Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Pro jistotu po vyčištění PC

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
NewOldie
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 14 dub 2026 16:21

Pro jistotu po vyčištění PC

#1 Příspěvek od NewOldie »

Zdravím,

minulý měsíc se mi stala příhoda, kdy mi z mého účtu na Discordu mým přátelům byli rozeslány phishing linky. Po projetí scanerem jsem virus našel a musel jsem se ho obnovou windowsu zbavit. Včera na den je to měsíc a stalo se to znovu, tentokrát mi stačil ESET, který virus identifikoval a odstranil. Opět jsem odpojil všechna zařízení a změnil hesla.

Chci poprosit o ověření, děkuji mockrát.


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-04-2026 01
Ran by Štěpán-PC (administrator) on DESKTOP-88J5IBQ (Gigabyte Technology Co., Ltd. B850 AORUS ELITE WIFI7) (14-04-2026 17:24:41)
Running from C:\Users\lipit\Desktop\FRST64.exe
Loaded Profiles: Štěpán-PC
Platform: Microsoft Windows 11 Home Version 25H2 26200.8037 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe <8>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\ArgusMonitor\ArgusMonitor.exe ->) (Argotronic GmbH -> ) C:\Program Files\ArgusMonitor\ArgusMonitorGadget.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eServiceHost.exe <2>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files\TeamViewer\crashpad_handler.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\atieclxx.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Argotronic GmbH -> ) C:\Program Files\ArgusMonitor\ArgusMonitor.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Limited) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_19.2603.53051.0_x64__8wekyb3d8bbwe\M365Copilot.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <21>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc) C:\Windows\System32\DriverStore\FileRepository\amdppkg.inf_amd64_f57cfc457aa3e60b\AmdPpkgSvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_d2d4d4a4cf935317\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\atiesrxx.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Limited) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\13.680.0.6193-1775676788\EA Desktop\EABackgroundService.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Windows (R) Win 7 DDK provider) C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\System32\DriverStore\FileRepository\rtkbtfilter.inf_amd64_4cbb33db60b92eb8\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_ddf3491657a346d3\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2603.1001.17.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_ddf3491657a346d3\RtkAudUService64.exe [2776016 2025-02-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [285616 2026-04-10] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [4147608 2026-04-03] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [42086872 2026-04-09] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [418344 2026-03-06] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [Argus Monitor] => C:\Program Files\ArgusMonitor\ArgusMonitor.exe [5521000 2025-09-26] (Argotronic GmbH -> )
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [5767832 2026-03-13] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3393184 2026-04-08] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [486512 2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\MountPoints2: {4a22f4b8-197e-11f1-8254-50ee3289c649} - "F:\Autorun.exe"
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\MountPoints2: {4a22f5bf-197e-11f1-8254-50ee3289c649} - "G:\setup\rsrc\Autorun.exe"
HKU\S-1-5-18\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [418344 2026-03-06] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\...\RunOnce: [StartRSX] => C:\Program Files\AMD\CNext\CNext\LauncherRSXRuntime.exe [71952 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Startup: C:\Users\lipit\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LG Monitor App Installer.lnk [2026-04-13]
ShortcutTarget: LG Monitor App Installer.lnk -> (No File)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {7CE57A97-14F5-4E5A-A254-949F635EE041} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1612800 2026-01-23] (Adobe Inc. -> Adobe Inc.)
Task: {2DE7854C-DCD8-4413-877F-FC2D182453ED} - System32\Tasks\AMD Install Manager - Check For Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [60526856 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-CheckForUpdates
Task: {42B2CC28-A8BF-4E4C-87E0-95C968BE07FD} - System32\Tasks\AMD Install Manager - Install Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [60526856 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-InstallUpdates -Auto
Task: {11DB3A85-459B-4EF0-B970-BAE9A4B65A5E} - System32\Tasks\AMDInstallUEP => C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe (No File)
Task: {8E658E2D-905C-4AD0-A594-E4535D6752A7} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [192784 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {A6C38186-65AE-493B-9570-0292BDD04474} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [3261608 2026-03-12] (Microsoft Windows -> Microsoft Corporation)
Task: {6A30810E-F90E-403D-BFF3-F6C7FFF1D525} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2401792 2025-09-16] () [File not signed]
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {CF93C8E2-1716-4E0D-8AD5-A34F882B3634} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1050888 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {43AEFF68-2805-44C3-B87A-742232DD2B3A} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3016765936-556789714-1882238419-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [705152 2026-04-08] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {C8813F40-9D8B-4E3C-B907-1158C4E03F95} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33920 2026-04-08] (Mozilla Corporation -> Mozilla Foundation)
Task: {44E74C3E-F65E-48E2-9170-4C367D59DCE7} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [820120 2025-02-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {1D82A5D9-045A-4113-9643-6BC35559E275} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [1203984 2026-03-09] (Advanced Micro Devices -> AMD)
Task: {96B8BE5C-E231-4532-B4C4-2F41575B715B} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [144656 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {BE73D328-8AA8-4F92-A3B2-66FE45060CEB} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [144656 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {433D1BDF-FD9F-44A4-927C-6C9D1390251C} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [312072 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {DCBAF8F5-69C1-4756-B342-7741F4DCD2B1} - System32\Tasks\Ubisoft\Ubisoft Connect Background Update => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe [17892528 2026-04-01] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5f077c22-a91d-42c4-94d8-5c1aece02181}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF TaskBarID: 308046B0AF4A39CB -> C:\Program Files\Mozilla Firefox
FF DefaultProfile: w6qyjrtv.default-release -> 308046B0AF4A39CB
FF ProfilePath: C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\8h5xe0u8.default [2025-10-03]
FF ProfilePath: C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release [2026-04-14]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\newtab@mozilla.org.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\uBlock0@raymondhill.net.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\{6ea0a676-b3ef-48aa-b23d-24c8876945fb}.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [0] [not signed]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2026-04-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2026-04-14]

Edge:
=======
Edge Profile: C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default [2025-12-11]
Edge Extension: (Dokumenty Google offline) - C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-27]
Edge Extension: (Netflix Party is now Teleparty) - C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\igbncjcgfkfnfgbaieiimpfkobabmkce [2025-11-27]
Edge Extension: (Edge relevant text changes) - C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-09-25]

Chrome:
=======
CHR HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera:
=======
OPR DefaultProfile: Default

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [180216 2026-01-23] (Adobe Inc. -> Adobe Inc.)
S2 amd3dvcacheSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0ee9fc510270aa43\amd3dvcacheSvc.exe [188528 2025-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc)
S2 AmdAppCompatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompatSvc.exe [300872 2025-01-02] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
R2 AmdPpkgSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_f57cfc457aa3e60b\AmdPpkgSvc.exe [515480 2025-12-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
S3 ArgusControlService; C:\Program Files\ArgusMonitor\ArgusControlService.exe [1916520 2025-06-21] (Argotronic GmbH -> )
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [741136 0] (Advanced Micro Devices -> AMD)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3386064 2025-10-18] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4918896 2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [20690592 2026-04-08] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [959216 2025-12-28] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5639088 2026-04-10] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [5107712 2026-04-10] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [5107712 2026-04-10] (ESET, spol. s r.o. -> ESET)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347440 2025-08-25] (UL Solutions Inc -> Futuremark)
R2 GameInputRedistService; C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe [385960 2026-03-09] (Microsoft Corporation -> Windows (R) Win 7 DDK provider)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [11467392 2026-04-13] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2026-04-13] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.26010.5-0\MpDefenderCoreService.exe [2067464 2026-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [13809968 2026-01-24] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1565304 2025-12-21] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkBtManServ; C:\WINDOWS\System32\DriverStore\FileRepository\rtkbtfilter.inf_amd64_4cbb33db60b92eb8\RtkBtManServ.exe [310496 2025-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [26384240 2026-04-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 UpcElevationService; C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher Core\UpcElevationService.exe [356536 2026-04-01] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [60417432 2026-04-03] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.26010.5-0\NisSrv.exe [4435096 2026-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.26010.5-0\MsMpEng.exe [290744 2026-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [1162000 2026-04-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 DAUpdaterSvc; C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amd3dvcache; C:\WINDOWS\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0ee9fc510270aa43\amd3dvcache.sys [43384 2025-09-29] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
R3 AmdAppCompat; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompat.sys [35144 2025-01-02] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_d2d4d4a4cf935317\amdfendrmgr.sys [37272 2026-02-26] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AmdPpkg; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_f57cfc457aa3e60b\AmdPpkg.sys [35224 2025-12-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices)
R3 amduw23g-198975-8f57807d; C:\WINDOWS\System32\DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\amdkmdag.sys [112456720 2026-03-17] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
S3 amduw23g-418637-ef495aee; C:\WINDOWS\System32\DriverStore\FileRepository\u0418637.inf_amd64_4462a7afa694670e\B418564\amdkmdag.sys [101796328 2025-09-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
S3 amduw23g-419752-a8a1c183; C:\WINDOWS\System32\DriverStore\FileRepository\u0419752.inf_amd64_024ed4a72563780a\B419298\amdkmdag.sys [101819864 2025-09-30] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63856 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 ArgusMonitor; C:\WINDOWS\System32\drivers\ArgusMonitor.sys [71864 2025-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Argotronic eGbR)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [577536 2025-06-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [204800 2025-06-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [110592 2025-06-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [40648 2026-03-06] (Microsoft Windows Hardware Compatibility Publisher -> MERCURY CREDIT OU)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [54472 2026-03-06] (Microsoft Windows Hardware Compatibility Publisher -> MERCURY CREDIT OU)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [235528 2026-04-10] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [140464 2026-04-10] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [17840 2025-11-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [353856 2026-04-10] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57928 2026-04-10] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [87328 2026-04-10] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [127584 2026-04-10] (ESET, spol. s r.o. -> ESET)
S3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [82352 2026-02-10] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234600 2026-04-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2026-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [245864 2026-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_fea9c224d1377b71\rt25cx21x64.sys [887776 2024-12-24] (Realtek Semiconductor Corp. -> Realtek)
R3 RtkBtFilter2; C:\WINDOWS\System32\DriverStore\FileRepository\rtkbtfilter.inf_amd64_4cbb33db60b92eb8\RtkBtFilter2.sys [199056 2025-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkBthLeVDspService; C:\WINDOWS\System32\DriverStore\FileRepository\rtkbthlevdsp.inf_amd64_395876bdd0e31ec3\RtkBthLeVDsp.sys [238168 2025-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [56050440 2026-04-03] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [21888 2026-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [635272 2026-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102832 2026-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 HWiNFO_206; \??\C:\Users\lipit\AppData\Local\Temp\HWiNFO_x64_206.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2026-04-14 17:24 - 2026-04-14 17:24 - 000026638 _____ C:\Users\lipit\Desktop\FRST.txt
2026-04-14 17:23 - 2026-04-14 17:24 - 000000000 ____D C:\FRST
2026-04-14 17:23 - 2026-04-14 17:23 - 002446848 _____ (Farbar) C:\Users\lipit\Desktop\FRST64.exe
2026-04-14 17:15 - 2026-04-14 17:15 - 000711764 _____ C:\WINDOWS\system32\perfh005.dat
2026-04-14 17:15 - 2026-04-14 17:15 - 000152978 _____ C:\WINDOWS\system32\perfc005.dat
2026-04-14 16:50 - 2026-04-14 16:50 - 000003900 _____ C:\WINDOWS\system32\Tasks\AMD Install Manager - Install Updates
2026-04-13 23:09 - 2026-04-13 23:09 - 000000000 ____D C:\Users\Public\Documents\LG Monitor App Installer
2026-04-13 22:18 - 2026-04-14 17:24 - 000000000 ____D C:\Users\lipit\AppData\Local\Malwarebytes
2026-04-13 22:18 - 2026-04-13 22:18 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2026-04-13 22:18 - 2026-04-13 22:18 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2026-04-13 22:17 - 2026-04-13 22:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2026-04-13 22:17 - 2026-04-13 22:17 - 000000000 ____D C:\Program Files\Malwarebytes
2026-04-08 10:52 - 2026-04-08 10:52 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\Joybrick
2026-04-07 17:03 - 2026-04-07 17:03 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2026-04-07 11:34 - 2026-04-07 13:26 - 000000000 ____D C:\Users\lipit\AppData\Roaming\FirstLoveExperience
2026-04-07 06:58 - 2026-04-13 11:57 - 000000000 ____D C:\WINDOWS\CbsTemp
2026-04-04 21:01 - 2026-04-04 21:01 - 000007597 _____ C:\Users\lipit\AppData\Local\Resmon.ResmonCfg
2026-04-03 22:43 - 2025-05-22 04:33 - 000028175 _____ C:\Users\lipit\Desktop\OptiScaler.ini
2026-04-03 09:23 - 2026-03-14 20:56 - 000000000 ____D C:\Users\lipit\Desktop\SMAPI 4.5.2 installer
2026-04-03 09:16 - 2026-04-13 16:44 - 000000000 ____D C:\Users\lipit\AppData\Roaming\StardewValley
2026-04-03 06:15 - 2026-04-03 06:15 - 000000000 ____D C:\Users\UMFD-0.Font Driver Host
2026-04-03 06:15 - 2026-04-03 06:15 - 000000000 ____D C:\Users\TEMP.Font Driver Host
2026-04-02 21:24 - 2026-04-10 20:55 - 134222904 _____ C:\WINDOWS\392667600.dat
2026-04-02 21:23 - 2026-04-11 09:28 - 000000000 ____D C:\Program Files\Riot Vanguard
2026-04-02 20:33 - 2026-04-10 20:43 - 000000000 ____D C:\Users\lipit\AppData\Roaming\Riot Client
2026-03-27 16:55 - 2026-03-27 16:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\SoftLanding
2026-03-26 18:47 - 2026-03-26 18:47 - 000000000 ____D C:\Users\UMFD-0
2026-03-26 18:47 - 2026-03-26 18:47 - 000000000 ____D C:\Users\TEMP
2026-03-25 20:20 - 2026-04-13 22:24 - 000000000 ____D C:\Users\lipit\Desktop\AOE
2026-03-25 13:40 - 2026-03-25 13:40 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\Tiny Devil Studio
2026-03-20 16:45 - 2026-03-20 16:45 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2026-03-20 16:45 - 2026-03-20 16:45 - 000003302 _____ C:\WINDOWS\system32\Tasks\StartCNBM
2026-03-20 16:45 - 2026-03-20 16:45 - 000003194 _____ C:\WINDOWS\system32\Tasks\StartAUEP
2026-03-20 16:45 - 2026-03-20 16:45 - 000002620 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2026-03-20 16:45 - 2026-03-20 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMDInstallManager
2026-03-20 16:45 - 2026-03-20 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2026-03-20 16:45 - 2026-03-20 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2026-03-20 16:44 - 2026-03-17 09:42 - 000632848 _____ C:\WINDOWS\system32\GameManager64.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000526352 _____ C:\WINDOWS\system32\EEURestart.exe
2026-03-20 16:44 - 2026-03-17 09:42 - 000480272 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000200720 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000190992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000150544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 115295760 _____ C:\WINDOWS\system32\amd_comgr_2.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 115286544 _____ C:\WINDOWS\system32\amd_comgr_3.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 096958992 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 005175312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 004832784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 003406984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.etz
2026-03-20 16:44 - 2026-03-17 09:41 - 003093520 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 003093520 _____ C:\WINDOWS\system32\vulkaninfo.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 002637328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 002637328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 002192400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001724592 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001402048 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001329168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001185296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001069584 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000998928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000801808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000678928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000606472 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000592400 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000559632 _____ C:\WINDOWS\system32\atieah64.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000550416 _____ C:\WINDOWS\system32\dgtrayicon.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000543248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000473616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000471568 _____ C:\WINDOWS\system32\amdlogum.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000450064 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000434312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendr.stz
2026-03-20 16:44 - 2026-03-17 09:41 - 000422416 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000347152 _____ C:\WINDOWS\system32\clinfo.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000247312 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000212496 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000182360 _____ C:\WINDOWS\system32\amdmiracast.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000169856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000159480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000159480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000147984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000145216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000142728 _____ C:\WINDOWS\system32\amdxc64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000122896 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000118744 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000056968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrmgr.stz
2026-03-20 16:44 - 2026-03-17 09:41 - 000051728 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000048656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2026-03-20 16:44 - 2026-03-17 09:40 - 000177168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2026-03-20 16:44 - 2026-03-17 09:40 - 000145936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2026-03-20 16:44 - 2026-03-17 09:13 - 120863472 _____ C:\WINDOWS\system32\amdxc64.so
2026-03-20 16:44 - 2026-03-06 15:07 - 000314408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ANR-bgproc-Lib.dll
2026-03-20 13:00 - 2026-03-20 13:00 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\IncontinentCell
2026-03-19 01:44 - 2026-03-19 01:44 - 000000000 ____D C:\Program Files\Microsoft GameInput
2026-03-18 22:19 - 2026-03-18 22:20 - 000000000 ____D C:\Users\lipit\AppData\Local\Saber
2026-03-17 18:42 - 2026-03-17 18:56 - 000000000 ____D C:\Users\lipit\Documents\Assassin's Creed Shadows
2026-03-17 18:42 - 2026-03-17 18:42 - 000000000 ____D C:\Users\lipit\AppData\Local\Ubisoft
2026-03-15 19:32 - 2026-04-01 21:10 - 000000000 ____D C:\Users\lipit\Documents\Assassin's Creed Odyssey
2026-03-15 19:03 - 2026-03-15 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Ubisoft

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2026-04-14 17:18 - 2025-09-28 12:48 - 000000000 ____D C:\Program Files (x86)\Steam
2026-04-14 17:16 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2026-04-14 17:15 - 2025-09-25 21:54 - 001692324 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2026-04-14 17:15 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2026-04-14 16:55 - 2025-10-03 08:47 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2026-04-14 16:51 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2026-04-14 16:49 - 2025-11-16 21:07 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2026-04-14 16:47 - 2025-09-28 12:00 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2026-04-14 16:47 - 2025-09-28 11:59 - 000003150 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2026-04-14 16:46 - 2026-03-13 19:46 - 000000000 ____D C:\Program Files\TeamViewer
2026-04-14 16:46 - 2025-09-26 03:55 - 001189856 _____ C:\WINDOWS\system32\wpbbin.exe
2026-04-14 16:46 - 2025-09-26 03:55 - 001162000 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe
2026-04-14 16:46 - 2025-09-26 03:55 - 000012288 ___SH C:\DumpStack.log.tmp
2026-04-14 16:46 - 2025-09-26 03:55 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2026-04-14 16:46 - 2025-09-26 03:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2026-04-14 16:46 - 2025-09-25 21:55 - 000089360 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe
2026-04-14 16:46 - 2025-09-25 21:49 - 000034164 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2026-04-14 16:46 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2026-04-14 16:46 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2026-04-14 02:15 - 2024-04-01 09:21 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2026-04-14 02:10 - 2025-09-26 03:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2026-04-14 00:09 - 2025-09-28 12:49 - 000000000 ____D C:\Users\lipit\AppData\Local\Steam
2026-04-13 23:10 - 2025-09-25 21:55 - 000000000 ____D C:\Users\lipit\AppData\Local\Packages
2026-04-13 23:10 - 2025-09-25 21:49 - 000000000 ____D C:\ProgramData\Packages
2026-04-13 22:19 - 2026-03-11 10:02 - 000000000 ____D C:\ProgramData\adapterhost_x86
2026-04-13 22:18 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2026-04-13 22:18 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2026-04-13 19:03 - 2025-10-12 13:02 - 000000000 ____D C:\Users\lipit\AppData\Local\Ubisoft Game Launcher
2026-04-12 18:03 - 2025-09-26 18:32 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2026-04-12 18:03 - 2025-09-26 18:32 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2026-04-12 02:43 - 2025-10-03 14:54 - 000000000 ____D C:\Users\lipit\AppData\Roaming\discord
2026-04-12 02:11 - 2026-03-12 10:17 - 000000000 ____D C:\Users\lipit\AppData\Local\Discord
2026-04-11 09:39 - 2025-09-25 21:55 - 000000000 ____D C:\Users\lipit\AppData\Local\D3DSCache
2026-04-11 09:39 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2026-04-10 20:45 - 2026-03-12 10:17 - 000002243 _____ C:\Users\lipit\Desktop\Discord.lnk
2026-04-10 20:44 - 2025-11-16 20:50 - 000000000 ____D C:\ProgramData\Riot Games
2026-04-10 20:43 - 2025-11-16 20:51 - 000000000 ____D C:\Users\lipit\AppData\Roaming\riot-client-ux
2026-04-10 15:04 - 2025-11-24 15:52 - 000353856 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000235528 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000140464 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000127584 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000087328 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000057928 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2026-04-09 22:21 - 2025-09-26 18:45 - 000000000 ____D C:\Users\lipit\AppData\Local\AMD_Common
2026-04-09 20:20 - 2025-09-26 03:55 - 000003714 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{8FBCE91D-587E-4B06-B66A-7E4A29AAF977}
2026-04-09 20:20 - 2025-09-26 03:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{4527C347-230F-4944-8561-72E5FA3B7AB0}
2026-04-09 09:56 - 2025-10-03 08:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2026-04-09 09:56 - 2025-10-03 08:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2026-04-08 21:35 - 2025-12-05 16:20 - 000000000 ____D C:\ProgramData\EA Desktop
2026-04-08 16:51 - 2025-12-10 15:04 - 000392320 _____ (Mozilla Foundation) C:\Users\lipit\Desktop\Firefox.exe
2026-04-08 16:51 - 2025-10-03 08:47 - 000001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2026-04-08 11:00 - 2026-03-03 22:42 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\Unity
2026-04-08 10:52 - 2025-09-26 03:55 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2026-04-07 14:26 - 2025-09-26 20:41 - 000000000 ____D C:\WINDOWS\Minidump
2026-04-07 14:26 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2026-04-02 23:33 - 2025-09-28 17:01 - 000000000 ____D C:\Users\lipit\Documents\My Games
2026-04-02 23:33 - 2025-09-28 17:01 - 000000000 ____D C:\Users\lipit\AppData\Roaming\SquareEnix
2026-04-02 21:34 - 2025-12-06 00:43 - 000000000 ____D C:\Users\lipit\AppData\Local\CrashDumps
2026-04-02 20:56 - 2025-11-16 20:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2026-04-02 20:38 - 2025-11-16 20:51 - 000001503 _____ C:\Users\Public\Desktop\Riot Client.lnk
2026-04-02 13:16 - 2026-01-07 12:01 - 000000000 ____D C:\Users\lipit\AppData\Local\User Data
2026-03-30 12:31 - 2026-01-25 23:36 - 000000000 ____D C:\Users\lipit\AppData\Roaming\RenPy
2026-03-21 14:08 - 2026-03-05 19:21 - 000453064 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_d.dll.0
2026-03-21 14:08 - 2026-03-05 19:21 - 000453064 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_d.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 004590024 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000911816 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000289224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000260552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000166344 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000154056 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2026-03-21 14:08 - 2025-12-28 01:42 - 000084424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2026-03-20 16:45 - 2025-09-26 18:46 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN
2026-03-20 16:45 - 2025-09-26 18:46 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR
2026-03-20 16:45 - 2025-09-26 18:45 - 000000000 ____D C:\Program Files\AMD
2026-03-20 16:45 - 2025-09-26 18:22 - 000000000 ____D C:\AMD
2026-03-17 18:41 - 2025-10-12 13:02 - 000001323 _____ C:\Users\lipit\Desktop\Ubisoft Connect.lnk
2026-03-16 21:28 - 2026-03-06 22:55 - 000000000 ____D C:\Users\lipit\Desktop\Call of Duty 2
2026-03-15 19:11 - 2026-03-04 18:44 - 000000000 ____D C:\Users\lipit\Desktop\DAO mody

==================== Files in the root of some directories ========

2025-12-07 18:58 - 2025-12-07 18:58 - 000000048 ____R () C:\Users\lipit\AppData\Local\2228D103D6E359B34623C1D0778AD46F
2026-04-04 21:01 - 2026-04-04 21:01 - 000007597 _____ () C:\Users\lipit\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-04-2026 01
Ran by Štěpán-PC (14-04-2026 17:25:11)
Running from C:\Users\lipit\Desktop
Microsoft Windows 11 Home Version 25H2 26200.8037 (X64) (2025-09-25 19:49:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3016765936-556789714-1882238419-500 - Administrators - Disabled)
DefaultAccount (S-1-5-21-3016765936-556789714-1882238419-503 - Limited - Disabled)
Guest (S-1-5-21-3016765936-556789714-1882238419-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3016765936-556789714-1882238419-504 - Limited - Disabled)
Štěpán-PC (S-1-5-21-3016765936-556789714-1882238419-1001 - Administrators - Enabled) => C:\Users\lipit

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3DMark (HKLM\...\{4AFE3A81-5A89-4464-944B-7B9E9C8AA92E}) (Version: 2.32.8454.0 - UL) Hidden
3DMark (HKLM-x32\...\{7b29f241-1dfb-4171-8781-9c91605f2f8b}) (Version: 2.32.8454.0 - UL)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 26.001.21411 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601149}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Age of the Ring Standalone version 9.2.0 (HKLM-x32\...\Age of the Ring Standalone_is1) (Version: 9.2.0 - AotR Staff)
AMD 3D V-Cache Performance Optimizer Driver (HKLM-x32\...\{4537278A-8E70-4021-A866-38CE644D92F8}) (Version: 1.0.0.12 - Advanced Micro Devices, Inc.) Hidden
AMD Application Compatibility Database Driver (HKLM-x32\...\{7466773D-AE4B-48F6-8E12-D64B555C1BEA}) (Version: 1.0.0.3 - Advanced Micro Devices, Inc.) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.136 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 8.02.18.557 - Advanced Micro Devices, Inc.)
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.126 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\{180E81FA-C4B4-492A-A2ED-C9E13390E01D}) (Version: 25.30.26068.1713 - Advanced Micro Devices, Inc.)
AMD Interface Driver (HKLM-x32\...\{6118E908-9B3B-4258-B7C2-7DEEA5A65A85}) (Version: 2.0.0.26 - Advanced Micro Devices, Inc.) Hidden
AMD PPM Provisioning File Driver (HKLM-x32\...\{3665A5DE-D07C-46D7-9207-713E8E9FEF32}) (Version: 8.0.0.59 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.40.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 26.3.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{be7d92a7-48a3-4400-a6bd-f687db0c75a8}) (Version: 8.02.18.557 - Advanced Micro Devices, Inc.) Hidden
Argus Monitor (HKLM-x32\...\ArgusMonitor) (Version: 7.2.6.3065 - Argotronic eGbR)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CPUID CPU-Z 2.16 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.16 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 12.4.0.2400 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Discord) (Version: 1.0.9232 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.680.0.6193 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{5bc9fb28-357f-4275-beea-a5da06c6bc74}) (Version: 13.680.0.6193 - Electronic Arts)
ESET Security (HKLM\...\{5EBE1855-7526-4CE1-BA67-10FB18C5BC7E}) (Version: 19.1.12.0 - ESET, spol. s r.o.)
FlatOut2 (HKLM-x32\...\{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Futuremark SystemInfo (HKLM-x32\...\{DF8DC852-25A6-4D4C-A707-534B9AC1DB09}) (Version: 5.88.1377.0 - Futuremark)
Gothic 3 Parallel Universe Patch 1.1.1 (HKLM-x32\...\{D896EEA8-3FDF-480A-846B-8BC37C8A4777}}_is1) (Version: 1.1.1 - George)
HWiNFO® 64 (HKLM\...\HWiNFO® 64_is1) (Version: 8.30 - Martin Malik, REALiX s.r.o.)
Infatica P2B Network (HKLM-x32\...\{C989163F-E0E5-4DE3-B7F5-46C77F411451}_is1) (Version: 1.1.4.0 - )
K-Lite Mega Codec Pack 19.2.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 19.2.0 - KLCP)
League of Legends (HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Malwarebytes version 5.5.3.246 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.5.3.246 - Malwarebytes)
Microsoft .NET Host - 6.0.36 (x64) (HKLM\...\{D6932D97-36F1-40B8-9CDC-CA8365B21000}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.36 (x64) (HKLM\...\{A9E32B25-994B-4856-A12B-0EBED3050410}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.36 (x64) (HKLM\...\{C912E33F-956A-4921-9F55-CC11AE8F09AF}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 146.0.3856.109 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 146.0.3856.109 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM\...\{A9E31119-18D8-4BF7-8B63-3CFE78CA0ABD}) (Version: 3.3.163.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.36 (x64) (HKLM\...\{61D4736B-3325-4D4A-BD41-8BD206C6A86E}) (Version: 48.144.23186 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.36 (x64) (HKLM-x32\...\{0532b8f2-12d7-43de-95fc-7b87006758a8}) (Version: 6.0.36.34217 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox) (Version: 149.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 143.0.3 - Mozilla)
MSI Afterburner 4.6.6 Beta 5 (HKLM-x32\...\Afterburner) (Version: 4.6.6 Beta 5 - MSI Co., LTD)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9800.1 - Realtek Semiconductor Corp.)
Realtek PCI-E Wireless LAN WiFi 7 Driver (HKLM-x32\...\InstallShield_{2E5C7F9D-D703-4767-978B-AFCAE58CE18B}) (Version: Drv_3.00.0045 - REALTEK Semiconductor Corp.)
Riot Client (HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Riot Game Riot_Client.) (Version: - Riot Games, Inc)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
RivaTuner Statistics Server 7.3.7 Beta 6 (HKLM-x32\...\RTSS) (Version: 7.3.7 Beta 6 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.105.2733 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.146 - Rockstar Games)
RyzenMasterSDK (HKLM\...\{A6303237-DE0F-424A-9C6F-AD9CBCA637F4}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.76.5 - TeamViewer)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 170.0.13099 - Ubisoft)
Unigine Superposition Benchmark 1.1 (HKLM\...\Superposition_is1) (Version: 1.1 - UNIGINE)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.15.2 - Black Tree Gaming Ltd.)
WinRAR 7.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.11.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Assets [2026-04-12] ()
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2026-03-20] (Advanced Micro Devices Inc.)
ESET Context Menu -> C:\Program Files\ESET\ESET Security [2026-04-13] (Sparse Package)
Malwarebytes Anti-Malware -> C:\Program Files\Malwarebytes\Anti-Malware [2026-04-13] ()
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.44.0_x64__8wekyb3d8bbwe [2026-03-12] (Microsoft Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.52.356.0_x64__dt26b99r8h8gj [2026-03-12] (Realtek Semiconductor Corp)
WinAppRuntime.Main.1.8 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.8_8000.806.2252.0_x64__8wekyb3d8bbwe [2026-04-02] (Microsoft Corp.)
WinRAR -> C:\Program Files\WinRAR [2025-09-28] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{6e1f4e4d-65f7-4c83-be2e-9e6683cda268}\localserver32 -> C:\Program Files\ESET\ESET Security\egui.exe (ESET, spol. s r.o. -> ESET)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{C52B9871-E5E9-41FD-B84D-C5ACADBEC7AE}\InprocServer32 -> C:\Users\lipit\Desktop\emulátor\LEContextMenuHandler.DLL (Paddy Xu) [File not signed]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2026-02-17] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2026-04-10] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2026-04-10] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2026-04-13] (Malwarebytes Inc -> Malwarebytes)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2026-04-10] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2026-04-13] (Malwarebytes Inc -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.X264] => C:\WINDOWS\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\WINDOWS\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\WINDOWS\system32\xvidvfw.dll [310784 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [1102848 2023-04-10] () [File not signed]
HKLM\...\Drivers32: [MidisrvTransferComplete] => 1
HKLM\...\Drivers32: [midi1] => C:\WINDOWS\system32\wdmaud2.drv [143360 2026-03-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [891904 2023-04-10] () [File not signed]
HKLM\...\Drivers32: [midi1] => C:\Windows\SysWOW64\wdmaud2.drv [91648 2026-03-12] (Microsoft Windows -> Microsoft Corporation)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2024-02-01 00:39 - 2024-02-01 00:39 - 000228945 _____ (libusb.info) [File not signed] C:\Program Files\ArgusMonitor\libusb-1.0.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\tracing:? [16]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2024-04-01 09:26 - 2024-04-01 09:24 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 192.168.1.1
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Realtek 8922AE WiFi 7 PCI-E NIC -> rtwlane711.sys
Wi-Fi 2: Realtek 8922AE WiFi 7 PCI-E NIC -> rtwlane711.sys
Wi-Fi 4: Realtek 8922AE WiFi 7 PCI-E NIC -> rtwlane711.sys
Ethernet: Realtek PCIe 2.5GbE Family Controller -> rt25cx21x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lipit\Desktop\DKrJC6jU8AEr0mA.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)


==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{36333FD2-C637-4FF1-9995-FCF74FC4DBD0}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{ADDDDBCE-0F09-427E-B64C-227018EEDDBE}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FB23120F-5494-4D27-8741-A21852246848}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{AC4F0EC2-F7EB-4093-9334-B4051E3FF4BB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{7BA34076-D4B5-4BE7-9A75-DEC9DE18F861}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{ED21DB49-ED7A-4F73-B6A0-29D34CC2474A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8F20F0D3-3C7E-4D0F-869A-26FD3B5D054E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A55AE6FB-4E33-4AE4-8F62-E3C89E6F4815}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3A1BCE03-C15C-48FB-83BC-B4512D4B41BD}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{87C09F48-A689-4816-9232-431C97FFEF80}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E772C843-EC12-4BC0-9F3F-6DDCD092AA14}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{48F43696-4987-4CA9-81EF-2B2A2CF679F4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{55B6772C-4957-4C7F-B8EC-10F9E6A8AFD4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{84E54416-8163-41AF-BC39-EDC69B15AACA}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8B782DBA-46B5-45A7-A207-B5D77DF8D085}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{5D1CB488-F187-4F20-BFEA-F9C6980960DA}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{E59CC443-49A3-441E-91A1-95F8A09FFC50}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{8B9374D3-0723-4DE7-AD6D-80B15534D3BE}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe] => (Allow) C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe => No File
FirewallRules: [UDP Query User{363EB0E4-1853-4801-B7AE-D990AB349F13}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe] => (Allow) C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe => No File
FirewallRules: [{7F8A3366-6917-44A0-B870-F2D97126094C}] => (Allow) D:\SteamLibrary\steamapps\common\Risen 3\system\Risen3.exe => No File
FirewallRules: [{23EE444A-A834-42A0-8721-70CA74F60101}] => (Allow) D:\SteamLibrary\steamapps\common\Risen 3\system\Risen3.exe => No File
FirewallRules: [{555D090C-418D-4796-B95C-DF7C80657DB7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FB2FD57C-990C-4088-895E-48F227BFF65F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{A71152A6-B9BC-4380-BF57-270723437A4F}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe] => (Allow) D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe => No File
FirewallRules: [UDP Query User{EAB1C8BD-BE08-4E7E-B55A-11D3C01D1C4B}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe] => (Allow) D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe => No File
FirewallRules: [TCP Query User{384CC0B9-50C9-4957-B482-658972D7E118}D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [UDP Query User{F7A4572F-A85C-4BF9-82DE-D535B7DF8B75}D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [{CF193689-A877-4F57-86FC-C78F18FEBAD1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BA139914-E7BA-4395-B512-5E515A8A04F3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{C424DDF0-90A9-4A94-AA3B-C58CA50A6EE1}D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe => No File
FirewallRules: [UDP Query User{B99EC179-875C-41FD-BD98-A52C744DFFE3}D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe => No File
FirewallRules: [TCP Query User{1E637147-3653-4A15-AC15-2086298C736F}C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe] => (Allow) C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe => No File
FirewallRules: [UDP Query User{77DD47C6-3CAF-416D-B2C7-D299FFA3EB5B}C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe] => (Allow) C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe => No File
FirewallRules: [{76467BAE-AA4E-458B-B35C-EB852775126C}] => (Allow) D:\SteamLibrary\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{8FEB551F-DB39-4D56-B01A-758D6D3480DF}] => (Allow) D:\SteamLibrary\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{6ACAA00B-3E42-42CE-8D1C-1A6FA6C7A3F2}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe => No File
FirewallRules: [UDP Query User{31E18ABE-CB43-4207-A4D5-0D826CBB5E7D}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe => No File
FirewallRules: [TCP Query User{27FB82C8-5197-4844-A0B2-C671E67358A0}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{03E8B347-A5CE-4D7E-B12D-4B943CEA4452}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{50A75D1B-9EC9-4982-A963-5EE8E4F47F94}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{7668D586-3FEE-46F4-90A6-B8AC60B8A816}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{DC7E75C9-9B69-4090-A5A9-5F749E812D3D}] => (Allow) D:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{3E49B186-9BE5-4329-8695-2AE3750CF70D}] => (Allow) D:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [TCP Query User{FCB11DA8-C5C4-4170-AC5B-A4F9B81E322B}D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe] => (Allow) D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe (Standing Stone Games LLC -> Standing Stone Games, LLC.)
FirewallRules: [UDP Query User{04BC0AB5-9737-4B36-9C25-E468BC637829}D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe] => (Allow) D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe (Standing Stone Games LLC -> Standing Stone Games, LLC.)
FirewallRules: [{1A68EF4A-5946-49DA-93D7-132068325532}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => No File
FirewallRules: [{835317F0-CA17-40D9-9440-2159543D420F}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => No File
FirewallRules: [{B6DD35AF-B77C-4F1C-8C04-B681128605EC}] => (Allow) D:\SteamLibrary\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{9395CC72-55E6-4DC1-84C6-243384474117}] => (Allow) D:\SteamLibrary\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{4E03AB0C-ACE8-4BDE-BB26-89E6D7249B82}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\riftbreaker_win_release.exe => No File
FirewallRules: [{15FCC691-D4F4-43B5-9B11-5760269F922B}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\riftbreaker_win_release.exe => No File
FirewallRules: [{4779B6E4-194F-44E2-8FA9-479E214C1777}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\Launcher.exe => No File
FirewallRules: [{DB96EE98-1577-43BB-B038-FE618A2DE828}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\Launcher.exe => No File
FirewallRules: [{47C95907-80A7-4F74-8FD0-61C6BD7B3A83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe => No File
FirewallRules: [{08DA990D-D284-4AD2-90A3-2FDF7AF95D18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe => No File
FirewallRules: [{5A31D7DD-C8DE-48F3-901E-D42BA9BCA717}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File
FirewallRules: [{1841FF16-2BAC-4302-8A55-C32EDC8BEAC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File
FirewallRules: [{F82F4FAE-DAEF-47FD-81EC-65040B8CDDD0}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{75AE49D6-1767-4383-9DC4-FDD37A9441FD}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{563572A7-A33D-4FB1-921A-EF8BBDB8DC81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe => No File
FirewallRules: [{22FA7A01-EAA2-4DF6-9A04-3758F2E43861}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe => No File
FirewallRules: [TCP Query User{6488F992-8D99-4247-BD8B-116ED5CCE546}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{09A5371D-8082-4918-8451-1BC3FCDD7DA7}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{B1EB0EBC-46BA-4052-AC43-0B78379AC711}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{6F0941CF-8E4E-44D9-92B0-8C4E9C496AFB}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{924A3CCE-1E6E-4957-B72E-C97A9F9923EB}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{C1E29D8B-1B9F-4F7A-921E-5D48C04B3AA1}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{A0ABE9B3-5767-476F-9911-2DDF28294421}C:\users\lipit\desktop\club bifrost\bifrost.exe] => (Block) C:\users\lipit\desktop\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{63770082-4A8A-458E-A7B6-284150989131}C:\users\lipit\desktop\club bifrost\bifrost.exe] => (Block) C:\users\lipit\desktop\club bifrost\bifrost.exe => No File
FirewallRules: [{C93D78E0-9F4C-4D17-8FB8-ECE306F1021B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe => No File
FirewallRules: [{06D10A53-B9BE-44FD-9AC7-A1F7B155FF83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe => No File
FirewallRules: [TCP Query User{A9C8DEBE-12A1-4B3C-95D2-CC1A8ACEFFF3}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe => No File
FirewallRules: [UDP Query User{83EAD63B-485F-40C3-814C-1A5B77184504}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe => No File
FirewallRules: [{6BE5A629-8E4F-4927-B95E-70991ADB2933}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slay the Spire 2\SlayTheSpire2.exe () [File not signed]
FirewallRules: [{1564B7C5-5587-4C4E-813F-602F1E822BC5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slay the Spire 2\SlayTheSpire2.exe () [File not signed]
FirewallRules: [{904A026B-BE6C-47A4-B8F1-4E15F8B9F9E6}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Limited)
FirewallRules: [{C253F4E2-17CB-4A15-BE10-DCB7A1CBC1E2}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Limited)
FirewallRules: [TCP Query User{B55DD091-D9FC-4375-9673-07BF11B20A65}C:\program files\flatout2\flatout2.exe] => (Allow) C:\program files\flatout2\flatout2.exe () [File not signed]
FirewallRules: [UDP Query User{42482288-2634-4574-9C3E-83F7CCEBB1A7}C:\program files\flatout2\flatout2.exe] => (Allow) C:\program files\flatout2\flatout2.exe () [File not signed]
FirewallRules: [{95D23229-2EB6-40BA-837B-0D2A800678C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Strinova\Launcher\Strinova.exe => No File
FirewallRules: [{55E41176-DFA2-42C5-819F-8ADC6B87BEEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Strinova\Launcher\Strinova.exe => No File
FirewallRules: [{23A1CDB5-A750-434B-91E0-5AD23575A88F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DB54CF68-BA59-4B46-8E36-E0D5940DECDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{63E289EE-41F4-4C47-AEC1-C2A064973D7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{77441A2B-BE9A-4942-AE6D-64185C562362}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{075BF0BF-1A58-4A6E-BF73-85C2D56DA74D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassins Creed Odyssey\ACOdyssey.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{7285CC05-4156-40DA-84BE-95D708DD6E2B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassins Creed Odyssey\ACOdyssey.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{9A6332FA-C85A-4F08-A94F-13662968580B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{9EEDE2D6-D432-4ED3-898F-E2A3BF945EA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{A2A043F9-9808-400C-BCEA-1EF964D25260}] => (Allow) D:\SteamLibrary\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{4215E691-60A7-4E5A-A161-558F39DE448A}] => (Allow) D:\SteamLibrary\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{1D1FFBE2-CE21-41DA-875B-07E7CD4B7B8D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{038F153C-0A63-420F-AA00-B4A0CEC26010}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{52E45672-8F15-47BB-9DD6-FEFE1340A8F1}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C8280E6E-F6DA-4BCD-97A7-0891DC6F55D0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FC05562D-95B0-409E-BAD8-4F2C0C9A1BC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
FirewallRules: [{6EDD5D67-B762-4F30-8379-14AB98D3B98A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]

==================== Restore Points =========================

07-04-2026 17:03:03 Nainstalováno rozhraní DirectX

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (04/14/2026 04:53:58 PM) (Source: Microsoft Security Client) (EventID: 3002) (User: )
Description: Event-ID 3002

Error: (04/14/2026 04:53:58 PM) (Source: Microsoft Security Client) (EventID: 2002) (User: )
Description: Event-ID 2002

Error: (04/14/2026 04:53:58 PM) (Source: Microsoft Security Client) (EventID: 2003) (User: )
Description: Event-ID 2003

Error: (04/14/2026 02:15:33 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (04/14/2026 02:15:33 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (04/13/2026 11:04:14 PM) (Source: Microsoft Security Client) (EventID: 3002) (User: )
Description: Event-ID 3002

Error: (04/13/2026 11:04:14 PM) (Source: Microsoft Security Client) (EventID: 2002) (User: )
Description: Event-ID 2002

Error: (04/13/2026 11:04:14 PM) (Source: Microsoft Security Client) (EventID: 2003) (User: )
Description: Event-ID 2003


System errors:
=============
Error: (04/14/2026 02:15:30 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/14/2026 02:15:30 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/13/2026 01:42:21 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/12/2026 02:43:24 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/11/2026 12:08:17 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/11/2026 12:08:17 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/10/2026 01:36:42 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/10/2026 01:36:42 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2026-03-11 09:04:36
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Bearfoos.B!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\ProgramData\Coyax\Loquco.dll
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1

Date: 2026-03-11 09:04:34
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Behavior:Win32/SuspEtherRpcConn.B
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Windows\System32\snmptrap.exe, pid:13204:119519315058560; process:_pid:13204,ProcessStart:134176898667567445
Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Neznámý
Uživatel:
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1

Date: 2026-03-11 09:04:34
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Behavior:Win32/GenCodeInjected.H
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Windows\System32\snmptrap.exe, pid:13204:236067258395148; process:_pid:13204,ProcessStart:134176898667567445
Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Neznámý
Uživatel:
Název procesu: C:\Windows\System32\snmptrap.exe
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1

Date: 2026-03-11 09:04:34
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Behavior:Win32/GenCodeInjected.H
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Windows\System32\snmptrap.exe, pid:13204:236067258395148; process:_pid:13204,ProcessStart:134176898667567445
Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Neznámý
Uživatel:
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1

Date: 2026-03-06 18:14:37
Description:
Antivirová ochrana v programu Microsoft Defender ѕĉåп нàś ъĕéń śţöрρέð вєƒόŕē сσмφℓēţĭòņ.%ŋ %ţŚсąη ĬÐ:%в{B869FEA1-807E-43BA-8F2D-D310BCB495C4}%л %тŠçáň Ŧýр℮:%ьAntimalwarový program%ⁿ %тŞçāň Ράřàmêţĕяѕ:%ьRychlé prohledávání%ʼn %ŧŬŝèѓ:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞτőρ Ŗĕąѕōñ:%ъŔΡС ċоπʼnέĉťîõη яΰńδǿώň
Event[0]

Date: 2026-03-12 08:53:20
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

Date: 2026-03-09 14:54:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.445.426.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.26010.1
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2026-03-09 14:54:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.445.426.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.26010.1
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

CodeIntegrity:
===============
Date: 2026-04-14 17:25:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends International, LLC. F6 07/16/2025
Motherboard: Gigabyte Technology Co., Ltd. B850 AORUS ELITE WIFI7
Processor: AMD Ryzen 7 9800X3D 8-Core Processor
Percentage of memory in use: 24%
Total physical RAM: 65140.92 MB
Available physical RAM: 48869.91 MB
Total Virtual: 69236.92 MB
Available Virtual: 47361.28 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.55 GB) (Free:385.14 GB) (Model: WD_BLACK SN7100 1TB) NTFS
Drive d: (Místní disk) (Fixed) (Total:931.51 GB) (Free:603.81 GB) (Model: Samsung SSD 980 1TB) NTFS

\\?\Volume{197d7e00-9765-486c-8bed-e2beb59348a8}\ () (Fixed) (Total:0.75 GB) (Free:0.1 GB) NTFS
\\?\Volume{df495976-8284-4a09-945c-e897a11e833f}\ () (Fixed) (Total:0.19 GB) (Free:0.16 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119890
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Pro jistotu po vyčištění PC

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\MountPoints2: {4a22f4b8-197e-11f1-8254-50ee3289c649} - "F:\Autorun.exe"
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\MountPoints2: {4a22f5bf-197e-11f1-8254-50ee3289c649} - "G:\setup\rsrc\Autorun.exe"
ShortcutTarget: LG Monitor App Installer.lnk -> (No File)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Task: {11DB3A85-459B-4EF0-B970-BAE9A4B65A5E} - System32\Tasks\AMDInstallUEP => C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
S3 HWiNFO_206; \??\C:\Users\lipit\AppData\Local\Temp\HWiNFO_x64_206.sys [X] <==== ATTENTION
C:\DumpStack.log.tmp
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
C:\Users\lipit\AppData\Local\2228D103D6E359B34623C1D0778AD46F
AlternateDataStreams: C:\WINDOWS\tracing:? [16]
FirewallRules: [{FB23120F-5494-4D27-8741-A21852246848}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{AC4F0EC2-F7EB-4093-9334-B4051E3FF4BB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{8B9374D3-0723-4DE7-AD6D-80B15534D3BE}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe] => (Allow) C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe => No File
FirewallRules: [UDP Query User{363EB0E4-1853-4801-B7AE-D990AB349F13}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe] => (Allow) C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe => No File
FirewallRules: [{7F8A3366-6917-44A0-B870-F2D97126094C}] => (Allow) D:\SteamLibrary\steamapps\common\Risen 3\system\Risen3.exe => No File
FirewallRules: [{23EE444A-A834-42A0-8721-70CA74F60101}] => (Allow) D:\SteamLibrary\steamapps\common\Risen 3\system\Risen3.exe => No File
FirewallRules: [TCP Query User{A71152A6-B9BC-4380-BF57-270723437A4F}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe] => (Allow) D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe => No File
FirewallRules: [UDP Query User{EAB1C8BD-BE08-4E7E-B55A-11D3C01D1C4B}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe] => (Allow) D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe => No File
FirewallRules: [TCP Query User{6ACAA00B-3E42-42CE-8D1C-1A6FA6C7A3F2}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe => No File
FirewallRules: [UDP Query User{31E18ABE-CB43-4207-A4D5-0D826CBB5E7D}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe => No File
FirewallRules: [TCP Query User{27FB82C8-5197-4844-A0B2-C671E67358A0}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{03E8B347-A5CE-4D7E-B12D-4B943CEA4452}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{50A75D1B-9EC9-4982-A963-5EE8E4F47F94}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{7668D586-3FEE-46F4-90A6-B8AC60B8A816}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{DC7E75C9-9B69-4090-A5A9-5F749E812D3D}] => (Allow) D:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{3E49B186-9BE5-4329-8695-2AE3750CF70D}] => (Allow) D:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{1A68EF4A-5946-49DA-93D7-132068325532}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => No File
FirewallRules: [{835317F0-CA17-40D9-9440-2159543D420F}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => No File
FirewallRules: [{4E03AB0C-ACE8-4BDE-BB26-89E6D7249B82}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\riftbreaker_win_release.exe => No File
FirewallRules: [{15FCC691-D4F4-43B5-9B11-5760269F922B}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\riftbreaker_win_release.exe => No File
FirewallRules: [{4779B6E4-194F-44E2-8FA9-479E214C1777}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\Launcher.exe => No File
FirewallRules: [{DB96EE98-1577-43BB-B038-FE618A2DE828}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\Launcher.exe => No File
FirewallRules: [{47C95907-80A7-4F74-8FD0-61C6BD7B3A83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe => No File
FirewallRules: [{08DA990D-D284-4AD2-90A3-2FDF7AF95D18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe => No File
FirewallRules: [{5A31D7DD-C8DE-48F3-901E-D42BA9BCA717}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File
FirewallRules: [{1841FF16-2BAC-4302-8A55-C32EDC8BEAC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File
FirewallRules: [{F82F4FAE-DAEF-47FD-81EC-65040B8CDDD0}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{75AE49D6-1767-4383-9DC4-FDD37A9441FD}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{563572A7-A33D-4FB1-921A-EF8BBDB8DC81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe => No File
FirewallRules: [{22FA7A01-EAA2-4DF6-9A04-3758F2E43861}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe => No File
FirewallRules: [TCP Query User{6488F992-8D99-4247-BD8B-116ED5CCE546}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{09A5371D-8082-4918-8451-1BC3FCDD7DA7}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{B1EB0EBC-46BA-4052-AC43-0B78379AC711}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{6F0941CF-8E4E-44D9-92B0-8C4E9C496AFB}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{924A3CCE-1E6E-4957-B72E-C97A9F9923EB}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{C1E29D8B-1B9F-4F7A-921E-5D48C04B3AA1}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{A0ABE9B3-5767-476F-9911-2DDF28294421}C:\users\lipit\desktop\club bifrost\bifrost.exe] => (Block) C:\users\lipit\desktop\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{63770082-4A8A-458E-A7B6-284150989131}C:\users\lipit\desktop\club bifrost\bifrost.exe] => (Block) C:\users\lipit\desktop\club bifrost\bifrost.exe => No File
FirewallRules: [{C93D78E0-9F4C-4D17-8FB8-ECE306F1021B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe => No File
FirewallRules: [{06D10A53-B9BE-44FD-9AC7-A1F7B155FF83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe => No File
FirewallRules: [TCP Query User{A9C8DEBE-12A1-4B3C-95D2-CC1A8ACEFFF3}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe => No File
FirewallRules: [UDP Query User{83EAD63B-485F-40C3-814C-1A5B77184504}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe => No File
FirewallRules: [{95D23229-2EB6-40BA-837B-0D2A800678C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Strinova\Launcher\Strinova.exe => No File
FirewallRules: [{55E41176-DFA2-42C5-819F-8ADC6B87BEEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Strinova\Launcher\Strinova.exe => No File
C:\ProgramData\Coyax\Loquco.dll
C:\Windows\System32\snmptrap.exe

EmptyTemp:
End
Uložte do C:\Users\lipit\Desktop jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
NewOldie
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 14 dub 2026 16:21

Re: Pro jistotu po vyčištění PC

#3 Příspěvek od NewOldie »

Fix result of Farbar Recovery Scan Tool (x64) Version: 12-04-2026 01
Ran by Štěpán-PC (14-04-2026 18:42:29) Run:1
Running from C:\Users\lipit\Desktop
Loaded Profiles: Štěpán-PC
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\MountPoints2: {4a22f4b8-197e-11f1-8254-50ee3289c649} - "F:\Autorun.exe"
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\MountPoints2: {4a22f5bf-197e-11f1-8254-50ee3289c649} - "G:\setup\rsrc\Autorun.exe"
ShortcutTarget: LG Monitor App Installer.lnk -> (No File)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Task: {11DB3A85-459B-4EF0-B970-BAE9A4B65A5E} - System32\Tasks\AMDInstallUEP => C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
S3 HWiNFO_206; \??\C:\Users\lipit\AppData\Local\Temp\HWiNFO_x64_206.sys [X] <==== ATTENTION
C:\DumpStack.log.tmp
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
C:\Users\lipit\AppData\Local\2228D103D6E359B34623C1D0778AD46F
AlternateDataStreams: C:\WINDOWS\tracing:? [16]
FirewallRules: [{FB23120F-5494-4D27-8741-A21852246848}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{AC4F0EC2-F7EB-4093-9334-B4051E3FF4BB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{8B9374D3-0723-4DE7-AD6D-80B15534D3BE}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe] => (Allow) C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe => No File
FirewallRules: [UDP Query User{363EB0E4-1853-4801-B7AE-D990AB349F13}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe] => (Allow) C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe => No File
FirewallRules: [{7F8A3366-6917-44A0-B870-F2D97126094C}] => (Allow) D:\SteamLibrary\steamapps\common\Risen 3\system\Risen3.exe => No File
FirewallRules: [{23EE444A-A834-42A0-8721-70CA74F60101}] => (Allow) D:\SteamLibrary\steamapps\common\Risen 3\system\Risen3.exe => No File
FirewallRules: [TCP Query User{A71152A6-B9BC-4380-BF57-270723437A4F}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe] => (Allow) D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe => No File
FirewallRules: [UDP Query User{EAB1C8BD-BE08-4E7E-B55A-11D3C01D1C4B}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe] => (Allow) D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe => No File
FirewallRules: [TCP Query User{6ACAA00B-3E42-42CE-8D1C-1A6FA6C7A3F2}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe => No File
FirewallRules: [UDP Query User{31E18ABE-CB43-4207-A4D5-0D826CBB5E7D}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe => No File
FirewallRules: [TCP Query User{27FB82C8-5197-4844-A0B2-C671E67358A0}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{03E8B347-A5CE-4D7E-B12D-4B943CEA4452}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{50A75D1B-9EC9-4982-A963-5EE8E4F47F94}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{7668D586-3FEE-46F4-90A6-B8AC60B8A816}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{DC7E75C9-9B69-4090-A5A9-5F749E812D3D}] => (Allow) D:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{3E49B186-9BE5-4329-8695-2AE3750CF70D}] => (Allow) D:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{1A68EF4A-5946-49DA-93D7-132068325532}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => No File
FirewallRules: [{835317F0-CA17-40D9-9440-2159543D420F}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => No File
FirewallRules: [{4E03AB0C-ACE8-4BDE-BB26-89E6D7249B82}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\riftbreaker_win_release.exe => No File
FirewallRules: [{15FCC691-D4F4-43B5-9B11-5760269F922B}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\riftbreaker_win_release.exe => No File
FirewallRules: [{4779B6E4-194F-44E2-8FA9-479E214C1777}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\Launcher.exe => No File
FirewallRules: [{DB96EE98-1577-43BB-B038-FE618A2DE828}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\Launcher.exe => No File
FirewallRules: [{47C95907-80A7-4F74-8FD0-61C6BD7B3A83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe => No File
FirewallRules: [{08DA990D-D284-4AD2-90A3-2FDF7AF95D18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe => No File
FirewallRules: [{5A31D7DD-C8DE-48F3-901E-D42BA9BCA717}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File
FirewallRules: [{1841FF16-2BAC-4302-8A55-C32EDC8BEAC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File
FirewallRules: [{F82F4FAE-DAEF-47FD-81EC-65040B8CDDD0}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{75AE49D6-1767-4383-9DC4-FDD37A9441FD}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{563572A7-A33D-4FB1-921A-EF8BBDB8DC81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe => No File
FirewallRules: [{22FA7A01-EAA2-4DF6-9A04-3758F2E43861}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe => No File
FirewallRules: [TCP Query User{6488F992-8D99-4247-BD8B-116ED5CCE546}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{09A5371D-8082-4918-8451-1BC3FCDD7DA7}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{B1EB0EBC-46BA-4052-AC43-0B78379AC711}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{6F0941CF-8E4E-44D9-92B0-8C4E9C496AFB}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{924A3CCE-1E6E-4957-B72E-C97A9F9923EB}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{C1E29D8B-1B9F-4F7A-921E-5D48C04B3AA1}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{A0ABE9B3-5767-476F-9911-2DDF28294421}C:\users\lipit\desktop\club bifrost\bifrost.exe] => (Block) C:\users\lipit\desktop\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{63770082-4A8A-458E-A7B6-284150989131}C:\users\lipit\desktop\club bifrost\bifrost.exe] => (Block) C:\users\lipit\desktop\club bifrost\bifrost.exe => No File
FirewallRules: [{C93D78E0-9F4C-4D17-8FB8-ECE306F1021B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe => No File
FirewallRules: [{06D10A53-B9BE-44FD-9AC7-A1F7B155FF83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe => No File
FirewallRules: [TCP Query User{A9C8DEBE-12A1-4B3C-95D2-CC1A8ACEFFF3}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe => No File
FirewallRules: [UDP Query User{83EAD63B-485F-40C3-814C-1A5B77184504}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe => No File
FirewallRules: [{95D23229-2EB6-40BA-837B-0D2A800678C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Strinova\Launcher\Strinova.exe => No File
FirewallRules: [{55E41176-DFA2-42C5-819F-8ADC6B87BEEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Strinova\Launcher\Strinova.exe => No File
C:\ProgramData\Coyax\Loquco.dll
C:\Windows\System32\snmptrap.exe

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4a22f4b8-197e-11f1-8254-50ee3289c649} => removed successfully
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4a22f5bf-197e-11f1-8254-50ee3289c649} => removed successfully
"ShortcutTarget: LG Monitor App Installer.lnk -> (No File)" => not found
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Policies\Microsoft\Edge => removed successfully
"HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{11DB3A85-459B-4EF0-B970-BAE9A4B65A5E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11DB3A85-459B-4EF0-B970-BAE9A4B65A5E}" => removed successfully
C:\WINDOWS\System32\Tasks\AMDInstallUEP => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AMDInstallUEP" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
HKLM\System\CurrentControlSet\Services\HWiNFO_206 => removed successfully
HWiNFO_206 => service removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
Could not move "C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2" => Scheduled to move on reboot.
C:\Users\lipit\AppData\Local\2228D103D6E359B34623C1D0778AD46F => moved successfully
C:\WINDOWS\tracing => ":?" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FB23120F-5494-4D27-8741-A21852246848}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AC4F0EC2-F7EB-4093-9334-B4051E3FF4BB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8B9374D3-0723-4DE7-AD6D-80B15534D3BE}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{363EB0E4-1853-4801-B7AE-D990AB349F13}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7F8A3366-6917-44A0-B870-F2D97126094C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{23EE444A-A834-42A0-8721-70CA74F60101}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A71152A6-B9BC-4380-BF57-270723437A4F}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EAB1C8BD-BE08-4E7E-B55A-11D3C01D1C4B}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6ACAA00B-3E42-42CE-8D1C-1A6FA6C7A3F2}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{31E18ABE-CB43-4207-A4D5-0D826CBB5E7D}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{27FB82C8-5197-4844-A0B2-C671E67358A0}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{03E8B347-A5CE-4D7E-B12D-4B943CEA4452}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50A75D1B-9EC9-4982-A963-5EE8E4F47F94}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7668D586-3FEE-46F4-90A6-B8AC60B8A816}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DC7E75C9-9B69-4090-A5A9-5F749E812D3D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3E49B186-9BE5-4329-8695-2AE3750CF70D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1A68EF4A-5946-49DA-93D7-132068325532}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{835317F0-CA17-40D9-9440-2159543D420F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E03AB0C-ACE8-4BDE-BB26-89E6D7249B82}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{15FCC691-D4F4-43B5-9B11-5760269F922B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4779B6E4-194F-44E2-8FA9-479E214C1777}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DB96EE98-1577-43BB-B038-FE618A2DE828}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{47C95907-80A7-4F74-8FD0-61C6BD7B3A83}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{08DA990D-D284-4AD2-90A3-2FDF7AF95D18}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A31D7DD-C8DE-48F3-901E-D42BA9BCA717}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1841FF16-2BAC-4302-8A55-C32EDC8BEAC6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F82F4FAE-DAEF-47FD-81EC-65040B8CDDD0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75AE49D6-1767-4383-9DC4-FDD37A9441FD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{563572A7-A33D-4FB1-921A-EF8BBDB8DC81}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{22FA7A01-EAA2-4DF6-9A04-3758F2E43861}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6488F992-8D99-4247-BD8B-116ED5CCE546}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{09A5371D-8082-4918-8451-1BC3FCDD7DA7}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B1EB0EBC-46BA-4052-AC43-0B78379AC711}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6F0941CF-8E4E-44D9-92B0-8C4E9C496AFB}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{924A3CCE-1E6E-4957-B72E-C97A9F9923EB}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C1E29D8B-1B9F-4F7A-921E-5D48C04B3AA1}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A0ABE9B3-5767-476F-9911-2DDF28294421}C:\users\lipit\desktop\club bifrost\bifrost.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{63770082-4A8A-458E-A7B6-284150989131}C:\users\lipit\desktop\club bifrost\bifrost.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C93D78E0-9F4C-4D17-8FB8-ECE306F1021B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{06D10A53-B9BE-44FD-9AC7-A1F7B155FF83}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A9C8DEBE-12A1-4B3C-95D2-CC1A8ACEFFF3}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{83EAD63B-485F-40C3-814C-1A5B77184504}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{95D23229-2EB6-40BA-837B-0D2A800678C1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{55E41176-DFA2-42C5-819F-8ADC6B87BEEF}" => removed successfully
"C:\ProgramData\Coyax\Loquco.dll" => not found
C:\Windows\System32\snmptrap.exe => moved successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 90358850 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1067224282 B
Windows/system/drivers => 8543571 B
Edge => 431051612 B
Firefox => 0 B
Opera => 137611169 B

Local\Temp, Local\*.tmp, LocalLow\Temp, Roaming\Temp, Roaming\*.tmp , IE cache, history, cookies, recent:
Default => 10752 B
ProgramData => 0 B
Public => 0 B
systemprofile => 9607 B
systemprofile32 => 960 B
LocalService => 268090 B
NetworkService => 160488 B
lipit => 45433985 B

RecycleBin => 0 B
EmptyTemp: => 1.7 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 14-04-2026 18:45:13)

C:\DumpStack.log.tmp => Could not move
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 => Could not move

==== End of Fixlog 18:45:13 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119890
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Pro jistotu po vyčištění PC

#4 Příspěvek od Rudy »

Vše bylo smazáno, log již vypadá OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
NewOldie
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 14 dub 2026 16:21

Re: Pro jistotu po vyčištění PC

#5 Příspěvek od NewOldie »

Super, moc díky za ochotu.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119890
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Pro jistotu po vyčištění PC

#6 Příspěvek od Rudy »

Rádo se stalo! :-)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“