Nepřijemný vir

[Erediel]

Zdravim,
včera jsem chytil dost nepřijemný vir. AVG hlásilo infekci v tmp souboru. Když jsem dal vložit do karantény ozvalo se AVG znovu s podobným souborem a tak pořád dokola. Dneska jsem počítač projel několika antiviry a zatím je AVG v klidu.Pořád tam , ale cítím že něco je. (občasné výpadky internetu v prohlížeči, zasekávání programů). Nemáte někdo podobnou zkušenost ? log FRST přikládám. AVG psalo , že zablokovali soubor něco.tmp , protože byl nakažený Win32: Whenu-H (PUP)

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[Erediel]

# -------------------------------
# Malwarebytes AdwCleaner 8.6.0.613
# -------------------------------
# Build: 08-19-2025
# Database: 2025-08-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-16-2025
# Duration: 00:00:03
# OS: Windows 11 (Build 26200.6899)
# Cleaned: 33
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\jang6\AppData\LocalLow\.acestream
Deleted C:\Users\jang6\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Users\jang6\AppData\Roaming\.acestream
Deleted C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
Deleted C:\Users\jang6\AppData\Roaming\acestream
Deleted C:\_acestream_cache_

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\SOFTWARE\Classes\Applications\ace_player.exe
Deleted HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive
Deleted HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia
Deleted HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream
Deleted HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive
Deleted HKCU\Software\AceStream
Deleted HKCU\Software\Classes\.acelive
Deleted HKCU\Software\Classes\.acemedia
Deleted HKCU\Software\Classes\.acestream
Deleted HKCU\Software\Classes\.tslive
Deleted HKCU\Software\Classes\AudioCD\shell\PlayWithACEStream
Deleted HKCU\Software\Classes\DVD\shell\PlayWithACEStream
Deleted HKCU\Software\Classes\acestream
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayCDAudioOnArrival
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDAudioOnArrival
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDMovieOnArrival
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayMusicFilesOnArrival
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlaySVCDMovieOnArrival
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVCDMovieOnArrival
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVideoFilesOnArrival
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
Deleted HKCU\Software\RegisteredApplications|AceStream
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{833BC4C4-E31B-409D-A11F-721FFA58BB16}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{FB8C1205-9BDA-4F52-8DFB-68DA0607BF9D}
Deleted HKLM\Software\Classes\.acestream
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{79690976-ED6E-403C-BBBA-F8928B5EDE17}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [5050 octets] - [28/12/2024 11:13:15]
AdwCleaner[S01].txt - [5113 octets] - [10/09/2025 16:08:02]
AdwCleaner[C01].txt - [4651 octets] - [10/09/2025 16:09:00]
AdwCleaner[S02].txt - [4713 octets] - [24/09/2025 17:54:00]
AdwCleaner[C02].txt - [4279 octets] - [24/09/2025 17:54:34]
AdwCleaner[S03].txt - [5746 octets] - [15/10/2025 20:01:53]
AdwCleaner[C03].txt - [5128 octets] - [15/10/2025 20:02:18]
AdwCleaner[S04].txt - [5117 octets] - [16/10/2025 18:02:59]
AdwCleaner[S05].txt - [5178 octets] - [16/10/2025 18:05:11]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C05].txt ##########

[Rudy]

OK. Dejte nové logy FRST+Addition.

[Erediel]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-10-2025
Ran by jang6 (administrator) on JAN (ASUS System Product Name) (16-10-2025 18:55:26)
Running from C:\Users\jang6\Downloads\FRST64(1).exe
Loaded Profiles: jang6
Platform: Microsoft Windows 11 Home Version 25H2 26200.6899 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft FZE LLC) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (IPTV Smarters Pro) [File not signed] C:\Users\jang6\AppData\Local\Programs\IPTVSmartersPro\IPTVSmartersPro.exe <3>
(explorer.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Users\jang6\Desktop\adwcleaner.exe
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <42>
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\1.2.40\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.03.12\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (Broadcom Inc -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(services.exe ->) (Broadcom Inc -> VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_901d8cfde13e2b8b\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(sihost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.49.0_x64__qmba6cd70vzyy\ModuleDll\Mouse\AsusMouseAgent.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2539.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_11.2507.1.0_x64__8wekyb3d8bbwe\Time.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.140.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [882856 2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1081648 2020-06-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3244896 2025-07-09] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-09-20] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Run: [MicrosoftEdgeAutoLaunch_43CBB9AF863412E490A7AA793951F47E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4265000 2025-10-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4728168 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Run: [Opera Stable] => C:\Users\jang6\AppData\Local\Programs\Opera\opera.exe [2081240 2025-10-08] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Run: [electron.app.BlueStacks Services] => C:\Users\jang6\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe [162219656 2024-05-08] (Now.gg, INC -> now.gg, Inc.)
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [484408 2024-09-21] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4694624 2025-04-02] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Run: [Viber] => C:\Users\jang6\AppData\Local\Viber\Viber.exe [106509712 2025-10-10] (Viber Media S.a r.l. -> Viber Media S.à r.l.)
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [41579480 2025-09-29] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Run: [Opera Browser Assistant] => C:\Users\jang6\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4712920 2025-09-11] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Run: [AceStream] => C:\Users\jang6\AppData\Roaming\ACEStream\engine\ace_engine.exe (No File)
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\MountPoints2: {ac9ea831-3014-11f0-a210-005056c00008} - "F:\setup.EXE" /AUTORUN
HKLM\...\Windows x64\Print Processors\Canon MP260 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9G.DLL [27648 2008-04-01] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MP280 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAA.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP260 series: C:\WINDOWS\system32\CNMLM9G.DLL [279040 2008-04-01] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP280 series: C:\WINDOWS\system32\CNMLMAA.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP280 series XPS: C:\WINDOWS\system32\CNMXLMAA.DLL [361472 2010-08-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\141.0.7390.66\Installer\chrmstp.exe [2025-10-11] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\139.0.31974.157\Installer\chrmstp.exe [2025-09-17] (Gen Digital Inc. -> Gen Digital Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2024-09-19]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {98BA4367-C981-4BA2-9D0E-350C3244CB2D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1581568 2025-08-24] (Adobe Inc. -> Adobe Inc.)
Task: {19BFB401-3C31-46DB-B13A-9E29E9E7B4E4} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [401816 2025-07-11] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {9FC5EAAE-0D96-4FC9-AB90-826B878563C9} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\TaskSchedulerTool_ArmourySocketServer.exe [120728 2025-07-11] (ASUSTeK COMPUTER INC. -> TODO: <公司名稱>)
Task: {AB935269-C57D-42A4-9661-342E4350AC08} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1db66c979fb950 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [249192 2025-01-14] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {30210964-B9E4-4674-819F-1F4B0080BD4F} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [249192 2025-01-14] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {3E464551-7D40-4745-87D4-7580CB78BABE} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1261928 2024-04-09] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {6EDED86D-FC10-4B4B-8FBB-8FA52268739F} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {B3710BBD-8292-4AC9-91A6-8DB3016560DA} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3595344 2025-09-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {17537C16-3C29-434D-99A6-A23D84C7FB60} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3595344 2025-09-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {A4B4D394-1CAE-45A7-BC40-1B29DC86E585} - System32\Tasks\Avast Secure Browser VPS Differential Update S-1-5-18 => C:\Program Files\AVAST Software\Browser\Application\vps_helper.exe [1676528 2025-09-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {94CD361F-6107-46C2-9E91-113E17C2EDB3} - System32\Tasks\AvastBrowserProtectS-1-5-21-1549321770-275972891-217463218-1002 => C:\Program Files\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1762528 2025-09-11] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {1D0D1B2C-763D-4881-8AC0-39C25A2CF08C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-09-17] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {7C30D7DE-A8E0-4864-94E7-77FEE1C47803} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-09-17] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {2C234713-10AD-4DA0-B722-172F9A6FDBBD} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5610664 2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {F9948D80-8DE1-4A25-9172-F6C5252CBBE2} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [9096928 2025-09-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {D35A8144-2FB1-4753-A42A-EE24D08FA2A2} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [3014368 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {C732700D-6FD0-461C-AB54-357C6E5AE08F} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [302968 2024-09-16] (Now.gg, INC -> BlueStack Systems, Inc.)
Task: {7D2AA56F-CC4F-47EB-9E17-92AE4212CEC7} - System32\Tasks\BrowserWorks\Waterfox Default Browser Agent 6F940AC27A98DD61 => C:\Program Files\Waterfox\default-browser-agent.exe [31800 2025-09-11] (BROWSERWORKS LTD -> Mozilla Foundation)
Task: {E4CC3515-23DD-4A4A-9D05-8CC8EB7E9A47} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [3129376 2025-09-30] (Microsoft Windows -> Microsoft Corporation)
Task: {593A29AB-95C1-4BF5-8BAC-7BD7E9639FDF} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem142.0.7416.0{7F0D376B-55A1-46B0-BB85-FE88D0431202} => C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe [6863512 2025-09-15] (Google LLC -> Google LLC)
Task: {3444FBDC-E550-437B-BF6C-FD1F67960266} - System32\Tasks\CheckPointUpdateTaskMachineCore => C:\Program Files (x86)\CheckPoint\Update\ZoneAlarmUpdate.exe /c (No File)
Task: {EA58BB6C-990C-49FC-9689-ED10ACB3D3F8} - System32\Tasks\CheckPointUpdateTaskMachineUA => C:\Program Files (x86)\CheckPoint\Update\ZoneAlarmUpdate.exe /ua /installsource scheduler (No File)
Task: {A74E7ED0-2A71-4C2E-9A99-B294A6B754B6} - System32\Tasks\IObit HLW2025Sale (One-time) => "C:\Program Files (x86)\IObit\IObit Malware Fighter\pub\Hlwen25.exe" -> C:\Program Files (x86)\IObit\IObit Malware Fighter\pub\\/rpop
Task: {2A90E75E-0A34-42B6-AE86-BD2585626B6F} - System32\Tasks\iTop hallow2025 Task (One-Time) => C:\Program Files (x86)\iTop VPN\Pub\itopenhl25.exe [2930480 2025-10-13] (Chengdu ShanHe Technology Co., Ltd. -> iTop Inc.) -> C:\Program Files (x86)\iTop VPN\Pub\\/rpop
Task: {CBABB863-61B7-4E52-A8B9-A3D2E9027291} - System32\Tasks\iTopVPN_SkipUAC_jang6 => C:\Program Files (x86)\iTop VPN\iTopVPN.exe [8592168 2025-09-19] (Chengdu ShanHe Technology Co., Ltd. -> iTop Inc.) -> C:\Program Files (x86)\iTop VPN\\/SkipUac
Task: {2A11B841-31BC-40FC-A027-D9D91CB02D57} - System32\Tasks\iTopVPN_Update_jang6 => C:\Program Files (x86)\iTop VPN\atud.exe [3419944 2025-08-26] (Chengdu ShanHe Technology Co., Ltd. -> iTop Inc.) -> C:\Program Files (x86)\iTop VPN\\/auto
Task: {5CF4283C-5C3F-459D-BD19-64084C587AC3} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {8BAAD03B-BFE4-4D37-9669-4558EF3A12DA} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ActionsServer\ActionsServer.exe [16954752 2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {4DC20408-A51E-486B-9651-15E734DE85CE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29038432 2025-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {09C14DC0-40C3-46E8-9C11-07BAAA97F0F7} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [70464 2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {A8E5B7A7-CFEF-4A28-8B44-1A3E12EF2123} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29038432 2025-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {314B7B65-1650-4DDF-BB69-61FBD14BA10F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [318720 2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {B829C788-4A7C-4A48-9AED-A0F76D9A7EF1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [318720 2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {CFD55FAC-B74F-4550-A16B-C5FA35515DFA} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [1365304 2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {5EE68274-1D4B-4953-8A5A-AB2F9FD3B601} - System32\Tasks\Microsoft\Windows\UsageAndQualityInsights\UsageAndQualityInsights-MaintenanceTask => C:\Windows\System32\Microsoft.Data.UsageAndQualityInsights.MaintenanceTask.exe [86016 2025-09-30] (Microsoft Windows -> )
Task: {B9E6AF5A-E4EF-421D-A08A-3AA31AE6F5C4} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1549321770-275972891-217463218-1002 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [693376 2025-10-14] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {6813F4E2-9D56-423B-9070-412A2F21C8A8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34944 2025-10-14] (Mozilla Corporation -> Mozilla Foundation)
Task: {67E4A4B0-F15F-43D3-8C74-C5C48B937D0A} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [3685360 2015-06-04] (Nero AG -> Nero AG)
Task: {5C1CAF7D-AB74-4AC0-8D7E-523A30D1428F} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3323936 2025-08-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {571A2A93-1DE3-4948-8550-71B24E29C2B3} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4232552 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DAA590B-E39A-41CE-8B65-94F4BD46637A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1549321770-275972891-217463218-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4232552 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D595AA25-3F4F-49CA-963A-84FE943390DA} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1549321770-275972891-217463218-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (No File) <==== ATTENTION
Task: {C8CA7F50-C745-4565-97C0-386E98CA30CF} - System32\Tasks\OneDrive Startup Task-S-1-5-21-1549321770-275972891-217463218-1002 => C:\Program Files\Microsoft OneDrive\25.179.0914.0003\OneDriveLauncher.exe [725864 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {C49B0A14-D0A1-4348-ACED-4116BA39BEDE} - System32\Tasks\Opera scheduled assistant Autoupdate 1726567477 => C:\Users\jang6\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5956056 2025-09-29] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --installdir="C:\Users\jang6\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {68FA6956-E508-473C-9117-5799F32D9430} - System32\Tasks\Opera scheduled Autoupdate 1726567475 => C:\Users\jang6\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5956056 2025-09-29] (Opera Norway AS -> Opera Software)
Task: {67735798-8ADC-4AC9-84DA-420511C29B11} - System32\Tasks\pyramidak Kalendar => C:\Users\jang6\AppData\Local\pyramidak\Kalendar\Kalendar.exe [876032 2025-09-25] (pyramidak) [File not signed]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{71b07970-d111-4811-bd6f-3c4989cae995}: [DhcpNameServer] 10.0.0.138

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jang6\AppData\Local\Microsoft\Edge\User Data\Default [2025-10-15]
Edge HomePage: Default -> hxxp://lenovo17win10.msn.com/?pc=LCTE
Edge Extension: (Dokumenty Google offline) - C:\Users\jang6\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-10-14]
Edge Extension: (Edge relevant text changes) - C:\Users\jang6\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-09-17]

FireFox:
========
FF DefaultProfile: m87jf203.68-edition-default
FF DefaultProfile: wq76y0rd.default
FF ProfilePath: C:\Users\jang6\AppData\Roaming\Waterfox\Profiles\m87jf203.68-edition-default [2025-10-04]
FF ProfilePath: C:\Users\jang6\AppData\Roaming\Waterfox\Profiles\qg4zwb13.default-release [2025-10-16]
FF ProfilePath: C:\Users\jang6\AppData\Roaming\Mozilla\Firefox\Profiles\wq76y0rd.default [2025-09-26]
FF ProfilePath: C:\Users\jang6\AppData\Roaming\Mozilla\Firefox\Profiles\8w6gnarp.default-release [2025-10-16]
FF Session Restore: Mozilla\Firefox\Profiles\8w6gnarp.default-release -> is enabled.
FF Extension: (New Tab) - C:\Users\jang6\AppData\Roaming\Mozilla\Firefox\Profiles\8w6gnarp.default-release\Extensions\newtab@mozilla.org.xpi [2025-10-08]
FF Extension: (MetaMask) - C:\Users\jang6\AppData\Roaming\Mozilla\Firefox\Profiles\8w6gnarp.default-release\Extensions\webextension@metamask.io.xpi [2025-10-14]
FF Extension: (Data Leak Blocker) - C:\Users\jang6\AppData\Roaming\Mozilla\Firefox\Profiles\8w6gnarp.default-release\features\{f8f213b2-3956-468d-8fe8-99aa83e1fefb}\data-leak-blocker@mozilla.com.xpi [2025-10-04]
FF HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\jang6\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-09-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-09-29] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-09-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-08-28] (Nero AG -> Nero AG)
FF Plugin-x32: @tools.google.com/CheckPoint Update;version=3 -> C:\Program Files (x86)\CheckPoint\Update\1.3.99.0\npZoneAlarmUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/CheckPoint Update;version=9 -> C:\Program Files (x86)\CheckPoint\Update\1.3.99.0\npZoneAlarmUpdate3.dll [No File]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2024-09-17] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2024-09-17] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin HKU\S-1-5-21-1549321770-275972891-217463218-1002: @acestream.net/acestreamplugin,version=3.2.8 -> C:\Users\jang6\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\jang6\AppData\Local\Google\Chrome\User Data\Default [2025-10-15]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\jang6\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-09-26]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\jang6\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2025-09-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\jang6\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-09-26]
CHR Extension: (Ace Script) - C:\Users\jang6\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2025-09-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jang6\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-09-17]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-1549321770-275972891-217463218-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-1549321770-275972891-217463218-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

Opera:
=======
OPR DefaultProfile: Default

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174584 2025-08-24] (Adobe Inc. -> Adobe Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.03.12\atkexComSvc.exe [908648 2025-03-03] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [249192 2025-01-14] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\1.2.40\AsusCertService.exe [497560 2025-08-21] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [249192 2025-01-14] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [681832 2025-01-14] (ASUSTeK COMPUTER INC. -> ASUS)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [845256 2025-10-16] (ASUSTeK Computer Inc. -> )
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-09-17] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-09-17] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\139.0.31974.157\elevation_service.exe [2436304 2025-09-12] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [1073320 2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2671784 2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1126056 2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7810216 2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-09-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13343584 2025-09-28] (Microsoft Corporation -> Microsoft Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4939320 2024-09-21] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
S2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [222104 2020-08-22] (DTS, Inc. -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.179.0914.0003\FileSyncHelper.exe [3627896 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2024-09-25] (Macrovision Europe Ltd.) [File not signed]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [345904 2024-08-14] (Underwriters Laboratories Inc. -> Futuremark)
S2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] (Canon Inc. -> )
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [5051288 2025-08-22] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9608720 2025-10-15] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-10-15] (Malwarebytes Inc. -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [951024 2025-10-16] (McAfee, LLC -> McAfee, LLC)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 MEmuSVC; D:\Program Files\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> )
S3 midisrv; C:\WINDOWS\system32\midisrv.exe [593920 2025-09-30] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_901d8cfde13e2b8b\Display.NvContainer\NVDisplay.Container.exe [1275600 2025-09-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.179.0914.0003\OneDriveUpdaterService.exe [3912056 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
S2 ProgDVBService; C:\Program Files\ProgDVB x64\ProgDvbService.exe [116176 2025-04-26] (IP Borodin Andrey Gennadievich -> )
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v4.2.1\ProtonVPNService.exe [464624 2025-07-16] (Proton AG -> ProtonVPN)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [2493032 2025-09-03] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S2 VMAuthdService; C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [77176 2024-10-03] (Broadcom Inc -> VMware, Inc.)
S2 VMnetDHCP; C:\WINDOWS\SysWOW64\vmnetdhcp.exe [373112 2024-10-03] (Broadcom Inc -> VMware, Inc.)
R2 VMUSBArbService; C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [1009112 2024-07-18] (Broadcom Inc -> VMware, Inc.)
R2 VMware NAT Service; C:\WINDOWS\SysWOW64\vmnat.exe [420216 2024-10-03] (Broadcom Inc -> VMware, Inc.)
S3 VSInstallerElevationService; C:\Program Files (x86)\Microsoft Visual Studio\Installer\VSInstallerElevationService.exe [42576 2025-05-30] (Microsoft Corporation -> Microsoft)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuqisvc; C:\WINDOWS\System32\Microsoft.Data.UsageAndQualityInsights.dll [503808 2025-09-30] (Microsoft Windows -> Microsoft Corporation)
S2 NAUpdate; "C:\Program Files (x86)\Nero\Update\NASvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ACSEHIDRemap; C:\WINDOWS\System32\drivers\ACSEHIDRemap.sys [135640 2025-09-02] (WDKTestCert Ken,133462420546156706 -> )
R3 ACSEVirtualBus; C:\WINDOWS\System32\drivers\ACSEVirtualBus.sys [47072 2025-09-02] (WDKTestCert Ken,133462420546156706 -> )
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [27920 2024-03-26] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-06-01] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [60040 2025-08-20] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [244832 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [390752 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [299616 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [85600 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [29144 2025-07-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [29792 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [284768 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [574048 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [92232 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [71240 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [876104 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [1282632 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [201824 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [391776 2025-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [394176 2024-09-16] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [569344 2024-11-22] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [200704 2024-11-22] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [110592 2024-11-22] (Microsoft Corporation) [File not signed]
S3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44592 2025-06-06] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
S3 cpuz159; C:\WINDOWS\temp\cpuz159\cpuz159_x64.sys [44680 2025-10-16] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R1 CTIAIO; C:\WINDOWS\system32\drivers\CtiAIo64.sys [34920 2025-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2024-09-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2024-09-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 hcmon; C:\WINDOWS\system32\DRIVERS\hcmon.sys [72144 2024-07-18] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234072 2025-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2025-10-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [244800 2025-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [19672 2023-12-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [125008 2025-10-14] (AVG Technologies USA, LLC -> Windows (R) Win 7 DDK provider)
S3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v4.2.1\Resources\ProtonVPN.CalloutDriver.sys [40360 2025-02-10] (Proton AG -> Proton AG)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_2708e69601f40462\rt68cx21x64.sys [831448 2025-01-14] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_feec7a9662e785f0\rtcx21x64.sys [539648 2024-03-28] (Microsoft Windows -> Realtek)
R0 vmci; C:\WINDOWS\System32\drivers\vmci.sys [106424 2024-07-17] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Inc.)
R3 VMnetAdapter; C:\WINDOWS\System32\drivers\vmnetadapter.sys [31288 2024-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Inc.)
R2 VMnetBridge; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [53704 2024-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Inc.)
R2 VMnetuserif; C:\WINDOWS\system32\DRIVERS\vmnetuserif.sys [30664 2024-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Inc.)
S3 vmusb; C:\WINDOWS\System32\drivers\vmusb.sys [57296 2024-07-18] (Microsoft Windows Hardware Compatibility Publisher -> VMware, Inc.)
R2 vmx86; C:\WINDOWS\system32\DRIVERS\vmx86.sys [100920 2024-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Inc.)
R0 vsock; C:\WINDOWS\System32\DRIVERS\vsock.sys [91176 2024-07-17] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22104 2024-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [606624 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 avgArDisk; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
S3 Imf8HpRegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpRegFilter.sys [X]
S3 ImfHpFileFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpFileFilter.sys [X]
S3 ImfRealScanner; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfRealScanner.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\SDSDefs\20160915.023\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\SDSDefs\20160915.023\EX64.SYS [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-10-16 18:55 - 2025-10-16 18:55 - 000043177 _____ C:\Users\jang6\Downloads\FRST.txt
2025-10-16 18:54 - 2025-10-16 18:54 - 002442752 _____ (Farbar) C:\Users\jang6\Downloads\FRST64(1).exe
2025-10-16 18:54 - 2025-10-16 18:54 - 000000000 _____ C:\Users\jang6\Downloads\FRST64.exe
2025-10-16 17:47 - 2025-10-16 17:48 - 000000000 ____D C:\Users\jang6\Downloads\Resampled
2025-10-16 17:45 - 2025-10-16 17:45 - 000021082 _____ C:\Users\jang6\Downloads\FRST.rar
2025-10-16 17:24 - 2025-10-16 18:55 - 000000000 ____D C:\FRST
2025-10-16 15:11 - 2025-10-16 15:12 - 184306184 _____ C:\Users\jang6\Downloads\Ace_Stream_Media_3.2.8(1).exe
2025-10-16 14:48 - 2025-10-16 14:48 - 000108952 _____ C:\ProgramData\agent.uninstall.1760618921.bdinstall.v2.bin
2025-10-16 14:44 - 2025-10-16 14:44 - 000714486 _____ C:\WINDOWS\system32\perfh005.dat
2025-10-16 14:44 - 2025-10-16 14:44 - 000154226 _____ C:\WINDOWS\system32\perfc005.dat
2025-10-16 14:37 - 2025-10-16 14:37 - 000501008 _____ C:\ProgramData\cl.uninstall.1760618040.bdinstall.v2.bin
2025-10-16 14:33 - 2025-10-16 14:33 - 000115780 _____ C:\ProgramData\vpn.uninstall.1760618001.bdinstall.v2.bin
2025-10-16 12:21 - 2025-10-16 12:21 - 000000029 _____ C:\Users\jang6\Desktop\windows 11 activation key.txt
2025-10-16 11:16 - 2025-10-16 11:16 - 000000000 ____D C:\Users\jang6\AppData\Roaming\ESET
2025-10-16 09:28 - 2025-10-16 09:28 - 000193912 _____ C:\ProgramData\vpn.1760599518.bdinstall.v2.bin
2025-10-16 09:13 - 2025-10-16 09:13 - 000000318 _____ C:\WINDOWS\system32\httpproxy.json
2025-10-16 09:06 - 2025-10-16 09:06 - 000691656 _____ C:\ProgramData\cl.1760598193.bdinstall.v2.bin
2025-10-16 09:06 - 2025-10-16 09:06 - 000135548 _____ C:\ProgramData\cl.kit.1760598192.bdinstall.v2.bin
2025-10-16 09:05 - 2025-10-16 09:05 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4
2025-10-16 09:04 - 2025-10-16 14:35 - 000000000 ____D C:\ProgramData\Bitdefender
2025-10-16 09:04 - 2025-10-16 14:34 - 000000000 ____D C:\ProgramData\BDLogging
2025-10-16 09:04 - 2025-10-16 09:04 - 000000000 ____D C:\WINDOWS\system32\elambkup
2025-10-16 09:04 - 2025-10-16 09:04 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Bitdefender Security App
2025-10-16 09:00 - 2025-10-16 14:48 - 000000000 ____D C:\Program Files\Bitdefender Agent
2025-10-16 09:00 - 2025-10-16 09:00 - 000176976 _____ C:\ProgramData\agent.1760598003.bdinstall.v2.bin
2025-10-16 09:00 - 2025-10-16 09:00 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2025-10-16 08:53 - 2025-10-16 08:53 - 005891472 _____ (McAfee, LLC) C:\Users\jang6\Downloads\mcafee_trial_setup_433.0207.3919_key(2).exe
2025-10-16 08:52 - 2025-10-16 08:52 - 005794408 _____ (McAfee, LLC) C:\Users\jang6\Downloads\mcafee_trial_setup_433.0207.3919_key(1).exe
2025-10-16 08:51 - 2025-10-16 08:51 - 005891472 _____ (McAfee, LLC) C:\Users\jang6\Downloads\mcafee_trial_setup_433.0207_key.exe
2025-10-16 08:42 - 2025-10-16 11:14 - 000000000 ____D C:\ProgramData\Norton
2025-10-16 08:42 - 2025-10-16 08:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\NSx64
2025-10-16 08:42 - 2025-10-16 08:42 - 000000000 ____D C:\ProgramData\NortonInstaller
2025-10-16 08:03 - 2025-10-16 08:03 - 036142957 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_16_Ottobre_2025.pdf
2025-10-16 07:53 - 2025-10-16 07:53 - 164552448 _____ (Symantec Corporation) C:\Users\jang6\Downloads\norton-security.exe
2025-10-16 07:52 - 2025-10-16 07:52 - 010005047 _____ C:\Users\jang6\Downloads\vs_30day_trial_10021_en-us.exe
2025-10-16 07:35 - 2025-10-16 07:35 - 005891472 _____ (McAfee, LLC) C:\Users\jang6\Downloads\mcafee_trial_setup_433.0207.3919_key.exe
2025-10-15 20:35 - 2025-10-15 20:35 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2025-10-15 20:35 - 2025-10-15 20:35 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2025-10-15 20:33 - 2025-10-16 17:58 - 000000000 ____D C:\Users\jang6\AppData\Local\Malwarebytes
2025-10-15 20:20 - 2025-10-15 20:20 - 000000000 ____D C:\ProgramData\Malwarebytes
2025-10-15 20:20 - 2025-10-15 20:20 - 000000000 ____D C:\Program Files\Malwarebytes
2025-10-15 20:12 - 2025-10-15 20:12 - 007287832 _____ (EnigmaSoft Limited) C:\Users\jang6\Downloads\SpyHunter-5.20-5-84288-Installer.exe
2025-10-15 16:40 - 2025-10-16 16:49 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2025-10-15 14:16 - 2025-10-15 14:16 - 000485500 _____ C:\Users\jang6\Downloads\2973156102.pdf
2025-10-15 09:37 - 2025-10-16 16:38 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-10-15 09:07 - 2025-10-15 09:07 - 027210085 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_15_Ottobre_2025.pdf
2025-10-14 21:45 - 2025-10-16 14:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-10-14 17:55 - 2025-10-14 17:55 - 000022445 _____ C:\Users\jang6\Downloads\Soldi-Sporchi-A-Simple-Plan-1998-SD-H264-AAC-ITA-HD4ME.torrent
2025-10-14 17:46 - 2025-10-14 17:46 - 000000000 ____D C:\Users\jang6\Downloads\Battiti_35153_
2025-10-14 17:35 - 2025-10-14 17:35 - 013338357 _____ C:\Users\jang6\Downloads\Battiti_35153_.rar
2025-10-14 16:36 - 2025-10-14 16:36 - 000002125 _____ C:\Users\jang6\Desktop\ga.lnk
2025-10-14 15:30 - 2025-10-15 22:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2025-10-14 15:30 - 2025-10-14 15:30 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2025-10-14 15:30 - 2025-10-14 15:30 - 000000000 ____D C:\Users\jang6\AppData\Local\VS Revo Group
2025-10-14 15:30 - 2025-10-14 15:30 - 000000000 ____D C:\Program Files\VS Revo Group
2025-10-14 08:21 - 2025-10-16 12:46 - 000000000 ____D C:\Program Files (x86)\AVG
2025-10-14 08:21 - 2025-10-16 07:30 - 000000000 ____D C:\Users\jang6\AppData\Local\AVGAntiTrack
2025-10-14 08:21 - 2025-10-14 08:21 - 000125008 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\netfilter2.sys
2025-10-14 08:21 - 2025-10-14 08:21 - 000000000 _RSHD C:\ProgramData\Key-Base
2025-10-14 08:21 - 2025-10-14 08:21 - 000000000 ____D C:\ProgramData\{E2EB57F0-7DF8-B1B1-92F7-9EDE33F237A3}
2025-10-14 08:18 - 2025-10-14 08:18 - 031467638 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_14_Ottobre_2025.pdf
2025-10-13 22:02 - 2025-10-13 22:02 - 139733227 _____ C:\Users\jang6\Downloads\Telepiu.Over(2).rar
2025-10-13 19:05 - 2025-10-13 19:05 - 000017431 _____ C:\Users\jang6\Downloads\The-Pusher-Layer-Cake-2004-SD-H265-AAC-ITA.torrent
2025-10-13 12:38 - 2025-10-15 22:36 - 000000000 ____D C:\Users\jang6\Downloads\Mission-Impossible-The-Final-Reckoning(0000414932)
2025-10-13 12:38 - 2025-10-13 12:38 - 000048768 _____ C:\Users\jang6\Downloads\Mission-Impossible-The-Final-Reckoning(0000414932).zip
2025-10-13 09:25 - 2025-10-13 09:25 - 037002897 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_13_Ottobre_2025.pdf
2025-10-13 09:18 - 2025-10-16 18:18 - 000002710 _____ C:\WINDOWS\system32\Tasks\iTop hallow2025 Task (One-Time)
2025-10-12 20:26 - 2025-10-15 22:36 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Exodus Movement Inc
2025-10-12 20:26 - 2025-10-15 22:36 - 000000000 ____D C:\Users\jang6\AppData\Local\exodus
2025-10-12 20:26 - 2025-10-12 20:50 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Exodus
2025-10-12 20:26 - 2025-10-12 20:26 - 000002223 _____ C:\Users\jang6\Desktop\Exodus.lnk
2025-10-12 20:25 - 2025-10-12 20:26 - 189684648 _____ (Exodus Movement Inc) C:\Users\jang6\Downloads\exodus-windows-x64-25.40.6.exe
2025-10-12 11:14 - 2025-10-12 16:20 - 000012519 _____ C:\Users\jang6\Documents\Database.kdbx
2025-10-12 11:08 - 2025-10-12 11:14 - 000000000 ____D C:\Users\jang6\AppData\Local\bitwarden-updater
2025-10-12 11:06 - 2025-10-12 11:06 - 000731896 _____ (Bitwarden Inc.) C:\Users\jang6\Downloads\Bitwarden-Installer-2025.5.1.exe
2025-10-12 11:02 - 2025-10-16 16:05 - 000000000 ____D C:\Users\jang6\AppData\Roaming\KeePass
2025-10-12 10:59 - 2025-10-15 22:37 - 000000000 ____D C:\Program Files\KeePass Password Safe 2
2025-10-12 10:59 - 2025-10-12 10:59 - 000000963 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2025-10-12 10:59 - 2025-10-12 10:59 - 000000951 _____ C:\Users\Public\Desktop\KeePass 2.lnk
2025-10-12 10:58 - 2025-10-12 10:58 - 004351616 _____ (Dominik Reichl ) C:\Users\jang6\Downloads\KeePass-2.59-Setup.exe
2025-10-12 09:39 - 2025-10-12 09:39 - 000000049 _____ C:\Users\jang6\Downloads\INSTAGRAM-2FA-RecoveryCodes.txt
2025-10-12 09:01 - 2025-10-12 09:01 - 049303228 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_12_Ottobre_2025.pdf
2025-10-12 01:48 - 2025-10-12 01:48 - 000000228 _____ C:\Users\jang6\Downloads\discord_backup_codes.txt
2025-10-12 01:38 - 2025-10-12 01:38 - 000000109 _____ C:\Users\jang6\Downloads\temu_2fa_backup_codes
2025-10-11 23:34 - 2025-10-11 23:34 - 000000136 _____ C:\Users\jang6\Downloads\jan.micka@centrum.cz - zachrana hesla.txt
2025-10-11 22:58 - 2025-10-11 22:58 - 000000000 ____D C:\Users\jang6\AppData\Roaming\java
2025-10-11 22:57 - 2025-10-11 22:57 - 066089391 _____ C:\Users\jang6\Downloads\windows-x64.zip
2025-10-11 22:57 - 2025-10-11 22:57 - 000000000 ____D C:\Users\jang6\Downloads\windows-x64
2025-10-11 17:07 - 2025-10-11 17:08 - 325183981 _____ C:\Users\jang6\Downloads\Mister_No_50_N.01_-_Atlantico_SBE_Giugno_2025_By_BG.cbz
2025-10-11 08:57 - 2025-10-11 08:57 - 015028430 _____ C:\Users\jang6\Downloads\La_Gazzetta_dello_Sport_11_Ottobre_2025.pdf
2025-10-11 08:52 - 2025-10-16 18:18 - 000002774 _____ C:\WINDOWS\system32\Tasks\IObit HLW2025Sale (One-time)
2025-10-10 20:02 - 2025-10-10 20:02 - 000001430 _____ C:\Users\Public\Desktop\NVIDIA App.lnk
2025-10-10 19:57 - 2025-09-23 06:11 - 002402680 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2025-10-10 19:57 - 2025-09-23 06:11 - 002402680 _____ C:\WINDOWS\system32\vulkaninfo.exe
2025-10-10 19:57 - 2025-09-23 06:11 - 001908112 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-10-10 19:57 - 2025-09-23 06:11 - 001908112 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2025-10-10 19:57 - 2025-09-23 06:11 - 001581960 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2025-10-10 19:57 - 2025-09-23 06:11 - 001581960 _____ C:\WINDOWS\system32\vulkan-1.dll
2025-10-10 19:57 - 2025-09-23 06:11 - 001395592 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2025-10-10 19:57 - 2025-09-23 06:11 - 001395592 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2025-10-10 19:57 - 2025-09-23 06:11 - 000478440 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2025-10-10 19:57 - 2025-09-23 06:11 - 000374992 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2025-10-10 19:57 - 2025-09-23 06:07 - 001322192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2025-10-10 19:57 - 2025-09-23 06:07 - 000675024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2025-10-10 19:57 - 2025-09-23 06:07 - 000509136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2025-10-10 19:57 - 2025-09-23 06:06 - 026354896 _____ C:\WINDOWS\system32\nvidia-pcc.exe
2025-10-10 19:57 - 2025-09-23 06:06 - 002317872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2025-10-10 19:57 - 2025-09-23 06:06 - 001715944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2025-10-10 19:57 - 2025-09-23 06:06 - 001600072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2025-10-10 19:57 - 2025-09-23 06:06 - 001572584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2025-10-10 19:57 - 2025-09-23 06:06 - 001223752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2025-10-10 19:57 - 2025-09-23 06:06 - 001057488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2025-10-10 19:57 - 2025-09-23 06:06 - 000813264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2025-10-10 19:57 - 2025-09-23 06:05 - 024676072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2025-10-10 19:57 - 2025-09-23 06:05 - 021714480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2025-10-10 19:57 - 2025-09-23 06:05 - 007683280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2025-10-10 19:57 - 2025-09-23 06:05 - 005470256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2025-10-10 19:57 - 2025-09-23 06:05 - 004175056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2025-10-10 19:57 - 2025-09-23 06:05 - 000469064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2025-10-10 19:57 - 2025-09-23 06:04 - 005918416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2025-10-10 19:57 - 2025-09-23 06:04 - 005625544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2025-10-10 19:57 - 2025-09-23 06:04 - 004924120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2025-10-10 19:57 - 2025-09-23 06:04 - 000854064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2025-10-10 19:57 - 2025-09-22 14:52 - 000148834 _____ C:\WINDOWS\system32\nvinfo.pb
2025-10-10 19:26 - 2025-10-10 19:29 - 896158880 _____ (NVIDIA Corporation) C:\Users\jang6\Downloads\581.42-desktop-win10-win11-64bit-international-dch-whql.exe
2025-10-10 18:02 - 2025-10-10 18:02 - 000027250 _____ C:\Users\jang6\Downloads\The-Village-2004-720P-H265-AAC-ITA-HD4ME.torrent
2025-10-10 17:50 - 2025-10-10 17:51 - 161115324 _____ C:\Users\jang6\Desktop\Zagor_Speciale_N.41_-_Amici_Per_La_Pelle_SBE_Ottobre_2025_-_ROCKY_V._-.cbr
2025-10-10 17:49 - 2025-10-10 17:50 - 176300324 _____ C:\Users\jang6\Desktop\Tex_Willer_Mensile_780_-_L_Argento_Di_Socorro_SBE_Ottobre_2025_ROCKY_V._.cbr
2025-10-10 17:48 - 2025-10-10 17:48 - 082687232 _____ C:\Users\jang6\Desktop\Martin_Mystere_424_-_L_Enigma_Di_Napoleone_SBE_Giugno_2025_c2c_A63_.cbr
2025-10-10 12:37 - 2025-10-10 12:37 - 000000000 ____D C:\ProgramData\Whesvc
2025-10-10 08:35 - 2025-10-10 08:35 - 034711588 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_10_Ottobre_2025.pdf
2025-10-09 23:27 - 2025-09-26 15:39 - 000322216 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2025-10-09 08:56 - 2025-10-09 08:56 - 035560564 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_09_Ottobre_2025.pdf
2025-10-08 21:55 - 2025-10-08 21:56 - 139733227 _____ C:\Users\jang6\Downloads\Telepiu.Over(1).rar
2025-10-08 09:25 - 2025-10-08 09:25 - 026093495 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_08_Ottobre_2025.pdf
2025-10-07 08:54 - 2025-10-07 08:54 - 031941049 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_07_Ottobre_2025.pdf
2025-10-06 18:17 - 2025-10-09 23:27 - 000002043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Internet Security.lnk
2025-10-06 18:17 - 2025-10-09 23:27 - 000002031 _____ C:\Users\Public\Desktop\AVG Internet Security.lnk
2025-10-06 17:54 - 2025-10-06 18:22 - 176004122 _____ C:\Users\jang6\Downloads\Dilan464.OV3R (1).rar
2025-10-06 17:41 - 2025-10-06 17:41 - 000000000 ____D C:\Users\jang6\Downloads\Io_guerriero_34706_
2025-10-06 17:09 - 2025-10-06 17:09 - 013341773 _____ C:\Users\jang6\Downloads\Io_guerriero_34706_.rar
2025-10-06 17:07 - 2025-10-06 17:07 - 110613995 _____ C:\Users\jang6\Desktop\Dylan___467_Produci__Divora__Muori_Agosto_2025_ed_DCP.cbr
2025-10-06 09:44 - 2025-10-06 09:44 - 031172725 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_06_Ottobre_2025.pdf
2025-10-05 22:42 - 2025-10-15 22:37 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-10-05 08:53 - 2025-10-05 08:53 - 036759276 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_05_Ottobre_2025.pdf
2025-10-04 17:33 - 2025-10-15 22:37 - 000000000 ____D C:\Program Files\Waterfox
2025-10-04 17:33 - 2025-10-15 22:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\BrowserWorks
2025-10-04 17:33 - 2025-10-15 22:36 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Waterfox
2025-10-04 17:33 - 2025-10-04 17:33 - 000001977 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waterfox Private Browsing.lnk
2025-10-04 17:33 - 2025-10-04 17:33 - 000001023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waterfox.lnk
2025-10-04 17:33 - 2025-10-04 17:33 - 000001011 _____ C:\Users\Public\Desktop\Waterfox.lnk
2025-10-04 17:33 - 2025-10-04 17:33 - 000000000 ____D C:\Users\jang6\AppData\Local\Waterfox
2025-10-04 17:33 - 2025-10-04 17:33 - 000000000 ____D C:\ProgramData\Waterfox-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-10-04 17:30 - 2025-10-04 17:30 - 074773472 _____ (Waterfox Limited) C:\Users\jang6\Downloads\Waterfox Setup 6.6.3.exe
2025-10-04 08:43 - 2025-10-04 08:43 - 051093444 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_04_Ottobre_2025.pdf
2025-10-03 17:09 - 2025-10-03 17:09 - 156353016 _____ C:\Users\jang6\Desktop\Zagor_N.723_-_Oscura_Minaccia_SBE_Ottobre_2025_-_ROCKY_V._-.cbr
2025-10-03 08:46 - 2025-10-03 08:46 - 030431005 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_03_Ottobre_2025.pdf
2025-10-02 22:02 - 2025-10-02 22:02 - 000062418 _____ C:\Users\jang6\Downloads\image.webp
2025-10-02 21:39 - 2025-10-02 21:39 - 000011785 _____ C:\Users\jang6\Downloads\Logo_HC_VERVA_Litvínov.svg
2025-10-02 21:29 - 2025-10-02 21:29 - 000073142 _____ C:\Users\jang6\Downloads\63883-1_radegast-razna-desitka-plech-0-5l.webp
2025-10-02 19:04 - 2025-10-02 20:36 - 1958672628 _____ C:\Users\jang6\Downloads\Zahradnikuv rok (2024).mp4
2025-10-02 09:07 - 2025-10-02 09:07 - 027790688 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_02_Ottobre_2025.pdf
2025-10-01 17:08 - 2025-10-01 17:08 - 090725390 _____ C:\Users\jang6\Desktop\Dylan___N.468_-_Quel_Che_Resta_Del_Tempo_Settembre_2025_ed-DCP_.cbr
2025-10-01 17:07 - 2025-10-01 17:08 - 108953464 _____ C:\Users\jang6\Desktop\Diabolik_944_-_L_altro_rifugio_Ottobre_2025_By_EVA.cbr
2025-10-01 17:06 - 2025-10-01 17:07 - 291824126 _____ C:\Users\jang6\Desktop\Le_Grandi_Storie_Bonelli_N.16_-_Tex_Mondego_Il_Killer_SBE_Giugno_2025_.cbr
2025-10-01 16:10 - 2025-10-01 16:10 - 000000000 ____D C:\Users\jang6\Downloads\Telepiu.Over (4)
2025-10-01 14:23 - 2025-10-01 14:24 - 138706833 _____ C:\Users\jang6\Downloads\Telepiu.Over (4).rar
2025-10-01 13:51 - 2025-10-01 14:27 - 753842520 _____ C:\Users\jang6\Downloads\Přirozený-talent-1984-CZ-Drama,-Sportovní.avi
2025-10-01 08:13 - 2025-10-01 08:13 - 029065957 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_01_Ottobre_2025.pdf
2025-09-30 21:58 - 2025-09-30 21:58 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\QuickStyles
2025-09-30 11:06 - 2025-09-30 11:06 - 000035125 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-09-30 11:06 - 2025-09-30 11:06 - 000035125 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-09-30 09:47 - 2025-09-30 09:47 - 029753447 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_30_Settembre_2025.pdf
2025-09-29 09:08 - 2025-09-29 09:08 - 036438118 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_29_Settembre_2025.pdf
2025-09-28 17:13 - 2025-09-28 17:14 - 143182544 _____ C:\Users\jang6\Desktop\Martin_Mystere_Gigante_33_-_L_Enigma_Del_Satellite_SBE_2025-05-29_A63.cbr
2025-09-28 08:55 - 2025-09-28 08:55 - 045111293 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_28_Settembre_2025.pdf
2025-09-27 09:12 - 2025-09-27 09:12 - 031829613 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_27_Settembre_2025.pdf
2025-09-27 09:11 - 2025-10-16 18:18 - 000002586 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2025-09-26 17:23 - 2025-09-26 17:23 - 000084133 _____ C:\Users\jang6\Downloads\[SkT]The_House_of_Tesla.torrent
2025-09-26 17:10 - 2025-09-26 17:10 - 048181501 _____ C:\Users\jang6\Desktop\Alan_Ford_670_-_Chi_spara_male_è_perduto_1000VolteMeglio_2025-07_c2c_300dpi_Omfalos_Genep_AntoPISA_1.0.cbr
2025-09-26 12:28 - 2025-10-16 18:18 - 000002912 _____ C:\WINDOWS\system32\Tasks\iTopVPN_Update_jang6
2025-09-26 12:28 - 2025-10-15 22:36 - 000000000 ____D C:\ProgramData\iTop Easy Desktop
2025-09-26 12:28 - 2025-10-15 22:36 - 000000000 ____D C:\ProgramData\iTop
2025-09-26 12:28 - 2025-09-27 09:07 - 000150502 _____ C:\WINDOWS\system32\MetroAppCache.ini
2025-09-26 12:27 - 2025-10-16 18:18 - 000002842 _____ C:\WINDOWS\system32\Tasks\iTopVPN_SkipUAC_jang6
2025-09-26 12:27 - 2025-10-16 18:05 - 000000000 ____D C:\Users\jang6\AppData\LocalLow\IObit
2025-09-26 12:27 - 2025-10-15 23:27 - 000000000 ____D C:\Users\jang6\AppData\Roaming\IObit
2025-09-26 12:27 - 2025-10-15 22:37 - 000000000 ____D C:\Program Files (x86)\iTop VPN
2025-09-26 12:27 - 2025-10-15 22:36 - 000000000 ____D C:\Users\jang6\AppData\Roaming\iTop VPN
2025-09-26 12:27 - 2025-10-15 22:36 - 000000000 ____D C:\Users\jang6\AppData\Local\iTop Easy Desktop
2025-09-26 12:27 - 2025-10-15 22:36 - 000000000 ____D C:\ProgramData\ProductData3
2025-09-26 12:27 - 2025-10-15 22:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTop VPN
2025-09-26 12:27 - 2025-09-26 13:16 - 000000000 ____D C:\ProgramData\iTop VPN
2025-09-26 12:27 - 2025-09-26 12:27 - 000001087 _____ C:\Users\Public\Desktop\iTop VPN.lnk
2025-09-26 12:27 - 2025-09-26 12:27 - 000000000 ____D C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
2025-09-26 12:26 - 2025-10-15 23:28 - 000000000 ____D C:\Program Files (x86)\IObit
2025-09-26 12:26 - 2025-10-15 23:27 - 000000576 _____ C:\ProgramData\pdinst.ini
2025-09-26 12:26 - 2025-10-15 23:27 - 000000000 ____D C:\ProgramData\IObit
2025-09-26 07:31 - 2025-09-26 07:31 - 032785264 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_26_Settembre_2025.pdf
2025-09-25 20:23 - 2025-10-16 18:18 - 000003124 _____ C:\WINDOWS\system32\Tasks\pyramidak Kalendar
2025-09-25 20:20 - 2025-10-12 00:47 - 000000000 ____D C:\Users\jang6\AppData\Roaming\pyramidak
2025-09-25 20:20 - 2025-10-03 23:17 - 000000000 ____D C:\Users\jang6\Documents\pyramidak
2025-09-25 20:20 - 2025-09-25 20:20 - 000002257 _____ C:\Users\jang6\Desktop\Stolní kalendář.lnk
2025-09-25 20:20 - 2025-09-25 20:20 - 000000000 ____D C:\Users\jang6\AppData\Local\pyramidak
2025-09-25 20:19 - 2025-09-25 20:19 - 002783232 _____ (pyramidak) C:\Users\jang6\Downloads\InstKalendar.exe
2025-09-25 18:11 - 2025-09-25 18:13 - 000000000 ___HD C:\$GlaryQuarantine
2025-09-25 17:47 - 2025-09-25 17:47 - 000000000 ____D C:\Users\jang6\AppData\Roaming\GlarySoft
2025-09-25 17:47 - 2025-09-25 17:47 - 000000000 ____D C:\ProgramData\Glarysoft
2025-09-25 09:08 - 2025-09-25 09:08 - 000000000 ____D C:\Users\jang6\AppData\Local\mbamtray
2025-09-25 09:08 - 2025-09-25 09:08 - 000000000 ____D C:\Users\jang6\AppData\Local\mbam
2025-09-25 09:07 - 2025-10-15 22:37 - 000000000 ____D C:\Program Files (x86)\7-Zip
2025-09-25 09:07 - 2025-10-15 22:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2025-09-25 08:57 - 2025-09-25 08:57 - 033053734 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_25_Settembre_2025.pdf
2025-09-24 17:57 - 2025-10-16 15:13 - 000002090 _____ C:\Users\jang6\Desktop\Ace Stream.lnk
2025-09-24 17:57 - 2025-10-16 15:13 - 000002012 _____ C:\Users\jang6\Desktop\Ace Player.lnk
2025-09-24 11:24 - 2025-09-24 11:24 - 000108454 _____ C:\Users\jang6\Downloads\svoz-objemneho-odpadu-2025-zari.xlsx
2025-09-24 07:38 - 2025-09-24 07:38 - 028451445 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_24_Settembre_2025.pdf
2025-09-23 08:43 - 2025-09-23 08:43 - 028890829 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_23_Settembre_2025.pdf
2025-09-22 09:05 - 2025-09-22 09:05 - 000000000 ____D C:\Users\jang6\AppData\LocalLow\Temp
2025-09-22 08:18 - 2025-09-22 08:18 - 027563306 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_22_Settembre_2025.pdf
2025-09-21 08:54 - 2025-09-21 08:54 - 044249612 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_21_Settembre_2025.pdf
2025-09-20 09:00 - 2025-09-20 09:00 - 008434612 _____ C:\Users\jang6\Downloads\La_Gazzetta_dello_Sport_20_Settembre_2025.pdf
2025-09-19 13:38 - 2025-09-19 13:45 - 000000000 ____D C:\ProgramData\yukny
2025-09-19 13:37 - 2025-09-19 13:37 - 000000000 ____D C:\Users\jang6\AppData\Roaming\7n5rJCiEX08cdKRQsT6vxkbuaZ
2025-09-19 07:52 - 2025-09-19 07:52 - 035204360 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_19_Settembre_2025.pdf
2025-09-18 08:56 - 2025-09-18 08:56 - 031875619 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_18_Settembre_2025.pdf
2025-09-17 16:44 - 2025-10-16 18:18 - 000002742 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser VPS Differential Update S-1-5-18
2025-09-17 16:33 - 2025-09-17 16:33 - 000768061 _____ C:\Users\jang6\Desktop\Děkujeme za objednávku 9 745 259 _ Knihy Dobrovský.pdf
2025-09-17 09:22 - 2025-09-17 09:22 - 023901804 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_17_Settembre_2025.pdf
2025-09-16 08:17 - 2025-09-16 08:17 - 029683486 _____ C:\Users\jang6\Downloads\Corriere_dello_Sport_16_Settembre_2025.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-10-16 18:18 - 2025-02-06 14:55 - 000003052 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-1549321770-275972891-217463218-1002
2025-10-16 18:18 - 2025-01-20 13:57 - 000003390 _____ C:\WINDOWS\system32\Tasks\CheckPointUpdateTaskMachineUA
2025-10-16 18:18 - 2025-01-20 13:57 - 000003166 _____ C:\WINDOWS\system32\Tasks\CheckPointUpdateTaskMachineCore
2025-10-16 18:18 - 2024-11-23 22:45 - 000003010 _____ C:\WINDOWS\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-10-16 18:18 - 2024-11-22 16:30 - 000003860 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1726567477
2025-10-16 18:18 - 2024-11-22 16:30 - 000003578 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1726567475
2025-10-16 18:18 - 2024-11-22 16:30 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-10-16 18:18 - 2024-11-22 16:30 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2025-10-16 18:18 - 2024-11-22 16:30 - 000003438 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2025-10-16 18:18 - 2024-11-22 16:30 - 000003342 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-10-16 18:18 - 2024-11-22 16:30 - 000003214 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2025-10-16 18:18 - 2024-11-22 16:30 - 000003106 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2025-10-16 18:18 - 2024-11-22 16:30 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1549321770-275972891-217463218-1002
2025-10-16 18:18 - 2024-11-22 16:30 - 000003054 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1549321770-275972891-217463218-500
2025-10-16 18:18 - 2024-11-22 16:30 - 000002954 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper_nxt
2025-10-16 18:18 - 2024-11-22 16:30 - 000002812 _____ C:\WINDOWS\system32\Tasks\AvastBrowserProtectS-1-5-21-1549321770-275972891-217463218-1002
2025-10-16 18:18 - 2024-11-22 16:30 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-10-16 18:18 - 2024-11-22 16:30 - 000002624 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2025-10-16 18:18 - 2024-11-22 16:30 - 000002590 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess
2025-10-16 18:18 - 2024-11-22 16:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2025-10-16 18:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-10-16 18:08 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-10-16 18:06 - 2024-09-17 23:23 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-10-16 18:05 - 2025-07-28 20:46 - 000000000 ____D C:\Users\jang6\AppData\Roaming\discord
2025-10-16 18:05 - 2025-01-14 23:22 - 000000000 ____D C:\Users\jang6\AppData\Roaming\asus_framework
2025-10-16 18:05 - 2024-09-15 13:19 - 000000000 ____D C:\ProgramData\NVIDIA
2025-10-16 17:20 - 2025-07-28 20:46 - 000000000 ____D C:\Users\jang6\AppData\Local\Discord
2025-10-16 17:16 - 2024-09-17 12:17 - 000000000 ____D C:\Users\jang6\AppData\Local\AVG
2025-10-16 16:49 - 2024-09-17 23:28 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2025-10-16 16:49 - 2024-09-17 23:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-10-16 16:02 - 2024-09-17 11:05 - 000000000 ____D C:\Users\jang6\AppData\Local\CrashDumps
2025-10-16 15:20 - 2024-09-17 11:04 - 000000000 ____D C:\Users\jang6\AppData\Local\D3DSCache
2025-10-16 15:19 - 2025-07-28 20:46 - 000002243 _____ C:\Users\jang6\Desktop\Discord.lnk
2025-10-16 14:44 - 2024-11-22 16:35 - 001700610 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-10-16 14:44 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2025-10-16 14:43 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-10-16 14:38 - 2025-05-19 21:46 - 000000000 ____D C:\Users\jang6\AppData\Roaming\ViberPC
2025-10-16 14:38 - 2024-11-22 16:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-10-16 14:38 - 2024-11-22 16:28 - 000057524 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-10-16 14:38 - 2024-11-11 15:44 - 000000000 ____D C:\ProgramData\VMware
2025-10-16 14:38 - 2024-09-17 12:15 - 000000000 ____D C:\ProgramData\AVG
2025-10-16 14:38 - 2024-09-15 18:05 - 000845256 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2025-10-16 14:38 - 2022-11-24 01:23 - 000012288 ___SH C:\DumpStack.log.tmp
2025-10-16 14:37 - 2024-09-15 18:05 - 000901328 _____ () C:\WINDOWS\system32\wpbbin.exe
2025-10-16 14:37 - 2024-04-01 09:21 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-10-16 14:35 - 2024-09-17 11:04 - 000000000 ____D C:\Users\jang6\AppData\Local\Packages
2025-10-16 14:35 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-10-16 14:35 - 2022-11-24 01:25 - 000000000 ____D C:\ProgramData\Packages
2025-10-16 14:30 - 2024-09-15 18:05 - 000000000 ____D C:\ProgramData\ASUS
2025-10-16 14:29 - 2024-04-01 09:21 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2025-10-16 14:28 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-10-16 12:46 - 2024-11-22 16:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2025-10-16 11:10 - 2024-10-03 17:44 - 000000000 ____D C:\Program Files\Syberia 3
2025-10-16 07:35 - 2024-09-17 14:38 - 000000000 ____D C:\ProgramData\McAfee
2025-10-15 22:37 - 2025-08-23 16:56 - 000000000 ____D C:\Program Files\Kodi
2025-10-15 22:37 - 2025-06-07 19:48 - 000000000 ____D C:\Program Files\Apache NetBeans
2025-10-15 22:37 - 2025-05-30 19:36 - 000000000 ____D C:\Program Files\IIS Express
2025-10-15 22:37 - 2025-05-30 19:36 - 000000000 ____D C:\Program Files (x86)\IIS Express
2025-10-15 22:37 - 2025-05-18 20:57 - 000000000 ____D C:\Program Files\CrystalDiskMark8
2025-10-15 22:37 - 2025-02-08 10:22 - 000000000 ____D C:\Program Files (x86)\Kingdom.Come.Deliverance.II.REPACK.KaOs
2025-10-15 22:37 - 2025-01-20 19:12 - 000000000 ____D C:\Fraps
2025-10-15 22:37 - 2025-01-18 15:48 - 000000000 ____D C:\Program Files (x86)\GUM5844.tmp
2025-10-15 22:37 - 2025-01-17 00:02 - 000000000 ____D C:\Program Files\totalcmd
2025-10-15 22:37 - 2025-01-14 23:14 - 000000000 ____D C:\Program Files\dotnet
2025-10-15 22:37 - 2025-01-14 23:13 - 000000000 ____D C:\Program Files (x86)\LightingService
2025-10-15 22:37 - 2024-12-08 10:22 - 000000000 ____D C:\Program Files (x86)\The Great Circle
2025-10-15 22:37 - 2024-12-05 23:55 - 000000000 ____D C:\Program Files\Cheat Engine 7.5
2025-10-15 22:37 - 2024-12-05 16:55 - 000000000 ____D C:\Program Files\Core Temp
2025-10-15 22:37 - 2024-11-24 16:17 - 000000000 ____D C:\Program Files (x86)\Easy Subtitles Synchronizer
2025-10-15 22:37 - 2024-11-17 17:01 - 000000000 ____D C:\Program Files (x86)\DOSBox-0.74-3
2025-10-15 22:37 - 2024-11-06 22:21 - 000000000 ____D C:\Program Files (x86)\eM Client
2025-10-15 22:37 - 2024-10-03 13:41 - 000000000 ____D C:\Program Files (x86)\Syberia The World Before
2025-10-15 22:37 - 2024-09-30 15:43 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2025-10-15 22:37 - 2024-09-30 15:16 - 000000000 ____D C:\Program Files\EXPERTool
2025-10-15 22:37 - 2024-09-28 17:35 - 000000000 ____D C:\Program Files (x86)\Steam
2025-10-15 22:37 - 2024-09-25 19:07 - 000000000 ____D C:\Program Files (x86)\Bonjour
2025-10-15 22:37 - 2024-09-24 15:34 - 000000000 ____D C:\Forza Horizon 5
2025-10-15 22:37 - 2024-09-22 18:41 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2025-10-15 22:37 - 2024-09-17 16:32 - 000000000 ____D C:\Program Files\ProgDVB x64
2025-10-15 22:37 - 2024-09-17 13:58 - 000000000 ____D C:\Program Files\BlueStacks_nxt
2025-10-15 22:37 - 2024-09-17 13:55 - 000000000 ____D C:\Program Files (x86)\BlueStacks X
2025-10-15 22:37 - 2024-09-17 13:25 - 000000000 ____D C:\Program Files\CDisplayEx
2025-10-15 22:37 - 2024-09-17 13:19 - 000000000 ____D C:\Program Files (x86)\JpegResamplerXE
2025-10-15 22:37 - 2024-09-15 13:04 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2025-10-15 22:37 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-10-15 22:37 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-10-15 22:36 - 2025-09-10 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proton
2025-10-15 22:36 - 2025-09-08 09:28 - 000000000 ____D C:\Users\jang6\Downloads\Adaptation-(0000191122)
2025-10-15 22:36 - 2025-09-08 09:25 - 000000000 ____D C:\Users\jang6\Downloads\Adaptation-(0000191447)
2025-10-15 22:36 - 2025-09-08 09:23 - 000000000 ____D C:\Users\jang6\Downloads\Adaptation(0000028962)
2025-10-15 22:36 - 2025-09-04 19:26 - 000000000 ____D C:\Users\jang6\Downloads\The-Fugitive(0000225042)
2025-10-15 22:36 - 2025-09-04 19:24 - 000000000 ____D C:\Users\jang6\Downloads\Prizefighter-The-Life-of-Jem-Belcher(0000390006)
2025-10-15 22:36 - 2025-09-03 09:28 - 000000000 ____D C:\Users\jang6\Downloads\In-the-Line-of-Fire(0000248555)
2025-10-15 22:36 - 2025-09-01 09:56 - 000000000 ____D C:\Users\jang6\Downloads\The-Rock(0000073391)
2025-10-15 22:36 - 2025-08-28 10:22 - 000000000 ____D C:\Users\jang6\Downloads\Mission-Impossible(0000201744)
2025-10-15 22:36 - 2025-08-28 10:15 - 000000000 ____D C:\Users\jang6\Downloads\Mission-Impossible(0000133652)
2025-10-15 22:36 - 2025-08-27 09:18 - 000000000 ____D C:\Users\jang6\Downloads\How-to-Train-Your-Dragon(0000414657)
2025-10-15 22:36 - 2025-08-25 10:43 - 000000000 ____D C:\Users\jang6\Downloads\Mission-Impossible-Dead-Reckoning-Part-One(0000393201)
2025-10-15 22:36 - 2025-08-23 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2025-10-15 22:36 - 2025-08-21 09:57 - 000000000 ____D C:\Users\jang6\Downloads\Jurassic-World-Rebirth(0000414656)
2025-10-15 22:36 - 2025-08-21 09:54 - 000000000 ____D C:\Users\jang6\Downloads\Bring-Her-Back(0000413837)
2025-10-15 22:36 - 2025-08-19 13:25 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Telegram Desktop
2025-10-15 22:36 - 2025-08-19 13:25 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2025-10-15 22:36 - 2025-08-14 09:13 - 000000000 ____D C:\Users\jang6\Downloads\Cobb(0000369488)
2025-10-15 22:36 - 2025-08-13 09:20 - 000000000 ____D C:\Users\jang6\Downloads\Con-Air(0000206605)
2025-10-15 22:36 - 2025-08-13 09:18 - 000000000 ____D C:\Users\jang6\Downloads\Fantastic-Four(0000065744)
2025-10-15 22:36 - 2025-08-13 09:12 - 000000000 ____D C:\Users\jang6\Downloads\Kuru-Otlar-st-ne(0000408135)
2025-10-15 22:36 - 2025-08-06 09:55 - 000000000 ____D C:\Users\jang6\Downloads\Mr-Nobody(0000158370)
2025-10-15 22:36 - 2025-08-06 09:47 - 000000000 ____D C:\Users\jang6\Downloads\Mr-Holmes(0000261244)
2025-10-15 22:36 - 2025-08-05 08:45 - 000000000 ____D C:\Users\jang6\Downloads\The-Accountant-2(0000411735)
2025-10-15 22:36 - 2025-07-28 20:46 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2025-10-15 22:36 - 2025-07-18 13:44 - 000000000 ____D C:\Users\jang6\Desktop\nvidia driver
2025-10-15 22:36 - 2025-06-27 22:04 - 000000000 ____D C:\WINDOWS\system32\ruxim
2025-10-15 22:36 - 2025-06-07 15:11 - 000000000 ____D C:\Users\jang6\AppData\Local\local-updater
2025-10-15 22:36 - 2025-05-30 19:51 - 000000000 ____D C:\Users\jang6\AppData\Roaming\NuGet
2025-10-15 22:36 - 2025-05-30 19:46 - 000000000 ____D C:\ProgramData\dftmp
2025-10-15 22:36 - 2025-05-29 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2025-10-15 22:36 - 2025-05-22 10:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2025-10-15 22:36 - 2025-05-19 21:46 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber
2025-10-15 22:36 - 2025-05-19 21:46 - 000000000 ____D C:\Users\jang6\AppData\Local\Viber
2025-10-15 22:36 - 2025-05-19 10:48 - 000000000 ____D C:\Users\jang6\AppData\Roaming\tox
2025-10-15 22:36 - 2025-05-18 20:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskMark8
2025-10-15 22:36 - 2025-05-03 14:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProgDVB x64
2025-10-15 22:36 - 2025-03-28 23:43 - 000000000 ____D C:\WINDOWS\system32\AccountHealthAssets
2025-10-15 22:36 - 2025-02-08 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingdom.Come.Deliverance.II.REPACK.KaOs
2025-10-15 22:36 - 2025-01-30 20:28 - 000000000 ____D C:\WINDOWS\Minidump
2025-10-15 22:36 - 2025-01-20 19:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2025-10-15 22:36 - 2025-01-17 22:14 - 000000000 ____D C:\Users\jang6\AppData\Roaming\UserBenchmark
2025-10-15 22:36 - 2025-01-17 00:02 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2025-10-15 22:36 - 2025-01-17 00:02 - 000000000 ____D C:\Users\jang6\AppData\Roaming\GHISLER
2025-10-15 22:36 - 2025-01-14 23:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2025-10-15 22:36 - 2024-12-23 21:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Active@ Boot Disk
2025-10-15 22:36 - 2024-12-18 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Indiana Jones and the Great Circle
2025-10-15 22:36 - 2024-12-09 22:56 - 000000000 ____D C:\Users\jang6\AppData\Local\WeMod
2025-10-15 22:36 - 2024-12-05 23:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 7.5
2025-10-15 22:36 - 2024-12-05 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2025-10-15 22:36 - 2024-11-29 13:27 - 000000000 ____D C:\Users\jang6\AppData\Roaming\AC3Filter
2025-10-15 22:36 - 2024-11-24 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy Subtitle Synchronizer
2025-10-15 22:36 - 2024-11-23 22:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2025-10-15 22:36 - 2024-11-22 16:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\OfficeSoftwareProtectionPlatform
2025-10-15 22:36 - 2024-11-22 16:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Nero
2025-10-15 22:36 - 2024-11-22 16:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-10-15 22:36 - 2024-11-22 16:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2025-10-15 22:36 - 2024-11-22 16:27 - 000000000 ____D C:\Users\jang6
2025-10-15 22:36 - 2024-11-22 16:22 - 000000000 ____D C:\WINDOWS\InboxApps
2025-10-15 22:36 - 2024-11-22 14:16 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2025-10-15 22:36 - 2024-11-17 17:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74-3
2025-10-15 22:36 - 2024-11-11 15:45 - 000000000 ____D C:\Users\jang6\AppData\Roaming\VMware
2025-10-15 22:36 - 2024-11-02 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2016
2025-10-15 22:36 - 2024-11-02 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2025-10-15 22:36 - 2024-10-02 22:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Syberia 2 [GOG.com]
2025-10-15 22:36 - 2024-10-01 18:43 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-10-15 22:36 - 2024-10-01 18:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-10-15 22:36 - 2024-10-01 18:43 - 000000000 ____D C:\Program Files\WinRAR
2025-10-15 22:36 - 2024-09-30 15:43 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2025-10-15 22:36 - 2024-09-30 15:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EXPERTool
2025-10-15 22:36 - 2024-09-29 20:22 - 000000000 ____D C:\Users\jang6\AppData\Local\FLiNGTrainer
2025-10-15 22:36 - 2024-09-28 17:40 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-10-15 22:36 - 2024-09-28 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2025-10-15 22:36 - 2024-09-27 19:06 - 000000000 ____D C:\ProgramData\UWP
2025-10-15 22:36 - 2024-09-27 15:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP260 series
2025-10-15 22:36 - 2024-09-27 15:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registrace uživatele zařízení Canon MP280 series
2025-10-15 22:36 - 2024-09-27 15:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP280 series
2025-10-15 22:36 - 2024-09-25 19:09 - 000000000 ____D C:\ProgramData\FLEXnet
2025-10-15 22:36 - 2024-09-24 21:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jihosoft ISO Maker
2025-10-15 22:36 - 2024-09-22 19:05 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEmu
2025-10-15 22:36 - 2024-09-22 18:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite
2025-10-15 22:36 - 2024-09-17 23:28 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Thunderbird
2025-10-15 22:36 - 2024-09-17 19:47 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-10-15 22:36 - 2024-09-17 17:32 - 000000000 ____D C:\Users\jang6\Desktop\SPRÁVA SÍTÍ
2025-10-15 22:36 - 2024-09-17 16:32 - 000000000 ____D C:\ProgramData\ProgDVB
2025-10-15 22:36 - 2024-09-17 15:28 - 000000000 ____D C:\Users\jang6\AppData\Roaming\utorrent
2025-10-15 22:36 - 2024-09-17 14:50 - 000000000 ____D C:\Users\jang6\.Ld9VirtualBox
2025-10-15 22:36 - 2024-09-17 14:39 - 000000000 ____D C:\Users\jang6\AppData\Local\NoxSrv
2025-10-15 22:36 - 2024-09-17 14:38 - 000000000 ____D C:\Users\jang6\AppData\Local\Nox
2025-10-15 22:36 - 2024-09-17 14:21 - 000000000 ____D C:\Users\jang6\AppData\Local\BlueStacks X
2025-10-15 22:36 - 2024-09-17 13:58 - 000000000 ____D C:\Users\jang6\AppData\Local\bluestacks-services-updater
2025-10-15 22:36 - 2024-09-17 13:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks X
2025-10-15 22:36 - 2024-09-17 13:38 - 000000000 ____D C:\Users\jang6\.android
2025-10-15 22:36 - 2024-09-17 13:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDisplayEx
2025-10-15 22:36 - 2024-09-17 13:19 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Jpeg Resampler
2025-10-15 22:36 - 2024-09-17 13:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jpeg Resampler XE
2025-10-15 22:36 - 2024-09-17 13:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2025-10-15 22:36 - 2024-09-17 13:06 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Skype for Desktop
2025-10-15 22:36 - 2024-09-17 12:15 - 000000000 ____D C:\Program Files\Common Files\AVG
2025-10-15 22:36 - 2024-09-17 11:04 - 000000000 ____D C:\Users\jang6\AppData\Local\ConnectedDevicesPlatform
2025-10-15 22:36 - 2024-09-15 13:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2025-10-15 22:36 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-10-15 22:36 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2025-10-15 22:36 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-10-15 22:36 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-10-15 22:36 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2025-10-15 22:36 - 2024-04-01 18:28 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2025-10-15 22:36 - 2024-04-01 18:28 - 000000000 ____D C:\WINDOWS\system32\cs
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 __RSD C:\WINDOWS\Media
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 __RHD C:\Users\Public\Libraries
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\Nui
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\lxss
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\dsc
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\WaaS
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-plocm
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-ploc
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\te-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ras
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\qps-plocm
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\qps-ploc
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Pbr
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\or-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\km-KH
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Keywords
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\is-IS
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\id-ID
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\icsxml
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ias
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\et-EE
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\es-MX
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\downlevel
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Com
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\be-BY
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\as-IN
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\am-ET
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\L2Schemas
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\IME
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\IdentityCRL
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\DiagTrack
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Cursors
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\BrowserCore
2025-10-15 22:36 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-10-15 22:36 - 2024-04-01 09:21 - 000000000 ____D C:\WINDOWS\servicing
2025-10-15 22:36 - 2022-11-24 01:25 - 000000000 __RHD C:\Users\Public\AccountPictures
2025-10-15 22:36 - 2022-11-23 14:42 - 000000000 ____D C:\WINDOWS\OEM
2025-10-15 22:36 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2025-10-15 22:36 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2025-10-15 22:36 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2025-10-15 22:36 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2025-10-15 22:35 - 2025-06-07 19:42 - 000000000 ____D C:\xampp
2025-10-15 22:35 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\WUModels
2025-10-15 19:45 - 2024-11-22 16:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-10-15 19:30 - 2025-08-19 20:28 - 000000000 ____D C:\Users\jang6\AppData\Roaming\IPTVSmartersPro
2025-10-15 19:03 - 2024-11-22 16:26 - 000586776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-10-15 19:02 - 2024-09-15 18:05 - 002801820 ____N C:\WINDOWS\Minidump\101525-13828-01.dmp
2025-10-15 18:47 - 2024-09-17 15:31 - 000000000 ____D C:\Users\jang6\AppData\Local\BitTorrentHelper
2025-10-15 17:08 - 2024-09-17 15:53 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Word
2025-10-15 13:49 - 2024-09-17 13:58 - 000000000 ____D C:\ProgramData\BlueStacks_nxt
2025-10-15 09:46 - 2024-09-15 13:03 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-10-15 09:46 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-10-15 09:44 - 2024-09-15 13:03 - 214534944 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-10-15 09:05 - 2024-09-17 23:23 - 000001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-10-14 21:52 - 2024-11-22 16:30 - 003276800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-10-14 19:52 - 2024-10-22 12:17 - 000000000 ____D C:\Users\jang6\Desktop\faktury
2025-10-14 16:04 - 2024-11-22 00:15 - 000000000 ___DC C:\WINDOWS\Panther
2025-10-14 16:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-10-14 09:06 - 2024-09-17 15:52 - 000002132 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-10-12 20:26 - 2024-11-22 14:16 - 000000000 ____D C:\Users\jang6\AppData\Local\SquirrelTemp
2025-10-12 18:16 - 2024-09-17 12:30 - 000000048 _____ C:\Users\jang6\Desktop\txt.txt
2025-10-12 11:19 - 2024-09-17 11:00 - 000000000 ___SD C:\Users\jang6\AppData\Roaming\Microsoft\Credentials
2025-10-11 13:49 - 2024-09-17 13:33 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-10-11 13:49 - 2024-09-17 13:33 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-10-11 09:27 - 2024-09-17 13:58 - 000000000 ____D C:\Users\jang6\AppData\Local\NVIDIA
2025-10-10 20:01 - 2024-09-15 13:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-10-10 18:39 - 2022-11-24 01:23 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-10-10 18:39 - 2022-11-24 01:23 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-10-10 08:32 - 2024-09-17 14:39 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-10-10 08:32 - 2024-09-17 14:39 - 000002409 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2025-10-08 09:25 - 2024-09-17 12:04 - 000001386 _____ C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2025-10-06 15:26 - 2024-09-17 12:30 - 000005684 _____ C:\Users\jang6\Desktop\knihovna.txt
2025-10-05 22:41 - 2025-05-22 10:28 - 000000000 ____D C:\Program Files\Microsoft Office
2025-10-01 15:28 - 2024-09-17 12:56 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-10-01 15:28 - 2024-09-17 12:56 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2025-09-30 23:19 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-09-30 20:42 - 2024-09-19 19:07 - 000000000 ____D C:\Users\jang6\Desktop\slovíčka
2025-09-26 15:39 - 2024-09-17 12:17 - 001282632 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgSP.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000876104 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000574048 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000391776 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000390752 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000299616 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000284768 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000244832 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000092232 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000085600 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000071240 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2025-09-26 15:39 - 2024-09-17 12:17 - 000029792 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2025-09-25 09:11 - 2024-09-15 18:05 - 002505612 ____N C:\WINDOWS\Minidump\092525-12312-01.dmp
2025-09-24 11:24 - 2024-09-17 15:54 - 000000000 ____D C:\Users\jang6\AppData\Roaming\Microsoft\Excel
2025-09-22 16:06 - 2024-09-27 15:19 - 000000000 ____D C:\ProgramData\CanonIJPLM
2025-09-22 09:05 - 2024-09-17 12:56 - 000000000 ____D C:\Users\jang6\AppData\LocalLow\Adobe
2025-09-18 22:35 - 2024-09-22 19:05 - 000000000 ____D C:\Users\jang6\.MemuHyperv

==================== Files in the root of some directories ========

2022-10-11 22:19 - 2022-10-11 22:19 - 000000030 _____ () C:\Users\jang6\AppData\Roaming\Microsoft\Readme.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[Erediel]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-10-2025
Ran by jang6 (16-10-2025 18:56:41)
Running from C:\Users\jang6\Downloads
Microsoft Windows 11 Home Version 25H2 26200.6899 (X64) (2024-11-22 14:30:15)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1549321770-275972891-217463218-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1549321770-275972891-217463218-503 - Limited - Disabled)
Guest (S-1-5-21-1549321770-275972891-217463218-501 - Limited - Disabled)
jang6 (S-1-5-21-1549321770-275972891-217463218-1002 - Administrator - Enabled) => C:\Users\jang6
WDAGUtilityAccount (S-1-5-21-1549321770-275972891-217463218-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\uTorrent) (Version: 3.6.0.47222 - BitTorrent Limited)
7-Zip 22.01 (HKLM-x32\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Active@ Boot Disk 24 (HKLM-x32\...\{9770BCC6-C50D-41D7-AE07-5B796D630052}_is1) (Version: 24 - LSoft Technologies Inc)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version: 25.001.20756 - Adobe)
Adobe AIR (HKLM-x32\...\{10E33ABF-D7FB-4F47-900A-7973854AB45A}) (Version: 32.0.0.125 - Adobe) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe)
Adobe Anchor Service CS3 (HKLM-x32\...\{90176341-0A8B-4CCC-A78D-F862228A6B95}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Asset Services CS3 (HKLM-x32\...\{8BC84ECC-EA87-49C0-93C0-2B5DF62745CD}) (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS3 (HKLM-x32\...\{68CF6DD2-8BA3-4A70-81D8-7CC5F24C9BA2}) (Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Bridge Start Meeting (HKLM-x32\...\{7F3A2319-79CF-4701-95FB-034E99281808}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Camera Raw 4.0 (HKLM-x32\...\{183B7569-90FB-4C56-9761-0EEB002CAB83}) (Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps (HKLM-x32\...\{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Default Language CS3 (HKLM-x32\...\{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS3 (HKLM-x32\...\{20B83B31-09C4-4F0E-9774-EF8A12A0A527}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.12 - Adobe Systems Incorporated)
Adobe Dreamweaver CS3 (HKLM-x32\...\{F01D5ED5-D53A-4468-B428-149DC2CB3110}) (Version: 9 - Adobe Systems Incorporated) Hidden
Adobe Dreamweaver CS3 (HKLM-x32\...\Adobe_435a6af7459cb02a9c1138113a26e93) (Version: 9.0 - Adobe Systems Incorporated)
Adobe ExtendScript Toolkit 2 (HKLM-x32\...\{4DF98D0B-637E-42B4-B9D6-EB7693D2FBF8}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Extension Manager CS3 (HKLM-x32\...\{2A539CD9-0F75-4875-9A32-E06DD93C4114}) (Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Help Viewer CS3 (HKLM-x32\...\{733D84D6-AAFD-4368-A1D0-F2734F6B9082}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files (HKLM-x32\...\{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}) (Version: 8.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop 7.0 CE (HKLM-x32\...\Adobe Photoshop 7.0 CE) (Version: 7.0 CE - Adobe Systems, Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601120}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Adobe Setup (HKLM-x32\...\{3A12C952-61D5-4C3B-B68B-8CFBE47E22F1}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Type Support (HKLM-x32\...\{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS3 (HKLM-x32\...\{D1C59F81-66FD-4E8E-B9F7-F4B2442D5222}) (Version: 5.1.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Client (HKLM-x32\...\{41C3C974-EC5E-494C-AFE6-E31D92E2E6CB}) (Version: 3 - Adobe Systems Incorporated) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.133 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 6.05.16.221 - Advanced Micro Devices, Inc.)
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.90 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.27.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.44 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{1ee7f179-da35-4723-a064-99a2a93c80be}) (Version: 6.05.16.221 - Advanced Micro Devices, Inc.) Hidden
AniMeVisionFont_MB (HKLM\...\{93E38BA3-9745-4D67-91BC-F65F81523D0A}) (Version: 1.0.1 - ASUSTek Computer Inc.) Hidden
Apache NetBeans version 26 (HKLM\...\Apache NetBeans_is1) (Version: 26 - )
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.4.7.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{58727f8d-1cdf-4f22-8a49-390ca0792831}) (Version: 1.4.7.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM\...\{BEB6AE1D-4CF2-41D3-94F2-3E277787E1D5}) (Version: 7.4.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM-x32\...\{e78d8089-0909-4d8a-9917-ad4d52eb4dd2}) (Version: 7.4.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{49c4358d-054e-4cf1-9ec1-dca3487f304a}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{359B9A9D-A289-4962-BCE2-13EBFD50D532}) (Version: 1.6.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{8d998bca-1552-4762-beae-c6fef377314b}) (Version: 1.6.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.05.13 - ASUSTeK COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.2.4.7 - ASUSTeK Computer Inc.)
ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 4.05.06 - ASUSTek Computer Inc.)
AURA DRAM Component (HKLM\...\{86D4C8A2-DB22-4948-950D-28DD5145F91C}) (Version: 1.1.29 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{f70a8a88-540d-485d-9aa8-001486fb050e}) (Version: 1.1.29 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.49 - ASUSTek COMPUTER INC.)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.49 - ASUSTek COMPUTER INC.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.08.59 - ASUSTeK COMPUTER INC.) Hidden
AURA Service (HKLM-x32\...\{cabfa89d-a59c-47ac-8d18-2032a1f72f20}) (Version: 3.08.59 - ASUSTeK COMPUTER INC.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 139.0.31974.157 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1697.6 - AVAST Software) Hidden
AVG Internet Security (HKLM\...\AVG Antivirus) (Version: 25.9.10453.3123 - Gen Digital Inc.)
Bluefire Reader for Windows (HKLM-x32\...\{6DC2F94C-1F8B-432A-B4E5-3454968CA299}) (Version: 1.01.1006 - Bluefire Productions, LLC)
BlueStacks App Player (HKLM\...\BlueStacks_nxt) (Version: 5.21.560.1027 - now.gg, Inc.)
BlueStacks Services (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\BlueStacksServices) (Version: 3.0.9 - now.gg, Inc.)
BlueStacks X (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\BlueStacks X) (Version: 10.41.560.1001 - now.gg, Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.78.1094 - AB Team, d.o.o.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: - )
Canon MP260 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP260_series) (Version: - )
Canon MP280 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP280_series) (Version: - )
CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
Core Temp 1.18.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.18.1 - ALCPU)
CPUID CPU-Z 2.10 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.10 - CPUID, Inc.)
Crysis 3 Remastered (HKLM-x32\...\Crysis 3 Remastered_is1) (Version: - )
CrystalDiskMark 8.0.1 (HKLM\...\CrystalDiskMark8_is1) (Version: 8.0.1 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 12.1.0.2207 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Discord) (Version: 1.0.9200 - Discord Inc.)
Easy Subtitles Synchronizer (HKLM-x32\...\{A35461B1-DFFD-48AE-A672-3C96A08B6A96}) (Version: 1.1.0 - ESS)
eM Client (HKLM-x32\...\{83112A22-603A-4C6C-99A1-3F90A8125877}) (Version: 10.1.4417.0 - eM Client s.r.o.)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.57.0 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{aed74e04-f110-4d4d-bcfc-e8e9ad5fc0aa}) (Version: 1.1.57.0 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{c1d017c2-8846-4000-9254-5689eccd462e}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
Exodus (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\exodus) (Version: 25.40.6 - Exodus Movement Inc)
EXPERTool v11.12 (HKLM\...\{660D3DDC-C82C-49B9-9511-284043713699}_is1) (Version: 11.12.0.1 - Gainward Co. Ltd.)
Forza Horizon 5 (HKLM-x32\...\Forza Horizon 5_is1) (Version: - )
Fraps (HKLM-x32\...\Fraps) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{32B7D189-B387-467E-8BCF-FAAD5C75F366}) (Version: 5.74.1257.0 - Futuremark)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 141.0.7390.66 - Google LLC)
Cheat Engine 7.5 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine)
IIS 10.0 Express (HKLM\...\{0F4F67F8-21E1-422D-B31C-B3800F4D6E36}) (Version: 10.0.10007 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - ) Hidden
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - ) Hidden
Indiana Jones and the Great Circle (HKLM-x32\...\Indiana Jones and the Great Circle_is1) (Version: 0.0.0 - DODI-Repacks)
IPTVSmartersPro 1.1.2 (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\f6c4a7ae-abcb-5b7e-ac53-6c20f026dd0e) (Version: 1.1.2 - IPTV Smarters Pro)
iTop VPN (HKLM-x32\...\iTop VPN_is1) (Version: 7.0.0.6652 - iTop Inc.)
Jihosoft ISO Maker version 3.0 (HKLM-x32\...\{FA289A40-0F71-428E-B3A2-546EDC04DB93}_is1) (Version: 3.0 - Jihosoft Studio)
Jpeg Resampler XE (HKLM-x32\...\JpegResamplerXE_is1) (Version: - Jpeg Resampler)
KeePass Password Safe 2.59 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.59 - Dominik Reichl)
Kingdom.Come.Deliverance.II.REPACK.KaOs 1.0.0.1 (HKLM-x32\...\Kingdom.Come.Deliverance.II.REPACK.KaOs_is1) (Version: 1.0.0.1 - )
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.39 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{20c88a0d-98f7-40db-b062-3f319a507889}) (Version: 1.1.39 - KINGSTON COMPONENTS INC.) Hidden
Kodi (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Kodi) (Version: 21.2.0.0 - XBMC Foundation)
Local 9.2.5 (HKLM-x32\...\db9b6d64-7ad2-556e-893c-24e21cb471e1) (Version: 9.2.5 - WPEngine, Inc.)
Mafia II: Definitive Edition (HKLM-x32\...\Mafia II: Definitive Edition_is1) (Version: - )
Malwarebytes version 5.4.1.215 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.4.1.215 - Malwarebytes)
MEmu (HKLM-x32\...\MEmu) (Version: 8.1.3.0 - Microvirt Software Technology Co. Ltd.)
Microsoft .NET Host - 6.0.16 (x64) (HKLM\...\{1D0AC7F1-2B34-44AF-91F6-88757D768DA7}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.13 (x64) (HKLM\...\{6CD2C0A9-55E7-4133-BC19-205CCF2B64C9}) (Version: 64.52.27977 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.16 (x64) (HKLM\...\{B8537ACA-B210-4DF5-B928-E41CEB76723D}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.13 (x64) (HKLM\...\{BB5AC4BC-A263-43DA-A530-9CB56342D6B8}) (Version: 64.52.27977 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM\...\{C71E93D2-B8B4-4858-B2A1-4C967DBC1C5F}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM-x32\...\{2a8d0f2b-911b-4b58-8252-46b29e7a4590}) (Version: 6.0.16.32323 - Microsoft Corporation)
Microsoft .NET Runtime - 8.0.13 (x64) (HKLM\...\{C7FB4EEE-D481-4AC1-B113-120A9124FE50}) (Version: 64.52.27977 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.13 (x64) (HKLM-x32\...\{8def024a-2c3c-4c48-a40d-05682ee1ec65}) (Version: 8.0.13.34516 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 141.0.3537.71 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 141.0.3537.71 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2021 - cs-cz (HKLM\...\ProPlus2021Retail - cs-cz) (Version: 16.0.19231.20156 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.179.0914.0003 - Microsoft Corporation)
Microsoft SQL Server 2019 LocalDB (HKLM\...\{E5B3A478-C4C3-49E3-8384-A12D4B2008D4}) (Version: 15.0.4382.1 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.25.08601 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35208 (HKLM-x32\...\{9387bec2-2f2b-48d1-a0ce-692c5df7042d}) (Version: 14.44.35208.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35208 (HKLM-x32\...\{e90abaf0-d749-437b-ba99-cda1c84b6754}) (Version: 14.44.35208.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35208 (HKLM\...\{7E35F76C-5801-4A4A-817C-66AF46D3E5AD}) (Version: 14.44.35208 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35208 (HKLM\...\{130A991B-6E86-4D62-86F4-656E6C9DA867}) (Version: 14.44.35208 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35208 (HKLM-x32\...\{5A76FFAE-36C5-4648-80BD-4BB5B6E971F0}) (Version: 14.44.35208 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35208 (HKLM-x32\...\{491C67BA-2F2F-4A90-B9DD-4C76BFDBEA02}) (Version: 14.44.35208 - Microsoft Corporation) Hidden
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 3.14.2075.50697 - Microsoft Corporation)
Microsoft Web Deploy 4.0 (HKLM\...\{DE4FFB86-1944-4273-B040-92E920BD6861}) (Version: 10.0.9419 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 144.0 (x64 cs)) (Version: 144.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 128.2.1 - Mozilla)
Mozilla Thunderbird ESR (x64 cs) (HKLM\...\Mozilla Thunderbird 140.4.0 ESR (x64 cs)) (Version: 140.4.0 - Mozilla)
MSI Afterburner 4.6.5 (HKLM-x32\...\Afterburner) (Version: 4.6.5 - MSI Co., LTD)
Nero 2016 (HKLM-x32\...\{4297E807-5633-466A-8AC0-5AC48D310471}) (Version: 17.0.02000 - Nero AG)
Nero Burning Core (HKLM-x32\...\{A163159C-B476-4501-B163-3F77809AC833}) (Version: 17.0.5000 - Nero AG) Hidden
Nero Burning ROM (HKLM-x32\...\{CFB0F37D-22E7-4F37-8FAE-B319A58AC5B9}) (Version: 17.0.5000 - Nero AG) Hidden
Nero ControlCenter (HKLM-x32\...\{ABC88553-8770-4B97-B43E-5A90647A5B63}) (Version: 11.2.0015 - Nero AG) Hidden
Nero Core Components (HKLM-x32\...\{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}) (Version: 11.4.0040 - Nero AG) Hidden
Nero CoverDesigner (HKLM-x32\...\{92EBE575-0C6E-4713-B095-34BB927E5AC6}) (Version: 17.0.6000 - Nero AG) Hidden
Nero Device Updates (HKLM-x32\...\{1C63279A-BF36-4852-9924-B1978D6585A6}) (Version: 17.0.1000 - Nero AG) Hidden
Nero Disc Menus Basic (HKLM-x32\...\{E17BCB76-9924-4BD5-B6D6-50D3407B4E74}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Disc to Device (HKLM-x32\...\{BD6F4D10-E29E-49E3-8497-1D454AF5EEF8}) (Version: 17.0.1007 - Nero AG) Hidden
Nero Effects Basic (HKLM-x32\...\{29F67D84-3A70-456E-806A-52301B02070B}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Express (HKLM-x32\...\{60251665-84B4-41D6-84BF-6D50CE68DD08}) (Version: 17.0.5000 - Nero AG) Hidden
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2000 - Nero AG)
Nero Kwik Themes Basic (HKLM-x32\...\{1B6F5E51-575E-4693-BCA2-7543570D076D}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Launcher (HKLM-x32\...\{EF0BA418-AF37-471E-9594-EAE5913F4681}) (Version: 17.0.57000 - Nero AG) Hidden
Nero MediaHome (HKLM-x32\...\{7E75EA5E-D9FA-45DB-9646-EEA5C5BF61D4}) (Version: 1.34.800 - Nero AG) Hidden
Nero PiP Effects Basic (HKLM-x32\...\{ACE49D50-19CD-44A6-B192-46F985283B26}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Recode (HKLM-x32\...\{B17D5E7B-FADD-4EB4-B537-CB7EB3333D97}) (Version: 17.0.10000 - Nero AG) Hidden
Nero RescueAgent (HKLM-x32\...\{7F22DD97-256D-491D-9090-743FADC79BBE}) (Version: 17.0.4000 - Nero AG) Hidden
Nero SharedVideoCodecs (HKLM-x32\...\{2432E589-6256-4513-B0BF-EFA8E325D5F0}) (Version: 1.0.16007 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 11.0.13600.45.0 - Nero AG) Hidden
Nero Video (HKLM-x32\...\{6861C1AD-9829-4DE4-8647-4785ECEA421A}) (Version: 17.0.12000 - Nero AG) Hidden
Nero Video Samples (HKLM-x32\...\{05C6B128-1B40-4495-9CB9-090B368BFA0A}) (Version: 17.0.10002 - Nero AG) Hidden
NVIDIA App 11.0.5.245 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.5.245 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.5.11504.36206172 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.11504.36206172 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.5.0 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 581.42 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 581.42 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.19231.20072 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.19029.20208 - Microsoft Corporation) Hidden
Opera Stable 122.0.5643.92 (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Opera 122.0.5643.92) (Version: 122.0.5643.92 - Opera Software)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.8 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{55993b50-5bec-47c8-8b2b-1aecad927e48}) (Version: 1.0.9.8 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.3 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{6e0eff60-c502-43bb-8f56-360ca07e73d9}) (Version: 1.1.0.3 - Patriot Memory) Hidden
ProgDVB x64 (HKLM\...\ProgDVB) (Version: 7.x - Prog)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.1.0 - Advanced Micro Devices, Inc.) Hidden
Proton VPN (HKLM\...\Proton VPN_is1) (Version: 4.2.1 - Proton AG)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8971.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 11.19.0704.2024 - Realtek)
Registrace uživatele zařízení Canon MP280 series (HKLM-x32\...\Registrace uživatele zařízení Canon MP280 series) (Version: - )
Revo Uninstaller 2.6.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.6.0 - VS Revo Group, Ltd.)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 3.3.8.0 - ASUSTek COMPUTER INC.)
ROGFontInstaller (HKLM\...\{605108C1-153E-43D8-8A67-7CE326B00ECA}) (Version: 1.0.0 - ASUS)
South of Midnight (HKLM-x32\...\South of Midnight_is1) (Version: - )
SportZone (HKLM-x32\...\{5AE24741-DE0F-6E31-203E-160CBE9F475B}) (Version: 1.5.1 - UNKNOWN) Hidden
SportZone (HKLM-x32\...\com.sportplanet.sportzone) (Version: 1.5.1 - UNKNOWN)
Stashimi Stub Installer (HKLM-x32\...\{910B539D-F257-46C8-9CB8-6C95EFF9CF22}) (Version: 18.001.1 - Nero AG) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stolní kalendář (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\Kalendar) (Version: 3.8.9 - pyramidak)
Syberia (HKLM-x32\...\{E34E9B33-46EC-4252-A52F-DDA3978CC0AF}) (Version: - )
Syberia 2 (HKLM-x32\...\GOGPACKSYBERIA2_is1) (Version: 2.0.0.8 - GOG.com)
Syberia 3 An Automaton with a plan (HKLM\...\c3liZXJpYTM_is1) (Version: 1 - )
Syberia: The World Before Deluxe Edition (HKLM-x32\...\Syberia: The World Before Deluxe Edition_is1) (Version: 1.39222 - RePack)
Telegram Desktop (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 6.0.2 - Telegram FZ-LLC)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.50 - Ghisler Software GmbH)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.7 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{9a732423-e2f4-47d0-87ab-ef745c7dba69}) (Version: 1.0.0.7 - PD) Hidden
Viber (HKLM\...\{E443290D-E1DA-4EC2-AB5E-3C775FD6D775}) (Version: 25.3.0.0 - 2010-2025 Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\{40D39C4B-5AAD-4CA0-B5A5-228A9BCB9B5F}) (Version: 26.3.2.0 - 2010-2025 Viber Media S.a.r.l)
vs_CoreEditorFonts (HKLM-x32\...\{1851460E-0E63-4117-B5BA-25A2F045801B}) (Version: 17.7.40001 - Microsoft Corporation)
Waterfox (x64 en-US) (HKLM\...\Waterfox 140.3.0 (x64 en-US)) (Version: 6.6.3 - BrowserWorks)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.1073 - McAfee, LLC)
WeMod (HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\WeMod) (Version: 10.15.0 - WeMod)
Windows SDK AddOn (HKLM-x32\...\{04307046-D84E-4FF7-948D-A907C0D2B1A7}) (Version: 10.1.0.0 - Microsoft Corporation)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
Xbox 360 Controller Emulator (HKLM\...\{5F00844F-9F65-4193-80FA-3422C51D5A5B}) (Version: 1.0.0.13 - ASUSTek COMPUTER INC.) Hidden
Xbox 360 Controller Emulator (HKLM\...\{66F1BC10-A109-47A5-918D-61023175C03E}) (Version: 1.0.0.13 - ASUSTek COMPUTER INC.) Hidden

Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3624.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-05-29] ()
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-05-29] ()
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3912.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-05-29] ()
@{MicrosoftWindows.58683691.InpApp_1000.26100.6725.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.58683691.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.58683691.InpApp_cw5n1h2txyewy [2025-10-15] (Microsoft Windows)
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Assets [2025-10-01] ()
Apple TV -> C:\Program Files\WindowsApps\AppleInc.AppleTVWin_1.1536.28673.0_x64__nzyj5cx40ttqa [2025-09-15] (Apple Inc.)
Armoury Crate -> C:\Program Files\ASUS\AacAmbientHal [2025-10-15] (Sparse Package)
AURA Creator -> C:\Program Files\WindowsApps\B9ECED6F.AURACreator_4.3.4.0_x64__qmba6cd70vzyy [2025-09-15] (ASUSTeK COMPUTER INC.)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.58683691.InpApp_cw5n1h2txyewy [2025-10-15] (Microsoft Windows)
DTS Custom for Asus -> C:\Program Files\WindowsApps\DTSInc.DTSCustomforAsus_2.1.1.0_x64__t5j2fzbtdg37r [2025-01-19] (DTS, Inc.)
Journal -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJournal_1.25150.49.0_x64__8wekyb3d8bbwe [2025-06-25] (Microsoft Corporation)
Local Artificial Intelligence Manager -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\AI [2025-10-15] ()
Malwarebytes Anti-Malware -> C:\Program Files\Malwarebytes\Anti-Malware [2025-10-16] ()
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2025-01-19] (Microsoft Corp.)
Microsoft Jenny (Natural) - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Voice.en-US.Jenny.1_1.0.8.0_x64__cw5n1h2txyewy [2025-06-10] (Microsoft Windows)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_55.20811.580.0_x64__8wekyb3d8bbwe [2025-08-23] (Microsoft Corporation)
Microsoft.D3DMappingLayers -> C:\Program Files\WindowsApps\Microsoft.D3DMappingLayers_1.2510.1.0_x64__8wekyb3d8bbwe [2025-10-09] (Microsoft Corporation)
Microsoft.Office.ActionsServer -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\ActionsServer [2025-10-15] ()
Minecraft Education -> C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.9201.0_x64__8wekyb3d8bbwe [2025-08-20] (Microsoft Studios)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.49.0_x64__qmba6cd70vzyy [2025-09-26] (ASUSTeK COMPUTER INC.) [Startup Task]
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16 [2025-10-15] ()
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.221.0_x64__dt26b99r8h8gj [2025-01-19] (Realtek Semiconductor Corp)
Speech Pack - English (United States) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.en-US.1_1.0.24.0_x64__cw5n1h2txyewy [2025-07-02] (Microsoft Windows)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2539.2.0_x64__cv1g1gvanyjgm [2025-10-02] (WhatsApp Inc.) [Startup Task]
WinRAR -> C:\Program Files\WinRAR [2025-10-15] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1549321770-275972891-217463218-1002_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1549321770-275972891-217463218-1002_Classes\CLSID\{3489D480-518E-4BF2-8059-CC15E52F7EA7}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
CustomCLSID: HKU\S-1-5-21-1549321770-275972891-217463218-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1549321770-275972891-217463218-1002_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> C:\Program Files\Proton\VPN\v3.5.1\ProtonVPN.exe (Proton AG -> )
CustomCLSID: HKU\S-1-5-21-1549321770-275972891-217463218-1002_Classes\CLSID\{EABAE40C-B27C-455A-B672-F234DD780948}\InprocServer32 -> C:\Users\jang6\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.25.08601\x64\Microsoft.Teams.MeetingAddin.DLL (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-09-20] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-09-20] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-09-20] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.179.0914.0003\FileSyncShell64.dll [2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-09-20] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-09-08] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers1-x32: [JRcm] -> {C20B9A7B-ED5B-4CEB-B2A6-F1F62E99C539} => C:\Program Files (x86)\JpegResamplerXE\JRcm.dll [2010-08-18] () [File not signed]
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2024-09-21] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2024-09-21] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-10-15] (Malwarebytes Inc -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.179.0914.0003\FileSyncShell64.dll [2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.179.0914.0003\FileSyncShell64.dll [2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_901d8cfde13e2b8b\nvshext.dll [2025-09-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-09-20] (Adobe Inc. -> )
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2025-09-26] (Gen Digital Inc. -> Gen Digital Inc.)
ContextMenuHandlers6-x32: [JRcm] -> {C20B9A7B-ED5B-4CEB-B2A6-F1F62E99C539} => C:\Program Files (x86)\JpegResamplerXE\JRcm.dll [2010-08-18] () [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-10-15] (Malwarebytes Inc -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2019-08-30] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [MidisrvTransferComplete] => 0
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2019-08-30] (Beepa P/L) [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2025-08-19 20:28 - 2024-12-13 13:06 - 000478208 _____ () [File not signed] \\?\C:\Users\jang6\AppData\Local\Programs\IPTVSmartersPro\resources\wcjs-prebuilt\WebChimera.js.node
2025-08-19 20:28 - 2024-12-13 13:06 - 002259968 _____ () [File not signed] C:\Users\jang6\AppData\Local\Programs\IPTVSmartersPro\ffmpeg.dll
2025-08-19 20:28 - 2024-12-13 13:06 - 000095232 _____ () [File not signed] C:\Users\jang6\AppData\Local\Programs\IPTVSmartersPro\libegl.dll
2025-08-19 20:28 - 2024-12-13 13:06 - 002917376 _____ () [File not signed] C:\Users\jang6\AppData\Local\Programs\IPTVSmartersPro\libglesv2.dll
2025-08-19 20:28 - 2024-12-13 13:06 - 016699904 _____ (Node.js) [File not signed] C:\Users\jang6\AppData\Local\Programs\IPTVSmartersPro\node.dll
2025-10-10 20:02 - 2025-10-10 20:02 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\plugins\NVIDIA Overlay\MessageBusRouter.dll
2024-11-23 22:45 - 2025-10-10 20:01 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\jang6\Downloads\Ace_Stream_Media_3.2.8.exe:MBAM.Zone.Identifier [270]
AlternateDataStreams: C:\Users\jang6\Downloads\ProtonVPN_v3.5.1_x64.exe:MBAM.Zone.Identifier [200]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1549321770-275972891-217463218-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-10-05] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2022-05-07 07:24 - 2025-10-15 21:03 - 000002127 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 testweb-2.local #Local Site
127.0.0.1 www.testweb-2.local #Local Site
127.0.0.1 testweb3.local #Local Site
127.0.0.1 www.testweb3.local #Local Site
127.0.0.1 testweb.local #Local Site
127.0.0.1 www.testweb.local #Local Site
127.0.0.1 testweb-5.local #Local Site
127.0.0.1 www.testweb-5.local #Local Site
127.0.0.1 woocommerce.local #Local Site
127.0.0.1 www.woocommerce.local #Local Site
127.0.0.1 woocommerce-kadence.local #Local Site
127.0.0.1 www.woocommerce-kadence.local #Local Site
127.0.0.1 woocommerce-blocksy.local #Local Site
127.0.0.1 www.woocommerce-blocksy.local #Local Site
127.0.0.1 hello.local #Local Site
127.0.0.1 www.hello.local #Local Site

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 10.0.0.138
Windows Firewall is enabled.

Network Binding:
=============
VMware Network Adapter VMnet1: VMware Virtual Ethernet Adapter for VMnet1 -> vmnetadapter.sys
Ethernet 2: Realtek Gaming GbE Family Controller -> rt68cx21x64.sys
VMware Network Adapter VMnet8: VMware Virtual Ethernet Adapter for VMnet8 -> vmnetadapter.sys

vmware_bridge: VMware Bridge Protocol

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\VMware\VMware Player\bin\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA app\NvDLISR;C:\Program Files\dotnet\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\
HKCU\Environment\\Path -> %USERPROFILE%\AppData\Local\Microsoft\WindowsApps
HKU\S-1-5-21-1549321770-275972891-217463218-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\jang6\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)


==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "WinZip Preloader.lnk"
HKLM\...\StartupApproved\Run: => "WinZip FAH"
HKLM\...\StartupApproved\Run: => "WinZip UN"
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_43CBB9AF863412E490A7AA793951F47E"
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\StartupApproved\Run: => "NoxMultiPlayer"
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\StartupApproved\Run: => "Opera Stable"
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\StartupApproved\Run: => "AceStream"
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1549321770-275972891-217463218-1002\...\StartupApproved\Run: => "electron.app.BlueStacks Services"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{381E1B60-DBEF-4EEE-99CA-A071EFEE2A13}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\nero.exe => No File
FirewallRules: [{75B3B8BC-7A17-4E70-AE23-03A05B1FF817}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe => No File
FirewallRules: [{BE585D59-FFCC-4FDC-8F9A-9D2253C482F5}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe => No File
FirewallRules: [{67070BE1-A513-4C8B-A78E-7168612CB01A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark Demo\bin\x64\3DMark.exe => No File
FirewallRules: [{32BFFB1D-108F-4E60-B7DB-176950047093}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark Demo\bin\x64\3DMark.exe => No File
FirewallRules: [{71683245-4F77-445F-99A8-2699D9CF4E9C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A05B76BA-B72C-4740-B860-C158569DB3E5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{04DFC9C8-BE15-4C7B-A8FF-F5B2CF5B2C08}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6C319847-AF2D-4A1D-97A8-DD1D83294DAC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CAF6157D-CA44-412C-92FB-2457E6FC39C3}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe => No File
FirewallRules: [{2ED784FB-9040-4276-9296-36C8E305B171}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe => No File
FirewallRules: [{1DBFB29C-4F26-4050-9674-CACE7B5A6CA1}] => (Allow) LPort=1688
FirewallRules: [{34F8EC83-A278-47C1-B03F-6D1782C1065E}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
FirewallRules: [{60FBD2D5-4DA2-495E-B155-3A6A18A42B48}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
FirewallRules: [{04F38672-08B2-4C67-AE45-338BFAA7EF58}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{058B864B-697A-4361-83EC-034726E2900E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{58D78D3B-96A3-47F1-9786-4AA942DC3FDD}] => (Allow) C:\Users\jang6\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [{837C1EA4-3316-42DD-BF3D-BC4F0A77865C}] => (Allow) C:\Users\jang6\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [{EC7C68CD-B27E-4E1A-A40B-3C07C9EF2834}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{2C38D33F-1572-4C5E-B1F3-D54FC9DB50F9}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{25E81023-40ED-4B4F-8C8E-BB0EA1A76E3E}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{495DCDBC-F030-482F-9141-447721D37E0E}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{9114A776-48C3-4708-BE35-C47DF9372165}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{D0E5DD9E-70F1-43B2-88A4-35696F897A70}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{D9C025A1-89AF-4A0A-B376-AF9E4157DE42}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{90521986-F2AE-4753-A3FE-231E46E15B75}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{070BB57C-F425-4BBE-8553-47B05DE7BC24}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{17249CDA-5EC7-4317-A6FE-5D36CC7270B6}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{0A63247D-56E5-4485-BF21-EC473CF3AA30}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{4C81B2F8-809E-442F-8CA7-C7D8EC2EEFB8}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{dc49b935-3440-4f2e-af7b-df7db6351948}] => (Allow) D:\LDPlayer\LDPlayer9\dnplayer.exe => No File
FirewallRules: [{75ef02b0-9dc4-4741-94d6-387fd6bd40a9}] => (Allow) C:\Program Files\ldplayer9box\VBoxNetNAT.exe => No File
FirewallRules: [{0fa02948-c827-4989-8425-9ec14c976fdd}] => (Allow) C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe => No File
FirewallRules: [{FCEACAA7-9AE3-4397-B554-79B35205B305}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe => No File
FirewallRules: [{099B8CE3-4AF6-441A-9A48-CC820251022A}] => (Allow) D:\Program Files\Nox\bin\Nox.exe => No File
FirewallRules: [{F429ED57-FCEA-4F10-A11C-B438FBAD4D65}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (Now.gg, INC -> The Qt Company Ltd.)
FirewallRules: [{0E3F6394-AD89-4AC1-9491-520C6E39B97A}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Now.gg, INC -> BlueStack Systems)
FirewallRules: [{0FA56DEB-4905-48FE-9591-775BA5319EBF}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{5365E9A0-D694-4444-9885-1664D2C065FA}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe (Now.gg, INC -> Bluestack Systems, Inc.)
FirewallRules: [{E73D4D38-326E-4AA4-A99A-E0755F445781}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe => No File
FirewallRules: [{3802CAA6-78CC-4E53-AD72-252ECDE56F4F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe => No File
FirewallRules: [{344C4E79-57F9-44CF-8208-1C78064F50BD}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{546A2796-12F3-4FE8-94DC-3C6CD9123F44}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{0110AE1B-8B5C-4506-98E3-5CB0F97805BE}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1105.3082.1600_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{81EDEA15-9A96-431B-99CC-F62E4B9B3AE2}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1105.3082.1600_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C5520A20-27C1-4D76-A8A2-1BDEF7B66718}] => (Allow) C:\Users\jang6\AppData\Local\Packages\B9ECED6F.ArmouryCrate_qmba6cd70vzyy\LocalState\GridUpdateFile\ASUSGCDriverUpdateClient.exe => No File
FirewallRules: [{56FCD0F4-52A7-4F97-AFDC-88626463E62A}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (Broadcom Inc -> VMware, Inc.)
FirewallRules: [{18E78FF3-EF03-4585-8CC1-1167FEB0210F}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (Broadcom Inc -> VMware, Inc.)
FirewallRules: [{51DDEDC8-9543-41A7-8A8F-1EF86626C6A9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.9201.0_x64__8wekyb3d8bbwe\Minecraft.Windows.exe (Microsoft Corporation -> )
FirewallRules: [{45AA4C23-DF07-48EC-983B-48E0B29DF180}] => (Allow) C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.9201.0_x64__8wekyb3d8bbwe\Minecraft.Windows.exe (Microsoft Corporation -> )
FirewallRules: [{C2F0CB54-0A27-44C2-8AE3-BD219B6977C0}] => (Allow) C:\Users\jang6\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{8DA3B4C5-39D9-4FF3-A165-821FFA3CE7BB}] => (Allow) C:\Users\jang6\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{C1B4BFAC-1C10-4C14-994D-B6A4751A3EEE}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{2E347B7C-38F6-4237-B286-ABFEB1195479}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{CFA50BA5-59CC-42E8-BB84-8E2D1176F04A}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{D1E3F50E-CBB3-42CE-ADBF-AE7469D3CEDD}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{EA46C888-B55B-4725-AD85-087683F45BC3}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{4EF494CA-6964-49A2-A585-1E30C126D595}] => (Allow) C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{2391EB3C-A8A7-46DC-94F3-EE61BCBB1A83}] => (Allow) D:\program files\asus\aacambienthal\aacambientlighting.exe => No File
FirewallRules: [{8988C9CD-F796-4F57-9C64-EA036601AF00}] => (Allow) C:\Program Files\WindowsApps\AppleInc.AppleTVWin_1.1536.28673.0_x64__nzyj5cx40ttqa\AppleTV.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{ED38F4F7-11C3-473A-A941-2AE8CD7278D2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.AppleTVWin_1.1536.28673.0_x64__nzyj5cx40ttqa\AppleTV.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{4C567DDB-8088-46FE-AF5E-4EB899BD3F2F}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{C756F973-2882-4CF1-BA98-B858C7717109}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.49.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{5B8954F6-F2FE-4127-A979-AAD29D32AEFE}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.49.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{EF9D6B5B-AA65-4913-9ACA-9F9684020B86}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.49.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{1D0A0134-D6F8-4B12-8864-70E4295587A9}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.49.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{9646923E-529C-42AC-AB0A-2E2AD28D6365}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25255.703.3978.7153_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3391FB0F-ADA0-40B9-B054-4BB13B2743EC}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25255.703.3978.7153_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{15E2BA33-CCCC-41D3-8DC2-C16DB7C9D416}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25255.703.3978.7153_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7706279D-2DA7-4003-AEE2-6F22CE9BAA89}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25255.703.3978.7153_x64__8wekyb3d8bbwe\ms-teams_modulehost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2F41141E-348B-4484-922F-C253A8B7D467}] => (Allow) C:\Program Files\Waterfox\waterfox.exe (BROWSERWORKS LTD -> BrowserWorks Ltd)
FirewallRules: [{C99F148F-99FE-4DF0-AD97-377716726195}] => (Allow) C:\Program Files\Waterfox\waterfox.exe (BROWSERWORKS LTD -> BrowserWorks Ltd)
FirewallRules: [{2F261F2E-99D9-4734-AC9D-7F3BDC04F78A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DA54A64A-6B70-416A-97D4-C45C964F3F2D}] => (Allow) C:\Users\jang6\AppData\Local\Programs\Opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{93246483-A9F5-4B1E-92DB-DFC35FFEABAB}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{69C3DD00-79CC-4574-A1FD-E02EDC335BF3}] => (Allow) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe => No File

==================== Restore Points =========================

15-10-2025 21:21:53 Operace obnovení

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (10/16/2025 06:11:23 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: Aac3572MbHal_x86.exe, verze: 1.6.0.0, časové razítko: 0x675021bc
Název chybujícího modulu: combase.dll, verze: 10.0.26100.6899, časové razítko: 0x6030629d
Kód výjimky: 0xc0000005
Posun chyby: 0x000ae434
ID chybujícího procesu: 0x3668
Čas spuštění chybující aplikace: 0x1dc3e99c04363f4
Cesta k chybující aplikaci: C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID sestavy: a4fad7c6-73ad-4a34-a24b-9c2efdfcc7b3
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

Error: (10/16/2025 04:02:02 PM) (Source: Application Error) (EventID: 1000) (User: JAN)
Description: Název chybující aplikace: ace_stream.exe, verze: 0.0.0.0, časové razítko: 0x667d6d79
Název chybujícího modulu: Qt5WebEngineCore.dll, verze: 5.15.11.0, časové razítko: 0x66703005
Kód výjimky: 0xc0000005
Posun chyby: 0x00138d8b
ID chybujícího procesu: 0x2854
Čas spuštění chybující aplikace: 0x1dc3e9ea8b6a4e2
Cesta k chybující aplikaci: C:\Users\jang6\AppData\Roaming\ACEStream\engine\ui\ace_stream.exe
Cesta k chybujícímu modulu: C:\Users\jang6\AppData\Roaming\ACEStream\engine\ui\Qt5WebEngineCore.dll
ID sestavy: 2c1dba0d-4770-4898-8126-d6800c9c930f
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

Error: (10/16/2025 02:30:45 PM) (Source: Application Error) (EventID: 1000) (User: JAN)
Description: Název chybující aplikace: ArmouryCrate.UserSessionHelper.exe, verze: 6.3.3.0, časové razítko: 0x68ad4f51
Název chybujícího modulu: ArmouryCrate.AuraPlugin.dll_unloaded, verze: 6.3.3.0, časové razítko: 0x68b4fdb1
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002a2f2
ID chybujícího procesu: 0x439c
Čas spuštění chybující aplikace: 0x1dc3e9887a231af
Cesta k chybující aplikaci: C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.UserSessionHelper.exe
Cesta k chybujícímu modulu: ArmouryCrate.AuraPlugin.dll
ID sestavy: 8497f2d6-34ae-4cfe-8051-a56953f21ee9
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

Error: (10/16/2025 02:29:43 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: FileOperator.exe, verze: 3.3.8.0, časové razítko: 0xcdb225cd
Název chybujícího modulu: DeviceHalDetect.dll, verze: 0.0.11.4, časové razítko: 0x68a2cee9
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002ad00
ID chybujícího procesu: 0x4ad4
Čas spuštění chybující aplikace: 0x1dc3e9888ba23b1
Cesta k chybující aplikaci: C:\Program Files\ASUS\ROG Live Service\FileOperator.exe
Cesta k chybujícímu modulu: C:\Program Files\ASUS\ROG Live Service\MB\DeviceHalDetect.dll
ID sestavy: 9743f4ab-3e7a-4db0-add7-34db70cb77c1
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

Error: (10/16/2025 02:29:43 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Došlo k chybě při inicializaci infrastruktury připojení profilovacího rozhraní API. Tento proces neumožní připojení profileru. HRESULT: 0x80004005. ID procesu (desítkově): 21600. ID zprávy: [0x2509].

Error: (10/16/2025 02:29:43 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FileOperator.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.AccessViolationException
na FileOperator.dllLoader.NonUSBDetection(System.String)
na FileOperator.Program.Main(System.String[])

Error: (10/16/2025 02:28:39 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (10/16/2025 02:28:39 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]


System errors:
=============
Error: (10/16/2025 06:05:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba ROG Live Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (10/16/2025 06:05:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ASUS AURA SYNC lighting service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/16/2025 06:05:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Microsoft Office Click-to-Run Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (10/16/2025 06:05:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba McAfee WebAdvisor byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1 milisekund: Restartovat službu.

Error: (10/16/2025 06:05:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Disc Soft Lite Bus Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/16/2025 06:05:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba VMware USB Arbitration Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (10/16/2025 06:05:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (10/16/2025 06:05:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MEmuSVC byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================
Date: 2024-11-22 15:30:31
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/AutoKMS
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Windows\AutoKMS\AutoKMS.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Windows\AutoKMS\AutoKMS.exe
Verze bezpečnostních informací: AV: 1.421.40.0, AS: 1.421.40.0, NIS: 1.421.40.0
Verze modulu: AM: 1.1.24090.11, NIS: 1.1.24090.11

CodeIntegrity:
===============
Date: 2025-10-16 14:37:59
Description:
Code Integrity determined that a process (System) attempted to load \Device\HarddiskVolume3\Windows\SysWOW64\Drivers\AsIO.sys that did not meet the Authenticode signing level requirements or violated code integrity policy (Policy ID:{d2bda982-ccf6-4344-ac5b-0b44427b6816}).

Date: 2025-10-16 14:37:59
Description:
The driver \Device\HarddiskVolume3\Windows\SysWOW64\Drivers\AsIO.sys is blocked from loading as the driver has been revoked by Microsoft.

Date: 2025-10-16 14:28:06
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 4003 03/13/2023
Motherboard: ASUSTeK COMPUTER INC. TUF GAMING B450-PLUS II
Processor: AMD Ryzen 7 3700X 8-Core Processor
Percentage of memory in use: 32%
Total physical RAM: 32672.86 MB
Available physical RAM: 22082.37 MB
Total Virtual: 34720.86 MB
Available Virtual: 20975.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.42 GB) (Free:85.73 GB) (Model: CT1000P3SSD8) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1863 GB) (Free:328.04 GB) (Model: ST2000DM008-2UB102) NTFS
Drive f: (Expansion) (Fixed) (Total:3725.75 GB) (Free:884.95 GB) (Model: Seagate Expansion HDD SCSI Disk Device) exFAT

\\?\Volume{553c8587-9ebe-4550-b713-2f912bc38809}\ () (Fixed) (Total:0.98 GB) (Free:0.35 GB) NTFS
\\?\Volume{cc7fc91f-8465-4bb8-b075-8be50b6ba5d6}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
\\?\Volume{03d2a37a-8779-11ee-ad8c-b06ebf606863}\ (EFI) (Fixed) (Total:0.19 GB) (Free:0.19 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
AlternateDataStreams: C:\Users\jang6\Downloads\Ace_Stream_Media_3.2.8.exe:MBAM.Zone.Identifier [270]
AlternateDataStreams: C:\Users\jang6\Downloads\ProtonVPN_v3.5.1_x64.exe:MBAM.Zone.Identifier [200]
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
FirewallRules: [{381E1B60-DBEF-4EEE-99CA-A071EFEE2A13}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\nero.exe => No File
FirewallRules: [{75B3B8BC-7A17-4E70-AE23-03A05B1FF817}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe => No File
FirewallRules: [{BE585D59-FFCC-4FDC-8F9A-9D2253C482F5}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe => No File
FirewallRules: [{67070BE1-A513-4C8B-A78E-7168612CB01A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark Demo\bin\x64\3DMark.exe => No File
FirewallRules: [{32BFFB1D-108F-4E60-B7DB-176950047093}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark Demo\bin\x64\3DMark.exe => No File
FirewallRules: [{CAF6157D-CA44-412C-92FB-2457E6FC39C3}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe => No File
FirewallRules: [{2ED784FB-9040-4276-9296-36C8E305B171}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe => No File
FirewallRules: [{EC7C68CD-B27E-4E1A-A40B-3C07C9EF2834}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{2C38D33F-1572-4C5E-B1F3-D54FC9DB50F9}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{25E81023-40ED-4B4F-8C8E-BB0EA1A76E3E}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{495DCDBC-F030-482F-9141-447721D37E0E}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{9114A776-48C3-4708-BE35-C47DF9372165}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{D0E5DD9E-70F1-43B2-88A4-35696F897A70}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{D9C025A1-89AF-4A0A-B376-AF9E4157DE42}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{90521986-F2AE-4753-A3FE-231E46E15B75}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{070BB57C-F425-4BBE-8553-47B05DE7BC24}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{17249CDA-5EC7-4317-A6FE-5D36CC7270B6}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{0A63247D-56E5-4485-BF21-EC473CF3AA30}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{4C81B2F8-809E-442F-8CA7-C7D8EC2EEFB8}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{dc49b935-3440-4f2e-af7b-df7db6351948}] => (Allow) D:\LDPlayer\LDPlayer9\dnplayer.exe => No File
FirewallRules: [{75ef02b0-9dc4-4741-94d6-387fd6bd40a9}] => (Allow) C:\Program Files\ldplayer9box\VBoxNetNAT.exe => No File
FirewallRules: [{0fa02948-c827-4989-8425-9ec14c976fdd}] => (Allow) C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe => No File
FirewallRules: [{FCEACAA7-9AE3-4397-B554-79B35205B305}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe => No File
FirewallRules: [{099B8CE3-4AF6-441A-9A48-CC820251022A}] => (Allow) D:\Program Files\Nox\bin\Nox.exe => No File
FirewallRules: [{0FA56DEB-4905-48FE-9591-775BA5319EBF}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{E73D4D38-326E-4AA4-A99A-E0755F445781}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe => No File
FirewallRules: [{3802CAA6-78CC-4E53-AD72-252ECDE56F4F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe => No File
FirewallRules: [{C5520A20-27C1-4D76-A8A2-1BDEF7B66718}] => (Allow) C:\Users\jang6\AppData\Local\Packages\B9ECED6F.ArmouryCrate_qmba6cd70vzyy\LocalState\GridUpdateFile\ASUSGCDriverUpdateClient.exe => No File
FirewallRules: [{2391EB3C-A8A7-46DC-94F3-EE61BCBB1A83}] => (Allow) D:\program files\asus\aacambienthal\aacambientlighting.exe => No File
FirewallRules: [{69C3DD00-79CC-4574-A1FD-E02EDC335BF3}] => (Allow) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe => No File
C:\Windows\AutoKMS
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3444FBDC-E550-437B-BF6C-FD1F67960266} - System32\Tasks\CheckPointUpdateTaskMachineCore => C:\Program Files (x86)\CheckPoint\Update\ZoneAlarmUpdate.exe /c (No File)
Task: {EA58BB6C-990C-49FC-9689-ED10ACB3D3F8} - System32\Tasks\CheckPointUpdateTaskMachineUA => C:\Program Files (x86)\CheckPoint\Update\ZoneAlarmUpdate.exe /ua /installsource scheduler (No File)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {D595AA25-3F4F-49CA-963A-84FE943390DA} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1549321770-275972891-217463218-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (No File) <==== ATTENTION
FF Plugin-x32: @tools.google.com/CheckPoint Update;version=3 -> C:\Program Files (x86)\CheckPoint\Update\1.3.99.0\npZoneAlarmUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/CheckPoint Update;version=9 -> C:\Program Files (x86)\CheckPoint\Update\1.3.99.0\npZoneAlarmUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-1549321770-275972891-217463218-1002: @acestream.net/acestreamplugin,version=3.2.8 -> C:\Users\jang6\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
S3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44592 2025-06-06] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
S3 cpuz159; C:\WINDOWS\temp\cpuz159\cpuz159_x64.sys [44680 2025-10-16] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 avgArDisk; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
S3 Imf8HpRegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpRegFilter.sys [X]
S3 ImfHpFileFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpFileFilter.sys [X]
S3 ImfRealScanner; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfRealScanner.sys [X]
C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4C
C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
C:\Program Files (x86)\IObit
C:\ProgramData\IObit
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
C:\Program Files (x86)\GUM5844.tmp

EmptyTemp:
Hosts:
End

Uložte do C:\Users\jang6\Downloadsjako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Erediel]

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-10-2025
Ran by jang6 (16-10-2025 20:21:56) Run:2
Running from C:\Users\jang6\Downloads
Loaded Profiles: jang6
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
AlternateDataStreams: C:\Users\jang6\Downloads\Ace_Stream_Media_3.2.8.exe:MBAM.Zone.Identifier [270]
AlternateDataStreams: C:\Users\jang6\Downloads\ProtonVPN_v3.5.1_x64.exe:MBAM.Zone.Identifier [200]
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
FirewallRules: [{381E1B60-DBEF-4EEE-99CA-A071EFEE2A13}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\nero.exe => No File
FirewallRules: [{75B3B8BC-7A17-4E70-AE23-03A05B1FF817}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe => No File
FirewallRules: [{BE585D59-FFCC-4FDC-8F9A-9D2253C482F5}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe => No File
FirewallRules: [{67070BE1-A513-4C8B-A78E-7168612CB01A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark Demo\bin\x64\3DMark.exe => No File
FirewallRules: [{32BFFB1D-108F-4E60-B7DB-176950047093}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark Demo\bin\x64\3DMark.exe => No File
FirewallRules: [{CAF6157D-CA44-412C-92FB-2457E6FC39C3}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe => No File
FirewallRules: [{2ED784FB-9040-4276-9296-36C8E305B171}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe => No File
FirewallRules: [{EC7C68CD-B27E-4E1A-A40B-3C07C9EF2834}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{2C38D33F-1572-4C5E-B1F3-D54FC9DB50F9}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{25E81023-40ED-4B4F-8C8E-BB0EA1A76E3E}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{495DCDBC-F030-482F-9141-447721D37E0E}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{9114A776-48C3-4708-BE35-C47DF9372165}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{D0E5DD9E-70F1-43B2-88A4-35696F897A70}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{D9C025A1-89AF-4A0A-B376-AF9E4157DE42}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{90521986-F2AE-4753-A3FE-231E46E15B75}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{070BB57C-F425-4BBE-8553-47B05DE7BC24}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{17249CDA-5EC7-4317-A6FE-5D36CC7270B6}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe => No File
FirewallRules: [{0A63247D-56E5-4485-BF21-EC473CF3AA30}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe => No File
FirewallRules: [{4C81B2F8-809E-442F-8CA7-C7D8EC2EEFB8}] => (Allow) C:\KOPLAYER\KOPLAYER.exe => No File
FirewallRules: [{dc49b935-3440-4f2e-af7b-df7db6351948}] => (Allow) D:\LDPlayer\LDPlayer9\dnplayer.exe => No File
FirewallRules: [{75ef02b0-9dc4-4741-94d6-387fd6bd40a9}] => (Allow) C:\Program Files\ldplayer9box\VBoxNetNAT.exe => No File
FirewallRules: [{0fa02948-c827-4989-8425-9ec14c976fdd}] => (Allow) C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe => No File
FirewallRules: [{FCEACAA7-9AE3-4397-B554-79B35205B305}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe => No File
FirewallRules: [{099B8CE3-4AF6-441A-9A48-CC820251022A}] => (Allow) D:\Program Files\Nox\bin\Nox.exe => No File
FirewallRules: [{0FA56DEB-4905-48FE-9591-775BA5319EBF}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{E73D4D38-326E-4AA4-A99A-E0755F445781}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe => No File
FirewallRules: [{3802CAA6-78CC-4E53-AD72-252ECDE56F4F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe => No File
FirewallRules: [{C5520A20-27C1-4D76-A8A2-1BDEF7B66718}] => (Allow) C:\Users\jang6\AppData\Local\Packages\B9ECED6F.ArmouryCrate_qmba6cd70vzyy\LocalState\GridUpdateFile\ASUSGCDriverUpdateClient.exe => No File
FirewallRules: [{2391EB3C-A8A7-46DC-94F3-EE61BCBB1A83}] => (Allow) D:\program files\asus\aacambienthal\aacambientlighting.exe => No File
FirewallRules: [{69C3DD00-79CC-4574-A1FD-E02EDC335BF3}] => (Allow) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe => No File
C:\Windows\AutoKMS
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3444FBDC-E550-437B-BF6C-FD1F67960266} - System32\Tasks\CheckPointUpdateTaskMachineCore => C:\Program Files (x86)\CheckPoint\Update\ZoneAlarmUpdate.exe /c (No File)
Task: {EA58BB6C-990C-49FC-9689-ED10ACB3D3F8} - System32\Tasks\CheckPointUpdateTaskMachineUA => C:\Program Files (x86)\CheckPoint\Update\ZoneAlarmUpdate.exe /ua /installsource scheduler (No File)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {D595AA25-3F4F-49CA-963A-84FE943390DA} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1549321770-275972891-217463218-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (No File) <==== ATTENTION
FF Plugin-x32: @tools.google.com/CheckPoint Update;version=3 -> C:\Program Files (x86)\CheckPoint\Update\1.3.99.0\npZoneAlarmUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/CheckPoint Update;version=9 -> C:\Program Files (x86)\CheckPoint\Update\1.3.99.0\npZoneAlarmUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-1549321770-275972891-217463218-1002: @acestream.net/acestreamplugin,version=3.2.8 -> C:\Users\jang6\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
S3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44592 2025-06-06] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
S3 cpuz159; C:\WINDOWS\temp\cpuz159\cpuz159_x64.sys [44680 2025-10-16] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 avgArDisk; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
S3 Imf8HpRegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpRegFilter.sys [X]
S3 ImfHpFileFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpFileFilter.sys [X]
S3 ImfRealScanner; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfRealScanner.sys [X]
C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4C
C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
C:\Program Files (x86)\IObit
C:\ProgramData\IObit
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
C:\Program Files (x86)\GUM5844.tmp

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"C:\Users\jang6\Downloads\Ace_Stream_Media_3.2.8.exe" => ":MBAM.Zone.Identifier" ADS not found.
"C:\Users\jang6\Downloads\ProtonVPN_v3.5.1_x64.exe" => ":MBAM.Zone.Identifier" ADS not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{381E1B60-DBEF-4EEE-99CA-A071EFEE2A13}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75B3B8BC-7A17-4E70-AE23-03A05B1FF817}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BE585D59-FFCC-4FDC-8F9A-9D2253C482F5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{67070BE1-A513-4C8B-A78E-7168612CB01A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{32BFFB1D-108F-4E60-B7DB-176950047093}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CAF6157D-CA44-412C-92FB-2457E6FC39C3}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2ED784FB-9040-4276-9296-36C8E305B171}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EC7C68CD-B27E-4E1A-A40B-3C07C9EF2834}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2C38D33F-1572-4C5E-B1F3-D54FC9DB50F9}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{25E81023-40ED-4B4F-8C8E-BB0EA1A76E3E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{495DCDBC-F030-482F-9141-447721D37E0E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9114A776-48C3-4708-BE35-C47DF9372165}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D0E5DD9E-70F1-43B2-88A4-35696F897A70}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D9C025A1-89AF-4A0A-B376-AF9E4157DE42}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{90521986-F2AE-4753-A3FE-231E46E15B75}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{070BB57C-F425-4BBE-8553-47B05DE7BC24}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{17249CDA-5EC7-4317-A6FE-5D36CC7270B6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0A63247D-56E5-4485-BF21-EC473CF3AA30}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4C81B2F8-809E-442F-8CA7-C7D8EC2EEFB8}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{dc49b935-3440-4f2e-af7b-df7db6351948}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75ef02b0-9dc4-4741-94d6-387fd6bd40a9}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0fa02948-c827-4989-8425-9ec14c976fdd}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FCEACAA7-9AE3-4397-B554-79B35205B305}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{099B8CE3-4AF6-441A-9A48-CC820251022A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0FA56DEB-4905-48FE-9591-775BA5319EBF}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E73D4D38-326E-4AA4-A99A-E0755F445781}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3802CAA6-78CC-4E53-AD72-252ECDE56F4F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C5520A20-27C1-4D76-A8A2-1BDEF7B66718}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2391EB3C-A8A7-46DC-94F3-EE61BCBB1A83}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{69C3DD00-79CC-4574-A1FD-E02EDC335BF3}" => not found
"C:\Windows\AutoKMS" => not found
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"C:\WINDOWS\system32\GroupPolicy\Machine" => not found
C:\ProgramData\NTUSER.pol => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3444FBDC-E550-437B-BF6C-FD1F67960266}" => not found
"C:\WINDOWS\System32\Tasks\CheckPointUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CheckPointUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EA58BB6C-990C-49FC-9689-ED10ACB3D3F8}" => not found
"C:\WINDOWS\System32\Tasks\CheckPointUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CheckPointUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Location\Notifications" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D595AA25-3F4F-49CA-963A-84FE943390DA}" => not found
"C:\WINDOWS\System32\Tasks\OneDrive Reporting Task-S-1-5-21-1549321770-275972891-217463218-500" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Reporting Task-S-1-5-21-1549321770-275972891-217463218-500" => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/CheckPoint Update;version=3 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/CheckPoint Update;version=9 => not found
HKU\S-1-5-21-1549321770-275972891-217463218-1002\Software\MozillaPlugins\@acestream.net/acestreamplugin,version=3.2.8 => not found
"C:\Users\jang6\AppData\Roaming\ACEStream\player\npace_plugin.dll" => not found
cpuz158 => service not found.
cpuz159 => service not found.
AVG Business Console Client Antivirus Service => service not found.
avgArDisk => service not found.
HKLM\System\CurrentControlSet\Services\avgBcc => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\avgbdisk => could not remove, key could be protected
Imf8HpRegFilter => service not found.
ImfHpFileFilter => service not found.
ImfRealScanner => service not found.
"C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4C" => not found
"C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}" => not found
"C:\Program Files (x86)\IObit" => not found

"C:\ProgramData\IObit" Folder move:

C:\ProgramData\IObit => moved successfully
Could not move "C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2" => Scheduled to move on reboot.
"C:\Program Files (x86)\GUM5844.tmp" => not found
Hosts restored successfully.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18091669 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 683437 B
Edge => 0 B
Chrome => 0 B
Firefox => 140591063 B
Opera => 103832688 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 99009 B
systemprofile32 => 99009 B
LocalService => 2039109 B
NetworkService => 2040277 B
jang6 => 5005626715 B

RecycleBin => 200098 B
EmptyTemp: => 4.9 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 16-10-2025 20:28:04)

C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 => Could not move

Result of scheduled keys to remove after reboot:

HKLM\System\CurrentControlSet\Services\avgBcc => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\avgbdisk => could not remove, key could be protected

==== End of Fixlog 20:28:04 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[Erediel]

Budu testovat. Díky moc.

[Rudy]

Zatím není zač a ozvěte se.

[Erediel]

Dneska jelo celý den bez problémů, takže asi v pohodě.

[Rudy]

OK. To jsem rád.