Dobrý deň dňa 15.1.2025 mi začala hádzať tabuľka s chybou Windows Script host a to subor skriptu C windows system32 inteL microsoft sd.vbs nelze najít ... neviem čo to bolo za zložku ale najprv hadzalo chybu na nejaky xx.vbs a potom sd.vbs prešiel som to malwarebytes a našlo mi hrozby a to trojan downloader a ešte 2 nejake divné virusi v TOTALCMD....tie boli vymazane nasledne som vymazal malwarebytes lebo mi script stále vyskakuje a dal som eset online scanner ten našiel virus v podobe Powershell/Obfuscated.AI suspicious application a druhý našiel opäť spomínaný C:/Windows/System32/InteL/Microsoft/xx.vbs a to bol VBS/runner.OXS Trojan. uspešne to zmazalo lenže furt mi vyskakuje Windows Script Host.
Poprosím veľmi o kontrolu PC.
Prikadám LOG z FRST a Addition :
FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-01-2025
Ran by mihal (administrator) on DOMCOPC (ASUSTeK COMPUTER INC. ROG Strix G513IM_G513IM) (20-01-2025 10:53:33)
Running from C:\Users\mihal\OneDrive\Počítač\FRST64.exe
Loaded Profiles: mihal
Platform: Microsoft Windows 11 Home Version 24H2 26100.2894 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Display Control\ASUSSmartDisplayControl.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSOptimization\AsusOSD.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\DenoiseAIPlugin\ArmouryCrate.DenoiseAI.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12>
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe
(C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe ->) (ESL Gaming GmbH -> FACEIT Ltd.) C:\Users\mihal\AppData\Local\FACEIT\app-2.0.33\FACEIT.exe <8>
(Discord Inc. -> Discord Inc.) C:\Users\mihal\AppData\Local\Discord\app-1.0.9177\Discord.exe <6>
(DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_8e54c1bc7d581ad1\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~2.INF\DAX3API.exe
(DriverStore\FileRepository\u0382793.inf_amd64_1c9c9d36a5813460\B384051\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0382793.inf_amd64_1c9c9d36a5813460\B384051\atieclxx.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0382793.inf_amd64_1c9c9d36a5813460\B384051\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ASUS MultiAntenna Service\AsusMultiAntennaSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\ASUSACCI\ArmouryCrateControlInterface.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_e109b959e17d8c0b\AsusPTPService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSystemAnalysis\AsusSystemAnalysis.exe <2>
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_8e54c1bc7d581ad1\DAX3API.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_60e995a01594d69e\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_179f26ff7cd32d0f\RtkAudUService64.exe <3>
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.220.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <3>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\mihal\AppData\Local\Microsoft\OneDrive\24.244.1204.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.34401.20.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [4131496 2024-12-20] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [196520 2024-10-28] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [ASUS Smart Display Control] => C:\Program Files (x86)\ASUS\ASUS Smart Display Control\ASUSSmartDisplayControl.exe [152216 2022-07-20] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Run: [MicrosoftEdgeAutoLaunch_5EB79E6100D45C73ABD81271C5DF7EA9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3923496 2025-01-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Run: [Steam] => D:\Steam\steam.exe [4412512 2024-12-02] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [22373784 2024-12-12] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Run: [Discord] => C:\Users\mihal\AppData\Local\Discord\Update.exe [1525016 2023-04-26] (Discord Inc. -> GitHub)
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3412576 2024-12-14] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36981208 2024-12-10] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Run: [RiotClient] => D:\Riot Games\Riot Client\RiotClientServices.exe [74279960 2025-01-10] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1843456 2024-12-23] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Run: [FACEIT] => C:\Users\mihal\AppData\Local\FACEIT\update.exe [2282184 2025-01-14] (ESL Gaming GmbH -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.265\Installer\chrmstp.exe [2025-01-10] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {DD984A6F-C368-4C3C-A716-9429EA05D604} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSoftwareManager\AsusUpdateChecker.exe [821704 2024-12-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {C1655706-7892-4E44-8849-EC88EDE0F1D3} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [398176 2024-10-30] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {09CA7729-CA66-40D8-88D4-E99819B54E56} - System32\Tasks\ASUS\Armoury Crate Service Task_CountDown => C:\ProgramData\ASUS\FestsEffect\data\CountDown\CountDown.exe [108504 2023-10-31] (ASUSTeK COMPUTER INC. -> )
Task: {6594F6CC-FE16-4E4E-A29A-65BAA6A7EB32} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1779544 2024-10-30] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {DA9C6B81-C7C6-4F5A-950A-35908A6B1D1E} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-12-20] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {1033F365-36FE-482A-920A-00324B3B541E} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-12-20] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {1B1921DD-8D5A-45D4-ACA5-9B24E7CFE52D} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [152109928 2024-08-13] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {D7390108-6EE8-4C5B-A65D-53A26DEA0F6F} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {8C21EB54-99B0-485D-969B-986E10D0A004} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4398024 2024-12-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {B578EDDA-2A1E-404F-9325-2196B4117DEC} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\mihal\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15204208 2025-01-20] (ESET, spol. s r.o. -> ESET)
Task: {367E3DA3-0CD6-4EDC-B80F-C42DBCF20328} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\mihal\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15204208 2025-01-20] (ESET, spol. s r.o. -> ESET)
Task: {2FD0DF97-70ED-4412-86D8-12DD35D63AD3} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{7CFB728C-6244-49C2-A428-6596AABCADA9} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {ED8DA90C-D762-45E9-B328-492CFB4B001E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28707056 2025-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {A30A2BEC-7789-4FD8-B909-D2A7FA665D11} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16\opushutil.exe [67304 2025-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {8290B932-CB0F-4A49-8F1A-34A5FA48FE02} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28707056 2025-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {5852C773-7CF9-450C-B5DB-94DA8CC0F376} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [311416 2025-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {28A5778A-167D-4A7E-9CFF-78267BAD037B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [311416 2025-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {AFF24623-CC27-4984-9080-2B627DED1E0E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [192144 2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {3D9A56AF-53E4-4521-8303-E439A9FC3DBA} - System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService2mihal => C:\Windows\System32\InteL\Microsoft\sd.vbs (No File) <==== ATTENTION
Task: {5E1370EC-8263-47F5-B4BD-CF8A01DF359D} - System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService3mihal => C:\Windows\System32\InteL\Microsoft\spoof.vbs (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {327B5D67-9690-4AD7-AA48-C7FCC42F0BB5} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_179f26ff7cd32d0f\RtkAudUService64.exe [1616744 2022-10-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ad676079-6787-435f-8b57-a64921d63cc5}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f62b0f30-7a48-47e5-adf4-443737c0aa63}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f62b0f30-7a48-47e5-adf4-443737c0aa63}: [DhcpDomain] home
Tcpip\..\Interfaces\{f62b0f30-7a48-47e5-adf4-443737c0aa63}\45D226D666A516C6: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f62b0f30-7a48-47e5-adf4-443737c0aa63}\45D226D666A516C6: [DhcpDomain] home
Tcpip\..\Interfaces\{fbc7bae9-e71b-4d70-bef2-49506b38e4e0}: [DhcpNameServer] 172.20.10.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\mihal\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-31]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\mihal\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-31]
Edge Extension: (Edge relevant text changes) - C:\Users\mihal\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-25]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\mihal\AppData\Local\Google\Chrome\User Data\Default [2025-01-20]
CHR Extension: (Microsoft Bing Search with Rewards) - C:\Users\mihal\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbgcedjacmlbgleddnoacbnijgmiolem [2025-01-03]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\mihal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-18]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\mihal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-01-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\mihal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-13]
CHR Extension: (ESET Browser Privacy & Security) - C:\Users\mihal\AppData\Local\Google\Chrome\User Data\Default\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2025-01-20]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ArmouryCrateControlInterface; C:\WINDOWS\System32\ASUSACCI\ArmouryCrateControlInterface.exe [524952 2024-09-29] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe [401880 2024-12-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-12-20] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\AsusAppService\AsusAppService.exe [1176016 2024-12-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [503144 2024-09-25] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [165224 2023-12-20] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusMultiAntennaSvc; C:\Program Files\ASUS\ASUS MultiAntenna Service\AsusMultiAntennaSvc.exe [949872 2022-09-21] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSOptimization\AsusOptimization.exe [583112 2024-12-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusPTPService; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_e109b959e17d8c0b\AsusPTPService.exe [229840 2024-07-01] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [681832 2023-12-20] (ASUSTeK COMPUTER INC. -> ASUS)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSoftwareManager\AsusSoftwareManager.exe [1402824 2024-12-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSwitch\AsusSwitch.exe [650704 2024-12-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4398024 2024-12-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [1101256 2024-12-16] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18663720 2024-09-29] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13572312 2025-01-03] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_8e54c1bc7d581ad1\DAX3API.exe [2732536 2024-09-13] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [19068000 2024-12-14] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1134624 2023-11-30] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [965872 2024-11-07] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5563760 2024-10-28] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4240120 2024-10-28] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4240120 2024-10-28] (ESET, spol. s r.o. -> ESET)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [83992296 2024-12-18] (ESL FACEIT Group Ltd. -> )
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11744152 2024-12-12] (Logitech Inc -> Logitech, Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4955496 2024-08-08] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 logi_lamparray_service; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray_service.exe [11177064 2024-10-27] (Logitech Inc -> Logitech, Inc.)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_60e995a01594d69e\Display.NvContainer\NVDisplay.Container.exe [1275568 2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2397440 2024-12-23] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [4828136 2024-12-05] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [2125352 2024-11-22] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [13081856 2024-12-20] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0382793.inf_amd64_1c9c9d36a5813460\B384051\amdkmdag.sys [80465832 2022-10-03] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [58936 2024-09-24] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_e109b959e17d8c0b\AsusPTPFilter.sys [199632 2024-07-01] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSystemAnalysis\AsusSAIO.sys [49312 2024-12-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSOptimization\AsusWmiAcpi.sys [49064 2024-12-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [220520 2024-10-28] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [121864 2024-10-28] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2024-10-24] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [268568 2024-10-28] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57872 2024-10-28] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [87784 2024-10-28] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [128552 2024-10-28] (ESET, spol. s r.o. -> ESET)
R1 FACEIT; C:\Program Files\FACEIT AC\FACEIT_AC.sys [97942712 2024-12-18] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [33424 2021-07-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 IGO_VSD; C:\WINDOWS\system32\drivers\igovsd.sys [42344 2021-07-04] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2024-09-23] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-05-14] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2024-09-23] (Logitech Inc -> Logitech)
R3 logi_lamparray; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3786a31d1dad269d\logi_lamparray.sys [89192 2024-10-27] (Logitech Inc -> Logitech, Inc.)
R3 MTKBTFilterX64; C:\WINDOWS\System32\DriverStore\FileRepository\mtkbtfilter.inf_amd64_4e18fe2e122d5d00\mtkbtfilterx.sys [326768 2024-04-28] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\DriverStore\FileRepository\mtkwl6ex.inf_amd64_f698a1260525f27b\mtkwl6ex.sys [1461912 2024-05-06] (MEDIATEK INC. -> MediaTek Inc.)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [237216 2024-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_350fa1f1d5f73524\rt68cx21x64.sys [652256 2022-08-25] (Realtek Semiconductor Corp. -> Realtek)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [28298792 2024-12-19] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22104 2024-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [606624 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-01-20 10:53 - 2025-01-20 10:53 - 000031276 _____ C:\Users\mihal\OneDrive\Počítač\FRST.txt
2025-01-20 10:53 - 2025-01-20 10:53 - 000000000 ____D C:\FRST
2025-01-20 10:51 - 2025-01-20 10:51 - 002402816 _____ (Farbar) C:\Users\mihal\OneDrive\Počítač\FRST64.exe
2025-01-20 09:55 - 2025-01-20 09:55 - 000065100 _____ C:\WINDOWS\system32\perfh01B.dat
2025-01-20 09:55 - 2025-01-20 09:55 - 000016842 _____ C:\WINDOWS\system32\perfc01B.dat
2025-01-20 04:05 - 2025-01-20 04:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2025-01-20 04:05 - 2025-01-20 04:05 - 000000000 ____D C:\ProgramData\ESET
2025-01-20 04:05 - 2025-01-20 04:05 - 000000000 ____D C:\Program Files\ESET
2025-01-20 04:04 - 2025-01-20 04:04 - 010687480 _____ (ESET) C:\Users\mihal\Downloads\eset_smart_security_premium_live_installer.exe
2025-01-20 03:38 - 2025-01-20 03:49 - 000807794 _____ C:\WINDOWS\ntbtlog.txt
2025-01-20 03:38 - 2025-01-20 03:43 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2025-01-20 03:29 - 2025-01-20 03:29 - 000003842 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2025-01-20 03:29 - 2025-01-20 03:29 - 000003400 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2025-01-20 02:40 - 2025-01-20 04:05 - 000000000 ____D C:\Users\mihal\AppData\Local\ESET
2025-01-20 02:40 - 2025-01-20 02:40 - 008415088 _____ (ESET) C:\Users\mihal\Downloads\esetonlinescanner.exe
2025-01-20 02:40 - 2025-01-20 02:40 - 000001378 _____ C:\Users\mihal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2025-01-20 02:40 - 2025-01-20 02:40 - 000001278 _____ C:\Users\mihal\OneDrive\Počítač\ESET Online Scanner.lnk
2025-01-20 02:24 - 2025-01-20 02:24 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-01-20 02:16 - 2025-01-20 02:16 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-790411487-1959229544-447821287-1001
2025-01-15 05:44 - 2025-01-15 05:44 - 000000000 ___HD C:\$SysReset
2025-01-15 05:39 - 2025-01-20 09:58 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2025-01-15 05:39 - 2025-01-15 05:39 - 000003708 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{0830BC49-5019-49C2-AA7A-651444534CFE}
2025-01-15 05:39 - 2025-01-15 05:39 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{5E88838C-4E27-455A-A751-335ADF36DE65}
2025-01-15 05:38 - 2025-01-20 02:16 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-790411487-1959229544-447821287-1001
2025-01-15 05:37 - 2025-01-15 05:37 - 000004122 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2025-01-15 05:37 - 2025-01-15 05:37 - 000003366 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test9
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test8
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test7
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test6
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test5
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test4
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test3
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test2
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test17
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test16
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test15
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test14
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test13
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test12
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test11
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test10
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\Test1
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player9
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player8
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player7
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player6
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player5
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player4
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player3
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player2
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player17
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player16
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player15
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player14
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player13
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player12
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player11
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player10
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player1
2025-01-15 04:28 - 2025-01-15 04:28 - 000000000 ____D C:\ProgramData\player
2025-01-15 00:52 - 2025-01-20 09:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-12-28 16:46 - 2024-12-28 16:46 - 000000000 ____D C:\Users\mihal\AppData\LocalLow\Red Dot Games
2024-12-28 16:44 - 2024-12-28 16:44 - 000000202 _____ C:\Users\mihal\OneDrive\Počítač\Car Mechanic Simulator 2015.url
2024-12-25 22:28 - 2024-12-30 03:17 - 000000000 ___RD C:\Users\mihal\Downloads\FiveM.app
2024-12-25 22:28 - 2024-12-25 22:28 - 005224992 _____ (Cfx.re) C:\Users\mihal\Downloads\FiveM.exe
2024-12-25 22:28 - 2024-12-25 22:28 - 000001573 _____ C:\Users\mihal\Downloads\FiveM - Cfx.re Development Kit (FxDK).lnk
2024-12-25 22:28 - 2024-12-25 22:28 - 000000363 _____ C:\Users\mihal\Downloads\FiveM.VisualElementsManifest.xml
2024-12-25 02:12 - 2024-12-25 02:12 - 000000000 ____D C:\WINDOWS\Panther
2024-12-24 01:34 - 2024-12-24 01:34 - 000000000 ____D C:\Users\mihal\AppData\Local\Falcon
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-01-20 10:53 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-01-20 10:52 - 2023-05-15 23:07 - 000000000 ____D C:\Users\mihal\AppData\Local\Discord
2025-01-20 09:55 - 2024-12-04 14:05 - 000900290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-01-20 09:54 - 2024-06-07 01:53 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2025-01-20 09:53 - 2024-12-04 13:26 - 000000000 ____D C:\WINDOWS\system32\ASUSACCI
2025-01-20 09:53 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-20 09:53 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-01-20 09:53 - 2023-05-15 23:07 - 000000000 ____D C:\Users\mihal\AppData\Roaming\discord
2025-01-20 09:53 - 2023-05-13 20:32 - 000000000 ____D C:\Users\mihal\AppData\Local\Packages
2025-01-20 09:53 - 2023-05-13 20:05 - 000000000 ____D C:\ProgramData\Packages
2025-01-20 09:52 - 2024-12-04 14:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2025-01-20 09:52 - 2024-12-04 13:58 - 000006570 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-01-20 09:52 - 2024-07-02 07:05 - 000000000 ____D C:\Users\mihal\AppData\Roaming\FACEIT
2025-01-20 09:52 - 2023-05-13 20:33 - 000000000 ___RD C:\Users\mihal\OneDrive
2025-01-20 09:51 - 2024-12-04 14:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-01-20 09:51 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-01-20 09:51 - 2023-11-11 20:55 - 000000000 ____D C:\Users\mihal\AppData\Roaming\asus_framework
2025-01-20 09:51 - 2023-05-14 08:18 - 000000000 ____D C:\Users\mihal\AppData\Local\LGHUB
2025-01-20 09:51 - 2023-05-13 20:28 - 000000000 ____D C:\ProgramData\NVIDIA
2025-01-20 09:51 - 2023-05-13 20:03 - 000012288 ___SH C:\DumpStack.log.tmp
2025-01-20 04:18 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-01-20 04:05 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-01-20 04:05 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-01-20 02:25 - 2024-04-10 15:47 - 000000000 ____D C:\Program Files\Microsoft Office
2025-01-20 02:25 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-01-20 02:23 - 2023-05-13 20:04 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-01-20 02:17 - 2023-05-13 21:09 - 000000000 ____D C:\Program Files\ASUS
2025-01-20 02:16 - 2023-05-13 20:33 - 000002367 _____ C:\Users\mihal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-01-15 05:41 - 2023-12-20 17:09 - 000000000 ____D C:\Users\mihal\AppData\Roaming\utorrent
2025-01-15 05:37 - 2024-12-04 13:55 - 000473624 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-01-15 05:36 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-01-15 05:36 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2025-01-15 05:36 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-01-15 05:36 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-01-15 04:29 - 2024-07-31 19:26 - 000000000 ____D C:\Users\mihal\AppData\Roaming\RenPy
2025-01-15 04:29 - 2024-04-01 08:26 - 000000000 __RHD C:\Users\Public\Libraries
2025-01-15 04:13 - 2023-12-20 17:09 - 000000000 ____D C:\Users\mihal\AppData\Local\BitTorrentHelper
2025-01-15 01:34 - 2024-02-19 21:08 - 000000000 ____D C:\ProgramData\Riot Games
2025-01-15 01:18 - 2024-12-04 14:00 - 000000000 ____D C:\Users\mihal\AppData\Local\D3DSCache
2025-01-15 01:07 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-01-15 00:48 - 2023-05-13 23:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-01-15 00:47 - 2023-05-13 23:40 - 206927936 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-01-14 09:15 - 2024-07-05 00:01 - 000000000 ____D C:\Users\mihal\AppData\Local\FACEIT
2025-01-11 05:41 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-01-10 16:32 - 2024-09-18 19:32 - 134222904 _____ C:\WINDOWS\392667600.dat
2025-01-10 16:22 - 2024-06-07 01:52 - 000000000 ____D C:\Program Files\Riot Vanguard
2025-01-10 07:37 - 2023-05-13 20:40 - 000002259 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-01-10 07:34 - 2024-02-22 11:20 - 000000000 ____D C:\Users\mihal\AppData\Roaming\riot-client-ux
2025-01-10 07:33 - 2023-05-15 23:07 - 000002249 _____ C:\Users\mihal\OneDrive\Počítač\Discord.lnk
2025-01-07 18:57 - 2024-12-04 13:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-01-07 13:29 - 2024-02-19 22:16 - 000002323 _____ C:\Users\mihal\OneDrive\Počítač\Porofessor.gg.lnk
2025-01-07 13:29 - 2024-02-19 22:15 - 000000000 ____D C:\Users\mihal\AppData\Local\Overwolf
2025-01-06 03:40 - 2024-12-04 13:56 - 000000000 ____D C:\Users\mihal
2025-01-06 03:08 - 2023-05-13 21:55 - 000000000 ____D C:\Users\mihal\AppData\Roaming\slobs-client
2025-01-06 01:25 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-01-05 23:06 - 2024-07-05 00:00 - 000000000 ____D C:\Program Files\FACEIT AC
2025-01-04 23:09 - 2023-05-13 20:43 - 000000000 ____D C:\Users\mihal\AppData\Local\Steam
2025-01-03 02:52 - 2023-05-13 21:11 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-12-31 10:00 - 2023-05-13 20:51 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-12-31 07:58 - 2024-05-04 14:07 - 000000000 ____D C:\Users\mihal\AppData\Local\CrashDumps
2024-12-28 16:44 - 2023-05-13 20:45 - 000000000 ____D C:\Users\mihal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-12-28 13:52 - 2023-05-16 16:06 - 000000000 ____D C:\Users\mihal\AppData\Roaming\EasyAntiCheat
2024-12-25 04:40 - 2023-09-09 12:12 - 000000000 ____D C:\Users\mihal\AppData\Roaming\G HUB
2024-12-25 04:40 - 2023-05-14 08:18 - 000000000 ____D C:\Users\mihal\AppData\Roaming\lghub
2024-12-25 00:15 - 2024-02-19 22:15 - 000000000 ____D C:\Program Files (x86)\Overwolf
2024-12-24 22:24 - 2023-05-13 20:26 - 000000000 ____D C:\Program Files\AMD
2024-12-24 01:34 - 2023-05-17 01:10 - 000000000 ____D C:\Users\mihal\AppData\Local\UnrealEngine
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Addition :
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2025
Ran by mihal (20-01-2025 10:54:32)
Running from C:\Users\mihal\OneDrive\Počítač
Microsoft Windows 11 Home Version 24H2 26100.2894 (X64) (2024-12-04 13:00:08)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-790411487-1959229544-447821287-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-790411487-1959229544-447821287-503 - Limited - Disabled)
Guest (S-1-5-21-790411487-1959229544-447821287-501 - Limited - Disabled)
mihal (S-1-5-21-790411487-1959229544-447821287-1001 - Administrator - Enabled) => C:\Users\mihal
WDAGUtilityAccount (S-1-5-21-790411487-1959229544-447821287-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AI Noise Cancelation Audio Software (HKLM-x32\...\{ab5f014e-883d-470d-bc2d-127ef91e5611}) (Version: 3.2.0 - ASUSTek Computer Inc.)
AI Noise Cancelation Audio Software SDK (HKLM\...\{9B441197-6389-46FC-BE60-56C8B6E5ADE9}) (Version: 1.0.6 - ASUSTeK COMPUTER INC.)
AMD Ryzen Master (HKLM\...\{02247819-03CD-414E-AC8D-FD518BFBA445}) (Version: 2.10.3.2518 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.10.3.2518 - Advanced Micro Devices, Inc.)
Aplikácia NVIDIA 11.0.1.189 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.1.189 - NVIDIA Corporation)
ARMOURY CRATE Service (HKLM\...\{01378DC3-088F-4F55-AAFA-DC6A9CCA292A}) (Version: 5.9.13 - ASUS)
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.5.38.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{0d2b535c-f6b5-4ae8-aced-c274e23d91ed}) (Version: 2.5.38.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM\...\{127BAA1F-BF99-457D-92AD-DCCD7698B294}) (Version: 4.2.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM-x32\...\{984fc5fa-e6ab-4cfa-880b-81b5db4f8b4b}) (Version: 4.2.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.46 - ASUSTek COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.2.0.4 - ASUSTeK Computer Inc.)
ASUS MultiAntenna Service (HKLM\...\{EBB02F2E-0856-4B8A-9E70-980102C90BBA}) (Version: 3.2.2 - ASUSTeK COMPUTER INC.)
ASUS Smart Display Control (HKLM-x32\...\{8714A8D1-0F08-4681-9DF6-A8C4607A58B4}) (Version: 1.10.0 - ASUSTek COMPUTER INC.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.129 - ASUSTeK Computer Inc.) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.44 - ASUSTek COMPUTER INC.)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.44 - ASUSTek COMPUTER INC.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.07.54 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{5a78a7d3-44e9-4462-8796-3746f1c62cb8}) (Version: 3.07.54 - ASUSTeK Computer Inc.)
CPUID ROG CPU-Z 2.05 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 2.05 - CPUID, Inc.)
CrystalDiskInfo 9.2.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 9.2.2 - Crystal Dew World)
Discord (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Discord) (Version: 1.0.9013 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.363.3.5877 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{e8900010-abed-4bc8-9582-86a510cdd765}) (Version: 13.363.3.5877 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{B85FAA6E-A9AA-4655-9029-E1A4EDC05E1A}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
ESET Security (HKLM\...\{2AE41595-0CB6-45AD-A2FA-E20798D8842F}) (Version: 18.0.12.0 - ESET, spol. s r.o.)
FACEIT (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\FACEIT) (Version: 2.0.33 - FACEIT Ltd.)
FACEIT Anti-Cheat (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 2.1 - FACEIT LTD)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
GK630K Keyboard (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\GK630K Keyboard) (Version: 1.0.1.4 - COOLING.PL Zdziech Spółka Jawna)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.265 - Google LLC)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2024.9.649333 - Logitech)
Microsoft .NET Host - 6.0.16 (x64) (HKLM\...\{1D0AC7F1-2B34-44AF-91F6-88757D768DA7}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.16 (x64) (HKLM\...\{B8537ACA-B210-4DF5-B928-E41CEB76723D}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM\...\{C71E93D2-B8B4-4858-B2A1-4C967DBC1C5F}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM-x32\...\{2a8d0f2b-911b-4b58-8252-46b29e7a4590}) (Version: 6.0.16.32323 - Microsoft Corporation)
Microsoft Access 2019 - cs-cz (HKLM\...\Access2019Volume - cs-cz) (Version: 16.0.18324.20194 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 132.0.2957.115 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.146 - Microsoft Corporation) Hidden
Microsoft Excel 2019 - cs-cz (HKLM\...\Excel2019Volume - cs-cz) (Version: 16.0.18324.20194 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\OneDriveSetup.exe) (Version: 24.244.1204.0003 - Microsoft Corporation)
Microsoft OneNote 2016 - cs-cz (HKLM\...\OneNoteVolume - cs-cz) (Version: 16.0.18324.20194 - Microsoft Corporation)
Microsoft Outlook 2019 - cs-cz (HKLM\...\Outlook2019Volume - cs-cz) (Version: 16.0.18324.20194 - Microsoft Corporation)
Microsoft PowerPoint 2019 - cs-cz (HKLM\...\PowerPoint2019Volume - cs-cz) (Version: 16.0.18324.20194 - Microsoft Corporation)
Microsoft Publisher 2019 - cs-cz (HKLM\...\Publisher2019Volume - cs-cz) (Version: 16.0.18324.20194 - Microsoft Corporation)
Microsoft Support and Recovery Assistant (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\eb27b72449f9557b) (Version: 17.1.1602.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Word 2019 - cs-cz (HKLM\...\Word2019Volume - cs-cz) (Version: 16.0.18324.20194 - Microsoft Corporation)
NVIDIA FrameView SDK 1.4.10624.35034762 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.4.10624.35034762 - NVIDIA Corporation)
NVIDIA Grafický ovládač 566.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 566.36 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.4.2.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.2.6 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18324.20194 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18324.20168 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11929.20376 - Microsoft Corporation) Hidden
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.266.1.26 - Overwolf Ltd.)
Porofessor.gg (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.7.374 - Overwolf app)
REDlauncher (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - CD Projekt RED)
Riot Client (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\Riot Game Riot_Client.) (Version: - Riot Games, Inc)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.98.2208 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.8.0 - Rockstar Games)
ROG CustomHotkey (HKLM-x32\...\{374883e6-b31d-4a3c-9c4a-2685a840aed4}) (Version: 1.2.3 - ASUSTek Computer Inc.)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.4.26.0 - ASUSTek COMPUTER INC.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs Desktop 1.16.3 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 1.16.3 - General Workings, Inc.)
TeamSpeak 3 Client (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\TeamSpeak 3 Client) (Version: 3.6.1 - TeamSpeak Systems GmbH)
TruckersMP Launcher (HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\TruckersMP) (Version: 1.3.9 - TruckersMP)
Windows Driver Package - Apple, Inc. (USBAAPL) USB (05/19/2017 6.0.9999.69) (HKLM\...\7771A0176A543725D7BBF70A546C096A4EE2DD40) (Version: 05/19/2017 6.0.9999.69 - Apple, Inc.)
Windows Driver Package - Apple, Inc. (USBAAPL64) USB (05/19/2017 6.0.9999.69) (HKLM\...\C2C6A29F3ABC80FD992777A92DF30699124D37C5) (Version: 05/19/2017 6.0.9999.69 - Apple, Inc.)
WinRAR 7.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.00.0 - win.rar GmbH)
Packages:
=========
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m [2024-05-22] (Advanced Micro Devices Inc.) [Startup Task]
Armoury Crate -> C:\Program Files\ASUS\AacAmbientHal [2024-12-29] (Sparse Package)
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.9.13.0_x64__qmba6cd70vzyy [2024-12-12] (ASUSTeK COMPUTER INC.)
AURA Creator -> C:\Program Files\WindowsApps\B9ECED6F.AURACreator_3.9.3.0_x64__qmba6cd70vzyy [2024-06-28] (ASUSTeK COMPUTER INC.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2024.3.211.0_neutral__6rarf9sa4v8jt [2024-03-26] (Disney)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.25.1670.0_x64__rz1tebttyb220 [2024-12-12] (Dolby Laboratories)
Dolby Digital Plus decoder for PC OEMs -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyDigitalPlusDecoderOEM_1.1.285.0_x64__rz1tebttyb220 [2024-12-04] (Dolby Laboratories)
ESET Context Menu -> C:\Program Files\ESET\ESET Security [2025-01-20] (Sparse Package)
Forza Horizon 5 -> C:\Program Files\WindowsApps\Microsoft.624F8B84B80_3.671.65.0_x64__8wekyb3d8bbwe [2024-12-03] (Microsoft Studios)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa [2024-10-26] (Apple Inc.) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-15] (Microsoft Corp.)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.31.0_x64__qmba6cd70vzyy [2025-01-02] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2024-12-24] (NVIDIA Corp.)
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16 [2025-01-20] ()
PAW Patrol Mighty Pups Save Adventure Bay -> C:\Program Files\WindowsApps\OutrightGames.628923E2C82A7_1.0.3.0_x64__bnrbc155f0j86 [2023-12-18] (Outright Games Ltd)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.39.282.0_x64__dt26b99r8h8gj [2023-05-13] (Realtek Semiconductor Corp)
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.18.194.0_x64__43tkc6nmykmb6 [2024-07-26] (Ookla)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0 [2025-01-20] (Spotify AB) [Startup Task]
Spyro™ Reignited Trilogy -> C:\Program Files\WindowsApps\38985CA0.SpyroReignitedTrilogyGamePC_1.0.1.0_x64__5bkah9njm3e9g [2024-12-21] (Activision Publishing Inc.)
WinRAR -> C:\Program Files\WinRAR [2024-04-29] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2024-10-28] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2024-10-28] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2022-10-03] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_60e995a01594d69e\nvshext.dll [2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2024-10-28] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32-x32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll
HKLM\...\Drivers32-x32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2024-08-05 14:46 - 2024-07-03 15:49 - 000346112 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\@img\sharp-win32-ia32\lib\sharp-win32-ia32.node
2023-12-20 21:37 - 2024-08-13 14:58 - 000449536 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\ac_node_addon\build\Release\ac_node_addon.node
2022-09-05 08:18 - 2022-09-05 08:18 - 000023552 _____ (MTK) [File not signed] C:\Program Files\ASUS\ASUS MultiAntenna Service\mtkwlan.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT AC.lnk:550995E265 [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk:60EC9648C0 [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook (classic).lnk:5465085A2F [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook (classic).lnk:BE800952D3 [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk:1DC1525F34 [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk:104946E0EA [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Notes (new).lnk:3DF0A9C0EF [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Notes (new).lnk:954E53D7F9 [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs Desktop.lnk:578370639A [4306]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk:7AD7FA8AB1 [4306]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [2694]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2022-05-07 06:24 - 2025-01-15 04:29 - 000003611 _____ C:\WINDOWS\system32\drivers\etc\hosts
109.94.209.70 fitgirlrepacks.in # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.in # Fake FitGirl site
109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 fitgirl-repacks.to # Fake FitGirl site
109.94.209.70 fitgirl-repack.com # Fake FitGirl site
109.94.209.70 fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.to # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repack.net # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site
109.94.209.70 fitgirlpack.site # Fake FitGirl site
109.94.209.70 www.fitgirlpack.site # Fake FitGirl site
109.94.209.70 fitgirl-repack.org # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.org # Fake FitGirl site
109.94.209.70 fitgirlrepacks.pro # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.pro # Fake FitGirl site
109.94.209.70 fitgirlrepack.games # Fake FitGirl site
109.94.209.70 www.fitgirlrepack.games # Fake FitGirl site
109.94.209.70 fitgirl-repacks-site.org # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks-site.org # Fake FitGirl site
109.94.209.70 fitgirls-repacks.com # Fake FitGirl site
109.94.209.70 fitgirlrepack.cc # Fake FitGirl site
109.94.209.70 fitgirlrepacks.org # Fake FitGirl site
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-790411487-1959229544-447821287-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\mihal\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\5643929238267574132\133809644775721959.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: off)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: MediaTek Wi-Fi 6 MT7921 Wireless LAN Card -> mtkwl6ex.sys
Ethernet: Realtek PCIe GbE Family Controller -> rt68cx21x64.sys
Sieťové pripojenie Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_5EB79E6100D45C73ABD81271C5DF7EA9"
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-790411487-1959229544-447821287-1001\...\StartupApproved\Run: => "Overwolf"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0D327749-0626-4F98-B740-0CDC3A2EA22C}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [{362639D8-15CE-4ABE-BF8C-BE0A52CE4A75}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{CD63D1D4-57A9-4112-AC42-D36956FBAA58}] => (Allow) D:\program files\asus\aacambienthal\aacambientlighting.exe => No File
FirewallRules: [{B04C6701-B7B8-4C46-B3BB-BBF3F28BC2D2}] => (Allow) C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [UDP Query User{1BB32F52-6C5C-46B6-8B39-422FA97DD4E1}C:\users\mihal\appdata\local\faceit\app-2.0.26\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.26\faceit.exe => No File
FirewallRules: [TCP Query User{339DF803-68EB-4B9A-AD67-7C208EB99F46}C:\users\mihal\appdata\local\faceit\app-2.0.26\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.26\faceit.exe => No File
FirewallRules: [UDP Query User{5432E10A-64F4-4912-B6F7-5D73C1E6AECB}C:\users\mihal\appdata\local\discord\app-1.0.9169\discord.exe] => (Allow) C:\users\mihal\appdata\local\discord\app-1.0.9169\discord.exe => No File
FirewallRules: [TCP Query User{E83D25B7-8C63-4EAE-92E6-BE020EA26981}C:\users\mihal\appdata\local\discord\app-1.0.9169\discord.exe] => (Allow) C:\users\mihal\appdata\local\discord\app-1.0.9169\discord.exe => No File
FirewallRules: [UDP Query User{C4475329-7578-4333-8AF5-7AA26DD46604}C:\users\mihal\appdata\local\faceit\app-2.0.24\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.24\faceit.exe => No File
FirewallRules: [TCP Query User{5BAE3EF5-5A16-4272-A64F-B60757A2702C}C:\users\mihal\appdata\local\faceit\app-2.0.24\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.24\faceit.exe => No File
FirewallRules: [{66551AB9-B2B9-4DD1-B68F-62DB012E13BE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{6F492113-4582-46F4-BC3C-FF78F4AEC8FA}D:\xboxgames\call of duty\content\sp24\sp24-cod.exe] => (Allow) D:\xboxgames\call of duty\content\sp24\sp24-cod.exe => No File
FirewallRules: [TCP Query User{ADDC09BD-C4E1-4878-BA0B-1BEB99E6BF85}D:\xboxgames\call of duty\content\sp24\sp24-cod.exe] => (Allow) D:\xboxgames\call of duty\content\sp24\sp24-cod.exe => No File
FirewallRules: [UDP Query User{3FB39743-B5E8-4316-A1C8-24ADA72CE50B}D:\xboxgames\call of duty\content\cod23\cod23-cod.exe] => (Allow) D:\xboxgames\call of duty\content\cod23\cod23-cod.exe => No File
FirewallRules: [TCP Query User{2A55D31F-0DB2-4002-AAA5-BCF52F4E1817}D:\xboxgames\call of duty\content\cod23\cod23-cod.exe] => (Allow) D:\xboxgames\call of duty\content\cod23\cod23-cod.exe => No File
FirewallRules: [UDP Query User{733D41F6-C42D-47F0-8B35-93129F0C9846}D:\xboxgames\call of duty\content\cod.exe] => (Allow) D:\xboxgames\call of duty\content\cod.exe => No File
FirewallRules: [TCP Query User{EFDBFB70-F80C-43CD-8B98-7AAD10217869}D:\xboxgames\call of duty\content\cod.exe] => (Allow) D:\xboxgames\call of duty\content\cod.exe => No File
FirewallRules: [{2E34E02B-0CA5-49D1-AE33-C20DD17E879D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{25BBFCCD-EF50-49A0-91BD-52FF53517DB6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{4D48CA39-43A6-41B1-BF8B-3EDE317D391B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{34CA13C5-8130-4F84-AA30-BF92049913A0}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{91BCDB39-0026-4448-94E8-BCB55FCE9BC3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{3F2FBBAB-B6F8-43FF-840F-F7E4D93D5B91}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{ADE25F06-C827-4DE3-972D-28CA0A811587}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{8A6D7EB1-2F81-4114-82DE-796D9FA2A5EB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [UDP Query User{0DCE236E-30B7-4892-9E30-0379374F9043}C:\users\mihal\appdata\local\faceit\app-2.0.23\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.23\faceit.exe => No File
FirewallRules: [TCP Query User{EE1B356B-7224-4417-9FA1-084CDF909855}C:\users\mihal\appdata\local\faceit\app-2.0.23\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.23\faceit.exe => No File
FirewallRules: [UDP Query User{528BEA32-67C3-4666-955B-68872EA2CF95}C:\users\mihal\appdata\roaming\utorrent\updates\utorrent.exe] => (Allow) C:\users\mihal\appdata\roaming\utorrent\updates\utorrent.exe => No File
FirewallRules: [TCP Query User{FFE01D83-56B7-41B6-95D1-6A302ECACDCC}C:\users\mihal\appdata\roaming\utorrent\updates\utorrent.exe] => (Allow) C:\users\mihal\appdata\roaming\utorrent\updates\utorrent.exe => No File
FirewallRules: [UDP Query User{2210295F-F929-4955-BDE0-7A8F84987EDC}C:\users\mihal\appdata\local\faceit\app-2.0.18\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.18\faceit.exe => No File
FirewallRules: [TCP Query User{95C09514-F358-42E6-851D-28E75C731561}C:\users\mihal\appdata\local\faceit\app-2.0.18\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.18\faceit.exe => No File
FirewallRules: [UDP Query User{800CDFD6-6D17-452C-94DA-CED067C821C5}C:\users\mihal\appdata\local\faceit\app-2.0.17\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.17\faceit.exe => No File
FirewallRules: [TCP Query User{CED194BB-3E2A-4018-A394-6FE3DD754B2D}C:\users\mihal\appdata\local\faceit\app-2.0.17\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.17\faceit.exe => No File
FirewallRules: [UDP Query User{745CFA50-42ED-48DB-A7A7-9006B2F33014}D:\hry\house party\houseparty.exe] => (Allow) D:\hry\house party\houseparty.exe => No File
FirewallRules: [TCP Query User{0113CC77-C64E-40B5-B7B4-14610E00F658}D:\hry\house party\houseparty.exe] => (Allow) D:\hry\house party\houseparty.exe => No File
FirewallRules: [{C6E22C33-0ECA-4D12-BFD7-AA337E42B133}] => (Allow) C:\Users\mihal\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{338A7F89-80E3-4D79-B002-D7F5A8CB6B36}] => (Allow) C:\Users\mihal\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{6D5FAE71-354E-479C-8BF1-06BBA32B1AAD}] => (Allow) C:\Users\mihal\AppData\Roaming\utorrent\uTorrent.exe => No File
FirewallRules: [{4E82AA57-A8F0-49C0-8C50-31232FAA4B9D}] => (Allow) C:\Users\mihal\AppData\Roaming\utorrent\uTorrent.exe => No File
FirewallRules: [UDP Query User{568A7614-37AE-4274-8A5C-3F4343B19A5B}D:\hry\ea sports fc 24\fc24.exe] => (Allow) D:\hry\ea sports fc 24\fc24.exe => No File
FirewallRules: [TCP Query User{E7095761-0128-479F-81B4-53E9132A5335}D:\hry\ea sports fc 24\fc24.exe] => (Allow) D:\hry\ea sports fc 24\fc24.exe => No File
FirewallRules: [{1DBC8C5C-5276-4602-9E2E-2A87BDA0426D}] => (Allow) D:\Steam\steamapps\common\Banana\Banana.exe () [File not signed]
FirewallRules: [{EA6F4265-B349-4026-BD41-2F108BA16446}] => (Allow) D:\Steam\steamapps\common\Banana\Banana.exe () [File not signed]
FirewallRules: [UDP Query User{885BB221-6B9D-4574-9F95-4CD6BEA31F28}D:\hry\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) D:\hry\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => No File
FirewallRules: [TCP Query User{44EA1B78-3EE7-43B3-A072-38847FA4A8B0}D:\hry\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) D:\hry\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => No File
FirewallRules: [UDP Query User{370653D0-94EC-41F5-A9C8-B8F90FFDAC8C}D:\hry\fivem\fivem.exe] => (Allow) D:\hry\fivem\fivem.exe => No File
FirewallRules: [TCP Query User{C2AF96F4-97A2-4BD0-B825-099ED7A969CD}D:\hry\fivem\fivem.exe] => (Allow) D:\hry\fivem\fivem.exe => No File
FirewallRules: [UDP Query User{1739F6BA-7295-463C-9BA0-413591F4430A}C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => No File
FirewallRules: [TCP Query User{49685414-4C9E-44C8-85F1-C45717A3A24A}C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => No File
FirewallRules: [UDP Query User{B00164CB-4662-42B2-A08B-799E3C056C26}D:\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) D:\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe => No File
FirewallRules: [TCP Query User{6400A805-B1E8-437F-84B1-5210D0FE5AB4}D:\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) D:\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe => No File
FirewallRules: [UDP Query User{9F5E4520-936A-4D91-95DC-6C9BD4BD1DF7}C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_steamchild.exe] => (Allow) C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_steamchild.exe => No File
FirewallRules: [TCP Query User{6B6CD209-10E0-43F8-ACAA-86595E68A46D}C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_steamchild.exe] => (Allow) C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_steamchild.exe => No File
FirewallRules: [UDP Query User{5997D298-FF79-426D-84D4-6698E0A6D690}C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe] => (Allow) C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe => No File
FirewallRules: [TCP Query User{5FA69161-866F-4542-86DF-6183CC370562}C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe] => (Allow) C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe => No File
FirewallRules: [UDP Query User{9506C8EC-35F8-4924-9A04-F9FA8102BAD0}C:\users\mihal\appdata\local\fivem\fivem.exe] => (Allow) C:\users\mihal\appdata\local\fivem\fivem.exe => No File
FirewallRules: [TCP Query User{158623E8-91C2-4537-986F-3F1231560B57}C:\users\mihal\appdata\local\fivem\fivem.exe] => (Allow) C:\users\mihal\appdata\local\fivem\fivem.exe => No File
FirewallRules: [UDP Query User{0B267104-AEBE-4C05-A646-CFF768D47C75}D:\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs.exe => No File
FirewallRules: [TCP Query User{E474F8E5-A6C1-41DF-9C40-A2C981DFA183}D:\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs.exe => No File
FirewallRules: [UDP Query User{B4F95B7B-BC5E-45A8-AE29-46F867AA10D2}C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser => No File
FirewallRules: [TCP Query User{EA934701-01B5-4B53-9D50-03BF05A90675}C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\mihal\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser => No File
FirewallRules: [{BC55B9A8-84ED-4B52-9B8E-FF1038C11983}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe => No File
FirewallRules: [{41C0493A-0ABC-47EA-B591-212196BB4B07}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe => No File
FirewallRules: [{96542104-CD9C-448F-A55B-0B461078FC4D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe => No File
FirewallRules: [{FC7A626E-935C-4F99-B51B-942442A921A2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe => No File
FirewallRules: [UDP Query User{C77D3328-EAF8-46A3-84E9-780A77B7259E}D:\steam\steamapps\common\call of duty hq\cod22\cod22-cod.exe] => (Allow) D:\steam\steamapps\common\call of duty hq\cod22\cod22-cod.exe => No File
FirewallRules: [TCP Query User{1A039A94-1105-4EDA-97D7-7B0500F88A90}D:\steam\steamapps\common\call of duty hq\cod22\cod22-cod.exe] => (Allow) D:\steam\steamapps\common\call of duty hq\cod22\cod22-cod.exe => No File
FirewallRules: [UDP Query User{61A25B36-5174-448E-910E-1E45A8D9CB04}D:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) D:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{9E68087F-C7B6-4E7A-9E2B-47D888DD7E4A}D:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) D:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{E101CA2C-FFB2-4921-9B54-3C904C94918D}D:\riot games\riot client\riotclientservices.exe] => (Allow) D:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{B4E118C0-4F02-4C10-A3C9-D4E156AEAA8F}D:\riot games\riot client\riotclientservices.exe] => (Allow) D:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{4B64379B-80AA-47EB-B160-4AA8058528F9}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{096C54FF-41FD-42A5-B15B-94DA8414D2E8}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{09C167E1-0381-43DC-9F55-4B1E5FF82853}] => (Allow) C:\Users\mihal\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe => No File
FirewallRules: [{B55CDECD-71F5-4475-891A-FB1B70D8543A}] => (Allow) C:\Users\mihal\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe => No File
FirewallRules: [UDP Query User{2B738E8C-3C4C-4616-ACE3-2AFA0FD58A54}D:\hry\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) D:\hry\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [TCP Query User{C41EC3E0-32CA-4A82-A400-B2C6ED2A69B2}D:\hry\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) D:\hry\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [UDP Query User{DDFF5A5A-7D11-444D-AF7F-5286034B7326}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{5A6CBB7C-96A7-4025-A088-E80FB4C9297F}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{6D674645-B17F-4641-B380-E85A1E3E0635}D:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{FBAA74C1-028E-424A-A222-DB05910AF9E8}D:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{A9BA1A98-C440-4B75-887C-4FE187122115}] => (Allow) D:\Steam\steamapps\common\Gangstar NY Playtest\GangstarClient.exe => No File
FirewallRules: [{DC64ACAE-1E7C-43D5-83B3-02262CC0BFEE}] => (Allow) D:\Steam\steamapps\common\Gangstar NY Playtest\GangstarClient.exe => No File
FirewallRules: [UDP Query User{A5F52356-A79B-47FC-9BB6-8C0818EE16DD}C:\users\mihal\appdata\local\discord\app-1.0.9013\discord.exe] => (Allow) C:\users\mihal\appdata\local\discord\app-1.0.9013\discord.exe => No File
FirewallRules: [TCP Query User{1FB102F9-AE99-43B4-8ED9-E7FC4FB3792F}C:\users\mihal\appdata\local\discord\app-1.0.9013\discord.exe] => (Allow) C:\users\mihal\appdata\local\discord\app-1.0.9013\discord.exe => No File
FirewallRules: [UDP Query User{3DF270CF-CAA9-4FF1-8C6B-5F12440CACC5}D:\xboxgames\forza horizon 5\content\forzahorizon5.exe] => (Allow) D:\xboxgames\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed?]
FirewallRules: [TCP Query User{C4CE7F88-4819-4335-8097-1FB90CA02498}D:\xboxgames\forza horizon 5\content\forzahorizon5.exe] => (Allow) D:\xboxgames\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed?]
FirewallRules: [{839F25ED-1967-489D-B95E-96E4973A2FB5}] => (Allow) C:\Users\mihal\Downloads\TeamViewerQS.exe => No File
FirewallRules: [{37E1A1E2-605A-4972-ABE8-DFECBD635608}] => (Allow) C:\Users\mihal\Downloads\TeamViewerQS.exe => No File
FirewallRules: [{A1E59E0B-941A-4605-AC3E-17A3C22F881B}] => (Allow) C:\Users\mihal\Downloads\TeamViewerQS.exe => No File
FirewallRules: [{093C1281-07C4-4BA2-8011-FE9D938D8487}] => (Allow) C:\Users\mihal\Downloads\TeamViewerQS.exe => No File
FirewallRules: [{EB416915-1E65-474E-B448-23DBF065A011}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{F6D8AB6D-DFDF-4255-9F53-0B3E4848784D}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{FBA0A0CF-CF4B-4A0D-BDFE-D86F045EA425}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
FirewallRules: [{608A643B-94C6-4034-918C-2FBA21C30C6F}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
FirewallRules: [{BD4228B1-8C47-4DD3-A9E5-A552E7F01CA6}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{815A42FE-7945-498B-9035-EF1BEA41C01D}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{C11D4EED-64A3-48F1-8E14-56418F238811}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
FirewallRules: [{0ADD162D-4FC7-48EA-BD6D-8096D923D143}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
FirewallRules: [{78F757A4-08A9-4F46-8530-CCFD14E2E76B}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{19CD19DF-4C23-422E-BCAA-C5B7961E4F32}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D77EF3DF-211F-4ABC-B05C-C3B92D6A7D02}] => (Allow) D:\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A05B212D-C4E3-41FF-92A5-2769A4C3F0F9}] => (Allow) D:\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6B98A4C4-BE40-48B6-BF5A-051CFB0BFB53}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{9F592C4F-A2DD-4ED8-BE8C-8E98C018ED48}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [TCP Query User{0104BA86-8F6C-4B57-9169-A796CB83E84F}C:\users\mihal\appdata\local\faceit\app-2.0.27\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.27\faceit.exe => No File
FirewallRules: [UDP Query User{815A790A-4E23-4BB0-A144-F8E308A076A9}C:\users\mihal\appdata\local\faceit\app-2.0.27\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.27\faceit.exe => No File
FirewallRules: [{C44C94AB-7FFB-4851-B9A5-18870A865F14}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{608A6B53-9507-41EF-901C-8F413E86C351}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{95A7A9A2-3FF0-4825-B901-6525A74B0D69}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{5A4EF743-9EF4-4700-AFDB-0F7143293EE4}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [TCP Query User{48C39409-BA4E-4A0A-8A2F-881AB9703F27}C:\users\mihal\appdata\local\faceit\app-2.0.29\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.29\faceit.exe => No File
FirewallRules: [UDP Query User{74CC86BB-5B47-4348-9D3C-1C189888AE3F}C:\users\mihal\appdata\local\faceit\app-2.0.29\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.29\faceit.exe => No File
FirewallRules: [TCP Query User{29BA3484-73BC-413D-A633-FAD7D4424990}C:\users\mihal\appdata\local\faceit\app-2.0.31\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.31\faceit.exe (ESL Gaming GmbH -> FACEIT Ltd.)
FirewallRules: [UDP Query User{5427ADFC-DE02-474A-A2FC-955DA04EA9D3}C:\users\mihal\appdata\local\faceit\app-2.0.31\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.31\faceit.exe (ESL Gaming GmbH -> FACEIT Ltd.)
FirewallRules: [{BA1DFF91-0436-4735-BB67-F0AB9877BDFC}] => (Allow) C:\Program Files (x86)\Overwolf\0.266.1.25\OverwolfBrowser.exe => No File
FirewallRules: [{5A5F3A9C-3F51-4B79-BB32-226378526749}] => (Allow) C:\Program Files (x86)\Overwolf\0.266.1.25\OverwolfBrowser.exe => No File
FirewallRules: [{2052B992-123B-441E-9EB1-0F12DF185F22}] => (Block) C:\Program Files (x86)\Overwolf\0.266.1.25\OverwolfBrowser.exe => No File
FirewallRules: [{82B9527A-4AAD-4FFA-8475-DA5A90619D52}] => (Block) C:\Program Files (x86)\Overwolf\0.266.1.25\OverwolfBrowser.exe => No File
FirewallRules: [{2398BB5D-E6BC-4912-8BF3-FDF17945F9A0}] => (Allow) C:\Users\mihal\AppData\Local\Overwolf\ProcessCache\0.263.0.11\pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh\Porofessor.gg.exe => No File
FirewallRules: [{6A972FD3-6931-4185-9254-5C7D5D1B67E0}] => (Allow) C:\Users\mihal\AppData\Local\Overwolf\ProcessCache\0.263.0.11\pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh\Porofessor.gg.exe => No File
FirewallRules: [{A1F9B1B6-37E9-4A9E-BDC9-0EA9B41A0EBD}] => (Block) C:\Users\mihal\AppData\Local\Overwolf\ProcessCache\0.263.0.11\pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh\Porofessor.gg.exe => No File
FirewallRules: [{9715E4F3-C5AE-4446-88AC-FBD9BC9A5D1C}] => (Block) C:\Users\mihal\AppData\Local\Overwolf\ProcessCache\0.263.0.11\pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh\Porofessor.gg.exe => No File
FirewallRules: [{DB71CECC-6974-48B2-AC2B-9647B98DE2F5}] => (Allow) C:\Program Files (x86)\Overwolf\0.263.0.11\OverwolfBrowser.exe => No File
FirewallRules: [{C64AB611-2195-462C-977E-8D4643BA62C7}] => (Allow) C:\Program Files (x86)\Overwolf\0.263.0.11\OverwolfBrowser.exe => No File
FirewallRules: [{B01D847A-EC9D-4D3D-98D2-99F634FC1A10}] => (Block) C:\Program Files (x86)\Overwolf\0.263.0.11\OverwolfBrowser.exe => No File
FirewallRules: [{C0CFFDD9-0327-424F-A2F1-2378EDACC223}] => (Block) C:\Program Files (x86)\Overwolf\0.263.0.11\OverwolfBrowser.exe => No File
FirewallRules: [{65A2F2F6-EF7F-4B9F-B640-87F7348B676A}] => (Allow) C:\Program Files (x86)\Overwolf\0.266.1.26\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{7FD038F0-913E-401B-A030-01C5ED228EBD}] => (Allow) C:\Program Files (x86)\Overwolf\0.266.1.26\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [TCP Query User{BCE2A046-8C8A-4445-80D9-208A24834EB8}D:\xboxgames\spyro- reignited trilogy\content\falcon\binaries\win64\spyro-win64-shipping.exe] => (Allow) D:\xboxgames\spyro- reignited trilogy\content\falcon\binaries\win64\spyro-win64-shipping.exe (Access Denied) [File not signed?]
FirewallRules: [UDP Query User{E4267439-56CE-4179-B470-7F2185AE14C2}D:\xboxgames\spyro- reignited trilogy\content\falcon\binaries\win64\spyro-win64-shipping.exe] => (Allow) D:\xboxgames\spyro- reignited trilogy\content\falcon\binaries\win64\spyro-win64-shipping.exe (Access Denied) [File not signed?]
FirewallRules: [TCP Query User{31D1C107-BA7C-4A9B-B9B9-9D93DDCD5C08}C:\users\mihal\downloads\fivem.app\data\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\mihal\downloads\fivem.app\data\cache\subprocess\fivem_chromebrowser (Cfx.re) [File not signed]
FirewallRules: [UDP Query User{5C3ECDE3-6671-404B-B899-137C9965B522}C:\users\mihal\downloads\fivem.app\data\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\mihal\downloads\fivem.app\data\cache\subprocess\fivem_chromebrowser (Cfx.re) [File not signed]
FirewallRules: [{EDB4CEED-C142-4032-B84C-3470EA287DFA}] => (Allow) D:\Steam\steamapps\common\Car Mechanic Simulator 2015\cms2015.exe () [File not signed]
FirewallRules: [{6487597D-7888-408F-BB6F-9786CEB4FEDF}] => (Allow) D:\Steam\steamapps\common\Car Mechanic Simulator 2015\cms2015.exe () [File not signed]
FirewallRules: [{131E4F83-B71D-4681-8A6D-174544FC2C0D}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.31.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{EC9F4781-F662-49CA-B22F-B025E5BFD6C9}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.31.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{BCAB9CCB-8226-4547-8D84-99EA70742809}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.31.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{4B831947-26EA-419E-8EBF-AD3964B09895}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.31.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F050DCF5-A4BF-478F-90F2-8337E1969A1F}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{842DD633-610B-4C28-88CE-0F40C1B26EA7}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{000ED943-6E2D-4D0C-A984-A16032450454}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24348.802.3311.5092_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{716DF140-8642-4C12-8E41-C9BC375797E5}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24348.802.3311.5092_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0F3E8955-BB47-43AA-9225-F87E58E3CAD2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{88808E83-7B3D-4335-B580-A25F4B0C2487}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{62177C4E-F3D9-421C-BB85-E9A3100157D7}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2AE04479-9686-4F6D-9EBC-2DAF3D9A8696}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6DF419FB-FA0D-4684-ACB3-5B77686AFEB8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{5097EA7C-C241-429B-94B1-975A0364FE90}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2030D686-1075-4326-B20D-D446A15FD392}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{83D37EEB-097E-4EBA-B927-837627AB41BD}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F42628B1-937E-472A-A99D-F041C7288181}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2D29FBAE-1D86-48B1-BD4B-F2EA958C5AFF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B7A529AD-FD18-4244-91BE-533F1B8EDFE6}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{14A7BE66-515D-4694-8588-FBBB914700F0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{EF41C629-024C-412D-88B9-4ED146F74736}C:\users\mihal\appdata\local\faceit\app-2.0.33\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.33\faceit.exe (ESL Gaming GmbH -> FACEIT Ltd.)
FirewallRules: [UDP Query User{91A175EB-FB4C-4E8E-BD36-E50DABDAEF5F}C:\users\mihal\appdata\local\faceit\app-2.0.33\faceit.exe] => (Allow) C:\users\mihal\appdata\local\faceit\app-2.0.33\faceit.exe (ESL Gaming GmbH -> FACEIT Ltd.)
FirewallRules: [{4AE3DA50-5A4F-41C4-BFF4-EAFE95C4938D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CA035181-757F-4C85-B124-6513E41C9C8F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BF5253B2-6DCD-41DA-B4AB-D527F06232F5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{44F3EE78-C05B-440A-BFCF-960EAE0F4349}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9F13CA6E-6552-4A41-8E9A-89AF1225A9BA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{30BA3E46-FCB5-4AD1-8CFF-67311F323A85}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3AC0CCD8-5C39-4A4C-8424-D0C1FA4989B4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BED1E57C-CDBF-46CF-BAA0-2349BE446838}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DDA2999B-5314-4016-955F-BDCC56F0BF3A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F1A0D3DF-37D9-4273-9D6F-6C59A544A9F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BED609C3-9F78-4ECE-9FFA-36387147938E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.146\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{839F4B33-9D3C-4751-B10C-B19BA0A5BA59}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{6C5F687F-B766-47D0-A4DC-EB0CE5523C58}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_05f0e8a0cc7f395e\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{FD61458B-A3B8-4FDA-87C0-ABE10BD9292D}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [{B393C214-41A1-4D6C-9D15-2B259D155654}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:124.16 GB) (Free:13.73 GB) (11%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/20/2025 10:55:09 AM) (Source: .NET Runtime) (EventID: 1023) (User: )
Description: Description: A .NET application failed.
Application: AacAmbientLighting.exe
Path: C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe
Message: Cannot use file stream for [C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json]: No such file or directory
Error initializing the dependency resolver: A fatal error was encountered, missing dependencies manifest at: C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json
Error: (01/20/2025 10:55:08 AM) (Source: .NET Runtime) (EventID: 1023) (User: )
Description: Description: A .NET application failed.
Application: AacAmbientLighting.exe
Path: C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe
Message: Cannot use file stream for [C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json]: No such file or directory
Error initializing the dependency resolver: A fatal error was encountered, missing dependencies manifest at: C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json
Error: (01/20/2025 10:55:06 AM) (Source: .NET Runtime) (EventID: 1023) (User: )
Description: Description: A .NET application failed.
Application: AacAmbientLighting.exe
Path: C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe
Message: Cannot use file stream for [C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json]: No such file or directory
Error initializing the dependency resolver: A fatal error was encountered, missing dependencies manifest at: C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json
Error: (01/20/2025 10:55:04 AM) (Source: .NET Runtime) (EventID: 1023) (User: )
Description: Description: A .NET application failed.
Application: AacAmbientLighting.exe
Path: C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe
Message: Cannot use file stream for [C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json]: No such file or directory
Error initializing the dependency resolver: A fatal error was encountered, missing dependencies manifest at: C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json
Error: (01/20/2025 10:55:03 AM) (Source: .NET Runtime) (EventID: 1023) (User: )
Description: Description: A .NET application failed.
Application: AacAmbientLighting.exe
Path: C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe
Message: Cannot use file stream for [C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json]: No such file or directory
Error initializing the dependency resolver: A fatal error was encountered, missing dependencies manifest at: C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json
Error: (01/20/2025 10:55:01 AM) (Source: .NET Runtime) (EventID: 1023) (User: )
Description: Description: A .NET application failed.
Application: AacAmbientLighting.exe
Path: C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe
Message: Cannot use file stream for [C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json]: No such file or directory
Error initializing the dependency resolver: A fatal error was encountered, missing dependencies manifest at: C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json
Error: (01/20/2025 10:54:59 AM) (Source: .NET Runtime) (EventID: 1023) (User: )
Description: Description: A .NET application failed.
Application: AacAmbientLighting.exe
Path: C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe
Message: Cannot use file stream for [C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json]: No such file or directory
Error initializing the dependency resolver: A fatal error was encountered, missing dependencies manifest at: C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json
Error: (01/20/2025 10:54:58 AM) (Source: .NET Runtime) (EventID: 1023) (User: )
Description: Description: A .NET application failed.
Application: AacAmbientLighting.exe
Path: C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe
Message: Cannot use file stream for [C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json]: No such file or directory
Error initializing the dependency resolver: A fatal error was encountered, missing dependencies manifest at: C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.16\Microsoft.NETCore.App.deps.json
System errors:
=============
Error: (01/20/2025 09:53:42 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Služba Google Update (gupdate) zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.
Error: (01/20/2025 09:53:42 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Služba Google Update (gupdate) bol dosiahnutý časový limit (30000 ms).
Error: (01/20/2025 09:51:39 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba GameInput Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 6-krát.
Error: (01/20/2025 09:51:39 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba GameInput Service bola ukončená s nasledujúcou chybou:
The compound file GameInput Service was produced with a newer version of storage.
Error: (01/20/2025 09:51:38 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba GameInput Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 5 krát. O 1000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
Error: (01/20/2025 09:51:38 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba GameInput Service bola ukončená s nasledujúcou chybou:
The compound file GameInput Service was produced with a newer version of storage.
Error: (01/20/2025 09:51:37 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba GameInput Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 4 krát. O 1000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
Error: (01/20/2025 09:51:37 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba GameInput Service bola ukončená s nasledujúcou chybou:
The compound file GameInput Service was produced with a newer version of storage.
Windows Defender:
================
Date: 2024-12-14 02:34:29
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]
Date: 2025-01-20 03:44:00
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.
Date: 2025-01-20 03:38:49
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.
Date: 2024-12-31 22:29:06
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Current
Error Code: 0x80501102
Error description: Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.
Security intelligence Version: 1.421.985.0;1.421.985.0
Engine Version: 1.1.24090.11
Date: 2024-12-24 22:28:26
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Current
Error Code: 0x80501102
Error description: Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.
Security intelligence Version: 1.421.928.0;1.421.928.0
Engine Version: 1.1.24090.11
Date: 2024-12-06 06:04:06
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.421.644.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24090.11
Error code: 0x8024001e
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.
CodeIntegrity:
===============
Date: 2025-01-20 10:53:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2025-01-20 10:03:49
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2025-01-20 09:57:38
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends International, LLC. G513IM.329 03/01/2023
Motherboard: ASUSTeK COMPUTER INC. G513IM
Processor: AMD Ryzen 7 4800H with Radeon Graphics
Percentage of memory in use: 29%
Total physical RAM: 32175.11 MB
Available physical RAM: 22834.16 MB
Total Virtual: 44463.11 MB
Available Virtual: 33544.37 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:124.16 GB) (Free:13.73 GB) (Model: SAMSUNG MZVLQ1T0HBLB-00B00) NTFS
Drive d: () (Fixed) (Total:828.87 GB) (Free:278.54 GB) (Model: SAMSUNG MZVLQ1T0HBLB-00B00) NTFS
\\?\Volume{1841eaa1-a92f-4922-8799-75c56d62d7e6}\ () (Fixed) (Total:0.72 GB) (Free:0.13 GB) NTFS
\\?\Volume{31e8dcff-ccd7-4020-a2da-bbd12a5f427f}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: 7D28C74F)
Partition: GPT.
==================== End of Addition.txt =======================
Ďakujem veľmi pekne už som z toho na nervy .... ešte som zamietol tie vbs aby k tomu nebol pristup tak teraz sa sice objaví tabuľka ale píše že Prístup k programu Windows Script Host je na tomto počítači vypnutý. Ďakujem
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
začalo mi vyskakovať okno Windows Script Host
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: začalo mi vyskakovať okno Windows Script Host
Ahoj,
pouzi fixlist s obsahom:
Start
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {3D9A56AF-53E4-4521-8303-E439A9FC3DBA} - System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService2mihal => C:\Windows\System32\InteL\Microsoft\sd.vbs (No File) <==== ATTENTION
Task: {5E1370EC-8263-47F5-B4BD-CF8A01DF359D} - System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService3mihal => C:\Windows\System32\InteL\Microsoft\spoof.vbs (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
EmptyTemp:
End
pouzi fixlist s obsahom:
Start
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {3D9A56AF-53E4-4521-8303-E439A9FC3DBA} - System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService2mihal => C:\Windows\System32\InteL\Microsoft\sd.vbs (No File) <==== ATTENTION
Task: {5E1370EC-8263-47F5-B4BD-CF8A01DF359D} - System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService3mihal => C:\Windows\System32\InteL\Microsoft\spoof.vbs (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
EmptyTemp:
End
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: začalo mi vyskakovať okno Windows Script Host
Ako fixlist vieš mi poslať nejaký navod mám dať novy textový dokument alebo ?
Re: začalo mi vyskakovať okno Windows Script Host
mám toJaRon píše: 20 led 2025 11:45 Ahoj,
pouzi fixlist s obsahom:
Start
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {3D9A56AF-53E4-4521-8303-E439A9FC3DBA} - System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService2mihal => C:\Windows\System32\InteL\Microsoft\sd.vbs (No File) <==== ATTENTION
Task: {5E1370EC-8263-47F5-B4BD-CF8A01DF359D} - System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService3mihal => C:\Windows\System32\InteL\Microsoft\spoof.vbs (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
EmptyTemp:
End
Fix result of Farbar Recovery Scan Tool (x64) Version: 19-01-2025
Ran by mihal (20-01-2025 17:07:38) Run:1
Running from C:\Users\mihal\OneDrive\Počítač
Loaded Profiles: mihal
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {3D9A56AF-53E4-4521-8303-E439A9FC3DBA} - System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService2mihal => C:\Windows\System32\InteL\Microsoft\sd.vbs (No File) <==== ATTENTION
Task: {5E1370EC-8263-47F5-B4BD-CF8A01DF359D} - System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService3mihal => C:\Windows\System32\InteL\Microsoft\spoof.vbs (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
EmptyTemp:
End
*****************
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Location\Notifications" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3D9A56AF-53E4-4521-8303-E439A9FC3DBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D9A56AF-53E4-4521-8303-E439A9FC3DBA}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService2mihal => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Maintenance\SystemSoundsService2mihal" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5E1370EC-8263-47F5-B4BD-CF8A01DF359D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E1370EC-8263-47F5-B4BD-CF8A01DF359D}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Maintenance\SystemSoundsService3mihal => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Maintenance\SystemSoundsService3mihal" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9553207 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 948014396 B
Windows/system/drivers => 94137781 B
Edge => 0 B
Chrome => 834045501 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 37291220 B
systemprofile32 => 37291220 B
LocalService => 37431714 B
NetworkService => 37467922 B
mihal => 106498244 B
RecycleBin => 0 B
EmptyTemp: => 2 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 17:07:56 ====
Re: začalo mi vyskakovať okno Windows Script Host
vycisti PC s Ccleanerom vcetne registrov
Restart a napis, ako sa sprava PC
Restart a napis, ako sa sprava PC
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: začalo mi vyskakovať okno Windows Script Host
Tak dal som čistenie a aj registre cca 320 problémov po oprave som dal hladať znova a našlo dalších 35 .... Systém nabehol rychlejšie už ani hľadanie windowsu neseká a tak isto aj prehliadač ide rýchlejšie vieme ešte niekde skontrolovať či je všetko ok či niekde nieje ešte niečo "skryté" ?JaRon píše: 20 led 2025 17:49 vycisti PC s Ccleanerom vcetne registrov
Restart a napis, ako sa sprava PC
Re: začalo mi vyskakovať okno Windows Script Host
nateraz je to OK 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: začalo mi vyskakovať okno Windows Script Host
takže už nehrozí to že sa niekde bude schovavať ten trojan a vytvarať zložky ako tú C:/Users/Public/crack/LG/maware/Untitled.ps1 ?
Re: začalo mi vyskakovať okno Windows Script Host
Obcas to mozes prescanovat s Eset online
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: začalo mi vyskakovať okno Windows Script Host
Velmi pekne dakujem za pomoc
Re: začalo mi vyskakovať okno Windows Script Host
Rado sa stalo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?