}) (Version: 4.33.5.172 - Open Media LLC)
4K Video Downloader+ (HKLM-x32\...\{2AF3DBB3-7A69-4778-B089-3A8C2405D1C7}) (Version: 1.10.2.0160 - Open Media LLC) Hidden
4K Video Downloader+ (HKLM-x32\...\{d2b1ed26-249a-43ce-9f36-a441eaa309ab}) (Version: 1.10.2.160 - Open Media LLC)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.21223 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.445 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601149}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AIMP (HKLM-x32\...\AIMP) (Version: 5.30.2563 - Artem Izmaylov)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.10.16 - Advanced Micro Devices, Inc.)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 26.1.10738.3400 - Gen Digital Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 144.0.33853.133 - Autoři prohlížeče Avast Secure Browser)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 25.12.12124.16698 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1995.6 - AVAST Software) Hidden
Balanced (HKLM-x32\...\{0EA45DD4-A825-420C-AFED-C659EFE3B84F}) (Version: 4.00.0000 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.34 - Piriform)
Counter-Strike 1.6 (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Counter-Strike 1.6) (Version: - )
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.14 - Creative Technology Limited)
FastStone Image Viewer 7.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.4 - FastStone Soft)
Free Video Downloader for YouTube 0.5.4 (HKLM-x32\...\Free Video Downloader for YouTube_is1) (Version: 0.5.4 - NotMP3.com)
Google Chrome (HKLM\...\{D8756D27-79B8-30DE-9331-8EB0A19B2607}) (Version: 145.0.7632.110 - Google LLC)
Google Chrome (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Google Chrome) (Version: 145.0.7632.110 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.550 - Huawei Technologies Co., Ltd.)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
Kodi (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Kodi) (Version: 20.0.0.0 - XBMC Foundation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 145.0.3800.70 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 145.0.3800.70 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\OneDriveSetup.exe) (Version: 26.017.0126.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29913 (HKLM-x32\...\{572DCD10-CF2E-43D1-8151-8BD9AC9086D0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29913 (HKLM-x32\...\{6236EBBD-F50F-40B3-B819-8DB0C608308C}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 127.0.5778.76 (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Opera 127.0.5778.76) (Version: 127.0.5778.76 - Opera Software)
Sound Blaster Audigy 5_Audigy Rx (HKLM-x32\...\{81440118-F1CE-4C87-BC8B-F1EB8D3FA190}) (Version: 1.0 - Creative Technology Limited)
SteelSeries Engine 3.16.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.16.1 - SteelSeries ApS)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1282 - SUPERAntiSpyware.com)
TIDAL (HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\TIDAL) (Version: 2.39.5 - TIDAL Music AS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{B8D93870-98D1-4980-AFCA-E26563CDFB79}) (Version: 8.94.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.20 - VideoLAN)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2026-02-22] ()
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.19.10006.0_x64__0a9344xs7nr4m [2021-10-06] (Advanced Micro Devices Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-10-15] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-01] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{547E9AEF-8043-5D26-879F-01E7664192DC}\localserver32 -> C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{6DDCE70D-A4AE-4E97-908C-BE7B2DB750AD}\localserver32 -> C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Roman\AppData\Local\Google\Chrome\Application\145.0.7632.110\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002_Classes\CLSID\{B53B0E75-9135-540F-BBA6-2DE6470338A2}\localserver32 -> C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2026-02-17] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2024-11-15] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2024-11-15] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-12-16 17:52 - 2012-12-10 12:51 - 000535552 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTAudEp.dll
2019-12-16 17:52 - 2011-09-16 18:04 - 000238080 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTLoadRs.dll
2019-12-16 17:52 - 2013-06-21 13:20 - 000836608 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\HookWndU.DLL
2019-03-06 19:18 - 2019-03-06 19:18 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2019-03-06 19:18 - 2019-03-06 19:18 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============


(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 192.168.88.1 - 91.219.243.2
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys
SecureLine: Avast SecureLine Wintun Adapter -> aswWintun.sys

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Roman\Desktop\Tapety\09544-w.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 5) (TamperProtectionSource: )
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths|C:\Users\Roman\Downloads\KMSpico 10.2.0 FINAL + Portable (Office and Windows 10 Activator) [TechTools.NET]
HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths|C:\Program Files\KMSpico
HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths|C:\Windows\SECOH-QAD.exe
HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths|C:\Windows\SECOH-QAD.dll


==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\StartupApproved\Run: => "SUPERAntiSpyware"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_66D161819F0EAC1A9819F518A968ED0B"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{01C0B932-A1D5-49BF-BAFA-5944F3D91FAE}C:\users\roman\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\roman\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{81B85226-096C-45FF-9C50-3DB613113053}C:\users\roman\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\roman\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{978D7991-ADE6-47A0-B11C-78C90B72C4E3}] => (Allow) C:\Users\Roman\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2327D1A6-1F43-4635-90EC-1944073A447C}] => (Allow) C:\Users\Roman\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{C264ABAA-90EB-4FC9-BDF8-11814033E773}C:\counter-strike 1.6\hl.exe] => (Block) C:\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [UDP Query User{1B21F13E-9861-4687-9CED-87A90935CF3C}C:\counter-strike 1.6\hl.exe] => (Block) C:\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [TCP Query User{663052FF-238A-457E-BA65-629EF47A0D32}F:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) F:\program files (x86)\counter-strike 1.6\hl.exe => No File
FirewallRules: [UDP Query User{D0B3E3C4-D386-4261-ACFE-0A0F5993DB83}F:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) F:\program files (x86)\counter-strike 1.6\hl.exe => No File
FirewallRules: [{9AD800F0-A530-4AAE-A0E6-1EAF69A6D5AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{75CC637A-7BE9-4645-B079-474396AD9C00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF55400D-2B7B-455A-A500-C11AD00EBDC9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{59DAEC55-86D3-4B5E-8B5E-27366C388FFA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{24385960-5487-4E0E-893D-E008141E2012}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{5323EA93-6CAA-47A4-BD08-3DA1108E69B4}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{F180D6D8-A42C-4582-938E-AF5934D2B963}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{B9250CB1-A81D-4E3E-8A5E-51DCC13DEEA1}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [TCP Query User{48560722-0EE6-444A-A04D-529A8F2FA9EC}C:\users\roman\appdata\local\programs\opera\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{9371ED0A-44A2-43AE-AA8B-23EAA49D8250}C:\users\roman\appdata\local\programs\opera\opera.exe] => (Block) C:\users\roman\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{B8CB87BC-1D10-4091-AB60-4DDA9079F31D}] => (Allow) LPort=1688
FirewallRules: [{BD66CA86-6351-48C6-82EC-F79CB2887BA2}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{985BF48D-FFC2-4E6C-9B5E-2AB4B0DC2D96}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [TCP Query User{1B473CF8-3B9A-4E6C-9609-5B1E98C64030}C:\program files\kodi\kodi.exe] => (Block) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{786F1D77-1D47-47D8-9C18-939CFA71770B}C:\program files\kodi\kodi.exe] => (Block) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{661DFFC5-4808-42CB-AB5F-C9DCF2C2AB54}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{5A729B96-91A1-4FFA-87E9-6649194156E9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (02/24/2026 03:39:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AdobeCollabSync.exe, verze: 25.1.21223.0, časové razítko: 0x699380e0
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.6456, časové razítko: 0x7ec9c15d
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000000a2910
ID chybujícího procesu: 0x2c20
Čas spuštění chybující aplikace: 0x01dca59b546a9f5c
Cesta k chybující aplikaci: C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 17af9b1c-44d9-4bfe-ab25-d24e8a052695
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/21/2026 09:36:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: taskhostw.exe, verze: 10.0.19041.5794, časové razítko: 0x5599b21c
Název chybujícího modulu: combase.dll, verze: 10.0.19041.6456, časové razítko: 0x089be9fd
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000b6a92
ID chybujícího procesu: 0x17d0
Čas spuštění chybující aplikace: 0x01dca371b2d4b661
Cesta k chybující aplikaci: C:\WINDOWS\system32\taskhostw.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: 833b8bc2-a37a-4cbf-b385-b796acc2b142
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/21/2026 09:03:19 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Disk (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (02/14/2026 05:47:50 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Disk (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (02/13/2026 06:08:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program TextInputHost.exe verze 125.1700.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2280

Čas spuštění: 01dc9d0b312ad693

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe

ID hlášení: 459a3bf3-a104-4154-b320-09418518ca60

Úplný název balíčku s chybou: MicrosoftWindows.Client.CBS_1000.19062.1000.0_x64__cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: InputApp

Typ zablokování: Activation

Error: (02/13/2026 06:08:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program StartMenuExperienceHost.exe verze 0.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2580

Čas spuštění: 01dc9d0b2b5483b0

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe

ID hlášení: 0d6041e1-d9c8-436f-89a5-9b44b9e832bf

Úplný název balíčku s chybou: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.5438_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Activation

Error: (02/07/2026 05:22:00 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Disk (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (02/01/2026 12:51:48 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Disk (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)


System errors:
=============
Error: (02/25/2026 09:36:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/25/2026 09:36:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast SecureLine VPN byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (02/25/2026 09:36:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba SAS Core Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (02/25/2026 09:36:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HuaweiHiSuiteService64.exe byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/25/2026 09:36:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD External Events Utility byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/25/2026 09:36:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD Crash Defender Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/25/2026 09:36:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Creative Audio Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/25/2026 09:33:25 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1801) (User: NT AUTHORITY)
Description: Secure Boot CA/keys need to be updated. This device signature information is included here.
DeviceAttributes: BaseBoardManufacturer:ASRock;FirmwareManufacturer:American Megatrends Inc.;FirmwareVersion:P1.00;OEMModelNumber:To Be Filled By O.E.M.;OEMModelBaseBoard:B450M-HDV R4.0;OEMModelSystemFamily:To Be Filled By O.E.M.;OEMManufacturerName:To Be Filled By O.E.M.;OEMModelSKU:To Be Filled By O.E.M.;OSArchitecture:amd64;
BucketId: 5f26b7bbc9975c938e48e465f7462c05e8c88ca013ade3148d11f86f99547f48
BucketConfidenceLevel:
UpdateType: 0
HResult: 0


CodeIntegrity:
===============
Date: 2026-02-25 21:37:18
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2026-02-24 15:39:26
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. P1.00 11/26/2018
Motherboard: ASRock B450M-HDV R4.0
Processor: AMD Ryzen 3 2200G with Radeon Vega Graphics
Percentage of memory in use: 27%
Total physical RAM: 15289.89 MB
Available physical RAM: 11023.31 MB
Total Virtual: 30649.89 MB
Available Virtual: 26441.21 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.37 GB) (Free:9.42 GB) (Model: XPG SPECTRIX S40G) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:897.27 GB) (Model: ST2000DM008-2UB102) NTFS
Drive e: (Disk) (Fixed) (Total:931.39 GB) (Free:4.94 GB) (Model: WDC WD10EZEX-08M2NA0) NTFS
Drive m: (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.13 GB) (Model: XPG SPECTRIX S40G) NTFS ==>[system with boot components (obtained from drive)]


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: C1E4C15C)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: F234345F)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=476.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-02-2026
Ran by Roman (administrator) on DESKTOP-IK5Q154 (25-02-2026 21:40:06)
Running from C:\Users\Roman\Desktop\VIRY\FRST64.exe
Loaded Profiles: Roman
Platform: Microsoft Windows 10 Home Version 22H2 19045.6466 (X64) Language: Čeština (Česko)
Default browser: "C:\Users\Roman\AppData\Local\Programs\Opera\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Users\Roman\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Roman\AppData\Local\Programs\Opera\127.0.5778.76\opera_crashreporter.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTHKCtrl.exe
(DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe
(explorer.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe <4>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Roman\AppData\Local\Programs\Opera\opera.exe <13>
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesGG.exe
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (RealDefense LLC -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [887976 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesGG.exe [15176528 2021-05-24] (SteelSeries ApS -> SteelSeries ApS)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [Creative Hot Key Control] => C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTHKCtrl.exe [650752 2013-07-19] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL (No File)
HKLM-x32\...\Run: [CTHelper] => C:\Windows\SysWOW64\CTHELPER.EXE* [29776 0] () [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 <==== ATTENTION
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [uTorrent] => C:\Users\Roman\AppData\Roaming\uTorrent\uTorrent.exe [1823472 2019-09-29] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [Opera Browser Assistant] => C:\Users\Roman\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45875504 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [41732568 2026-02-17] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [AvastBrowserAutoLaunch_64839AA0100A9B8EE305C1C0CFD5988B] => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3810208 2026-02-04] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\Run: [GoogleUpdaterTaskUser147.0.7683.0] => C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe [8478872 2026-02-12] (Google LLC -> Google LLC)
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {176f2e72-ca99-11ea-8302-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {281de702-7c3d-11eb-832b-7085c2b676ed} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {31672966-0638-11ea-82d5-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {4fdc54b9-2e8e-11eb-8317-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {686e1fb6-4155-11eb-831d-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {8165dc15-8b41-11eb-832e-7085c2b676ed} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {c4ae8152-d64b-11eb-833f-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1302697886-3810365050-4072786658-1002\...\MountPoints2: {d5bfd995-8057-11eb-832b-7085c2b676ed} - "J:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\145.0.7632.110\Installer\chrmstp.exe [2026-02-24] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\144.0.33853.133\Installer\chrmstp.exe [2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2025-12-22]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Gen Digital Inc. -> Gen Digital Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-06-14]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {83694D76-2CE0-44C2-BFA4-3CDDCDA208C8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1612800 2026-01-23] (Adobe Inc. -> Adobe Inc.)
Task: {E9186384-07CF-48AA-8C48-C60FDCDCC129} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_445_pepper.exe [1497656 2020-10-18] (Adobe Inc. -> Adobe)
Task: {BB2C3E33-7738-48D1-A4DE-11B5995E01A6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3810208 2026-02-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {F6022929-1176-4E25-BD9C-FC762ADAA9C1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3810208 2026-02-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {50E53944-F0F3-4516-9195-34AFB6CC0C20} - System32\Tasks\Avast Secure Browser VPS Differential Update => C:\Program Files\AVAST Software\Browser\Application\vps_helper.exe [1944560 2026-02-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {74B3D49A-A03A-4E89-850E-C0984759C6FB} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [9246944 2026-01-27] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {110C2BC6-9827-42D5-B1E6-5585F8C296B5} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5623464 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3E983250-6341-4EC3-9290-74C56DF00082} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [6193832 2025-12-21] (Gen Digital Inc. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {FE7C8848-EA7A-443E-B086-C3D97FF87AAD} - System32\Tasks\Avast Software\Avast SecureLine VPN Emergency Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [3959464 2025-12-21] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {CD841B67-1109-41C8-9E48-036B0C23613A} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [9176800 2025-12-09] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {553C3AD6-EE38-4EC9-AB40-FE75DAE08B64} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2977504 2025-10-13] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {F48AAB0A-2C93-41F7-9507-328835E8EC44} - System32\Tasks\AvastBrowserProtectS-1-5-21-1302697886-3810365050-4072786658-1002 => C:\Program Files\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1762528 2025-10-07] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {4A5F4F3C-C2AA-448A-A435-651BF46AF82F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194016 2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3D4A4A12-7658-4CBE-A1E1-02BFA3CD9796} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194016 2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {0241D2A4-2AB3-45C9-93E2-042FC1FEEF62} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {FB841729-C10F-418E-B4F8-8EDF2FA9836B} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6139696 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "b6cef11d-16aa-4c80-a9c2-19f977ade949" --version "6.34.0.11482" --silent
Task: {5069A954-0C60-4378-8FD1-5B3A289173AA} - System32\Tasks\CCleanerSkipUAC - Roman => C:\Program Files\CCleaner\CCleaner.exe [39616304 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {273954C9-B799-41EC-8CDE-8A70CDD28015} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem147.0.7683.0{60EDE1AB-824C-435D-89F1-706DF3933882} => C:\Program Files (x86)\Google\GoogleUpdater\147.0.7683.0\updater.exe [8478872 2026-02-12] (Google LLC -> Google LLC)
Task: {353E0DCD-6438-4D7E-A4BF-9E82D88C425D} - System32\Tasks\GoogleUser\GoogleUpdater\GoogleUpdaterTaskUser147.0.7683.0{A717FE32-5428-4439-824C-F532E0833412} => C:\Users\Roman\AppData\Local\Google\GoogleUpdater\147.0.7683.0\updater.exe [8478872 2026-02-12] (Google LLC -> Google LLC)
Task: {BACCEA5F-CACD-4FD7-90C1-52F3500F4E57} - System32\Tasks\Opera scheduled assistant Autoupdate 1582725837 => C:\Users\Roman\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Roman\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {B414E4A4-38AE-409D-85E5-91D1E21AD19F} - System32\Tasks\Opera scheduled Autoupdate 1569700776 => C:\Users\Roman\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [6271448 2026-02-18] (Opera Norway AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.88.1 91.219.243.2 91.219.240.1
Tcpip\..\Interfaces\{b148121d-4542-42ab-938e-427e76de7b66}: [NameServer] 100.122.0.0
Tcpip\..\Interfaces\{c1b8ff42-edc1-45f5-ba56-822a846ffdd1}: [DhcpNameServer] 192.168.88.1 91.219.243.2 91.219.240.1

FireFox:
========
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2026-02-17] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1995.6\npAvastBrowserUpdate3.dll [2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1995.6\npAvastBrowserUpdate3.dll [2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default [2026-02-25]
Edge Extension: (Dokumenty Google offline) - C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2026-01-29]
Edge Extension: (Edge relevant text changes) - C:\Users\Roman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default [2026-02-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-04]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]

Opera:
=======
OPR DefaultProfile: Default

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [374872 2026-01-12] (RealDefense LLC -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [180216 2026-01-23] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7844520 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194016 2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [1039528 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2635432 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1092776 2026-02-10] (Gen Digital Inc. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194016 2025-10-10] (Gen Digital Inc. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\144.0.33853.133\elevation_service.exe [2724992 2026-02-04] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-31] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1088816 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-12-10] (Creative Technology Ltd) [File not signed]
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2021-06-03] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [14622376 2025-12-21] (Gen Digital Inc. -> Gen Digital Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [54720 2022-09-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [286816 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [435808 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [304736 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [88160 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [29144 2025-07-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [32864 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [289888 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [586336 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97376 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [73312 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [898656 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1315424 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [231008 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [404064 2026-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [85776 2025-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-01-24] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [23072 2024-12-15] (RealDefense LLC -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-05-24] (SteelSeries ApS -> )
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 aswArDisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error Reading file: "C:\ProgramData\Desktop\VLC media player.lnk"
Error Reading file: "C:\ProgramData\Desktop\SUPERAntiSpyware Free Edition.lnk"
Error Reading file: "C:\ProgramData\Desktop\Google Chrome.lnk"
Error Reading file: "C:\ProgramData\Desktop\desktop.ini"
Error Reading file: "C:\ProgramData\Desktop\Creative Product Registration.lnk"
Error Reading file: "C:\ProgramData\Desktop\CCleaner.lnk"
Error Reading file: "C:\ProgramData\Desktop\Avast SecureLine VPN.lnk"
Error Reading file: "C:\ProgramData\Desktop\Avast Secure Browser.lnk"
Error Reading file: "C:\ProgramData\Desktop\Avast Premium Security.lnk"
Error Reading file: "C:\ProgramData\Desktop\Adobe Acrobat.lnk"
Error Reading file: "C:\ProgramData\Desktop\4K Video Downloader+.lnk"
Error Reading file: "C:\ProgramData\Desktop\4K Video Downloader.lnk"
2026-02-25 21:35 - 2026-02-25 21:36 - 000000000 ____D C:\AdwCleaner
2026-02-25 15:58 - 2026-02-25 21:40 - 000000000 ____D C:\FRST
2026-02-25 15:56 - 2026-02-25 21:40 - 000000000 ____D C:\Users\Roman\Desktop\VIRY
2026-02-10 15:46 - 2026-02-10 15:46 - 000323752 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2026-02-25 21:40 - 2025-02-05 21:37 - 000003576 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-1302697886-3810365050-4072786658-1002
2026-02-25 21:40 - 2024-05-16 17:53 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1302697886-3810365050-4072786658-1002
2026-02-25 21:40 - 2020-07-09 23:01 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1302697886-3810365050-4072786658-1002
2026-02-25 21:40 - 2020-07-09 22:59 - 000028680 _____ C:\WINDOWS\system32\BMXBkpCtrlState-{00000025-00000000-00000000-00001102-00000008-10241102}.rfx
2026-02-25 21:40 - 2020-07-09 22:59 - 000011564 _____ C:\WINDOWS\system32\DVCState-{00000025-00000000-00000000-00001102-00000008-10241102}.rfx
2026-02-25 21:40 - 2020-07-09 22:41 - 000002383 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2026-02-25 21:40 - 2019-12-16 17:44 - 000028680 _____ C:\WINDOWS\system32\BMXCtrlState-{00000025-00000000-00000000-00001102-00000008-10241102}.rfx
2026-02-25 21:40 - 2019-12-16 17:20 - 000034080 _____ C:\WINDOWS\system32\BMXStateBkp-{00000025-00000000-00000000-00001102-00000008-10241102}.rfx
2026-02-25 21:40 - 2019-12-16 17:20 - 000034080 _____ C:\WINDOWS\system32\BMXState-{00000025-00000000-00000000-00001102-00000008-10241102}.rfx
2026-02-25 21:39 - 2026-01-23 17:55 - 000003326 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2026-02-25 21:39 - 2023-05-13 18:16 - 000000670 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2026-02-25 21:37 - 2020-07-09 23:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2026-02-25 21:37 - 2020-07-09 23:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2026-02-25 21:37 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2026-02-25 21:37 - 2019-09-29 11:49 - 000000000 ____D C:\ProgramData\AVAST Software
2026-02-25 21:36 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2026-02-25 21:36 - 2019-09-29 11:49 - 000000000 ____D C:\Users\Roman\AppData\Roaming\Lavasoft
2026-02-25 21:36 - 2019-09-29 11:49 - 000000000 ____D C:\Users\Roman\AppData\Local\Lavasoft
2026-02-25 21:36 - 2019-09-29 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2026-02-25 21:36 - 2019-09-29 11:48 - 000000000 ____D C:\ProgramData\Lavasoft
2026-02-25 21:33 - 2021-12-18 11:53 - 000000000 ____D C:\WINDOWS\SystemTemp
2026-02-25 21:32 - 2022-10-15 12:19 - 001602898 _____ C:\WINDOWS\system32\perfh019.dat
2026-02-25 21:32 - 2022-10-15 12:19 - 000958066 _____ C:\WINDOWS\system32\perfc019.dat
2026-02-25 21:32 - 2020-07-09 23:02 - 000005852 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2026-02-25 21:32 - 2019-12-07 15:41 - 003412020 _____ C:\WINDOWS\system32\perfh005.dat
2026-02-25 21:32 - 2019-12-07 15:41 - 000977160 _____ C:\WINDOWS\system32\perfc005.dat
2026-02-25 21:28 - 2020-07-09 22:57 - 000449000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2026-02-25 21:26 - 2019-09-29 18:39 - 000000000 ____D C:\Users\Roman\AppData\Local\CrashDumps
2026-02-25 21:26 - 2019-09-29 11:48 - 000000000 ____D C:\Users\Roman\AppData\Roaming\uTorrent
2026-02-25 21:16 - 2019-11-30 18:54 - 000000000 ____D C:\Program Files\CCleaner
2026-02-25 20:55 - 2020-07-09 22:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2026-02-25 17:35 - 2021-12-20 21:48 - 000002254 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Roman
2026-02-25 17:35 - 2020-08-13 19:58 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2026-02-25 17:35 - 2020-08-13 19:58 - 000003340 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2026-02-25 17:35 - 2020-07-09 23:01 - 000003540 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1569700776
2026-02-25 17:35 - 2020-07-09 23:01 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2026-02-25 17:35 - 2020-07-09 23:01 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2026-02-25 17:35 - 2019-09-27 20:58 - 000000000 ____D C:\Users\Roman\AppData\Roaming\vlc
2026-02-25 17:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2026-02-25 15:11 - 2020-05-06 16:29 - 000002502 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2026-02-25 15:11 - 2020-05-06 16:29 - 000002465 _____ C:\Users\Roman\Desktop\Google Chrome.lnk
2026-02-24 19:59 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2026-02-24 18:38 - 2020-12-18 18:50 - 000000000 ____D C:\Counter-Strike 1.6
2026-02-24 15:37 - 2025-10-10 19:56 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2026-02-24 15:37 - 2025-10-10 19:56 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2026-02-23 15:16 - 2020-08-13 19:58 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2026-02-22 11:24 - 2022-10-13 14:16 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2026-02-22 11:24 - 2022-10-13 14:16 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2026-02-21 22:51 - 2019-12-23 23:29 - 000000000 ____D C:\Users\Roman\AppData\Roaming\TIDAL
2026-02-21 00:12 - 2022-12-02 23:34 - 000000000 ____D C:\Users\Roman\Desktop\Nože
2026-02-19 15:31 - 2019-09-28 20:59 - 000001390 _____ C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2026-02-11 17:43 - 2019-09-27 19:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2026-02-11 17:42 - 2019-09-27 18:59 - 000000000 ____D C:\Users\Roman\AppData\Local\D3DSCache
2026-02-11 17:41 - 2019-09-27 19:04 - 221154392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2026-02-11 15:13 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2026-02-10 15:46 - 2020-10-21 14:36 - 000289888 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2026-02-10 15:46 - 2020-04-19 13:08 - 000586336 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 001315424 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000898656 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000435808 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000404064 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000304736 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000286816 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000097376 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000088160 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000073312 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2026-02-10 15:46 - 2019-09-29 11:50 - 000032864 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2026-02-10 15:45 - 2025-10-10 19:47 - 000003642 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser VPS Differential Update
2026-02-10 15:45 - 2025-10-10 19:47 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2026-02-10 15:45 - 2025-10-10 19:47 - 000002409 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2026-02-08 11:23 - 2025-03-15 21:37 - 000000000 ____D C:\Users\Roman\Desktop\kodi

==================== Files in the root of some directories ========

2019-11-27 22:47 - 2019-11-27 22:47 - 000099678 _____ () C:\Users\Roman\AppData\Roaming\logo_bigfarm_desktop.ico
2019-11-27 22:47 - 2019-11-27 22:47 - 000370070 _____ () C:\Users\Roman\AppData\Roaming\logo_empire_desktop.ico

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15822
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu.PC trošku pomalejší

#4 Příspěvek od JaRon »

Je to lepsie?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
thermoval
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 25 úno 2026 15:45

Re: Prosím o kontrolu logu.PC trošku pomalejší

#5 Příspěvek od thermoval »

nabíha celkem rychle,vypada že určitě..
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15822
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu.PC trošku pomalejší

#6 Příspěvek od JaRon »

Nateraz hotovo :James008:
Obcasne spust cistenie Cc+Adw - staci 1x za 3-4mesiace :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
thermoval
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 25 úno 2026 15:45

Re: Prosím o kontrolu logu.PC trošku pomalejší

#7 Příspěvek od thermoval »

Ok, dík moc!!
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15822
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu.PC trošku pomalejší

#8 Příspěvek od JaRon »

Za malo :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“