VIRY.CZ

Dobrý den. Prosím o pomoc. Mám zpomalený pocitac. Ve hrach obcas trhne v pravydelnych intervalech. Prace ve windows je zpomalena. Jedna se o pocitac s SSD diskem a chova se to jak stare pentium. I když tedy ted to zousim a neni to zase tak hrozne ale ted je pocitac po restartu. Ale zpomaleni tam je.
Děkuji

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Ran by laser (05-12-2024 17:34:35)
Running from C:\Users\laser\OneDrive\Desktop
Microsoft Windows 11 Home Version 23H2 22631.4460 (X64) (2023-03-31 15:10:36)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4149889843-740260508-398921512-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4149889843-740260508-398921512-503 - Limited - Disabled)
Guest (S-1-5-21-4149889843-740260508-398921512-501 - Limited - Disabled)
laser (S-1-5-21-4149889843-740260508-398921512-1001 - Administrator - Enabled) => C:\Users\laser
WDAGUtilityAccount (S-1-5-21-4149889843-740260508-398921512-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.004.20243 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Asus Dispslay Control Service (HKLM\...\{0F0328FA-E13C-4897-89B1-7A08CBF6A938}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
ASUS GiftBox Service (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 3.2.3.0 - ASUSTeK COMPUTER INC.)
ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.1.10.0 - ASUSTeK COMPUTER INC.)
Asus Power Scheme (HKLM\...\{81E49E2E-C0A5-471E-854F-82125D30A828}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.11.6137 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks App Player (HKLM\...\BlueStacks_nxt) (Version: 5.14.0.1061 - now.gg, Inc.)
BlueStacks Services (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\BlueStacksServices) (Version: 3.0.9 - now.gg, Inc.)
BlueStacks X (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\BlueStacks X) (Version: 10.41.212.1013 - now.gg, Inc.)
Discord (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Discord) (Version: 1.0.9011 - Discord Inc.)
DSB Notification (HKLM\...\{A82D01C4-0F9C-4FD6-9E2F-EDBD1E9826DC}) (Version: 1.2.0 - ASUSTeK COMPUTER INC.)
Epic Games Launcher (HKLM-x32\...\{C027033D-F5BC-4556-B302-84E6EC6BD4D4}) (Version: 1.3.67.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{4757C19B-4CE3-418C-91D2-E15E938091FB}) (Version: 2.0.39.0 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.108 - Google LLC)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.4.11000.6436 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1137 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{B39E9D6B-906D-47C0-8FA1-833987DA6F63}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{CE08DF9B-FD93-4667-8D88-55A216DC6669}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{BEB5BAB5-60E3-46D3-BC68-748807F35B8E}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.5.0.1027 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{49F223FE-D3BD-4FB9-96BF-41361123804A}) (Version: 16.5.0.1027 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{72759DFB-9080-46A5-ACCF-5BA26A6FF3FD}) (Version: 30.100.1727.1 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{2D79E334-B178-45B9-A2A6-7A60A084C268}) (Version: 16.8.0.1000 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{0459ef97-6cc2-4a78-a664-516669c498e2}) (Version: 20.70.0.0u - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{DA51C5EF-89BF-40D5-9D33-02D3B4FB11C1}) (Version: 20.70.0.1716 - Intel Corporation) Hidden
Java 8 Update 431 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180431F0}) (Version: 8.0.4310.10 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R8 - McAfee, Inc.)
Microsoft Edge (HKLM-x32\...\{DE493D86-8367-3619-97B6-69B997F0DBE3}) (Version: 131.0.2903.70 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.70 - Microsoft Corporation) Hidden
Microsoft Edge WebView2 Runtime (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Microsoft EdgeWebView) (Version: 111.0.1661.62 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\OneDriveSetup.exe) (Version: 24.221.1103.0003 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.14501 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{66C00D72-5E34-495E-A4A1-1A31D7BE2FA7}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{632D85A6-B94C-440E-B565-26F73CF778D3}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33816 (HKLM-x32\...\{77169412-f642-45e7-b533-0c6f48de12f9}) (Version: 14.40.33816.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33816 (HKLM-x32\...\{4373d0b5-4457-4a80-bad9-029de8df097b}) (Version: 14.40.33816.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33816 (HKLM\...\{5904914B-9FC8-44C2-AE48-5C7F30A603EC}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33816 (HKLM\...\{560D2DA4-096E-4868-B22A-DA6418FDE6FB}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33816 (HKLM-x32\...\{0DF1D9F9-6038-4641-AB6D-13DD654758A7}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33816 (HKLM-x32\...\{D7A66DA5-B103-45C1-A0A7-736C08E2F464}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.0.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 556.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 556.12 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 114.0.5282.235 (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Opera 114.0.5282.235) (Version: 114.0.5282.235 - Opera Software)
PerformanceTest v10.1 (HKLM\...\PerformanceTest 10_is1) (Version: 10.1.1003.0 - Passmark Software)
Radmin VPN 1.4.1 (HKLM-x32\...\{0783EC7D-0C7E-40DF-B0CF-8F16AA495D84}) (Version: 1.4.4642.1 - Famatech)
RefreshRateService (HKLM-x32\...\{7E5E84CB-B190-4658-A4DC-166779C329D1}) (Version: 2.1.0 - ASUSTeK COMPUTER INC.)
Roblox Player for laser (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for laser (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.98.2208 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.8.0 - Rockstar Games)
SDÍLEJ.CZ Manager - 1 (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\69f070f18ade444c) (Version: 0.0.1.42 - SDÍLEJ.CZ)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TLauncher (HKLM-x32\...\TLauncher) (Version: 2.923 - TLauncher Inc.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.03 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 139.2.10843 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)

Packages:
=========
5A894077.McAfeeSecurity -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2024-06-30] (McAfee LLC.)
Adobe Acrobat Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC [2024-01-24] ()
ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.2.4.0_x64__qmba6cd70vzyy [2023-03-31] (ASUSTeK COMPUTER INC.)
ASUS Keyboard Hotkeys -> C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy [2023-03-31] (ASUSTeK COMPUTER INC.) [Startup Task]
Dead Island 2 -> C:\Program Files\WindowsApps\DeepSilver.578840CD64788_1.122.7784.0_x64_Base_hmv7qcest37me [2024-11-30] (PLAION GmbH)
DTS Headphone:X v1 -> C:\Program Files\WindowsApps\dtsinc.dtsheadphonexv1_2.0.0.0_x64__t5j2fzbtdg37r [2023-03-31] (DTS, Inc.)
eManual -> C:\Program Files\WindowsApps\b9eced6f.emanual_2.0.3.0_x86__qmba6cd70vzyy [2023-03-31] (ASUSTeK COMPUTER INC.)
Forza Horizon 5 -> C:\Program Files\WindowsApps\Microsoft.624F8B84B80_3.671.65.0_x64__8wekyb3d8bbwe [2024-12-03] (Microsoft Studios)
Instagram -> C:\Program Files\WindowsApps\www.instagram.com-E4B7766F_42.0.21.1_neutral__ysfa6mcnwr1rw [2024-08-05] (www.instagram.com)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.30.0_x64__w1wdnht996qgy [2024-06-04] (LinkedIn) [Startup Task]
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_2150.13.211.0_x64__8xx8rvfyw5nnt [2024-08-15] (Meta) [Startup Task]
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.17628.20144.0_x86__8wekyb3d8bbwe [2024-06-21] (Microsoft Corporation)
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.4401.0_x64__8wekyb3d8bbwe [2024-11-03] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.1.3.0_x64__8wekyb3d8bbwe [2024-11-01] (Microsoft Studios)
Minecraft: Java Edition -> C:\Program Files\WindowsApps\Microsoft.MinecraftJavaEdition_1.0.5.0_x64__8wekyb3d8bbwe [2024-06-16] (Microsoft Studios)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy [2024-07-05] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-07-09] (NVIDIA Corp.)
OMEN Gaming Hub -> C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6 [2024-07-06] (HP Inc.) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.169.0_x64__dt26b99r8h8gj [2024-02-09] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0 [2024-06-27] (Spotify AB) [Startup Task]
TikTok -> C:\Program Files\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se [2024-07-30] (Bytedance Pte. Ltd.)
Warhammer 40,000: Darktide -> C:\Program Files\WindowsApps\FatsharkAB.Warhammer40000DarktideNew_1.6.3234.0_x64__hwm6pnepa3ng2 [2024-12-03] (Fatshark AB)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2445.7.0_x64__cv1g1gvanyjgm [2024-12-03] (WhatsApp Inc.) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.275.500.0_x64__8wekyb3d8bbwe [2024-10-12] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.275.500.0_x64__8wekyb3d8bbwe [2024-10-12] (Microsoft Corp.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4149889843-740260508-398921512-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-4149889843-740260508-398921512-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\laser\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.14501\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4149889843-740260508-398921512-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_6e87d9907e09ff6b\nvshext.dll [2024-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\laser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\asd - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2024-12-04 20:32 - 2024-12-04 20:32 - 002338304 _____ () [File not signed] \\?\C:\Users\laser\AppData\Local\Temp\a7fe982e-611e-493c-8ee7-60add2cb5da2.tmp.node
2024-11-24 20:45 - 2024-11-24 20:45 - 000379392 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\libegl.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 006679040 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\libglesv2.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 004325888 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\vk_swiftshader.dll
2023-05-15 18:37 - 2024-05-08 09:18 - 002862080 _____ () [File not signed] C:\Users\laser\AppData\Local\Programs\bluestacks-services\ffmpeg.dll
2023-05-15 18:37 - 2024-05-08 09:18 - 000479232 _____ () [File not signed] C:\Users\laser\AppData\Local\Programs\bluestacks-services\libegl.dll
2023-05-15 18:37 - 2024-05-08 09:18 - 007513600 _____ () [File not signed] C:\Users\laser\AppData\Local\Programs\bluestacks-services\libglesv2.dll
2023-05-15 18:37 - 2024-05-08 09:18 - 005209088 _____ () [File not signed] C:\Users\laser\AppData\Local\Programs\bluestacks-services\vk_swiftshader.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 005378048 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavcodec-61.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 000875008 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavfilter-10.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 001674240 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavformat-61.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 001640960 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavutil-59.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 000630272 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libswresample-5.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 001092608 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libswscale-8.dll
2018-12-03 21:19 - 2018-12-03 21:19 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 001166336 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\chrome_elf.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000046080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\audio\qtaudio_windows.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000030720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\iconengines\qsvgicon.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\imageformats\qgif.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000025600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\imageformats\qico.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000353280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\imageformats\qjpeg.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\imageformats\qsvg.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000352256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\imageformats\qtiff.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000423424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\imageformats\qwebp.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 001239552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\platforms\qwindows.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000915456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\Qt5Network.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000362496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\Qt5QmlModels.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 004702208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\Qt5Widgets.dll
2024-11-24 20:45 - 2024-11-24 20:45 - 000165888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15084\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\laser\Downloads\adwcleaner.exe:MBAM.Zone.Identifier [335]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4938]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKU\S-1-5-21-4149889843-740260508-398921512-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-4149889843-740260508-398921512-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_431\bin\ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_431\bin\jp2ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-4149889843-740260508-398921512-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\asus\wallpapers\asus.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Intel(R) Wireless-AC 9560 160MHz -> Netwtw08.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) #2 -> bthpan.sys
Ethernet 2: Realtek PCIe GbE Family Controller #2 -> rtcx21x64.sys
Radmin VPN: Famatech Radmin VPN Ethernet Adapter -> RvNetMP60.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B99805F9-70B1-4DAF-A6C0-55553763332B}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{21A25D2E-214D-4E71-8E8E-E24F17A2BDBD}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{B84B87AD-5BF1-49DD-95CC-48D016378DEB}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{007156DD-4E39-4D0A-91A1-6CFEF61E9762}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{C34037D5-E6CF-4E19-9570-F775F23CE892}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DEAD6B8E-83D6-4235-B764-1179C2983B0E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{7842496D-DF95-4FE1-BCE9-A2199C8EADAA}C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe] => (Allow) C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe => No File
FirewallRules: [UDP Query User{70202E6D-924C-4C38-8EAC-A92A5E283871}C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe] => (Allow) C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe => No File
FirewallRules: [{50F68568-59B8-45D1-BADC-0FF642828EE3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{738EFA8F-4044-44E6-9EDE-122EE13C8421}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0F17D7DE-91CE-45BD-AE55-F48B858CDF8A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D9C3B401-2083-45FA-8CBF-6BE39D0A9AFD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{AD8155D9-B03F-402A-A36A-6C704E9D92EE}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{37781812-DF34-4F57-B831-D9EE231D851F}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{F04FBEB1-453B-4BDA-8D43-DD0EFD47F57E}D:\epic\gtav\gta5.exe] => (Block) D:\epic\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{2B87D08C-61D0-4C37-9DAC-F4B91BB37718}D:\epic\gtav\gta5.exe] => (Block) D:\epic\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{DB96AB58-EDE4-4FA0-8062-E435AC988DC7}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Block) D:\xbox\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed]
FirewallRules: [UDP Query User{264BF4DF-A016-4B54-99FA-54E9A9793830}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Block) D:\xbox\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed]
FirewallRules: [{902F68D8-4C22-4582-AF9A-7955C72B01BA}] => (Allow) D:\SteamLibrary\steamapps\common\Synergy\synergy.exe () [File not signed]
FirewallRules: [{5747AD30-8B07-4FD4-A4C9-B58DC2032D92}] => (Allow) D:\SteamLibrary\steamapps\common\Synergy\synergy.exe () [File not signed]
FirewallRules: [{25379C35-5804-4C67-80AF-E0E4E16B50D6}] => (Allow) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe (Famatech Corp. -> Famatech Corp.)
FirewallRules: [{A130CEB2-9C8E-4D80-AA69-BA638283A1D1}] => (Allow) D:\SteamLibrary\steamapps\common\Car For Sale Simulator 2023\Car For Sale Simulator 2023.exe () [File not signed]
FirewallRules: [{61996B45-E8BF-496B-A640-2F670DE77A4B}] => (Allow) D:\SteamLibrary\steamapps\common\Car For Sale Simulator 2023\Car For Sale Simulator 2023.exe () [File not signed]
FirewallRules: [TCP Query User{3D7EAFE3-4AE3-4B0B-9F48-5B913B5E578A}C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{347B4433-FAE6-4FF5-8F74-20C6A1CA0080}C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{2EC88644-F87C-4661-BD47-23EEAE52FE1F}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Now.gg, INC -> BlueStack Systems)
FirewallRules: [{19099C10-3F1C-43F0-B3F1-49481E096A06}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (Now.gg, INC -> The Qt Company Ltd.)
FirewallRules: [TCP Query User{B0895389-AFAA-4E54-AC89-2B6B8A7112D4}D:\epic\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\epic\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [UDP Query User{4136BB25-4A4F-48E5-B417-3E03B6E47F4D}D:\epic\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\epic\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [{0472C0E2-535F-4A5A-92C1-7903E106599A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Summer Car\mysummercar.exe (Unity Technologies SF -> ) [File not signed]
FirewallRules: [{998E31F8-154F-43AD-AA33-6E984D5CA766}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Summer Car\mysummercar.exe (Unity Technologies SF -> ) [File not signed]
FirewallRules: [{92521B80-B564-43F6-BC0B-F834609394D1}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Gold\W40k.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{E8EE7B85-1B16-4413-8F8A-C691921E10AC}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Gold\W40k.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{89D0FCF6-D894-4D0E-8161-C8688DA32589}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Gold\W40kWA.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{EEA2298D-F6F9-43E6-935C-25A4B76A217A}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Gold\W40kWA.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{72805CFA-D2BB-4FB8-8C88-BF592C261247}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Soulstorm\Soulstorm.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{DD9F2610-3711-4A58-9ACE-4D8EE5A3A8C0}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Soulstorm\Soulstorm.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{588DA764-95D9-407A-B427-FA0A568DBF00}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Dark Crusade\darkcrusade.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{44597725-0A6A-4BB3-9D91-5615C22CC300}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Dark Crusade\darkcrusade.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [TCP Query User{F3C06C8A-7AC1-448A-A8B9-8A46A55E5AB6}C:\users\laser\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe] => (Allow) C:\users\laser\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe
FirewallRules: [UDP Query User{ABD0F134-BB94-49B8-A6CC-5C18902F68CE}C:\users\laser\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe] => (Allow) C:\users\laser\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe
FirewallRules: [TCP Query User{AAD83B21-B571-46D2-B489-20DD2192F008}C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{E33DCF86-A523-429E-837D-771BFD6E3C36}C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe
FirewallRules: [TCP Query User{6F48F351-9D6F-4F1A-BE81-399913F3B74D}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe] => (Allow) D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe => No File
FirewallRules: [UDP Query User{F5A41E63-A803-44C4-86BC-505EC9251BD6}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe] => (Allow) D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe => No File
FirewallRules: [{AB8C5A95-C473-4658-9B06-D79D67E89BBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{6EB60D8E-8907-4DB5-8D4D-97B432C0F7AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{F6426FAC-A2B3-4002-A601-F74369086318}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> )
FirewallRules: [{B06DDD37-64CD-4FDF-A3E0-1BB3B78A423C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> )
FirewallRules: [{10FF1778-C206-48A6-8253-25C60BFF9069}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe (Now.gg, INC -> Bluestack Systems, Inc.)
FirewallRules: [{CD35D666-5C1C-4881-9543-6BEB94A4E652}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe (Now.gg, INC -> COMPANY NAME)
FirewallRules: [{E0CD5901-931E-46CE-B888-856FCE659587}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{68D8DA9D-57A5-4E9B-973B-010663300EDD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A855E089-93D8-45E5-811D-C50DF518AF50}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{523234DE-4E35-4E22-959B-B0C5F8D73D62}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{72F64E1C-2881-4BEA-B9FE-DF6E74A767ED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F0DA04EA-B070-49B2-AA20-FAD9B054E04D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5A16AAB6-5D54-41E5-AD0C-0D1D1209E9F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{30C9C6A4-F45E-436B-B9EC-7CB902638A1C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BD3BA44D-1AAB-4150-A64D-253E2DD32098}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4B4C13B8-4195-4C5F-8D5A-ABAACC9CB658}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{115B17CA-9C9E-40F6-888D-013CFE24C572}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{BD8075A2-EA65-4663-AB24-27CA6688A6B0}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{15BDEBF4-7BCC-4BCC-A550-068570060B06}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{050341A6-1B0F-4A8E-AB04-3BA51069B97D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{D5979F4B-645A-4953-A81B-F565BA57F8F4}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{7C51E822-EA0E-46A6-8E27-B316632A9359}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{E747EA52-6E21-4DC1-901D-2EAF041E6F78}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{1C207196-3297-4D11-8E97-E732EE8D28E0}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{CEAB449D-8E6F-4866-A1A4-2DF6830C8D7B}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{5A038E18-0ED3-4B3D-B1FB-11907CB0569B}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{53333448-080B-441C-81E3-2D0502EC6026}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{4DADEC99-8B02-4768-94A2-8AB6B2BFCDEB}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{C97ECCBE-5BFF-49FE-A942-4709F1154D2E}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{0AEB975D-3CC3-4EC1-B63A-801C343B7973}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{588971E5-8096-4F80-9A67-D829042C275C}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{6336652E-CE71-4586-B1D1-ED73D0F248CA}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{149BBD4A-5B4E-4E3D-A89A-352FF30FE32E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3B0CD927-673E-4083-8915-B527A4F70AF2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{86915B13-7BCF-45BA-A61D-8B2612EDFA3E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EB0CCCFE-DC98-49B0-9F77-B4321AB1A54A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DEA6D07A-7460-4DF5-A280-AE44668B3E36}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{ECF023ED-C179-4EF4-AA68-6EC50D6F0034}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{C4712FAE-E801-4A37-B744-AAD9C83C5CF6}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F9F87561-FEF5-48F3-9FD8-8652AD37B201}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.16.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{9D9AF61F-F7DD-4E3F-A1BE-35CEC1FEE051}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{12126A04-B1CC-4667-BC50-F24101BDAEBD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D55782DB-C378-47B1-B986-729DD63F9AA0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{334706B0-08CF-479D-8EB3-11358F09AA7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{04DDE5FA-D7E1-4A51-B5C7-630F63632DC3}C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{7CD3448B-A3F4-48D4-B31E-297606D7A187}C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{BDE73841-A224-49A6-BAE6-F33EDACDE2D8}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7C3197E2-D06A-453A-B097-D374CD4B6821}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A40EFC15-ECD7-40A5-AE94-CE0FF215BF91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Flashing Lights\flashinglights.exe () [File not signed]
FirewallRules: [{AA812542-08C8-4FCF-9C57-B7363DF57AF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Flashing Lights\flashinglights.exe () [File not signed]
FirewallRules: [TCP Query User{FA0D0059-BB8A-4FD9-A649-541E1D9DA288}D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{D9453A21-3708-4F4D-9064-C257FEDC77DB}D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{34180597-D366-4FA3-B79F-8FA5DAE9EA55}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{73872D32-8014-4684-B33E-2461F0B2B9F0}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{3A8186A4-3B44-428F-A1D4-BB64AAB064B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Bus\TheBus\Binaries\Win64\TheBus.exe () [File not signed]
FirewallRules: [{8FF05D50-8860-4A84-9034-F64CDDDC5080}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Bus\TheBus\Binaries\Win64\TheBus.exe () [File not signed]
FirewallRules: [{F2B9D4D3-EC8A-4D56-951E-44D533471697}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [{BA727A64-2A52-4D76-A46B-007ADE8E4B38}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [TCP Query User{CADE1823-285E-4934-B415-7882F3FE3D31}C:\program files (x86)\steam\steamapps\common\company of heroes 3\reliccoh3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\company of heroes 3\reliccoh3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [UDP Query User{EE6B7DFC-7BD6-4EB2-BD6A-50B58522B6F8}C:\program files (x86)\steam\steamapps\common\company of heroes 3\reliccoh3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\company of heroes 3\reliccoh3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [TCP Query User{50D936EE-7C23-48E8-A0BC-A418DD780EC3}D:\epic\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\epic\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{ED9A57DD-7A78-4088-97DC-136DEAD4FE5E}D:\epic\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\epic\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{AFEBB8F1-E456-4974-AD1C-9645B68FFB06}] => (Allow) C:\Users\laser\AppData\Local\Programs\Opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{2CCFD9A4-7C4C-4447-B996-55BC8EACAE03}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6CB1FD08-356D-4AE8-9BD1-2E5B7E301772}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F04E2D76-E35A-43EB-8D58-01CA002CD49C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MonBazou\Mon Bazou.exe () [File not signed]
FirewallRules: [{6CC900DD-60D4-4008-A19E-498B4B6EFE46}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MonBazou\Mon Bazou.exe () [File not signed]
FirewallRules: [TCP Query User{DB8CEF04-8830-44BB-A890-4465E2E0C63F}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File
FirewallRules: [UDP Query User{308FD598-17B4-46FB-B143-9E13505CA0B8}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File
FirewallRules: [{DFA527A3-1CBD-4FE2-BCCB-28390A1A39A8}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{9F51BB30-B74F-46D7-8DD2-C78033DF5371}D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe => No File
FirewallRules: [UDP Query User{FEAE1497-9ECD-4557-8B6B-5C4AF57D11CD}D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe => No File
FirewallRules: [TCP Query User{E808D3F4-395A-4E2F-BEF8-151DAF4821B5}C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe] => (Allow) C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe => No File
FirewallRules: [UDP Query User{28D1C389-45CB-48AB-AC79-FDE80098E298}C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe] => (Allow) C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe => No File
FirewallRules: [{BA1ECE9F-2FDE-41A6-935D-D3743A0CD148}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4EE8DE64-3384-4B62-8DFB-4419DA006B09}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{653098B9-FE81-4A5A-B67A-0672A2154C69}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)

==================== Restore Points =========================

03-12-2024 17:33:26 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (12/05/2024 05:27:07 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (12/05/2024 03:35:14 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (12/04/2024 10:32:51 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (12/04/2024 10:03:11 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (12/04/2024 10:03:06 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (12/04/2024 09:12:28 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (12/04/2024 09:03:16 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (12/04/2024 08:48:09 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220


System errors:
=============
Error: (12/05/2024 03:59:08 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (12/04/2024 11:50:21 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (12/04/2024 11:41:31 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}

Error: (12/04/2024 11:41:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (12/04/2024 11:41:31 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).

Error: (12/04/2024 11:41:31 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}

Error: (12/04/2024 11:41:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (12/04/2024 11:41:31 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).


Windows Defender:
================
Date: 2024-09-10 10:59:21
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {404A6CF7-C894-4EA8-B280-AEADD98C8DFD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-09-07 11:33:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {E1F3FFE1-231F-4C19-A587-E228405198FD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-09-06 18:50:48
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B54E4E13-FDBC-4C24-A3CD-4F66CC719479}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-09-05 11:19:40
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {63E0EDCA-0388-40D8-81A1-D5A84A249F5D}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-09-04 22:55:24
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {00582607-0092-4CBB-B62F-2749D8BBE7DA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]

Date: 2024-07-06 23:34:33
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.413.731.0
Předchozí verze bezpečnostních informací: 1.413.723.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.24050.5
Předchozí verze modulu: 1.1.24050.5
Kód chyby: 0x80508007
Popis chyby: Zařízení nemá dostatek paměti. Ukončete některé programy a opakujte akci, nebo v nápovědě a podpoře vyhledejte informace, jak se vyhnout potížím s nedostatkem paměti.

Date: 2024-07-06 23:34:33
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.413.731.0
Předchozí verze bezpečnostních informací: 1.413.723.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.24050.5
Předchozí verze modulu: 1.1.24050.5
Kód chyby: 0x80508007
Popis chyby: Zařízení nemá dostatek paměti. Ukončete některé programy a opakujte akci, nebo v nápovědě a podpoře vyhledejte informace, jak se vyhnout potížím s nedostatkem paměti.

CodeIntegrity:
===============
Date: 2024-12-05 15:57:59
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume4\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2024-12-05 15:41:10
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. FX505GM.307 05/25/2020
Motherboard: ASUSTeK COMPUTER INC. FX505GM
Processor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Percentage of memory in use: 55%
Total physical RAM: 16234.78 MB
Available physical RAM: 7236.14 MB
Total Virtual: 25962.78 MB
Available Virtual: 14890 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:237.42 GB) (Free:10.88 GB) (Model: WDC PC SN520 SDAPNUW-256G-1002) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:16.25 GB) (Model: ST1000LM035-1RK172) NTFS

\\?\Volume{ce630175-c0cb-4232-a9dd-299ccc1282b1}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.07 GB) NTFS
\\?\Volume{b2371fa7-5808-4b0f-b22d-ae726f9a3693}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 857B9116)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 864658EB)

Partition: GPT.

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-11-2024
Ran by laser (administrator) on DAVID (ASUSTeK COMPUTER INC. TUF Gaming FX505GM_FX505GM) (05-12-2024 17:33:14)
Running from C:\Users\laser\OneDrive\Desktop\FRST64 (1).exe
Loaded Profiles: laser
Platform: Microsoft Windows 11 Home Version 23H2 22631.4460 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.8916\Agent.exe
(C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe ->) (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBox.Agent.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe <14>
(C:\Users\laser\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cscript.exe
(Discord Inc. -> Discord Inc.) C:\Users\laser\AppData\Local\Discord\app-1.0.9173\Discord.exe <6>
(DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSupportService.exe
(DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxEM.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <4>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Now.gg, INC -> now.gg, Inc.) C:\Users\laser\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe <3>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoNotificationUx.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\AsusOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(services.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(services.exe ->) (Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_8559c34713c70ce4\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_3623bab62426ba87\Intel_PIE_Service.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Windows\System32\mfevtps.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_6e87d9907e09ff6b\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek Computer Inc.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24102.48.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(sihost.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2445.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxext.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2411.1001.6.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.181.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\laser\AppData\Local\Microsoft\OneDrive\24.221.1103.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [427816 2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [2089536 2023-07-10] (Famatech Corp. -> Famatech Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [MicrosoftEdgeAutoLaunch_68D9B7BDED78E42E32EDD98D937439AB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911232 2024-11-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [Discord] => C:\Users\laser\AppData\Local\Discord\Update.exe [1525016 2023-02-13] (Discord Inc. -> GitHub)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4412512 2024-12-02] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36981208 2024-12-04] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [electron.app.BlueStacks Services] => C:\Users\laser\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe [162219656 2024-05-08] (Now.gg, INC -> now.gg, Inc.)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [Opera Browser Assistant] => C:\Users\laser\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4834200 2024-10-31] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [981632 2024-11-24] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.108\Installer\chrmstp.exe [2024-12-03] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {79CD157D-738C-44CB-867E-608968C40527} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {D33BE7A1-FAC8-47C9-8A4E-AB9F8C9D7444} - System32\Tasks\ASUS Display Control => C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrl.exe [4713440 2018-06-05] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {07AA90B3-B9AF-4DCC-BD5E-573325424DD7} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {BB48A1E0-E2C0-4A8C-86B6-DD79347A6E7E} - System32\Tasks\ASUS Power Scheme Service => C:\Program Files\ASUSTeK COMPUTER INC\Asus Power Scheme\AsusPowerScheme.exe [4463584 2018-06-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {AD590372-33CF-458B-AB79-6512625BF3FD} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusUpdateChecker.exe [793040 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {90F0063E-609E-4EF2-9792-DFCC77CB5995} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5007312 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {C10968E0-9665-4648-B8C7-F0DBAA5309C7} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5209384 2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {88F2910E-8516-4FED-B694-C43770828C07} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2024-11-20] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {885EFF63-1C73-4391-B0AF-83C299E197FE} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [302968 2023-11-17] (Now.gg, INC -> BlueStack Systems, Inc.)
Task: {BFC88BA1-721D-44F2-925A-EC212A4FED47} - System32\Tasks\DSB Notification => C:\Program Files\ASUS\DSB Notification\DSBNotification.exe [782816 2018-05-11] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {F37072DB-6A00-46ED-84C7-8336883F69AA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{C44217E2-B51B-4428-84B3-A72B2D8C915D} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {E83B0A35-8823-4921-BD70-39F56AFD795C} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\av\McAfee VirusScan\upgrade.exe [37909112 2018-01-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {E4917B10-2717-4DA0-A6EB-F9DAF13DC966} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [1965736 2017-12-13] (McAfee, Inc. -> McAfee, Inc.)
Task: {01F13DCB-D9F3-4E6C-B69E-8DBC47AF94F6} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {5BFF0FD0-0D81-42EF-BA8D-79C784BADCEE} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {DB48C914-216A-404A-9A16-9C9BF816A1ED} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [745296 2017-10-05] (McAfee, Inc. -> McAfee, Inc.)
Task: {CB789F64-E45E-434C-B6DE-0BD2927C66CC} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-4149889843-740260508-398921512-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_2150.13.211.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2192632 2024-08-15] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.)
Task: {1807C8CD-50D2-40FA-B08C-C71D12602D65} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {CA008447-1F2D-4C8F-82AC-ABB00BAF4DBB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8457E0F6-094C-4FD2-ADB0-F97E91D29CF9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {173C2ECB-0F87-4C52-9429-46C8EEDAC2C2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0245F71-E0FA-4FBC-9843-F89B6A5E7BF4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {10619DD3-A5A6-453D-B9B8-FEF685D26FD3} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A3320C49-9693-4E47-9153-CFE3834EA33D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0E5CA1A2-0073-47D2-ADF7-FCB1E5FE2197} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {98EA989C-1DFF-47AB-83DF-486615D57F7B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {97EF0AE7-CCDD-4581-9419-0E30A96721E5} - System32\Tasks\OmenInstallMonitor => C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe [67544 2024-05-23] (HP Inc. -> HP Inc.)
Task: {D94127C3-9427-4F90-8D1A-21B240E6858C} - System32\Tasks\OmenInstallMonitorCustomEvent => C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe [67544 2024-05-23] (HP Inc. -> HP Inc.)
Task: {022BFCF5-DBD1-4780-92BE-65562062EB7F} - System32\Tasks\OmenInstallMonitorTemp => C:\Users\laser\AppData\Local\Temp\HP\OmenInstallMonitorTemp\OmenInstallMonitor.exe -update (No File) <==== ATTENTION
Task: {B936FA07-6BF0-475F-A2B1-1FC80B201630} - System32\Tasks\Opera scheduled assistant Autoupdate 1716924186 => C:\Users\laser\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5812120 2024-11-28] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\laser\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {F23B7C38-1A30-4F23-809A-29F197FF3EF4} - System32\Tasks\Opera scheduled Autoupdate 1716924182 => C:\Users\laser\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5812120 2024-11-28] (Opera Norway AS -> Opera Software)
Task: {E7A4494E-1703-4600-9DE7-88BF210038A8} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [861984 2019-02-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {5E8EF81A-E004-4B7D-8658-553D9DC1346A} - System32\Tasks\SystemOptimizer => C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe [158160 2024-07-05] (HP Inc. -> HP Inc.)
Task: {59434D2E-22EA-402A-82BF-EBCDDBCE5BB5} - System32\Tasks\SystemOptimizerCustomEvent => C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe [158160 2024-07-05] (HP Inc. -> HP Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1e295090-5724-4d64-9fc1-169d0c0d1562}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{dbb20557-5d69-4ea9-819d-4237db335ecb}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{dbb20557-5d69-4ea9-819d-4237db335ecb}\4527F6C6C6F57457563747: [DhcpNameServer] 10.20.0.1
Tcpip\..\Interfaces\{dbb20557-5d69-4ea9-819d-4237db335ecb}\4527F6C6C6F57457563747: [DhcpDomain] trollcomp.ext
Tcpip\..\Interfaces\{dbb20557-5d69-4ea9-819d-4237db335ecb}\75966696F5352554C415939555C415: [DhcpNameServer] 192.168.10.10
Tcpip\..\Interfaces\{dbb20557-5d69-4ea9-819d-4237db335ecb}\C4163756274633: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{dbced7d6-c2c7-47d9-80e0-8d2162094299}: [DhcpNameServer] 10.66.40.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-05]
Edge Notifications: Default -> hxxps://www.amateri.com; hxxps://www.instagram.com
Edge HomePage: Default -> hxxp://www.google.com
Edge StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
Edge Session Restore: Default -> is enabled.
Edge Extension: (McAfee® WebAdvisor) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2024-11-20]
Edge Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-18]
Edge Extension: (Google Mail Checker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\glbpkcehjkihaknkjifkehdpjfngbdga [2023-03-31]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-12-03]
Edge Extension: (Edge relevant text changes) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-11-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )

Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default [2024-09-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-31]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-07-04]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-12-03]
CHR HomePage: Profile 1 -> mysearch.avg.com
CHR StartupUrls: Profile 1 -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
CHR Session Restore: Profile 1 -> is enabled.
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-12-03]
CHR Extension: (AVG Secure Search) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2024-06-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-28]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2024-08-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-31]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-12-05]
CHR DefaultSearchURL: Profile 2 -> hxxps://www.qwant.com/?q={searchTerms}&client=opensearch
CHR DefaultSearchKeyword: Profile 2 -> qwant.com
CHR DefaultSuggestURL: Profile 2 -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
CHR Session Restore: Profile 2 -> is enabled.
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-12-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-26]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-11-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-28]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-28]
CHR HKU\S-1-5-21-4149889843-740260508-398921512-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera:
=======
OPR DefaultProfile: Default

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-04] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\AsusAppService\AsusAppService.exe [1176016 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSDisplayCtrolService; C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe [16864 2018-06-04] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSoftwareManager\AsusSoftwareManager.exe [1389008 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\AsusOptimization\AsusOptimization.exe [206568 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSwitch\AsusSwitch.exe [650704 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5007312 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [599784 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7308072 2024-11-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [776488 2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1222952 2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2024-09-10] (Avast Software s.r.o. -> AVAST Software)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3280000 2024-11-24] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18663720 2024-09-29] (BattlEye Innovations e.K. -> )
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-22] (McAfee, Inc. -> McAfee, Inc.)
R2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [223640 2019-09-03] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2024-10-06] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [965872 2024-10-20] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-02-10] (Epic Games Inc. -> Epic Games, Inc.)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [302416 2018-06-29] (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
S4 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_8\McApExe.exe [730888 2018-05-17] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2017-09-27] (McAfee, Inc. -> McAfee, Inc.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.7.371.0\McCSPServiceHost.exe [2140888 2017-12-14] (McAfee, Inc. -> McAfee, Inc.)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [359888 2018-01-27] (McAfee, Inc. -> McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [512976 2018-01-27] (McAfee, Inc. -> McAfee LLC)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [475600 2018-01-27] (McAfee, Inc. -> McAfee LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-20] (McAfee, Inc. -> McAfee, Inc.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_6e87d9907e09ff6b\Display.NvContainer\NVDisplay.Container.exe [1274888 2024-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1061528 2018-03-06] (McAfee, Inc. -> McAfee, Inc.)
R2 RefreshRateService; C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe [40672 2021-09-10] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.)
S3 Rockstar Service; D:\Launcher\RockstarService.exe [4828136 2024-11-30] (Rockstar Games, Inc. -> Rockstar Games)
R2 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [1179712 2023-07-10] (Famatech Corp. -> Famatech Corp.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_2d98bd355755f20a\ASUSSystemAnalysis\AsusSAIO.sys [49312 2024-09-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20552 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [234056 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [383040 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [296008 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84552 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2024-11-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28736 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [274504 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [550984 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97864 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69184 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [954944 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1424448 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203848 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381512 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [310672 2023-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77216 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S3 DIRECTIO; C:\Program Files\PerformanceTest\DirectIo64.sys [42352 2020-08-24] (PassMark Software Pty Ltd -> )
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34488 2022-08-09] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [496544 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [357792 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83952 2018-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [528288 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [948128 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [521104 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108432 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115104 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252832 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 RvNetMP60; C:\WINDOWS\System32\drivers\RvNetMP60.sys [58288 2022-10-18] (Microsoft Windows Hardware Compatibility Publisher -> Famatech Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-12-05 17:33 - 2024-12-05 17:33 - 000042644 _____ C:\Users\laser\OneDrive\Desktop\FRST.txt
2024-12-05 17:28 - 2024-12-05 17:28 - 002402816 _____ (Farbar) C:\Users\laser\OneDrive\Desktop\FRST64 (1).exe
2024-12-04 20:38 - 2024-12-04 20:38 - 000728502 _____ C:\WINDOWS\system32\perfh005.dat
2024-12-04 20:38 - 2024-12-04 20:38 - 000151718 _____ C:\WINDOWS\system32\perfc005.dat
2024-12-04 20:02 - 2024-12-04 20:02 - 000027376 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_5297238366089.dll
2024-12-01 22:04 - 2024-12-01 22:04 - 2365178638 ____N C:\WINDOWS\MEMORY.DMP
2024-12-01 22:04 - 2024-12-01 22:04 - 004131404 _____ C:\WINDOWS\Minidump\120124-51750-01.dmp
2024-12-01 15:32 - 2024-12-01 15:32 - 000027376 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_193061782544332.dll
2024-11-24 21:09 - 2024-11-24 21:09 - 000000000 ____D C:\Users\laser\AppData\Roaming\Blizzard Entertainment
2024-11-24 20:57 - 2024-11-24 20:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2024-11-24 20:54 - 2024-11-24 21:10 - 000000000 ____D C:\Users\laser\OneDrive\Dokumenty\StarCraft II
2024-11-24 20:49 - 2024-11-24 21:09 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2024-11-24 20:45 - 2024-12-05 17:27 - 000000000 ____D C:\Users\laser\AppData\Local\Battle.net
2024-11-24 20:45 - 2024-11-24 22:39 - 000000000 ____D C:\Users\laser\AppData\Roaming\Battle.net
2024-11-24 20:45 - 2024-11-24 21:10 - 000000000 ____D C:\Users\laser\AppData\Local\Blizzard Entertainment
2024-11-24 20:45 - 2024-11-24 20:50 - 000000000 ____D C:\Program Files (x86)\Battle.net
2024-11-24 20:45 - 2024-11-24 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2024-11-24 20:45 - 2024-11-24 20:45 - 000000000 ____D C:\ProgramData\Battle.net_components
2024-11-24 20:39 - 2024-11-24 20:44 - 000000000 ____D C:\ProgramData\Battle.net
2024-11-24 19:29 - 2024-11-24 19:29 - 000027376 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_227262865197510.dll
2024-11-23 11:52 - 2024-11-23 11:52 - 000000223 _____ C:\Users\laser\OneDrive\Desktop\Mon Bazou.url
2024-11-21 19:02 - 2024-11-21 19:02 - 000315688 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2024-11-16 13:54 - 2024-11-16 13:54 - 000027376 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_5077068503649.dll
2024-11-16 13:32 - 2024-11-16 13:32 - 000026650 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-11-16 13:31 - 2024-11-16 13:31 - 000026650 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-11-14 19:34 - 2024-11-14 19:34 - 000027376 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_19498989744462.dll
2024-11-14 15:12 - 2024-11-14 15:12 - 000027376 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_77439811515336.dll
2024-11-10 11:34 - 2024-11-10 11:34 - 000027376 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_4343519255340.dll
2024-11-10 10:51 - 2024-11-10 10:51 - 000027376 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_90564904809756.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-12-05 17:34 - 2023-03-31 16:08 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2024-12-05 17:33 - 2024-06-29 01:09 - 000000000 ____D C:\FRST
2024-12-05 17:33 - 2023-03-31 16:57 - 000000000 ____D C:\Users\laser\AppData\Local\Discord
2024-12-05 17:27 - 2023-04-26 18:00 - 000000000 ____D C:\Program Files (x86)\Steam
2024-12-05 17:27 - 2023-03-31 16:55 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-05 15:42 - 2024-09-10 18:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2024-12-05 15:35 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-12-05 15:35 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-12-04 23:24 - 2023-03-31 16:02 - 000000000 ____D C:\ProgramData\NVIDIA
2024-12-04 23:06 - 2023-03-31 16:38 - 000000000 ____D C:\Users\laser\AppData\Local\D3DSCache
2024-12-04 22:33 - 2023-03-31 16:55 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-04 22:33 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-12-04 20:38 - 2023-03-31 16:54 - 000000000 ____D C:\WINDOWS\INF
2024-12-04 20:38 - 2023-03-31 16:11 - 001718116 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-12-04 20:33 - 2023-03-31 16:57 - 000000000 ____D C:\Users\laser\AppData\Roaming\discord
2024-12-04 20:32 - 2023-02-04 22:56 - 000000000 ___RD C:\Users\laser\OneDrive
2024-12-04 20:31 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\ServiceState
2024-12-04 20:31 - 2023-03-31 16:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-12-04 20:31 - 2023-03-31 16:05 - 000000000 ____D C:\Users\laser
2024-12-04 20:31 - 2023-03-31 16:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-12-04 20:31 - 2023-02-05 07:45 - 000000288 _____ C:\pefdata.dat
2024-12-04 20:31 - 2023-02-04 22:55 - 000000000 __SHD C:\Users\laser\IntelGraphicsProfiles
2024-12-04 20:00 - 2024-03-28 11:59 - 000000000 ____D C:\Users\laser\AppData\Roaming\EasyAntiCheat
2024-12-04 19:24 - 2023-05-15 18:37 - 000000000 ____D C:\Users\laser\AppData\Roaming\bluestacks-services
2024-12-04 19:24 - 2023-02-04 23:16 - 000002251 _____ C:\Users\laser\OneDrive\Desktop\Discord.lnk
2024-12-03 22:33 - 2023-05-16 13:39 - 000000000 ____D C:\Users\laser\AppData\Local\CrashDumps
2024-12-03 21:59 - 2024-05-28 20:23 - 000001382 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-12-03 21:06 - 2023-03-31 16:53 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-12-03 19:21 - 2023-08-07 14:16 - 000000000 ____D C:\Users\laser\AppData\Roaming\.minecraft
2024-12-03 18:28 - 2024-09-10 18:22 - 000000000 ____D C:\ProgramData\Avast Software
2024-12-03 18:28 - 2023-03-31 16:52 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-12-01 22:52 - 2023-02-05 15:34 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-12-01 22:05 - 2024-07-06 22:45 - 000000000 ____D C:\WINDOWS\Minidump
2024-12-01 19:42 - 2023-03-31 16:33 - 000003704 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{4A37D4B9-86CD-4970-B3A6-61D604CE28AF}
2024-12-01 19:42 - 2023-03-31 16:33 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{431811A5-2412-413D-8D0D-AC182778FAE5}
2024-12-01 19:42 - 2023-03-31 16:27 - 000003118 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4149889843-740260508-398921512-1001
2024-12-01 19:42 - 2023-03-31 16:27 - 000002914 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4149889843-740260508-398921512-1001
2024-11-30 20:50 - 2023-08-14 20:06 - 000000000 ____D C:\Users\laser\AppData\Local\BattlEye
2024-11-30 01:31 - 2023-03-31 16:25 - 000000000 ____D C:\Users\laser\AppData\Local\Packages
2024-11-30 01:31 - 2023-03-31 16:25 - 000000000 ____D C:\ProgramData\Packages
2024-11-29 21:07 - 2023-03-31 16:27 - 000002379 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-11-28 14:00 - 2023-03-31 16:50 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-11-23 09:48 - 2023-03-31 17:10 - 000000000 ____D C:\Users\laser\AppData\Local\GHISLER
2024-11-21 19:02 - 2024-09-10 18:22 - 001424448 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000954944 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000550984 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000383040 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000381512 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000296008 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000274504 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000234056 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000097864 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000084552 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000069184 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000028736 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000028280 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswElam.sys
2024-11-21 19:02 - 2024-09-10 18:22 - 000020552 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2024-11-21 19:02 - 2023-03-31 16:55 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-11-21 12:54 - 2023-04-13 10:39 - 000001399 _____ C:\Users\laser\OneDrive\Desktop\Roblox Player.lnk
2024-11-21 12:54 - 2023-02-05 00:36 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2024-11-16 19:35 - 2023-03-31 16:55 - 000000000 ____D C:\ProgramData\USOPrivate
2024-11-16 19:18 - 2023-03-31 16:01 - 000295936 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-11-16 19:17 - 2023-10-14 11:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\SystemResources
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\system32\setup
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\DiagTrack
2024-11-16 19:17 - 2023-03-31 16:55 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-11-16 19:17 - 2023-03-31 16:52 - 000000000 ____D C:\WINDOWS\servicing
2024-11-16 19:16 - 2023-02-05 07:40 - 000012288 ___SH C:\DumpStack.log.tmp
2024-11-16 13:37 - 2023-03-31 16:52 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-11-16 13:15 - 2023-03-31 16:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-11-16 13:11 - 2023-03-31 16:31 - 202035632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-11-15 07:15 - 2023-11-23 18:15 - 000000000 ____D C:\ProgramData\BlueStacks_nxt
2024-11-15 07:13 - 2024-02-22 00:26 - 000000000 ____D C:\Users\laser\OneDrive\Desktop\omalovanky
2024-11-10 10:55 - 2024-05-28 20:23 - 000003962 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1716924186
2024-11-10 10:55 - 2024-05-28 20:23 - 000003680 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1716924182
2024-11-10 10:55 - 2023-11-21 12:18 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-11-06 22:32 - 2024-01-24 16:22 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk

==================== Files in the root of some directories ========

2023-05-02 20:03 - 2023-05-02 20:03 - 000005966 _____ () C:\Users\laser\AppData\Local\92642719525

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Zdravím!
Předem upozorňuji, že problematiku her neřešíme, nejsme herní fórum. PC můžeme jen vyčistit.

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
AlternateDataStreams: C:\Users\laser\Downloads\adwcleaner.exe:MBAM.Zone.Identifier [335]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4938]
irewallRules: [TCP Query User{DB8CEF04-8830-44BB-A890-4465E2E0C63F}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File
FirewallRules: [UDP Query User{308FD598-17B4-46FB-B143-9E13505CA0B8}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File
FirewallRules: [TCP Query User{9F51BB30-B74F-46D7-8DD2-C78033DF5371}D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe => No File
FirewallRules: [UDP Query User{FEAE1497-9ECD-4557-8B6B-5C4AF57D11CD}D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe => No File
FirewallRules: [TCP Query User{E808D3F4-395A-4E2F-BEF8-151DAF4821B5}C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe] => (Allow) C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe => No File
FirewallRules: [UDP Query User{28D1C389-45CB-48AB-AC79-FDE80098E298}C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe] => (Allow) C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe => No File
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {F37072DB-6A00-46ED-84C7-8336883F69AA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{C44217E2-B51B-4428-84B3-A72B2D8C915D} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {022BFCF5-DBD1-4780-92BE-65562062EB7F} - System32\Tasks\OmenInstallMonitorTemp => C:\Users\laser\AppData\Local\Temp\HP\OmenInstallMonitorTemp\OmenInstallMonitor.exe -update (No File) <==== ATTENTION
CHR HomePage: Profile 1 -> mysearch.avg.com
CHR StartupUrls: Profile 1 -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
CHR Session Restore: Profile 1 -> is enabled.
CHR HomePage: Profile 1 -> mysearch.avg.com
C:\DumpStack.log.tmp

EmptyTemp:
End

Uložte do C:\Users\laser\OneDrive\Desktop jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte. jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Ran by laser (05-12-2024 18:37:01) Run:2
Running from C:\Users\laser\OneDrive\Desktop
Loaded Profiles: laser
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
AlternateDataStreams: C:\Users\laser\Downloads\adwcleaner.exe:MBAM.Zone.Identifier [335]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4938]
irewallRules: [TCP Query User{DB8CEF04-8830-44BB-A890-4465E2E0C63F}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File
FirewallRules: [UDP Query User{308FD598-17B4-46FB-B143-9E13505CA0B8}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File
FirewallRules: [TCP Query User{9F51BB30-B74F-46D7-8DD2-C78033DF5371}D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe => No File
FirewallRules: [UDP Query User{FEAE1497-9ECD-4557-8B6B-5C4AF57D11CD}D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe => No File
FirewallRules: [TCP Query User{E808D3F4-395A-4E2F-BEF8-151DAF4821B5}C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe] => (Allow) C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe => No File
FirewallRules: [UDP Query User{28D1C389-45CB-48AB-AC79-FDE80098E298}C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe] => (Allow) C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe => No File
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {F37072DB-6A00-46ED-84C7-8336883F69AA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{C44217E2-B51B-4428-84B3-A72B2D8C915D} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {022BFCF5-DBD1-4780-92BE-65562062EB7F} - System32\Tasks\OmenInstallMonitorTemp => C:\Users\laser\AppData\Local\Temp\HP\OmenInstallMonitorTemp\OmenInstallMonitor.exe -update (No File) <==== ATTENTION
CHR HomePage: Profile 1 -> mysearch.avg.com
CHR StartupUrls: Profile 1 -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
CHR Session Restore: Profile 1 -> is enabled.
CHR HomePage: Profile 1 -> mysearch.avg.com
C:\DumpStack.log.tmp

EmptyTemp:
End
*****************

Processes closed successfully.
C:\Users\laser\Downloads\adwcleaner.exe => ":MBAM.Zone.Identifier" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
irewallRules: [TCP Query User{DB8CEF04-8830-44BB-A890-4465E2E0C63F}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{308FD598-17B4-46FB-B143-9E13505CA0B8}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9F51BB30-B74F-46D7-8DD2-C78033DF5371}D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FEAE1497-9ECD-4557-8B6B-5C4AF57D11CD}D:\xbox\starcraft ii\versions\base93272\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E808D3F4-395A-4E2F-BEF8-151DAF4821B5}C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{28D1C389-45CB-48AB-AC79-FDE80098E298}C:\users\laser\appdata\local\discord\app-1.0.9172\discord.exe" => removed successfully
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe => moved successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F37072DB-6A00-46ED-84C7-8336883F69AA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F37072DB-6A00-46ED-84C7-8336883F69AA}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{C44217E2-B51B-4428-84B3-A72B2D8C915D} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{C44217E2-B51B-4428-84B3-A72B2D8C915D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{022BFCF5-DBD1-4780-92BE-65562062EB7F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{022BFCF5-DBD1-4780-92BE-65562062EB7F}" => removed successfully
C:\WINDOWS\System32\Tasks\OmenInstallMonitorTemp => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OmenInstallMonitorTemp" => removed successfully
"Chrome HomePage" => removed successfully
"Chrome StartupUrls" => removed successfully
"Chrome Session Restore" => removed successfully
"Chrome HomePage" => not found
C:\DumpStack.log.tmp => moved successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 54752611 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 463432040 B
Windows/system/drivers => 51161 B
Edge => 0 B
Chrome => 1288344014 B
Firefox => 0 B
Opera => 7082396 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 90 B
systemprofile32 => 90 B
LocalService => 277856 B
NetworkService => 337322 B
laser => 1534418969 B

RecycleBin => 220 B
EmptyTemp: => 3.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:37:38 ====

Smazáno. Zrychlil se chod?

Dobrý den. Ozivam se po vice jak mesici, na tento pocitac nechodim tak casto tak jsem dukladne testoval jestli bylo zlepseni. To urcite bylo i kdyz tedy napřiklad po restaru po kliknuti pravim tlacitkem na plochu vyjelo kontextove menu po nekolika sekundach ale po opetovnwm kliknuti uz to bylo okamzite. System uz byl urcite nastartovan zcela. Ale to je snad jediny detail jinak vse OK. Jenze dnes jsem chtel v prohlizeci chrome neco vyhledat a zjistil jsem ze vychozi vyhledavac je nastaven na nejaky vyhledavac qwant. Ted tedy koukam ze to je nejaky novy francozsky vyhledavac ctici soukromi. Zacinam mit pochyb jestli tento vyhledavac nepovrdil jako vychozi muj 9lety syn ktery na tomto pociaci hraje roblox a fortnite no a dalsi hry. Ja jsem se tedy z kraje bal ze mi tento vyhledavac nastavila nejaka havěť. Co na to rikate? Pro jistotu prikladam FRST oba txt
PS: Ted jsem si tam vsimnul win defender disabled to asi neni v poradku
Děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-01-2025
Ran by laser (administrator) on DAVID (ASUSTeK COMPUTER INC. TUF Gaming FX505GM_FX505GM) (08-01-2025 21:53:59)
Running from C:\Users\laser\OneDrive\Desktop\FRST64 (1).exe
Loaded Profiles: laser
Platform: Microsoft Windows 11 Home Version 24H2 26100.2605 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <6>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.8916\Agent.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MSTeams_24335.208.3315.1951_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe <13>
(C:\Users\laser\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cscript.exe
(C:\Users\laser\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\laser\AppData\Local\Programs\Opera\115.0.5322.119\opera_crashreporter.exe
(Discord Inc. -> Discord Inc.) C:\Users\laser\AppData\Local\Discord\app-1.0.9177\Discord.exe <6>
(DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxEM.exe
(explorer.exe ->) (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <4>
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <20>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Now.gg, INC -> now.gg, Inc.) C:\Users\laser\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe <3>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\laser\AppData\Local\Programs\Opera\opera.exe <18>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24335.208.3315.1951_x64__8wekyb3d8bbwe\ms-teams.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\AsusOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(services.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(services.exe ->) (Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_8559c34713c70ce4\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_3623bab62426ba87\Intel_PIE_Service.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Windows\System32\mfevtps.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_6e87d9907e09ff6b\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek Computer Inc.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24112.22.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(sihost.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2449.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.181.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [427816 2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [2089536 2023-07-10] (Famatech Corp. -> Famatech Corp.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [MicrosoftEdgeAutoLaunch_68D9B7BDED78E42E32EDD98D937439AB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911240 2024-12-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [Discord] => C:\Users\laser\AppData\Local\Discord\Update.exe [1525016 2023-02-13] (Discord Inc. -> GitHub)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4412512 2024-12-02] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36981208 2024-12-04] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [electron.app.BlueStacks Services] => C:\Users\laser\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe [162219656 2024-05-08] (Now.gg, INC -> now.gg, Inc.)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [Opera Browser Assistant] => C:\Users\laser\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4834200 2024-10-31] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [981632 2024-12-22] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.205\Installer\chrmstp.exe [2024-12-22] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {79CD157D-738C-44CB-867E-608968C40527} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {D33BE7A1-FAC8-47C9-8A4E-AB9F8C9D7444} - System32\Tasks\ASUS Display Control => C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrl.exe [4713440 2018-06-04] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {07AA90B3-B9AF-4DCC-BD5E-573325424DD7} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {BB48A1E0-E2C0-4A8C-86B6-DD79347A6E7E} - System32\Tasks\ASUS Power Scheme Service => C:\Program Files\ASUSTeK COMPUTER INC\Asus Power Scheme\AsusPowerScheme.exe [4463584 2018-06-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {AE0F5E76-4ECE-44B5-A89E-2ECD2248F4DC} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSoftwareManager\AsusUpdateChecker.exe [821720 2024-11-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {90F0063E-609E-4EF2-9792-DFCC77CB5995} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4397040 2024-11-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {C10968E0-9665-4648-B8C7-F0DBAA5309C7} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5209384 2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {88F2910E-8516-4FED-B694-C43770828C07} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2024-11-20] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {885EFF63-1C73-4391-B0AF-83C299E197FE} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [302968 2023-11-17] (Now.gg, INC -> BlueStack Systems, Inc.)
Task: {BFC88BA1-721D-44F2-925A-EC212A4FED47} - System32\Tasks\DSB Notification => C:\Program Files\ASUS\DSB Notification\DSBNotification.exe [782816 2018-05-11] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {E83B0A35-8823-4921-BD70-39F56AFD795C} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\av\McAfee VirusScan\upgrade.exe [37909112 2018-01-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {E4917B10-2717-4DA0-A6EB-F9DAF13DC966} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [1965736 2017-12-12] (McAfee, Inc. -> McAfee, Inc.)
Task: {01F13DCB-D9F3-4E6C-B69E-8DBC47AF94F6} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {5BFF0FD0-0D81-42EF-BA8D-79C784BADCEE} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {DB48C914-216A-404A-9A16-9C9BF816A1ED} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [745296 2017-10-05] (McAfee, Inc. -> McAfee, Inc.)
Task: {CB789F64-E45E-434C-B6DE-0BD2927C66CC} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-4149889843-740260508-398921512-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_2150.13.211.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2192632 2024-08-15] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.)
Task: {86147BF8-CDDF-425D-8995-FF038968DD7C} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {1807C8CD-50D2-40FA-B08C-C71D12602D65} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {CA008447-1F2D-4C8F-82AC-ABB00BAF4DBB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8457E0F6-094C-4FD2-ADB0-F97E91D29CF9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {173C2ECB-0F87-4C52-9429-46C8EEDAC2C2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0245F71-E0FA-4FBC-9843-F89B6A5E7BF4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {10619DD3-A5A6-453D-B9B8-FEF685D26FD3} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A3320C49-9693-4E47-9153-CFE3834EA33D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0E5CA1A2-0073-47D2-ADF7-FCB1E5FE2197} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {98EA989C-1DFF-47AB-83DF-486615D57F7B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {97EF0AE7-CCDD-4581-9419-0E30A96721E5} - System32\Tasks\OmenInstallMonitor => C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe [67544 2024-05-23] (HP Inc. -> HP Inc.)
Task: {D94127C3-9427-4F90-8D1A-21B240E6858C} - System32\Tasks\OmenInstallMonitorCustomEvent => C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe [67544 2024-05-23] (HP Inc. -> HP Inc.)
Task: {B936FA07-6BF0-475F-A2B1-1FC80B201630} - System32\Tasks\Opera scheduled assistant Autoupdate 1716924186 => C:\Users\laser\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5596568 2024-12-23] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\laser\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {F23B7C38-1A30-4F23-809A-29F197FF3EF4} - System32\Tasks\Opera scheduled Autoupdate 1716924182 => C:\Users\laser\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5596568 2024-12-23] (Opera Norway AS -> Opera Software)
Task: {E7A4494E-1703-4600-9DE7-88BF210038A8} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [861984 2019-02-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {5E8EF81A-E004-4B7D-8658-553D9DC1346A} - System32\Tasks\SystemOptimizer => C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe [158160 2024-07-05] (HP Inc. -> HP Inc.)
Task: {59434D2E-22EA-402A-82BF-EBCDDBCE5BB5} - System32\Tasks\SystemOptimizerCustomEvent => C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe [158160 2024-07-05] (HP Inc. -> HP Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1e295090-5724-4d64-9fc1-169d0c0d1562}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{dbb20557-5d69-4ea9-819d-4237db335ecb}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{dbb20557-5d69-4ea9-819d-4237db335ecb}\C4163756274633: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{dbced7d6-c2c7-47d9-80e0-8d2162094299}: [DhcpNameServer] 10.66.40.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default [2025-01-08]
Edge Notifications: Default -> hxxps://www.amateri.com; hxxps://www.instagram.com
Edge HomePage: Default -> hxxp://www.google.com
Edge StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
Edge Session Restore: Default -> is enabled.
Edge Extension: (McAfee® WebAdvisor) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2024-12-16]
Edge Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-01-01]
Edge Extension: (Google Mail Checker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\glbpkcehjkihaknkjifkehdpjfngbdga [2023-03-31]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2025-01-07]
Edge Extension: (Edge relevant text changes) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-11-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )

Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default [2024-12-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-31]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-07-04]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-12-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-12-16]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 2 [2025-01-08]
CHR DefaultSearchURL: Profile 2 -> hxxps://www.qwant.com/?q={searchTerms}&client=opensearch
CHR DefaultSearchKeyword: Profile 2 -> qwant.com
CHR DefaultSuggestURL: Profile 2 -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
CHR Session Restore: Profile 2 -> is enabled.
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-01-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-22]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-01-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-28]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-28]
CHR HKU\S-1-5-21-4149889843-740260508-398921512-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera:
=======
OPR DefaultProfile: Default

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\AsusAppService\AsusAppService.exe [1176056 2024-11-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSDisplayCtrolService; C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe [16864 2018-06-04] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSoftwareManager\AsusSoftwareManager.exe [1402840 2024-11-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\AsusOptimization\AsusOptimization.exe [206608 2024-11-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSwitch\AsusSwitch.exe [650744 2024-11-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4397040 2024-11-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [599824 2024-11-18] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7308072 2024-11-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [776488 2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1222952 2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2024-09-10] (Avast Software s.r.o. -> AVAST Software)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3280000 2024-11-24] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18663720 2024-09-29] (BattlEye Innovations e.K. -> )
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc. -> McAfee, Inc.)
R2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [223640 2019-09-03] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2024-10-06] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [965872 2024-10-20] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-02-10] (Epic Games Inc. -> Epic Games, Inc.)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [302416 2018-06-29] (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
S4 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_8\McApExe.exe [730888 2018-05-17] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2017-09-27] (McAfee, Inc. -> McAfee, Inc.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.7.371.0\McCSPServiceHost.exe [2140888 2017-12-14] (McAfee, Inc. -> McAfee, Inc.)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [359888 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [512976 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [475600 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-20] (McAfee, Inc. -> McAfee, Inc.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_6e87d9907e09ff6b\Display.NvContainer\NVDisplay.Container.exe [1274888 2024-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1061528 2018-03-06] (McAfee, Inc. -> McAfee, Inc.)
R2 RefreshRateService; C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe [40672 2021-09-10] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.)
S3 Rockstar Service; D:\Launcher\RockstarService.exe [4828136 2024-11-30] (Rockstar Games, Inc. -> Rockstar Games)
R2 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [1179712 2023-07-10] (Famatech Corp. -> Famatech Corp.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 MyWiFiDHCPDNS; "C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSystemAnalysis\AsusSAIO.sys [49352 2024-11-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20552 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [234056 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [383040 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [296008 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84552 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2024-11-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28736 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [274504 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [550984 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97864 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69184 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [954944 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1424448 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203848 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381512 2024-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [310672 2023-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77216 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S3 DIRECTIO; C:\Program Files\PerformanceTest\DirectIo64.sys [42352 2020-08-24] (PassMark Software Pty Ltd -> )
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34488 2022-08-09] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [496544 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [357792 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83952 2018-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [528288 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [948128 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [521104 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108432 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115104 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252832 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RvNetMP60; C:\WINDOWS\System32\drivers\RvNetMP60.sys [58288 2022-10-18] (Microsoft Windows Hardware Compatibility Publisher -> Famatech Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-01-08 21:53 - 2025-01-08 21:53 - 000000000 ___RD C:\Users\laser\OneDrive\Desktop\FRST-OlderVersion
2025-01-03 19:20 - 2025-01-03 19:20 - 000714490 _____ C:\WINDOWS\system32\perfh005.dat
2025-01-03 19:20 - 2025-01-03 19:20 - 000153652 _____ C:\WINDOWS\system32\perfc005.dat
2024-12-28 10:36 - 2024-12-28 10:36 - 000467263 _____ C:\Users\laser\Downloads\Manager_1_42.zip
2024-12-28 10:36 - 2024-12-28 10:36 - 000000000 ____D C:\Users\laser\AppData\Local\Deployment
2024-12-28 10:36 - 2024-12-28 10:36 - 000000000 ____D C:\sdilej
2024-12-22 14:33 - 2024-12-22 14:33 - 000000222 _____ C:\Users\laser\OneDrive\Desktop\Farming Simulator 19.url
2024-12-21 07:53 - 2024-12-21 07:53 - 000000000 ____D C:\Users\laser\AppData\Local\Backup
2024-12-11 21:49 - 2025-01-08 20:16 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-12-11 21:32 - 2024-12-11 21:32 - 000027132 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-12-11 21:32 - 2024-12-11 21:32 - 000027132 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-12-11 21:32 - 2024-12-11 21:32 - 000000998 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-01-08 21:54 - 2024-12-05 17:33 - 000039203 _____ C:\Users\laser\OneDrive\Desktop\FRST.txt
2025-01-08 21:54 - 2024-06-29 01:09 - 000000000 ____D C:\FRST
2025-01-08 21:53 - 2024-12-05 17:28 - 002403840 _____ (Farbar) C:\Users\laser\OneDrive\Desktop\FRST64 (1).exe
2025-01-08 21:52 - 2023-04-26 18:00 - 000000000 ____D C:\Program Files (x86)\Steam
2025-01-08 21:47 - 2024-11-24 20:45 - 000000000 ____D C:\Users\laser\AppData\Local\Battle.net
2025-01-08 21:35 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-01-08 21:25 - 2024-12-07 12:20 - 000003644 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{4A37D4B9-86CD-4970-B3A6-61D604CE28AF}
2025-01-08 21:25 - 2024-12-07 12:20 - 000003420 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{431811A5-2412-413D-8D0D-AC182778FAE5}
2025-01-08 21:25 - 2024-12-07 12:20 - 000003114 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2025-01-08 21:25 - 2024-12-07 12:20 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4149889843-740260508-398921512-1001
2025-01-08 21:25 - 2024-12-07 12:20 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4149889843-740260508-398921512-1001
2025-01-08 21:25 - 2024-12-07 12:20 - 000002818 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2025-01-08 21:25 - 2024-12-07 12:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-01-08 21:16 - 2023-03-31 16:57 - 000000000 ____D C:\Users\laser\AppData\Local\Discord
2025-01-08 20:57 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-01-08 20:52 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-01-08 20:43 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-08 20:43 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-01-08 20:17 - 2023-05-15 18:37 - 000000000 ____D C:\Users\laser\AppData\Roaming\bluestacks-services
2025-01-08 20:17 - 2023-03-31 16:57 - 000000000 ____D C:\Users\laser\AppData\Roaming\discord
2025-01-08 20:16 - 2024-12-07 12:12 - 000002044 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-01-08 20:16 - 2023-03-31 16:38 - 000000000 ____D C:\Users\laser\AppData\Local\D3DSCache
2025-01-08 20:16 - 2023-03-31 16:02 - 000000000 ____D C:\ProgramData\NVIDIA
2025-01-08 20:16 - 2023-02-04 23:16 - 000002251 _____ C:\Users\laser\OneDrive\Desktop\Discord.lnk
2025-01-08 20:16 - 2023-02-04 22:56 - 000000000 ___RD C:\Users\laser\OneDrive
2025-01-08 20:16 - 2023-02-04 22:55 - 000000000 __SHD C:\Users\laser\IntelGraphicsProfiles
2025-01-08 20:15 - 2024-12-07 12:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-01-08 20:15 - 2024-12-07 10:43 - 000012288 ___SH C:\DumpStack.log.tmp
2025-01-08 20:15 - 2024-09-10 18:22 - 000000000 ____D C:\ProgramData\Avast Software
2025-01-08 20:15 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-01-08 20:15 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-01-08 20:15 - 2023-02-05 07:45 - 000000288 _____ C:\pefdata.dat
2025-01-08 17:02 - 2024-03-28 11:59 - 000000000 ____D C:\Users\laser\AppData\Roaming\EasyAntiCheat
2025-01-04 19:38 - 2023-05-16 13:39 - 000000000 ____D C:\Users\laser\AppData\Local\CrashDumps
2025-01-04 08:45 - 2024-12-07 12:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-01-04 04:17 - 2024-05-28 20:23 - 000001382 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2025-01-04 04:07 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-01-03 19:20 - 2024-12-07 12:18 - 001692332 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-01-03 19:14 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-12-31 16:57 - 2023-08-07 14:16 - 000000000 ____D C:\Users\laser\AppData\Roaming\.minecraft
2024-12-28 10:36 - 2023-04-26 23:23 - 000000318 _____ C:\Users\laser\OneDrive\Desktop\SDÍLEJ.CZ Manager - 1 .appref-ms
2024-12-28 10:36 - 2023-03-04 17:01 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SDÍLEJ.CZ
2024-12-27 09:17 - 2023-04-26 18:01 - 000000000 ____D C:\Users\laser\AppData\Local\Steam
2024-12-24 17:22 - 2023-03-31 16:25 - 000000000 ____D C:\Users\laser\AppData\Local\Packages
2024-12-24 17:22 - 2023-03-31 16:25 - 000000000 ____D C:\ProgramData\Packages
2024-12-23 14:45 - 2023-11-23 18:15 - 000000000 ____D C:\ProgramData\BlueStacks_nxt
2024-12-23 01:18 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate
2024-12-22 14:33 - 2023-02-05 15:34 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-12-22 14:31 - 2024-11-24 20:45 - 000000000 ____D C:\Program Files (x86)\Battle.net
2024-12-22 09:48 - 2024-12-07 12:05 - 000297256 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-12-22 09:48 - 2023-03-31 16:53 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-12-22 09:46 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\System
2024-12-21 12:20 - 2023-03-31 16:50 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-18 17:35 - 2024-12-07 10:51 - 000000000 ___DC C:\WINDOWS\Panther
2024-12-15 14:27 - 2023-03-31 16:27 - 000002379 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-13 19:06 - 2023-04-13 10:39 - 000001399 _____ C:\Users\laser\OneDrive\Desktop\Roblox Player.lnk
2024-12-13 19:06 - 2023-02-05 00:36 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2024-12-11 21:32 - 2024-12-07 12:09 - 003337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-12-09 20:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\appcompat
2024-12-09 20:19 - 2024-09-10 18:23 - 000002090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk

==================== Files in the root of some directories ========

2023-05-02 20:03 - 2023-05-02 20:03 - 000005966 _____ () C:\Users\laser\AppData\Local\92642719525

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-01-2025
Ran by laser (08-01-2025 21:55:30)
Running from C:\Users\laser\OneDrive\Desktop
Microsoft Windows 11 Home Version 24H2 26100.2605 (X64) (2024-12-07 11:20:46)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4149889843-740260508-398921512-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4149889843-740260508-398921512-503 - Limited - Disabled)
Guest (S-1-5-21-4149889843-740260508-398921512-501 - Limited - Disabled)
laser (S-1-5-21-4149889843-740260508-398921512-1001 - Administrator - Enabled) => C:\Users\laser
WDAGUtilityAccount (S-1-5-21-4149889843-740260508-398921512-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.004.20243 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Asus Dispslay Control Service (HKLM\...\{0F0328FA-E13C-4897-89B1-7A08CBF6A938}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
ASUS GiftBox Service (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 3.2.3.0 - ASUSTeK COMPUTER INC.)
ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.1.10.0 - ASUSTeK COMPUTER INC.)
Asus Power Scheme (HKLM\...\{81E49E2E-C0A5-471E-854F-82125D30A828}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.11.6137 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks App Player (HKLM\...\BlueStacks_nxt) (Version: 5.14.0.1061 - now.gg, Inc.)
BlueStacks Services (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\BlueStacksServices) (Version: 3.0.9 - now.gg, Inc.)
BlueStacks X (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\BlueStacks X) (Version: 10.41.212.1013 - now.gg, Inc.)
Discord (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Discord) (Version: 1.0.9011 - Discord Inc.)
DSB Notification (HKLM\...\{A82D01C4-0F9C-4FD6-9E2F-EDBD1E9826DC}) (Version: 1.2.0 - ASUSTeK COMPUTER INC.)
Epic Games Launcher (HKLM-x32\...\{C027033D-F5BC-4556-B302-84E6EC6BD4D4}) (Version: 1.3.67.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{4757C19B-4CE3-418C-91D2-E15E938091FB}) (Version: 2.0.39.0 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.205 - Google LLC)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.4.11000.6436 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1137 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{B39E9D6B-906D-47C0-8FA1-833987DA6F63}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{CE08DF9B-FD93-4667-8D88-55A216DC6669}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{BEB5BAB5-60E3-46D3-BC68-748807F35B8E}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.5.0.1027 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{49F223FE-D3BD-4FB9-96BF-41361123804A}) (Version: 16.5.0.1027 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{72759DFB-9080-46A5-ACCF-5BA26A6FF3FD}) (Version: 30.100.1727.1 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{2D79E334-B178-45B9-A2A6-7A60A084C268}) (Version: 16.8.0.1000 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{0459ef97-6cc2-4a78-a664-516669c498e2}) (Version: 20.70.0.0u - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{DA51C5EF-89BF-40D5-9D33-02D3B4FB11C1}) (Version: 20.70.0.1716 - Intel Corporation) Hidden
Java 8 Update 431 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180431F0}) (Version: 8.0.4310.10 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R8 - McAfee, Inc.)
Microsoft Edge (HKLM-x32\...\{DE493D86-8367-3619-97B6-69B997F0DBE3}) (Version: 131.0.2903.112 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.112 - Microsoft Corporation) Hidden
Microsoft Edge WebView2 Runtime (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Microsoft EdgeWebView) (Version: 111.0.1661.62 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\OneDriveSetup.exe) (Version: 24.226.1110.0004 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.14501 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{66C00D72-5E34-495E-A4A1-1A31D7BE2FA7}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{632D85A6-B94C-440E-B565-26F73CF778D3}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33816 (HKLM-x32\...\{77169412-f642-45e7-b533-0c6f48de12f9}) (Version: 14.40.33816.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33816 (HKLM-x32\...\{4373d0b5-4457-4a80-bad9-029de8df097b}) (Version: 14.40.33816.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33816 (HKLM\...\{5904914B-9FC8-44C2-AE48-5C7F30A603EC}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33816 (HKLM\...\{560D2DA4-096E-4868-B22A-DA6418FDE6FB}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33816 (HKLM-x32\...\{0DF1D9F9-6038-4641-AB6D-13DD654758A7}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33816 (HKLM-x32\...\{D7A66DA5-B103-45C1-A0A7-736C08E2F464}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.0.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 556.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 556.12 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 115.0.5322.119 (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\Opera 115.0.5322.119) (Version: 115.0.5322.119 - Opera Software)
PerformanceTest v10.1 (HKLM\...\PerformanceTest 10_is1) (Version: 10.1.1003.0 - Passmark Software)
Radmin VPN 1.4.1 (HKLM-x32\...\{0783EC7D-0C7E-40DF-B0CF-8F16AA495D84}) (Version: 1.4.4642.1 - Famatech)
RefreshRateService (HKLM-x32\...\{7E5E84CB-B190-4658-A4DC-166779C329D1}) (Version: 2.1.0 - ASUSTeK COMPUTER INC.)
Roblox Player for laser (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for laser (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.98.2208 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.8.0 - Rockstar Games)
SDÍLEJ.CZ Manager - 1 (HKU\S-1-5-21-4149889843-740260508-398921512-1001\...\69f070f18ade444c) (Version: 0.0.1.42 - SDÍLEJ.CZ)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TLauncher (HKLM-x32\...\TLauncher) (Version: 2.923 - TLauncher Inc.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.03 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 139.2.10843 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)

Packages:
=========
5A894077.McAfeeSecurity -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2024-06-30] (McAfee LLC.)
Adobe Acrobat Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC [2024-01-24] ()
ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.2.4.0_x64__qmba6cd70vzyy [2023-03-31] (ASUSTeK COMPUTER INC.)
ASUS Keyboard Hotkeys -> C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy [2023-03-31] (ASUSTeK COMPUTER INC.) [Startup Task]
Dead Island 2 -> C:\Program Files\WindowsApps\DeepSilver.578840CD64788_1.123.1932.0_x64_Base_hmv7qcest37me [2024-12-11] (PLAION GmbH)
DTS Headphone:X v1 -> C:\Program Files\WindowsApps\dtsinc.dtsheadphonexv1_2.0.0.0_x64__t5j2fzbtdg37r [2023-03-31] (DTS, Inc.)
eManual -> C:\Program Files\WindowsApps\b9eced6f.emanual_2.0.3.0_x86__qmba6cd70vzyy [2023-03-31] (ASUSTeK COMPUTER INC.)
Instagram -> C:\Program Files\WindowsApps\www.instagram.com-E4B7766F_42.0.21.1_neutral__ysfa6mcnwr1rw [2024-12-08] (www.instagram.com)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2024-12-08] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.30.0_x64__w1wdnht996qgy [2024-06-04] (LinkedIn) [Startup Task]
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_2150.13.211.0_x64__8xx8rvfyw5nnt [2024-08-15] (Meta) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.1.28.0_x64__8wekyb3d8bbwe [2024-12-07] (Microsoft Corp.)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.17628.20144.0_x86__8wekyb3d8bbwe [2024-06-21] (Microsoft Corporation)
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.5101.0_x64__8wekyb3d8bbwe [2024-12-15] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.1.3.0_x64__8wekyb3d8bbwe [2024-11-01] (Microsoft Studios)
Minecraft: Java Edition -> C:\Program Files\WindowsApps\Microsoft.MinecraftJavaEdition_1.0.5.0_x64__8wekyb3d8bbwe [2023-08-07] (Microsoft Studios)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.26.0_x64__qmba6cd70vzyy [2024-12-08] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-07-09] (NVIDIA Corp.)
OMEN Gaming Hub -> C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6 [2024-07-06] (HP Inc.) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.169.0_x64__dt26b99r8h8gj [2024-02-09] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0 [2024-06-27] (Spotify AB) [Startup Task]
TikTok -> C:\Program Files\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se [2024-07-30] (Bytedance Pte. Ltd.)
Warhammer 40,000: Darktide -> C:\Program Files\WindowsApps\FatsharkAB.Warhammer40000DarktideNew_1.6.3296.0_x64__hwm6pnepa3ng2 [2024-12-16] (Fatshark AB)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2449.2.0_x64__cv1g1gvanyjgm [2024-12-16] (WhatsApp Inc.) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.275.500.0_x64__8wekyb3d8bbwe [2024-10-12] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.275.500.0_x64__8wekyb3d8bbwe [2024-10-12] (Microsoft Corp.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4149889843-740260508-398921512-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-4149889843-740260508-398921512-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\laser\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.14501\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4149889843-740260508-398921512-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_6e87d9907e09ff6b\nvshext.dll [2024-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2024-11-21] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\laser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\asd - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2025-01-08 20:17 - 2025-01-08 20:17 - 002338304 _____ () [File not signed] \\?\C:\Users\laser\AppData\Local\Temp\515ae91c-8b77-4508-bd50-6e00dc412f41.tmp.node
2024-12-22 09:53 - 2024-11-24 20:45 - 000379392 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\libegl.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 006679040 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\libglesv2.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 004325888 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\vk_swiftshader.dll
2023-05-15 18:37 - 2024-05-08 09:18 - 002862080 _____ () [File not signed] C:\Users\laser\AppData\Local\Programs\bluestacks-services\ffmpeg.dll
2023-05-15 18:37 - 2024-05-08 09:18 - 000479232 _____ () [File not signed] C:\Users\laser\AppData\Local\Programs\bluestacks-services\libegl.dll
2023-05-15 18:37 - 2024-05-08 09:18 - 007513600 _____ () [File not signed] C:\Users\laser\AppData\Local\Programs\bluestacks-services\libglesv2.dll
2023-05-15 18:37 - 2024-05-08 09:18 - 005209088 _____ () [File not signed] C:\Users\laser\AppData\Local\Programs\bluestacks-services\vk_swiftshader.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 005378048 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavcodec-61.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 000875008 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavfilter-10.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 001674240 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavformat-61.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 001640960 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavutil-59.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 000630272 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libswresample-5.dll
2024-11-08 22:42 - 2024-12-03 21:40 - 001092608 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libswscale-8.dll
2018-12-03 21:19 - 2018-12-03 21:19 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2024-05-17 22:38 - 2024-05-17 22:38 - 000126976 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\SYSTEM32\UpdatePolicyScenarioReliabilityAggregator.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 001166336 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\chrome_elf.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000046080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\audio\qtaudio_windows.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000030720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\iconengines\qsvgicon.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\imageformats\qgif.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000025600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\imageformats\qico.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000353280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\imageformats\qjpeg.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\imageformats\qsvg.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000352256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\imageformats\qtiff.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000423424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\imageformats\qwebp.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 001239552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\platforms\qwindows.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000915456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\Qt5Network.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000362496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\Qt5QmlModels.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 004702208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\Qt5Widgets.dll
2024-12-22 09:53 - 2024-11-24 20:45 - 000165888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.15162\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5938]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKU\S-1-5-21-4149889843-740260508-398921512-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-4149889843-740260508-398921512-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_431\bin\ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_431\bin\jp2ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-4149889843-740260508-398921512-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\asus\wallpapers\asus.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Intel(R) Wireless-AC 9560 160MHz -> Netwtw08.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) #2 -> bthpan.sys
Ethernet 2: Realtek PCIe GbE Family Controller #2 -> rt640x64.sys
Radmin VPN: Famatech Radmin VPN Ethernet Adapter -> RvNetMP60.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{DB8CEF04-8830-44BB-A890-4465E2E0C63F}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File
FirewallRules: [{6CC900DD-60D4-4008-A19E-498B4B6EFE46}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MonBazou\Mon Bazou.exe () [File not signed]
FirewallRules: [{F04E2D76-E35A-43EB-8D58-01CA002CD49C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MonBazou\Mon Bazou.exe () [File not signed]
FirewallRules: [{AFEBB8F1-E456-4974-AD1C-9645B68FFB06}] => (Allow) C:\Users\laser\AppData\Local\Programs\Opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{ED9A57DD-7A78-4088-97DC-136DEAD4FE5E}D:\epic\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\epic\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{50D936EE-7C23-48E8-A0BC-A418DD780EC3}D:\epic\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\epic\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{EE6B7DFC-7BD6-4EB2-BD6A-50B58522B6F8}C:\program files (x86)\steam\steamapps\common\company of heroes 3\reliccoh3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\company of heroes 3\reliccoh3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [TCP Query User{CADE1823-285E-4934-B415-7882F3FE3D31}C:\program files (x86)\steam\steamapps\common\company of heroes 3\reliccoh3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\company of heroes 3\reliccoh3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [{BA727A64-2A52-4D76-A46B-007ADE8E4B38}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [{F2B9D4D3-EC8A-4D56-951E-44D533471697}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [{8FF05D50-8860-4A84-9034-F64CDDDC5080}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Bus\TheBus\Binaries\Win64\TheBus.exe () [File not signed]
FirewallRules: [{3A8186A4-3B44-428F-A1D4-BB64AAB064B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Bus\TheBus\Binaries\Win64\TheBus.exe () [File not signed]
FirewallRules: [{73872D32-8014-4684-B33E-2461F0B2B9F0}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{34180597-D366-4FA3-B79F-8FA5DAE9EA55}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [UDP Query User{D9453A21-3708-4F4D-9064-C257FEDC77DB}D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{FA0D0059-BB8A-4FD9-A649-541E1D9DA288}D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\epic\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{AA812542-08C8-4FCF-9C57-B7363DF57AF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Flashing Lights\flashinglights.exe () [File not signed]
FirewallRules: [{A40EFC15-ECD7-40A5-AE94-CE0FF215BF91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Flashing Lights\flashinglights.exe () [File not signed]
FirewallRules: [{7C3197E2-D06A-453A-B097-D374CD4B6821}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BDE73841-A224-49A6-BAE6-F33EDACDE2D8}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{7CD3448B-A3F4-48D4-B31E-297606D7A187}C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{04DDE5FA-D7E1-4A51-B5C7-630F63632DC3}C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{334706B0-08CF-479D-8EB3-11358F09AA7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D55782DB-C378-47B1-B986-729DD63F9AA0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{12126A04-B1CC-4667-BC50-F24101BDAEBD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9D9AF61F-F7DD-4E3F-A1BE-35CEC1FEE051}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EB0CCCFE-DC98-49B0-9F77-B4321AB1A54A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{86915B13-7BCF-45BA-A61D-8B2612EDFA3E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3B0CD927-673E-4083-8915-B527A4F70AF2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{149BBD4A-5B4E-4E3D-A89A-352FF30FE32E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6336652E-CE71-4586-B1D1-ED73D0F248CA}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{588971E5-8096-4F80-9A67-D829042C275C}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{0AEB975D-3CC3-4EC1-B63A-801C343B7973}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{C97ECCBE-5BFF-49FE-A942-4709F1154D2E}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{4DADEC99-8B02-4768-94A2-8AB6B2BFCDEB}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{53333448-080B-441C-81E3-2D0502EC6026}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{5A038E18-0ED3-4B3D-B1FB-11907CB0569B}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{CEAB449D-8E6F-4866-A1A4-2DF6830C8D7B}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{1C207196-3297-4D11-8E97-E732EE8D28E0}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{E747EA52-6E21-4DC1-901D-2EAF041E6F78}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{7C51E822-EA0E-46A6-8E27-B316632A9359}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{D5979F4B-645A-4953-A81B-F565BA57F8F4}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{050341A6-1B0F-4A8E-AB04-3BA51069B97D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{15BDEBF4-7BCC-4BCC-A550-068570060B06}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{BD8075A2-EA65-4663-AB24-27CA6688A6B0}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{115B17CA-9C9E-40F6-888D-013CFE24C572}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2406.6.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{4B4C13B8-4195-4C5F-8D5A-ABAACC9CB658}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BD3BA44D-1AAB-4150-A64D-253E2DD32098}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{30C9C6A4-F45E-436B-B9EC-7CB902638A1C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5A16AAB6-5D54-41E5-AD0C-0D1D1209E9F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F0DA04EA-B070-49B2-AA20-FAD9B054E04D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{72F64E1C-2881-4BEA-B9FE-DF6E74A767ED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{523234DE-4E35-4E22-959B-B0C5F8D73D62}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A855E089-93D8-45E5-811D-C50DF518AF50}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{68D8DA9D-57A5-4E9B-973B-010663300EDD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E0CD5901-931E-46CE-B888-856FCE659587}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CD35D666-5C1C-4881-9543-6BEB94A4E652}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe (Now.gg, INC -> COMPANY NAME)
FirewallRules: [{10FF1778-C206-48A6-8253-25C60BFF9069}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe (Now.gg, INC -> Bluestack Systems, Inc.)
FirewallRules: [{B06DDD37-64CD-4FDF-A3E0-1BB3B78A423C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> )
FirewallRules: [{F6426FAC-A2B3-4002-A601-F74369086318}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> )
FirewallRules: [{6EB60D8E-8907-4DB5-8D4D-97B432C0F7AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{AB8C5A95-C473-4658-9B06-D79D67E89BBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [UDP Query User{F5A41E63-A803-44C4-86BC-505EC9251BD6}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe] => (Allow) D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe => No File
FirewallRules: [TCP Query User{6F48F351-9D6F-4F1A-BE81-399913F3B74D}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe] => (Allow) D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe => No File
FirewallRules: [UDP Query User{E33DCF86-A523-429E-837D-771BFD6E3C36}C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe
FirewallRules: [TCP Query User{AAD83B21-B571-46D2-B489-20DD2192F008}C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\laser\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{ABD0F134-BB94-49B8-A6CC-5C18902F68CE}C:\users\laser\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe] => (Allow) C:\users\laser\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe
FirewallRules: [TCP Query User{F3C06C8A-7AC1-448A-A8B9-8A46A55E5AB6}C:\users\laser\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe] => (Allow) C:\users\laser\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe
FirewallRules: [{44597725-0A6A-4BB3-9D91-5615C22CC300}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Dark Crusade\darkcrusade.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{588DA764-95D9-407A-B427-FA0A568DBF00}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Dark Crusade\darkcrusade.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{DD9F2610-3711-4A58-9ACE-4D8EE5A3A8C0}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Soulstorm\Soulstorm.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{72805CFA-D2BB-4FB8-8C88-BF592C261247}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Soulstorm\Soulstorm.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{EEA2298D-F6F9-43E6-935C-25A4B76A217A}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Gold\W40kWA.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{89D0FCF6-D894-4D0E-8161-C8688DA32589}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Gold\W40kWA.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{E8EE7B85-1B16-4413-8F8A-C691921E10AC}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Gold\W40k.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{92521B80-B564-43F6-BC0B-F834609394D1}] => (Allow) D:\SteamLibrary\steamapps\common\Dawn of War Gold\W40k.exe (Relic Entertainment, Inc. -> Sega Corporation)
FirewallRules: [{998E31F8-154F-43AD-AA33-6E984D5CA766}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Summer Car\mysummercar.exe (Unity Technologies SF -> ) [File not signed]
FirewallRules: [{0472C0E2-535F-4A5A-92C1-7903E106599A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Summer Car\mysummercar.exe (Unity Technologies SF -> ) [File not signed]
FirewallRules: [UDP Query User{4136BB25-4A4F-48E5-B417-3E03B6E47F4D}D:\epic\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\epic\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [TCP Query User{B0895389-AFAA-4E54-AC89-2B6B8A7112D4}D:\epic\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\epic\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [{19099C10-3F1C-43F0-B3F1-49481E096A06}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (Now.gg, INC -> The Qt Company Ltd.)
FirewallRules: [{2EC88644-F87C-4661-BD47-23EEAE52FE1F}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Now.gg, INC -> BlueStack Systems)
FirewallRules: [UDP Query User{347B4433-FAE6-4FF5-8F74-20C6A1CA0080}C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{3D7EAFE3-4AE3-4B0B-9F48-5B913B5E578A}C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{61996B45-E8BF-496B-A640-2F670DE77A4B}] => (Allow) D:\SteamLibrary\steamapps\common\Car For Sale Simulator 2023\Car For Sale Simulator 2023.exe () [File not signed]
FirewallRules: [{A130CEB2-9C8E-4D80-AA69-BA638283A1D1}] => (Allow) D:\SteamLibrary\steamapps\common\Car For Sale Simulator 2023\Car For Sale Simulator 2023.exe () [File not signed]
FirewallRules: [{25379C35-5804-4C67-80AF-E0E4E16B50D6}] => (Allow) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe (Famatech Corp. -> Famatech Corp.)
FirewallRules: [{5747AD30-8B07-4FD4-A4C9-B58DC2032D92}] => (Allow) D:\SteamLibrary\steamapps\common\Synergy\synergy.exe () [File not signed]
FirewallRules: [{902F68D8-4C22-4582-AF9A-7955C72B01BA}] => (Allow) D:\SteamLibrary\steamapps\common\Synergy\synergy.exe () [File not signed]
FirewallRules: [UDP Query User{264BF4DF-A016-4B54-99FA-54E9A9793830}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Block) D:\xbox\forza horizon 5\content\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{DB96AB58-EDE4-4FA0-8062-E435AC988DC7}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Block) D:\xbox\forza horizon 5\content\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{2B87D08C-61D0-4C37-9DAC-F4B91BB37718}D:\epic\gtav\gta5.exe] => (Block) D:\epic\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{F04FBEB1-453B-4BDA-8D43-DD0EFD47F57E}D:\epic\gtav\gta5.exe] => (Block) D:\epic\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{37781812-DF34-4F57-B831-D9EE231D851F}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{AD8155D9-B03F-402A-A36A-6C704E9D92EE}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{D9C3B401-2083-45FA-8CBF-6BE39D0A9AFD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0F17D7DE-91CE-45BD-AE55-F48B858CDF8A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{738EFA8F-4044-44E6-9EDE-122EE13C8421}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{50F68568-59B8-45D1-BADC-0FF642828EE3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{70202E6D-924C-4C38-8EAC-A92A5E283871}C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe] => (Allow) C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe => No File
FirewallRules: [TCP Query User{7842496D-DF95-4FE1-BCE9-A2199C8EADAA}C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe] => (Allow) C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe => No File
FirewallRules: [{DEAD6B8E-83D6-4235-B764-1179C2983B0E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C34037D5-E6CF-4E19-9570-F775F23CE892}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{007156DD-4E39-4D0A-91A1-6CFEF61E9762}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe => No File
FirewallRules: [{B84B87AD-5BF1-49DD-95CC-48D016378DEB}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{21A25D2E-214D-4E71-8E8E-E24F17A2BDBD}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{B99805F9-70B1-4DAF-A6C0-55553763332B}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{BA9BE9F7-D239-4771-8C8F-690A0D5F1AA6}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.26.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{A2A1700F-3039-417A-ABBD-F4D365AB46A4}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.26.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{9B65F918-172D-49BA-AEDD-AE1AB7C1CBAB}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.26.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F0365FD6-9270-4C9D-99CB-257F4BA5D354}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.26.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [TCP Query User{126C62D2-E816-47F8-B084-C1A8A2DC622A}D:\xbox\starcraft ii\versions\base93333\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base93333\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{8226F9D3-2CB2-4311-A2F4-F90D8110C34C}D:\xbox\starcraft ii\versions\base93333\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base93333\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{015AB822-2A14-4C93-A101-0274D1C47381}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AF67B893-D6D8-4C4D-BC13-A60245102FF5}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0A91E83F-B653-483F-BF1A-BED7D3389210}] => (Allow) D:\SteamLibrary\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{113E1935-FB41-451E-A350-0460107F90FF}] => (Allow) D:\SteamLibrary\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{0DE09AA7-7BE9-43D3-80E8-45B4C809B9D9}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24335.208.3315.1951_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B9A9F159-D8C0-435D-AC29-219758502199}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24335.208.3315.1951_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{716F807E-11AA-48F6-AB3C-410FC3FDF966}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{20C4C76F-A696-4A71-B3C0-AD65F7493079}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_6179225e348508be\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)

==================== Restore Points =========================

04-01-2025 00:41:29 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (01/08/2025 08:15:55 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (01/08/2025 08:13:14 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (01/08/2025 08:10:09 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (01/08/2025 08:10:07 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (01/08/2025 08:08:40 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (01/08/2025 08:05:52 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (01/08/2025 08:04:10 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (01/08/2025 08:00:57 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220


System errors:
=============
Error: (01/08/2025 09:25:59 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}

Error: (01/08/2025 09:25:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (01/08/2025 09:25:59 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).

Error: (01/08/2025 09:25:59 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}

Error: (01/08/2025 09:25:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (01/08/2025 09:25:59 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).

Error: (01/08/2025 09:25:58 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{8F2BC96B-68C5-40E8-9CE1-368E3ACAC09B}

Error: (01/08/2025 09:25:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.


CodeIntegrity:
===============
Date: 2025-01-08 21:26:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume4\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2025-01-08 21:10:07
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. FX505GM.307 05/25/2020
Motherboard: ASUSTeK COMPUTER INC. FX505GM
Processor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Percentage of memory in use: 60%
Total physical RAM: 16234.78 MB
Available physical RAM: 6478.85 MB
Total Virtual: 25962.78 MB
Available Virtual: 13731.98 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:237.42 GB) (Free:16.02 GB) (Model: WDC PC SN520 SDAPNUW-256G-1002) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:181.14 GB) (Model: ST1000LM035-1RK172) NTFS

\\?\Volume{ce630175-c0cb-4232-a9dd-299ccc1282b1}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.13 GB) NTFS
\\?\Volume{b2371fa7-5808-4b0f-b22d-ae726f9a3693}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 857B9116)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 864658EB)

Partition: GPT.

==================== End of Addition.txt =======================

WinDef sice máte disabled, ale máte spuštěný Avast. To je v pořádku, antivir musí být v systému spuštěn pouze jeden, jinak dojde k sw kolizi. Zkusím to ještě jednou pročistit. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {86147BF8-CDDF-425D-8995-FF038968DD7C} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5938]
FirewallRules: [TCP Query User{DB8CEF04-8830-44BB-A890-4465E2E0C63F}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File
FirewallRules: [UDP Query User{F5A41E63-A803-44C4-86BC-505EC9251BD6}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe] => (Allow) D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe => No File
FirewallRules: [TCP Query User{6F48F351-9D6F-4F1A-BE81-399913F3B74D}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe] => (Allow) D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe => No File
FirewallRules: [UDP Query User{264BF4DF-A016-4B54-99FA-54E9A9793830}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Block) D:\xbox\forza horizon 5\content\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{DB96AB58-EDE4-4FA0-8062-E435AC988DC7}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Block) D:\xbox\forza horizon 5\content\forzahorizon5.exe => No File
FirewallRules: [{007156DD-4E39-4D0A-91A1-6CFEF61E9762}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe => No File

EmptyTemp:
End

Uložte do C:\Users\laser\OneDrive\Desktop jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Dobry den
avast mi to porad blokoval az na potreti se mi to povedlo.

Fix result of Farbar Recovery Scan Tool (x64) Version: 21-01-2025
Ran by laser (21-01-2025 17:20:14) Run:4
Running from C:\Users\laser\OneDrive\Desktop
Loaded Profiles: laser
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {86147BF8-CDDF-425D-8995-FF038968DD7C} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5938]
FirewallRules: [TCP Query User{DB8CEF04-8830-44BB-A890-4465E2E0C63F}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File
FirewallRules: [UDP Query User{F5A41E63-A803-44C4-86BC-505EC9251BD6}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe] => (Allow) D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe => No File
FirewallRules: [TCP Query User{6F48F351-9D6F-4F1A-BE81-399913F3B74D}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe] => (Allow) D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe => No File
FirewallRules: [UDP Query User{264BF4DF-A016-4B54-99FA-54E9A9793830}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Block) D:\xbox\forza horizon 5\content\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{DB96AB58-EDE4-4FA0-8062-E435AC988DC7}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Block) D:\xbox\forza horizon 5\content\forzahorizon5.exe => No File
FirewallRules: [{007156DD-4E39-4D0A-91A1-6CFEF61E9762}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{86147BF8-CDDF-425D-8995-FF038968DD7C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{86147BF8-CDDF-425D-8995-FF038968DD7C}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Location\Notifications" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
Could not move "C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2" => Scheduled to move on reboot.
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DB8CEF04-8830-44BB-A890-4465E2E0C63F}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F5A41E63-A803-44C4-86BC-505EC9251BD6}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6F48F351-9D6F-4F1A-BE81-399913F3B74D}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{264BF4DF-A016-4B54-99FA-54E9A9793830}D:\xbox\forza horizon 5\content\forzahorizon5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DB96AB58-EDE4-4FA0-8062-E435AC988DC7}D:\xbox\forza horizon 5\content\forzahorizon5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{007156DD-4E39-4D0A-91A1-6CFEF61E9762}" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 67728704 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 198880145 B
Windows/system/drivers => 61267837 B
Edge => 0 B
Chrome => 828587615 B
Firefox => 0 B
Opera => 2544510 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 87196 B
NetworkService => 88362 B
laser => 1532742014 B

RecycleBin => 0 B
EmptyTemp: => 2.5 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 21-01-2025 17:22:29)

C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 => Could not move

==== End of Fixlog 17:22:29 ====

OK, někdy je dobré AV vypnout. Bylo smazáno. Zrychlil se chod PC?

Dobrý den
Nakonec jsem musel vymenit sekundarni HDD. Nyni je vse v poradku. Prosim jen o preventivni kontrolu logu.
Děkuji


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2025 01
Ran by laser (administrator) on DAVID (ASUSTeK COMPUTER INC. TUF Gaming FX505GM_FX505GM) (16-03-2025 00:45:29)
Running from C:\Users\laser\Downloads\FRST64.exe
Loaded Profiles: laser
Platform: Microsoft Windows 11 Home Version 24H2 26100.3194 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe ->) (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBox.Agent.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <3>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(Discord Inc. -> Discord Inc.) C:\Users\laser\AppData\Local\Discord\app-1.0.9186\Discord.exe <6>
(DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxEM.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <60>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoNotificationUx.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\AsusOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(services.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe
(services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_8559c34713c70ce4\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_3623bab62426ba87\Intel_PIE_Service.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Windows\System32\mfevtps.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\GameInputSvc.exe <2>
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_60e995a01594d69e\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek Computer Inc.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(sihost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee, LLC) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2502.1001.6.0_x64__8wekyb3d8bbwe\XboxPcTray.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2509.4.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee LLC) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (83564403-0B26-46B8-9D84-040F43691D31 -> Realtek Semiconductor) C:\Program Files\WindowsApps\realteksemiconductorcorp.realtekaudiocontrol_1.2.169.0_x64__dt26b99r8h8gj\RtkUWP.exe
(svchost.exe ->) (ASUSTek Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUSTeK COMPUTER INC\Asus Power Scheme\ASUSPowerScheme.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrl.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2502.1001.6.0_x64__8wekyb3d8bbwe\XboxPcApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2502.1001.6.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.235.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.031.0217.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\SystemApps\Microsoft.Windows.CapturePicker_cw5n1h2txyewy\CapturePicker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.1301.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37091856 2025-03-14] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4693088 2025-03-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Discord] => C:\Users\laser\AppData\Local\Discord\Update.exe [1526504 2024-09-04] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [MicrosoftEdgeAutoLaunch_68D9B7BDED78E42E32EDD98D937439AB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4291152 2025-03-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\134.0.6998.89\Installer\chrmstp.exe [2025-03-13] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {D33BE7A1-FAC8-47C9-8A4E-AB9F8C9D7444} - System32\Tasks\ASUS Display Control => C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrl.exe [4713440 2018-06-04] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {07AA90B3-B9AF-4DCC-BD5E-573325424DD7} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {BB48A1E0-E2C0-4A8C-86B6-DD79347A6E7E} - System32\Tasks\ASUS Power Scheme Service => C:\Program Files\ASUSTeK COMPUTER INC\Asus Power Scheme\AsusPowerScheme.exe [4463584 2018-06-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {BC8F6EBF-2201-4A64-8130-EC0F4EAD3021} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSoftwareManager\AsusUpdateChecker.exe [836040 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {06530565-7C3B-4206-AA94-0EF645AB99DD} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4415456 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {BFC88BA1-721D-44F2-925A-EC212A4FED47} - System32\Tasks\DSB Notification => C:\Program Files\ASUS\DSB Notification\DSBNotification.exe [782816 2018-05-11] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {FD83602F-AAFA-46BC-913C-CBACB2F6B293} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{CE8F3BF5-CD4C-446C-9207-58E18E550611} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
Task: {E83B0A35-8823-4921-BD70-39F56AFD795C} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\av\McAfee VirusScan\upgrade.exe [37909112 2018-01-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {E4917B10-2717-4DA0-A6EB-F9DAF13DC966} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [1965736 2017-12-12] (McAfee, Inc. -> McAfee, Inc.)
Task: {01F13DCB-D9F3-4E6C-B69E-8DBC47AF94F6} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {5BFF0FD0-0D81-42EF-BA8D-79C784BADCEE} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {DB48C914-216A-404A-9A16-9C9BF816A1ED} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [745296 2017-10-05] (McAfee, Inc. -> McAfee, Inc.)
Task: {407E1879-1F5E-42B2-BA7F-53BCEF433805} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {E5AD57C0-9BC8-41F6-A364-B5CEA243AE82} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe (No File)
Task: {FBBAADE9-A1D6-4A88-B0FE-3FE3D8D75B0C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display => %systemroot%\system32\MusNotification.exe Display (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {527E461B-DC8A-452C-9665-952F6276B2A6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5F3089C5-F3E3-430C-ACA9-640A5EEC3905} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5266C227-23B7-4AB7-B4AF-43AA5B505911} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {76253808-A3F9-4BD6-B843-D9052CCE897F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {841CB10C-7164-4D4A-A224-7E9E4915572E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {69910930-12B7-4FC5-8336-8F3DD5E32690} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {46CFC91B-7CFA-429E-ABDD-01FBEDE035D3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3297728 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B6DAD622-6081-44EA-B01B-BEF15AF3D2D0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [982464 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {CC6990F0-950C-45F7-A8EC-3D68C37403BA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {77B3F7C0-C76C-42C1-95C2-3FF826E43420} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {66662C3E-4A9A-46E0-9D02-4066F2BA1FBE} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [654784 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5FD8E8EE-4461-4AA3-B75F-E4DDCE65A506} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0EBAEF1-B070-4F43-ADE1-0924C9D1635F} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {3A68CECD-08E7-425E-ABB3-9A2397FE0282} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {038B3A1D-0E6E-4992-9082-FA153633B81B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {B6D5D421-6696-4F92-971E-354F3D910A2F} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3795286163-1351623110-3534515452-1001 => C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.020.0202.0001\OneDriveLauncher.exe /startInstances (No File)
Task: {E7A4494E-1703-4600-9DE7-88BF210038A8} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [861984 2019-02-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{061b6c30-728b-47fc-97da-c65123570088}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2330bf5a-a3a5-4755-b267-c325861828b3}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2330bf5a-a3a5-4755-b267-c325861828b3}\A54554D2260326367303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{dbced7d6-c2c7-47d9-80e0-8d2162094299}: [DhcpNameServer] 10.66.40.1

Edge:
=======
Edge Profile: C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-15]
Edge HomePage: Default -> hxxp://www.google.com
Edge StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
Edge Session Restore: Default -> is enabled.
Edge Extension: (McAfee® WebAdvisor) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2025-03-07]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-04]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Google Mail Checker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\glbpkcehjkihaknkjifkehdpjfngbdga [2025-01-28]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2025-03-13]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Edge relevant text changes) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-01-27]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx

FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default [2025-03-15]
CHR HomePage: Default -> mysearch.avg.com
CHR StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (AVG Secure Search) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2025-01-27]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-08]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Kontrola e-mailu Google) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2025-01-27]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-01-27]hxxps://clients2.google.com/service/update2/crx
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1 [2025-03-15]
CHR Notifications: Profile 1 -> hxxps://www.instagram.com; hxxps://www.tiktok.com
CHR Session Restore: Profile 1 -> is enabled.
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-21]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-03-07]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-01-27]hxxps://clients2.google.com/service/update2/crx
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\System Profile [2025-03-15]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\AsusAppService\AsusAppService.exe [1176040 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSDisplayCtrolService; C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe [16864 2018-06-04] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSoftwareManager\AsusSoftwareManager.exe [1401800 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\AsusOptimization\AsusOptimization.exe [206592 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSwitch\AsusSwitch.exe [652744 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4415456 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [599784 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [20276904 2025-03-10] (BattlEye Innovations e.K. -> )
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc. -> McAfee, Inc.)
R2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [223640 2019-09-03] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2025-01-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [965872 2025-01-28] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3064848 2025-03-14] (Epic Games Inc. -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [367064 2024-11-23] (Epic Games Inc. -> Epic Games, Inc.)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [302416 2018-06-29] (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
S4 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_8\McApExe.exe [730888 2018-05-17] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2017-09-27] (McAfee, Inc. -> McAfee, Inc.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.7.371.0\McCSPServiceHost.exe [2140888 2017-12-14] (McAfee, Inc. -> McAfee, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe [1926976 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [359888 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [512976 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [475600 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-20] (McAfee, Inc. -> McAfee, Inc.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_60e995a01594d69e\Display.NvContainer\NVDisplay.Container.exe [1275568 2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1061528 2018-03-06] (McAfee, Inc. -> McAfee, Inc.)
R2 RefreshRateService; C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe [40672 2021-09-10] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [7327208 2025-03-10] (Rockstar Games, Inc. -> Rockstar Games)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe [4352456 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe [270056 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemAnalysis\AsusSAIO.sys [51248 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77216 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34488 2022-08-09] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [278944 2025-03-06] (Microsoft Windows -> Microsoft Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [496544 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [357792 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83952 2018-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [528288 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [948128 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [521104 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108432 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115104 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252832 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601520 2025-03-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100768 2025-03-06] (Microsoft Windows -> Microsoft Corporation)
S0 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-03-16 00:45 - 2025-03-16 00:46 - 000034774 _____ C:\Users\laser\Downloads\FRST.txt
2025-03-16 00:45 - 2025-03-16 00:45 - 000000000 ____D C:\FRST
2025-03-16 00:44 - 2025-03-16 00:44 - 002404352 _____ (Farbar) C:\Users\laser\Downloads\FRST64.exe
2025-03-15 22:03 - 2025-03-15 23:40 - 000000000 ____D C:\Users\laser\AppData\Local\GHISLER
2025-03-15 22:03 - 2025-03-15 22:03 - 000001080 _____ C:\Users\laser\Desktop\Total Commander 64 bit.lnk
2025-03-15 22:03 - 2025-03-15 22:03 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2025-03-15 22:03 - 2025-03-15 22:03 - 000000000 ____D C:\Users\laser\AppData\Roaming\GHISLER
2025-03-15 22:03 - 2025-03-15 22:03 - 000000000 ____D C:\Program Files\totalcmd
2025-03-15 22:02 - 2025-03-15 22:03 - 007023808 _____ (Ghisler Software GmbH) C:\Users\laser\Downloads\tcmd1151x64.exe
2025-03-15 21:35 - 2025-03-15 21:35 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2025-03-15 21:25 - 2025-03-15 21:25 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2025-03-15 08:16 - 2025-03-15 21:27 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-15 08:14 - 2025-03-15 08:16 - 000000000 ___HD C:\$WinREAgent
2025-03-15 08:09 - 2025-03-15 08:09 - 000000343 _____ C:\Users\laser\Desktop\Killing Floor 2.url
2025-03-14 21:13 - 2025-03-14 21:13 - 000714490 _____ C:\WINDOWS\system32\perfh005.dat
2025-03-14 21:13 - 2025-03-14 21:13 - 000153652 _____ C:\WINDOWS\system32\perfc005.dat
2025-03-14 17:10 - 2025-03-14 17:10 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\MMC
2025-03-13 11:50 - 2025-03-14 23:43 - 000000000 ____D C:\Users\laser\AppData\Local\CrashDumps
2025-03-10 18:49 - 2025-03-10 18:49 - 000007605 _____ C:\Users\laser\AppData\Local\Resmon.ResmonCfg
2025-03-07 17:09 - 2025-03-07 17:09 - 000027888 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_191085740740627.dll
2025-02-19 07:40 - 2025-02-19 07:40 - 000027888 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_193198193619005.dll
2025-02-16 08:36 - 2025-02-16 08:36 - 000027888 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_5380984777786.dll
2025-02-16 00:58 - 2025-02-16 00:58 - 000000000 ____D C:\Users\laser\AppData\Local\BattlEye
2025-02-16 00:50 - 2025-03-14 17:49 - 000000348 _____ C:\Users\laser\Desktop\Grand Theft Auto V.url
2025-02-15 16:56 - 2025-03-10 19:46 - 000000000 ____D C:\Users\laser\AppData\Roaming\.minecraft

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-03-16 00:43 - 2025-01-28 01:15 - 000000000 ____D C:\Program Files (x86)\Steam
2025-03-16 00:18 - 2025-01-27 23:30 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2025-03-16 00:14 - 2025-01-28 08:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-03-16 00:13 - 2025-01-28 10:40 - 000000000 ____D C:\Users\laser\AppData\Local\Discord
2025-03-15 23:48 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-03-15 23:28 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-03-15 23:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-03-15 23:26 - 2025-01-28 10:48 - 002897472 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2025-03-15 23:26 - 2025-01-28 10:48 - 000788008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2025-03-15 23:26 - 2025-01-28 10:48 - 000267816 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2025-03-15 23:26 - 2025-01-28 10:48 - 000243264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2025-03-15 23:26 - 2025-01-28 10:48 - 000153152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-03-15 23:26 - 2025-01-28 10:48 - 000124480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2025-03-15 23:26 - 2025-01-28 10:48 - 000075304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2025-03-15 23:23 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-03-15 23:14 - 2025-01-28 10:40 - 000000000 ____D C:\Users\laser\AppData\Roaming\discord
2025-03-15 21:35 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-03-15 19:26 - 2025-01-28 08:24 - 000000000 ____D C:\ProgramData\NVIDIA
2025-03-15 19:25 - 2025-01-28 01:05 - 000000000 ____D C:\Users\laser\AppData\Roaming\EasyAntiCheat
2025-03-15 19:23 - 2025-01-28 11:09 - 000000000 ____D C:\Users\laser\AppData\Local\Roblox
2025-03-15 08:57 - 2025-01-27 23:52 - 000000000 ____D C:\Users\laser\AppData\Local\D3DSCache
2025-03-15 08:13 - 2025-01-27 23:55 - 000000000 ___RD C:\Users\laser\OneDrive
2025-03-15 08:13 - 2025-01-27 23:52 - 000000000 __SHD C:\Users\laser\IntelGraphicsProfiles
2025-03-15 07:23 - 2025-01-28 08:23 - 000000000 ____D C:\ProgramData\ASUS
2025-03-15 00:22 - 2025-01-27 23:52 - 000000000 ____D C:\Users\laser\AppData\Local\Packages
2025-03-15 00:22 - 2025-01-27 23:29 - 000000000 ____D C:\ProgramData\Packages
2025-03-14 23:44 - 2025-01-28 11:09 - 000001397 _____ C:\Users\laser\Desktop\Roblox Player.lnk
2025-03-14 23:44 - 2025-01-28 11:09 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2025-03-14 23:43 - 2025-01-28 11:09 - 000001225 _____ C:\Users\laser\Desktop\Roblox Studio.lnk
2025-03-14 23:39 - 2025-01-28 01:04 - 000000334 _____ C:\Users\laser\Desktop\Fortnite.url
2025-03-14 23:25 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2025-03-14 21:40 - 2025-01-27 23:55 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-03-14 21:40 - 2025-01-27 23:55 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-03-14 21:40 - 2025-01-27 23:55 - 000002383 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-03-14 21:13 - 2025-01-27 23:32 - 001692324 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-03-14 21:09 - 2025-01-28 08:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-03-14 21:09 - 2025-01-28 08:28 - 000003066 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-03-14 21:09 - 2025-01-28 08:28 - 000000288 _____ C:\pefdata.dat
2025-03-14 21:09 - 2025-01-28 08:23 - 000012288 ___SH C:\DumpStack.log.tmp
2025-03-14 21:09 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-03-14 21:09 - 2024-04-01 08:21 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-03-14 21:03 - 2025-01-28 01:53 - 000000000 ____D C:\Users\laser\Documents\My Games
2025-03-14 17:01 - 2025-01-28 10:40 - 000002249 _____ C:\Users\laser\Desktop\Discord.lnk
2025-03-13 11:54 - 2025-01-28 10:48 - 000000000 ____D C:\XboxGames
2025-03-13 09:54 - 2025-01-27 23:39 - 000004120 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2025-03-13 09:47 - 2025-01-28 08:23 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-03-13 09:47 - 2025-01-28 08:23 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-03-13 09:45 - 2025-01-27 23:57 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-03-13 09:45 - 2025-01-27 23:57 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-03-11 17:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-03-10 16:05 - 2025-02-07 16:11 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2025-03-10 16:05 - 2025-02-05 21:56 - 000000000 ____D C:\Program Files\Rockstar Games
2025-03-09 20:14 - 2025-01-27 23:50 - 000000000 ____D C:\Users\laser
2025-03-08 12:51 - 2025-01-30 16:09 - 000000000 ____D C:\WINDOWS\Minidump
2025-03-08 09:51 - 2024-12-07 12:05 - 000231424 ____N C:\WINDOWS\Minidump\030825-8328-01.dmp
2025-03-07 08:09 - 2025-01-27 23:30 - 000003716 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{4E757026-A521-4B61-955B-EF04C6FA9440}
2025-03-07 08:09 - 2025-01-27 23:30 - 000003592 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{39DFE86E-07E4-493B-84B5-ADDCD5027974}
2025-03-06 09:03 - 2018-11-17 01:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-03-01 19:58 - 2025-01-27 23:55 - 000003576 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-02-20 07:28 - 2025-01-28 10:48 - 000788032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll.0
2025-02-20 07:28 - 2025-01-28 10:48 - 000308776 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_6.dll
2025-02-19 20:34 - 2024-12-07 12:05 - 000211968 ____N C:\WINDOWS\Minidump\021925-10265-01.dmp
2025-02-16 00:59 - 2025-02-07 16:10 - 000000000 ____D C:\Users\laser\AppData\Local\Rockstar Games
2025-02-16 00:57 - 2025-02-07 16:10 - 000000000 ____D C:\Users\laser\Documents\Rockstar Games
2025-02-15 16:52 - 2025-01-27 23:57 - 000000000 ____D C:\Users\laser\AppData\Local\PlaceholderTileLogoFolder

==================== Files in the root of some directories ========

2025-03-10 18:49 - 2025-03-10 18:49 - 000007605 _____ () C:\Users\laser\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2025 01
Ran by laser (16-03-2025 00:46:57)
Running from C:\Users\laser\Downloads
Microsoft Windows 11 Home Version 24H2 26100.3194 (X64) (2025-01-27 22:29:34)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3795286163-1351623110-3534515452-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3795286163-1351623110-3534515452-503 - Limited - Disabled)
Guest (S-1-5-21-3795286163-1351623110-3534515452-501 - Limited - Disabled)
laser (S-1-5-21-3795286163-1351623110-3534515452-1001 - Administrator - Enabled) => C:\Users\laser
WDAGUtilityAccount (S-1-5-21-3795286163-1351623110-3534515452-504 - Limited - Disabled)
WsiAccount (S-1-5-21-3795286163-1351623110-3534515452-1002 - Limited - Disabled) => C:\Users\WsiAccount

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Asus Dispslay Control Service (HKLM\...\{0F0328FA-E13C-4897-89B1-7A08CBF6A938}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
ASUS GiftBox Service (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 3.2.3.0 - ASUSTeK COMPUTER INC.)
ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.1.10.0 - ASUSTeK COMPUTER INC.)
Asus Power Scheme (HKLM\...\{81E49E2E-C0A5-471E-854F-82125D30A828}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
Discord (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Discord) (Version: 1.0.9059 - Discord Inc.)
DSB Notification (HKLM\...\{A82D01C4-0F9C-4FD6-9E2F-EDBD1E9826DC}) (Version: 1.2.0 - ASUSTeK COMPUTER INC.)
Epic Games Launcher (HKLM-x32\...\{C5C3EE71-4047-4144-946E-18D500510CB5}) (Version: 1.3.128.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{5122B8BC-D6DF-48FF-8D4E-15A63EEC5073}) (Version: 2.8.1 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 134.0.6998.89 - Google LLC)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.4.11000.6436 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1137 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{B39E9D6B-906D-47C0-8FA1-833987DA6F63}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{CE08DF9B-FD93-4667-8D88-55A216DC6669}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{BEB5BAB5-60E3-46D3-BC68-748807F35B8E}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.5.0.1027 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{49F223FE-D3BD-4FB9-96BF-41361123804A}) (Version: 16.5.0.1027 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{72759DFB-9080-46A5-ACCF-5BA26A6FF3FD}) (Version: 30.100.1727.1 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{2D79E334-B178-45B9-A2A6-7A60A084C268}) (Version: 16.8.0.1000 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{0459ef97-6cc2-4a78-a664-516669c498e2}) (Version: 20.70.0.0u - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{DA51C5EF-89BF-40D5-9D33-02D3B4FB11C1}) (Version: 20.70.0.1716 - Intel Corporation) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R8 - McAfee, Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 134.0.3124.66 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 134.0.3124.68 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\OneDriveSetup.exe) (Version: 25.031.0217.0003 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{66C00D72-5E34-495E-A4A1-1A31D7BE2FA7}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{632D85A6-B94C-440E-B565-26F73CF778D3}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Graphics Driver 398.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.35 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.18.0628 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0628 - NVIDIA Corporation)
RefreshRateService (HKLM-x32\...\{7E5E84CB-B190-4658-A4DC-166779C329D1}) (Version: 2.1.0 - ASUSTeK COMPUTER INC.)
Roblox Player for laser (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.101.2370_S02_ETU2 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.52 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.51 - Ghisler Software GmbH)

Packages:
=========
5A894077.McAfeeSecurity -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2025-01-28] (McAfee LLC.)
ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.2.4.0_x64__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.)
ASUS Keyboard Hotkeys -> C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.) [Startup Task]
Copilot -> C:\Program Files\WindowsApps\Microsoft.Copilot_1.25014.121.0_x64__8wekyb3d8bbwe [2025-02-19] (Microsoft Corporation) [Startup Task]
Deep Rock Galactic -> C:\Program Files\WindowsApps\CoffeeStainStudios.DeepRockGalactic_39.1.48280.0_x64__496a1srhmar9w [2025-03-14] (Coffee Stain Publishing)
DTS Headphone:X v1 -> C:\Program Files\WindowsApps\dtsinc.dtsheadphonexv1_2.0.0.0_x64__t5j2fzbtdg37r [2025-01-28] (DTS, Inc.)
eManual -> C:\Program Files\WindowsApps\b9eced6f.emanual_2.0.3.0_x86__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.)
Forza Horizon 5 -> C:\Program Files\WindowsApps\Microsoft.624F8B84B80_3.681.890.0_x64__8wekyb3d8bbwe [2025-03-14] (Microsoft Studios)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\appup.intelgraphicscontrolpanel_3.3.0.0_x64__8j3eq9eme6ctt [2025-01-28] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.42.0_x64__w1wdnht996qgy [2025-02-23] (LinkedIn) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2025-01-28] (Microsoft Corp.)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.18526.20168.0_x86__8wekyb3d8bbwe [2025-03-14] (Microsoft Corporation)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.235.0_x64__8wekyb3d8bbwe [2025-02-01] (Microsoft Corporation)
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.6201.0_x64__8wekyb3d8bbwe [0] ()
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.2.2.0_x64__8wekyb3d8bbwe [0] ()
Minecraft: Java Edition -> C:\Program Files\WindowsApps\Microsoft.MinecraftJavaEdition_1.0.5.0_x64__8wekyb3d8bbwe [0] ()
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.34.0_x64__qmba6cd70vzyy [2025-03-13] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\nvidiacorp.nvidiacontrolpanel_8.1.967.0_x64__56jybvy8sckqj [2025-01-28] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.169.0_x64__dt26b99r8h8gj [2025-01-28] (Realtek Semiconductor Corp)
Warhammer 40,000: Darktide -> C:\Program Files\WindowsApps\FatsharkAB.Warhammer40000DarktideNew_1.6.3527.0_x64__hwm6pnepa3ng2 [0] ()
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2509.4.0_x64__cv1g1gvanyjgm [2025-03-06] (WhatsApp Inc.) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_60e995a01594d69e\nvshext.dll [2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\laser\Desktop\asd - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"

==================== Loaded Modules (Whitelisted) =============

2025-01-28 01:15 - 2024-12-03 21:40 - 005378048 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavcodec-61.dll
2025-01-28 01:15 - 2024-12-03 21:40 - 000875008 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavfilter-10.dll
2025-01-28 01:15 - 2024-12-03 21:40 - 001674240 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavformat-61.dll
2025-01-28 01:15 - 2024-12-03 21:40 - 001640960 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavutil-59.dll
2025-01-28 01:15 - 2024-12-03 21:40 - 000630272 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libswresample-5.dll
2025-01-28 01:15 - 2024-12-03 21:40 - 001092608 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libswscale-8.dll
2018-12-03 22:19 - 2018-12-03 22:19 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5364]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\laser\AppData\Local\Packages\Microsoft.GamingApp_8wekyb3d8bbwe\LocalState\wallpaper\2030093255_52.png
HKU\S-1-5-21-3795286163-1351623110-3534515452-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) #2 -> bthpan.sys
Wi-Fi: Intel(R) Wireless-AC 9560 160MHz -> Netwtw08.sys
Ethernet 2: Realtek PCIe GbE Family Controller #2 -> rt640x64.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2C3E84F8-B9AD-4913-B8E1-2BE82C12DA5C}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4980FB51-B7C7-4E41-B667-BD5BCB93B278}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4D3C6ED0-DF42-4D22-83DA-70A271BB3DB7}] => (Allow) C:\Program Files\WindowsApps\msteams_24335.208.3315.1951_x64__8wekyb3d8bbwe\ms-teams.exe => No File
FirewallRules: [{2AAA6A9D-5A72-4C87-AD19-8E042ECC026E}] => (Allow) C:\Program Files\WindowsApps\msteams_24335.208.3315.1951_x64__8wekyb3d8bbwe\ms-teams.exe => No File
FirewallRules: [{B99805F9-70B1-4DAF-A6C0-55553763332B}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{21A25D2E-214D-4E71-8E8E-E24F17A2BDBD}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{B84B87AD-5BF1-49DD-95CC-48D016378DEB}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{007156DD-4E39-4D0A-91A1-6CFEF61E9762}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{F480E729-49D0-43D0-B5A5-24ECC0F9B7BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F27B0E50-AA75-4477-B76A-8E8E7F302706}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9F388178-ACCA-41B1-9EAB-BF4742EE1F54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C34037D5-E6CF-4E19-9570-F775F23CE892}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{92CE43F7-5D14-4CFB-A5D5-68F3B384A3A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DEAD6B8E-83D6-4235-B764-1179C2983B0E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F0BA20F2-CD6F-45C5-B02F-F587F79B5EBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16010.9126.2116.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe => No File
FirewallRules: [{2B0052A2-E874-44AD-8F6E-07A7AB980469}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F573971E-FA41-4FD8-85DE-97CCFA265FA0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9CD24817-9F87-4272-8389-E8DAF44F8AE7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9839C8E0-0F74-4D17-A910-0BD09676343F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2C955F80-A667-4520-BBC8-8A9AF9612B15}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 3\RelicCoH3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [{6B973356-5F68-4C59-9CC1-569C8E851409}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 3\RelicCoH3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [TCP Query User{8A64BDB3-1CD2-493F-932A-665BB714535F}D:\epic\gtav\gtav\gta5.exe] => (Allow) D:\epic\gtav\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{F935E37C-896B-4F1D-B0B9-A0185033D0EE}D:\epic\gtav\gtav\gta5.exe] => (Allow) D:\epic\gtav\gtav\gta5.exe => No File
FirewallRules: [{9A795D8D-C84E-423D-A511-05E81BDBED07}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B65D0BDB-8891-4754-BDD0-8A1F7406F1AD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{423D7192-ECB4-4B5B-B474-D8F818ED7A7F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4D7DA458-C2CB-45C2-B1B7-F758714FD42F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{72C4A151-3F91-41FF-AAFC-E1CBA46CD03C}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{041B3749-B2C8-419F-9711-ED0E90C8D43B}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.34.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{80B835A2-9577-4F5D-A8FA-D8E9692918CF}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.34.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{619F993A-DDF4-4432-AE96-E1CC15AA732D}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.34.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{95B76147-951E-4F6B-AC8C-E7335318F987}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.34.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{541E20E8-F125-438C-9A8C-D9E2FF0C7855}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.68\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{438858E1-FAFD-4056-B158-4A9431AC5D5A}D:\xbox\gtav\gta5.exe] => (Allow) D:\xbox\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{9A1DB50B-70BF-4A35-989E-676366D474CE}D:\xbox\gtav\gta5.exe] => (Allow) D:\xbox\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{44CCAC29-0739-47BA-A290-BC790B28EA5C}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{B4AC59BF-68FD-4D9C-95DA-F32A1BE464E7}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [TCP Query User{5AE25822-D261-4066-A85F-E1ED5314EC80}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Allow) D:\xbox\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed?]
FirewallRules: [UDP Query User{18CCD2FB-4C89-469D-A9A4-BC5F91CD0116}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Allow) D:\xbox\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed?]
FirewallRules: [TCP Query User{C324EF2B-4C33-4027-8B18-36E7A224C7A1}D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{33AD400E-80E4-4AD4-BF5D-C662CC817A12}D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)

==================== Restore Points =========================

15-03-2025 23:26:34 Windows Update
15-03-2025 23:26:46 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (03/15/2025 10:39:33 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (03/15/2025 09:03:51 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (03/15/2025 08:58:36 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (03/15/2025 08:57:46 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (03/15/2025 08:45:34 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (03/15/2025 08:44:59 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (03/15/2025 08:44:49 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (03/15/2025 08:44:47 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220


System errors:
=============
Error: (03/15/2025 11:52:19 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}

Error: (03/15/2025 11:52:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (03/15/2025 11:52:19 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).

Error: (03/15/2025 11:52:19 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}

Error: (03/15/2025 11:52:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (03/15/2025 11:52:19 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).

Error: (03/15/2025 11:52:19 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{8F2BC96B-68C5-40E8-9CE1-368E3ACAC09B}

Error: (03/15/2025 11:52:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.


Windows Defender:
================
Date: 2025-03-15 21:29:24
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2025-03-13 11:59:58
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2025-02-24 20:41:08
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2025-02-14 10:21:17
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2025-02-11 21:58:33
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

CodeIntegrity:
===============
Date: 2025-03-15 23:29:40
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. FX505GM.307 05/25/2020
Motherboard: ASUSTeK COMPUTER INC. FX505GM
Processor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Percentage of memory in use: 56%
Total physical RAM: 16234.78 MB
Available physical RAM: 7038.4 MB
Total Virtual: 25450.78 MB
Available Virtual: 12537.9 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:237.42 GB) (Free:120.87 GB) (Model: WDC PC SN520 SDAPNUW-256G-1002) (Protected) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1863 GB) (Free:1325.07 GB) (Model: Samsung SSD 870 QVO 2TB) (Protected) NTFS

\\?\Volume{ce630175-c0cb-4232-a9dd-299ccc1282b1}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.13 GB) NTFS
\\?\Volume{b2371fa7-5808-4b0f-b22d-ae726f9a3693}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 864658EB)

Partition: GPT.

==================== End of Addition.txt =======================

Ještě smažeme:

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcvesses:
Task: {407E1879-1F5E-42B2-BA7F-53BCEF433805} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {E5AD57C0-9BC8-41F6-A364-B5CEA243AE82} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe (No File)
Task: {FBBAADE9-A1D6-4A88-B0FE-3FE3D8D75B0C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display => %systemroot%\system32\MusNotification.exe Display (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
C:\DumpStack.log.tmp
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5364]
FirewallRules: [{4D3C6ED0-DF42-4D22-83DA-70A271BB3DB7}] => (Allow) C:\Program Files\WindowsApps\msteams_24335.208.3315.1951_x64__8wekyb3d8bbwe\ms-teams.exe => No File
FirewallRules: [{2AAA6A9D-5A72-4C87-AD19-8E042ECC026E}] => (Allow) C:\Program Files\WindowsApps\msteams_24335.208.3315.1951_x64__8wekyb3d8bbwe\ms-teams.exe => No File
FirewallRules: [{F0BA20F2-CD6F-45C5-B02F-F587F79B5EBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16010.9126.2116.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe => No File
FirewallRules: [TCP Query User{8A64BDB3-1CD2-493F-932A-665BB714535F}D:\epic\gtav\gtav\gta5.exe] => (Allow) D:\epic\gtav\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{F935E37C-896B-4F1D-B0B9-A0185033D0EE}D:\epic\gtav\gtav\gta5.exe] => (Allow) D:\epic\gtav\gtav\gta5.exe => No File

EmptyTemp:
End

Uložte do C:\Users\laser\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

smazal jsem co jste psal. Ale nejakou dobu jsem nebyl u PC. jak se zapne chrome tak chodi neustale hlasky ze pc byl zavirovan atd. Je to otravne a je to pravdepodobne fake. Dole je vysledek mazani a pod to prilozim jeste novy frst scan.
dekuji moc




Fix result of Farbar Recovery Scan Tool (x64) Version: 01-04-2025
Ran by laser (20-04-2025 22:05:21) Run:1
Running from C:\Users\laser\Downloads
Loaded Profiles: laser & WsiAccount
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcvesses:
Task: {407E1879-1F5E-42B2-BA7F-53BCEF433805} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {E5AD57C0-9BC8-41F6-A364-B5CEA243AE82} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe (No File)
Task: {FBBAADE9-A1D6-4A88-B0FE-3FE3D8D75B0C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display => %systemroot%\system32\MusNotification.exe Display (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
C:\DumpStack.log.tmp
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5364]
FirewallRules: [{4D3C6ED0-DF42-4D22-83DA-70A271BB3DB7}] => (Allow) C:\Program Files\WindowsApps\msteams_24335.208.3315.1951_x64__8wekyb3d8bbwe\ms-teams.exe => No File
FirewallRules: [{2AAA6A9D-5A72-4C87-AD19-8E042ECC026E}] => (Allow) C:\Program Files\WindowsApps\msteams_24335.208.3315.1951_x64__8wekyb3d8bbwe\ms-teams.exe => No File
FirewallRules: [{F0BA20F2-CD6F-45C5-B02F-F587F79B5EBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16010.9126.2116.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe => No File
FirewallRules: [TCP Query User{8A64BDB3-1CD2-493F-932A-665BB714535F}D:\epic\gtav\gtav\gta5.exe] => (Allow) D:\epic\gtav\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{F935E37C-896B-4F1D-B0B9-A0185033D0EE}D:\epic\gtav\gtav\gta5.exe] => (Allow) D:\epic\gtav\gtav\gta5.exe => No File

EmptyTemp:
End
*****************

CloseProcvesses: => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{407E1879-1F5E-42B2-BA7F-53BCEF433805}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{407E1879-1F5E-42B2-BA7F-53BCEF433805}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Location\Notifications" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E5AD57C0-9BC8-41F6-A364-B5CEA243AE82}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E5AD57C0-9BC8-41F6-A364-B5CEA243AE82}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FBBAADE9-A1D6-4A88-B0FE-3FE3D8D75B0C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FBBAADE9-A1D6-4A88-B0FE-3FE3D8D75B0C}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 => moved successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D3C6ED0-DF42-4D22-83DA-70A271BB3DB7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2AAA6A9D-5A72-4C87-AD19-8E042ECC026E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0BA20F2-CD6F-45C5-B02F-F587F79B5EBD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8A64BDB3-1CD2-493F-932A-665BB714535F}D:\epic\gtav\gtav\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F935E37C-896B-4F1D-B0B9-A0185033D0EE}D:\epic\gtav\gtav\gta5.exe" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 164173622 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 850073099 B
Windows/system/drivers => 62406945 B
Edge => 0 B
Chrome => 1807070063 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 664476 B
NetworkService => 726550 B
laser => 1351130281 B
WsiAccount => 1351424975 B

RecycleBin => 0 B
EmptyTemp: => 5.2 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 20-04-2025 22:07:16)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 22:07:16 ====




Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-04-2025
Ran by laser (administrator) on DAVID (ASUSTeK COMPUTER INC. TUF Gaming FX505GM_FX505GM) (20-04-2025 22:15:01)
Running from C:\Users\laser\Downloads\FRST64.exe
Loaded Profiles: laser
Platform: Microsoft Windows 11 Home Version 24H2 26100.3775 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <3>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(Discord Inc. -> Discord Inc.) C:\Users\laser\AppData\Local\Discord\app-1.0.9188\Discord.exe <6>
(DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxEM.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <50>
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxext.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\AsusOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(services.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe
(services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_8559c34713c70ce4\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_3623bab62426ba87\Intel_PIE_Service.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Windows\System32\mfevtps.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_60e995a01594d69e\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek Computer Inc.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(sihost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee, LLC) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2503.1001.9.0_x64__8wekyb3d8bbwe\XboxPcTray.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2515.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee LLC) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (ASUSTek Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUSTeK COMPUTER INC\Asus Power Scheme\ASUSPowerScheme.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrl.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2503.1001.9.0_x64__8wekyb3d8bbwe\XboxPcApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2503.1001.9.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.296.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.5100.40.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37357584 2025-04-12] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4694624 2025-04-02] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Discord] => C:\Users\laser\AppData\Local\Discord\Update.exe [1526504 2024-09-04] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [MicrosoftEdgeAutoLaunch_68D9B7BDED78E42E32EDD98D937439AB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4419624 2025-04-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\135.0.7049.96\Installer\chrmstp.exe [2025-04-20] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {D33BE7A1-FAC8-47C9-8A4E-AB9F8C9D7444} - System32\Tasks\ASUS Display Control => C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrl.exe [4713440 2018-06-04] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {07AA90B3-B9AF-4DCC-BD5E-573325424DD7} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {BB48A1E0-E2C0-4A8C-86B6-DD79347A6E7E} - System32\Tasks\ASUS Power Scheme Service => C:\Program Files\ASUSTeK COMPUTER INC\Asus Power Scheme\AsusPowerScheme.exe [4463584 2018-06-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {BC8F6EBF-2201-4A64-8130-EC0F4EAD3021} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSoftwareManager\AsusUpdateChecker.exe [836040 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {06530565-7C3B-4206-AA94-0EF645AB99DD} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4415456 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {BFC88BA1-721D-44F2-925A-EC212A4FED47} - System32\Tasks\DSB Notification => C:\Program Files\ASUS\DSB Notification\DSBNotification.exe [782816 2018-05-11] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {52F3B7DB-4042-4F9A-A661-AD8AB0D6352F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem137.0.7129.0{B0C786EB-7A43-48DE-9CDE-787BD4E06E14} => C:\Program Files (x86)\Google\GoogleUpdater\137.0.7129.0\updater.exe [7375968 2025-04-17] (Google LLC -> Google LLC)
Task: {E83B0A35-8823-4921-BD70-39F56AFD795C} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\av\McAfee VirusScan\upgrade.exe [37909112 2018-01-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {E4917B10-2717-4DA0-A6EB-F9DAF13DC966} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [1965736 2017-12-12] (McAfee, Inc. -> McAfee, Inc.)
Task: {01F13DCB-D9F3-4E6C-B69E-8DBC47AF94F6} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {5BFF0FD0-0D81-42EF-BA8D-79C784BADCEE} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {DB48C914-216A-404A-9A16-9C9BF816A1ED} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [745296 2017-10-05] (McAfee, Inc. -> McAfee, Inc.)
Task: {C296D10E-2640-4BE9-8F1E-59138DAC491D} - System32\Tasks\Microsoft\Windows\AccountHealth\RecoverabilityToastTask => {B7F5B442-EBF8-46CD-9F0B-D8E45ED43492} C:\WINDOWS\system32\AccountHealth.dll [258048 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
Task: {35ECF191-DC09-419D-9870-901270CA2389} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B89E38BF-0E68-430A-A68A-F73D6D9E693B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4B2B2B73-A35A-42DF-A9F3-C56649041112} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5D4A6C7C-ECBC-4699-A7CD-5B4768C5E9E3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {841CB10C-7164-4D4A-A224-7E9E4915572E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {69910930-12B7-4FC5-8336-8F3DD5E32690} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {46CFC91B-7CFA-429E-ABDD-01FBEDE035D3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3297728 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B6DAD622-6081-44EA-B01B-BEF15AF3D2D0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [982464 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {CC6990F0-950C-45F7-A8EC-3D68C37403BA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {77B3F7C0-C76C-42C1-95C2-3FF826E43420} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {66662C3E-4A9A-46E0-9D02-4066F2BA1FBE} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [654784 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5FD8E8EE-4461-4AA3-B75F-E4DDCE65A506} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0EBAEF1-B070-4F43-ADE1-0924C9D1635F} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {3A68CECD-08E7-425E-ABB3-9A2397FE0282} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {038B3A1D-0E6E-4992-9082-FA153633B81B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {B6D5D421-6696-4F92-971E-354F3D910A2F} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3795286163-1351623110-3534515452-1001 => C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.051.0317.0003\OneDriveLauncher.exe [674624 2025-04-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7A4494E-1703-4600-9DE7-88BF210038A8} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [861984 2019-02-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{061b6c30-728b-47fc-97da-c65123570088}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2330bf5a-a3a5-4755-b267-c325861828b3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2330bf5a-a3a5-4755-b267-c325861828b3}\C4163756274633: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{dbced7d6-c2c7-47d9-80e0-8d2162094299}: [DhcpNameServer] 10.66.40.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default [2025-04-20]
Edge HomePage: Default -> hxxp://www.google.com
Edge StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
Edge Session Restore: Default -> is enabled.
Edge Extension: (McAfee® WebAdvisor) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2025-04-20]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-13]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Google Mail Checker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\glbpkcehjkihaknkjifkehdpjfngbdga [2025-01-28]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2025-04-16]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Edge relevant text changes) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-01-27]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx

FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default [2025-04-20]
CHR HomePage: Default -> mysearch.avg.com
CHR StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (AVG Secure Search) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2025-01-27]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-13]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Kontrola e-mailu Google) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2025-01-27]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-01-27]hxxps://clients2.google.com/service/update2/crx
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1 [2025-04-20]
CHR Notifications: Profile 1 -> hxxps://cvul3fe071bc739eg1cg.potentialconnection.co.in; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.tiktok.com
CHR Session Restore: Profile 1 -> is enabled.
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-25]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-04-20]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-01-27]hxxps://clients2.google.com/service/update2/crx
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\System Profile [2025-04-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\AsusAppService\AsusAppService.exe [1176040 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSDisplayCtrolService; C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe [16864 2018-06-04] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSoftwareManager\AsusSoftwareManager.exe [1401800 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\AsusOptimization\AsusOptimization.exe [206592 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSwitch\AsusSwitch.exe [652744 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4415456 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [599784 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3319424 2025-04-10] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [20276904 2025-03-10] (BattlEye Innovations e.K. -> )
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc. -> McAfee, Inc.)
R2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [223640 2019-09-03] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2025-01-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [965872 2025-01-28] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3064848 2025-04-12] (Epic Games Inc. -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [367064 2024-11-23] (Epic Games Inc. -> Epic Games, Inc.)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [302416 2018-06-29] (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
S4 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_8\McApExe.exe [730888 2018-05-17] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2017-09-27] (McAfee, Inc. -> McAfee, Inc.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.7.371.0\McCSPServiceHost.exe [2140888 2017-12-14] (McAfee, Inc. -> McAfee, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [359888 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [512976 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [475600 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-20] (McAfee, Inc. -> McAfee, Inc.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_60e995a01594d69e\Display.NvContainer\NVDisplay.Container.exe [1275568 2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1061528 2018-03-06] (McAfee, Inc. -> McAfee, Inc.)
R2 RefreshRateService; C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe [40672 2021-09-10] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [7327208 2025-03-10] (Rockstar Games, Inc. -> Rockstar Games)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSystemAnalysis\AsusSAIO.sys [51248 2025-02-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77216 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34488 2022-08-09] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [331168 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [496544 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [357792 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83952 2018-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [528288 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [948128 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [521104 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108432 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115104 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252832 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S3 ThermalFilter; C:\WINDOWS\System32\DriverStore\FileRepository\c_thermal.inf_amd64_732a53ed1662b707\ThermalFilter.sys [75376 2025-04-10] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [605576 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100744 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 wini3ctarget; C:\WINDOWS\System32\DriverStore\FileRepository\wini3ctarget.inf_amd64_bdb09ebda2834009\wini3ctarget.sys [75168 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
S0 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-04-20 22:14 - 2025-04-20 22:14 - 000714490 _____ C:\WINDOWS\system32\perfh005.dat
2025-04-20 22:14 - 2025-04-20 22:14 - 000153652 _____ C:\WINDOWS\system32\perfc005.dat
2025-04-20 22:05 - 2025-04-20 22:07 - 000006919 _____ C:\Users\laser\Downloads\Fixlog.txt
2025-04-20 22:03 - 2025-04-20 22:03 - 000000000 ____D C:\Users\laser\Downloads\FRST-OlderVersion
2025-04-13 04:47 - 2025-04-13 04:47 - 000000000 ____D C:\WINDOWS\system32\AccountHealthAssets
2025-04-13 04:47 - 2025-04-13 04:47 - 000000000 ____D C:\inetpub
2025-04-12 10:42 - 2025-04-12 10:42 - 000000000 ____D C:\Users\laser\AppData\Roaming\KF2
2025-04-12 08:52 - 2025-04-20 22:07 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-04-10 12:51 - 2025-04-10 12:51 - 000029042 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-04-10 12:51 - 2025-04-10 12:51 - 000029042 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-03-28 19:30 - 2025-03-28 19:30 - 000000000 ____D C:\ProgramData\dbg

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-04-20 22:15 - 2025-03-16 01:45 - 000033993 _____ C:\Users\laser\Downloads\FRST.txt
2025-04-20 22:15 - 2025-03-16 01:45 - 000000000 ____D C:\FRST
2025-04-20 22:14 - 2025-01-28 00:52 - 000000000 ____D C:\Users\laser\AppData\Local\D3DSCache
2025-04-20 22:14 - 2025-01-28 00:32 - 001692324 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-04-20 22:14 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2025-04-20 22:13 - 2025-01-28 02:15 - 000000000 ____D C:\Program Files (x86)\Steam
2025-04-20 22:13 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-04-20 22:09 - 2025-01-28 11:40 - 000000000 ____D C:\Users\laser\AppData\Roaming\discord
2025-04-20 22:09 - 2025-01-28 09:24 - 000000000 ____D C:\ProgramData\NVIDIA
2025-04-20 22:09 - 2025-01-28 00:30 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2025-04-20 22:09 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-04-20 22:08 - 2025-01-28 11:40 - 000000000 ____D C:\Users\laser\AppData\Local\Discord
2025-04-20 22:07 - 2025-01-28 09:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-04-20 22:07 - 2025-01-28 09:28 - 000000288 _____ C:\pefdata.dat
2025-04-20 22:07 - 2025-01-28 09:23 - 000012288 ___SH C:\DumpStack.log.tmp
2025-04-20 22:07 - 2025-01-28 00:55 - 000000000 ___RD C:\Users\laser\OneDrive
2025-04-20 22:07 - 2025-01-28 00:52 - 000000000 __SHD C:\Users\laser\IntelGraphicsProfiles
2025-04-20 22:07 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-04-20 22:07 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-04-20 22:07 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-04-20 22:07 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-04-20 22:06 - 2024-04-01 09:21 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-04-20 22:03 - 2025-03-16 01:44 - 002404864 _____ (Farbar) C:\Users\laser\Downloads\FRST64.exe
2025-04-20 21:38 - 2025-01-28 09:23 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-04-20 21:38 - 2025-01-28 09:23 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-04-20 21:38 - 2025-01-28 00:57 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-04-20 21:38 - 2025-01-28 00:57 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-04-20 21:34 - 2025-01-28 12:09 - 000000000 ____D C:\Users\laser\AppData\Local\Roblox
2025-04-16 09:25 - 2025-01-28 02:05 - 000000000 ____D C:\Users\laser\AppData\Roaming\EasyAntiCheat
2025-04-16 00:32 - 2025-03-19 21:47 - 000000000 ____D C:\Users\laser\AppData\Local\Battle.net
2025-04-15 21:47 - 2025-01-28 00:52 - 000000000 ____D C:\Users\laser\AppData\Local\Packages
2025-04-15 21:47 - 2025-01-28 00:29 - 000000000 ____D C:\ProgramData\Packages
2025-04-15 20:16 - 2025-03-13 12:50 - 000000000 ____D C:\Users\laser\AppData\Local\CrashDumps
2025-04-14 19:11 - 2025-01-28 09:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-04-13 14:09 - 2025-01-28 00:57 - 000000000 ____D C:\Users\laser\AppData\Local\PlaceholderTileLogoFolder
2025-04-13 13:33 - 2025-02-15 17:56 - 000000000 ____D C:\Users\laser\AppData\Roaming\.minecraft
2025-04-13 04:49 - 2025-01-28 09:23 - 000297176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-04-13 04:47 - 2025-01-28 00:13 - 000000000 ____D C:\WINDOWS\InboxApps
2025-04-13 04:47 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-04-13 04:47 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-04-13 04:47 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-04-13 04:47 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemApps
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-04-13 04:47 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-04-13 04:47 - 2024-04-01 09:21 - 000000000 ____D C:\WINDOWS\servicing
2025-04-12 10:44 - 2025-01-28 01:03 - 000000000 ____D C:\Users\laser\AppData\Local\Epic Games
2025-04-12 10:42 - 2025-01-28 02:53 - 000000000 ____D C:\Users\laser\Documents\My Games
2025-04-12 09:07 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-04-12 08:49 - 2025-01-28 00:55 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-04-12 08:49 - 2025-01-28 00:55 - 000003576 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-04-12 08:49 - 2025-01-28 00:55 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-04-12 08:49 - 2025-01-28 00:55 - 000002383 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-04-10 23:23 - 2025-03-19 21:47 - 000000000 ____D C:\Users\laser\AppData\Roaming\Battle.net
2025-04-10 19:46 - 2025-01-28 11:48 - 000000000 ____D C:\XboxGames
2025-04-10 14:08 - 2025-01-28 12:09 - 000001397 _____ C:\Users\laser\Desktop\Roblox Player.lnk
2025-04-10 14:08 - 2025-01-28 12:09 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2025-04-10 14:07 - 2025-01-28 12:09 - 000001225 _____ C:\Users\laser\Desktop\Roblox Studio.lnk
2025-04-10 12:51 - 2025-01-28 09:25 - 003352064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-04-10 12:33 - 2018-11-17 02:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-04-10 12:23 - 2025-01-28 00:30 - 000003716 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{4E757026-A521-4B61-955B-EF04C6FA9440}
2025-04-10 12:23 - 2025-01-28 00:30 - 000003592 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{39DFE86E-07E4-493B-84B5-ADDCD5027974}
2025-04-04 21:03 - 2025-03-19 21:47 - 000000000 ____D C:\Program Files (x86)\Battle.net
2025-04-04 20:58 - 2025-01-28 11:40 - 000002249 _____ C:\Users\laser\Desktop\Discord.lnk

==================== Files in the root of some directories ========

2025-03-10 19:49 - 2025-03-10 19:49 - 000007605 _____ () C:\Users\laser\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================





Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-04-2025
Ran by laser (20-04-2025 22:16:55)
Running from C:\Users\laser\Downloads
Microsoft Windows 11 Home Version 24H2 26100.3775 (X64) (2025-01-27 22:29:34)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3795286163-1351623110-3534515452-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3795286163-1351623110-3534515452-503 - Limited - Disabled)
Guest (S-1-5-21-3795286163-1351623110-3534515452-501 - Limited - Disabled)
laser (S-1-5-21-3795286163-1351623110-3534515452-1001 - Administrator - Enabled) => C:\Users\laser
WDAGUtilityAccount (S-1-5-21-3795286163-1351623110-3534515452-504 - Limited - Disabled)
WsiAccount (S-1-5-21-3795286163-1351623110-3534515452-1002 - Limited - Disabled) => C:\Users\WsiAccount

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Asus Dispslay Control Service (HKLM\...\{0F0328FA-E13C-4897-89B1-7A08CBF6A938}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
ASUS GiftBox Service (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 3.2.3.0 - ASUSTeK COMPUTER INC.)
ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.1.10.0 - ASUSTeK COMPUTER INC.)
Asus Power Scheme (HKLM\...\{81E49E2E-C0A5-471E-854F-82125D30A828}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Discord) (Version: 1.0.9059 - Discord Inc.)
DSB Notification (HKLM\...\{A82D01C4-0F9C-4FD6-9E2F-EDBD1E9826DC}) (Version: 1.2.0 - ASUSTeK COMPUTER INC.)
Epic Games Launcher (HKLM-x32\...\{C5C3EE71-4047-4144-946E-18D500510CB5}) (Version: 1.3.128.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{5122B8BC-D6DF-48FF-8D4E-15A63EEC5073}) (Version: 2.8.1 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 135.0.7049.96 - Google LLC)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.4.11000.6436 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1137 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{B39E9D6B-906D-47C0-8FA1-833987DA6F63}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{CE08DF9B-FD93-4667-8D88-55A216DC6669}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{BEB5BAB5-60E3-46D3-BC68-748807F35B8E}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.5.0.1027 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{49F223FE-D3BD-4FB9-96BF-41361123804A}) (Version: 16.5.0.1027 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{72759DFB-9080-46A5-ACCF-5BA26A6FF3FD}) (Version: 30.100.1727.1 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{2D79E334-B178-45B9-A2A6-7A60A084C268}) (Version: 16.8.0.1000 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{0459ef97-6cc2-4a78-a664-516669c498e2}) (Version: 20.70.0.0u - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{DA51C5EF-89BF-40D5-9D33-02D3B4FB11C1}) (Version: 20.70.0.1716 - Intel Corporation) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R8 - McAfee, Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 135.0.3179.85 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 135.0.3179.85 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\OneDriveSetup.exe) (Version: 25.051.0317.0003 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{66C00D72-5E34-495E-A4A1-1A31D7BE2FA7}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{632D85A6-B94C-440E-B565-26F73CF778D3}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Graphics Driver 398.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.35 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.18.0628 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0628 - NVIDIA Corporation)
RefreshRateService (HKLM-x32\...\{7E5E84CB-B190-4658-A4DC-166779C329D1}) (Version: 2.1.0 - ASUSTeK COMPUTER INC.)
Roblox Player for laser (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.101.2370_S02_ETU2 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.52 - Rockstar Games)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.51 - Ghisler Software GmbH)

Packages:
=========
5A894077.McAfeeSecurity -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2025-01-28] (McAfee LLC.)
ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.2.4.0_x64__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.)
ASUS Keyboard Hotkeys -> C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.) [Startup Task]
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-13] (Microsoft Windows)
Deep Rock Galactic -> C:\Program Files\WindowsApps\CoffeeStainStudios.DeepRockGalactic_39.1.48280.0_x64__496a1srhmar9w [2025-03-14] (Coffee Stain Publishing)
DTS Headphone:X v1 -> C:\Program Files\WindowsApps\dtsinc.dtsheadphonexv1_2.0.0.0_x64__t5j2fzbtdg37r [2025-01-28] (DTS, Inc.)
eManual -> C:\Program Files\WindowsApps\b9eced6f.emanual_2.0.3.0_x86__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.)
Forza Horizon 5 -> C:\Program Files\WindowsApps\Microsoft.624F8B84B80_3.681.890.0_x64__8wekyb3d8bbwe [2025-03-14] (Microsoft Studios)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\appup.intelgraphicscontrolpanel_3.3.0.0_x64__8j3eq9eme6ctt [2025-01-28] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.42.0_x64__w1wdnht996qgy [2025-02-23] (LinkedIn) [Startup Task]
MechWarrior 5: Mercenaries -> C:\Program Files\WindowsApps\PiranhaGamesInc.MechWarrior5Mercenaries_1.361.1290.0_x64__skpx0jhaqqap2 [2025-04-13] (Piranha Games Inc.)
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2025-01-28] (Microsoft Corp.)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.18623.20178.0_x86__8wekyb3d8bbwe [2025-04-12] (Microsoft Corporation)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.296.0_x64__8wekyb3d8bbwe [2025-03-23] (Microsoft Corporation)
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.7301.0_x64__8wekyb3d8bbwe [2025-04-12] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.2.2.0_x64__8wekyb3d8bbwe [2025-04-10] (Microsoft Studios)
Minecraft: Java Edition -> C:\Program Files\WindowsApps\Microsoft.MinecraftJavaEdition_1.0.5.0_x64__8wekyb3d8bbwe [2025-04-10] (Microsoft Studios)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.35.0_x64__qmba6cd70vzyy [2025-03-28] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\nvidiacorp.nvidiacontrolpanel_8.1.967.0_x64__56jybvy8sckqj [2025-01-28] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.169.0_x64__dt26b99r8h8gj [2025-01-28] (Realtek Semiconductor Corp)
Warhammer 40,000: Darktide -> C:\Program Files\WindowsApps\FatsharkAB.Warhammer40000DarktideNew_1.7.3781.0_x64__hwm6pnepa3ng2 [2025-04-20] (Fatshark AB)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2515.7.0_x64__cv1g1gvanyjgm [2025-04-20] (WhatsApp Inc.) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_60e995a01594d69e\nvshext.dll [2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\laser\Desktop\asd - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"

==================== Loaded Modules (Whitelisted) =============

2025-01-28 02:15 - 2024-12-03 22:40 - 005378048 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavcodec-61.dll
2025-01-28 02:15 - 2024-12-03 22:40 - 000875008 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavfilter-10.dll
2025-01-28 02:15 - 2024-12-03 22:40 - 001674240 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavformat-61.dll
2025-01-28 02:15 - 2024-12-03 22:40 - 001640960 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libavutil-59.dll
2025-01-28 02:15 - 2024-12-03 22:40 - 000630272 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libswresample-5.dll
2025-01-28 02:15 - 2024-12-03 22:40 - 001092608 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Steam\libswscale-8.dll
2018-12-03 23:19 - 2018-12-03 23:19 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 01:38 - 2018-04-12 01:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\laser\AppData\Local\Packages\Microsoft.GamingApp_8wekyb3d8bbwe\LocalState\wallpaper\2030093255_52.png
HKU\S-1-5-21-3795286163-1351623110-3534515452-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) #2 -> bthpan.sys
Wi-Fi: Intel(R) Wireless-AC 9560 160MHz -> Netwtw08.sys
Ethernet 2: Realtek PCIe GbE Family Controller #2 -> rt640x64.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2C3E84F8-B9AD-4913-B8E1-2BE82C12DA5C}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4980FB51-B7C7-4E41-B667-BD5BCB93B278}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B99805F9-70B1-4DAF-A6C0-55553763332B}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{21A25D2E-214D-4E71-8E8E-E24F17A2BDBD}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{B84B87AD-5BF1-49DD-95CC-48D016378DEB}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{007156DD-4E39-4D0A-91A1-6CFEF61E9762}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{F480E729-49D0-43D0-B5A5-24ECC0F9B7BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F27B0E50-AA75-4477-B76A-8E8E7F302706}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9F388178-ACCA-41B1-9EAB-BF4742EE1F54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C34037D5-E6CF-4E19-9570-F775F23CE892}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{92CE43F7-5D14-4CFB-A5D5-68F3B384A3A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DEAD6B8E-83D6-4235-B764-1179C2983B0E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2B0052A2-E874-44AD-8F6E-07A7AB980469}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F573971E-FA41-4FD8-85DE-97CCFA265FA0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9CD24817-9F87-4272-8389-E8DAF44F8AE7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9839C8E0-0F74-4D17-A910-0BD09676343F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2C955F80-A667-4520-BBC8-8A9AF9612B15}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 3\RelicCoH3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [{6B973356-5F68-4C59-9CC1-569C8E851409}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 3\RelicCoH3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [TCP Query User{438858E1-FAFD-4056-B158-4A9431AC5D5A}D:\xbox\gtav\gta5.exe] => (Allow) D:\xbox\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{9A1DB50B-70BF-4A35-989E-676366D474CE}D:\xbox\gtav\gta5.exe] => (Allow) D:\xbox\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{5AE25822-D261-4066-A85F-E1ED5314EC80}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Allow) D:\xbox\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed?]
FirewallRules: [UDP Query User{18CCD2FB-4C89-469D-A9A4-BC5F91CD0116}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Allow) D:\xbox\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed?]
FirewallRules: [TCP Query User{C324EF2B-4C33-4027-8B18-36E7A224C7A1}D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{33AD400E-80E4-4AD4-BF5D-C662CC817A12}D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{01776A0B-87F8-4413-AB82-851CEA144F0D}C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe] => (Allow) C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe (Access Denied) [File not signed?]
FirewallRules: [UDP Query User{1579E4E6-AC2D-4488-81BE-D3B0E8CBD113}C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe] => (Allow) C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe (Access Denied) [File not signed?]
FirewallRules: [{EB94567E-1375-4849-B9F6-0DC83D4C7E0B}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB) [File not signed]
FirewallRules: [{BF9D2EC6-02A7-4F2E-BF77-0E18D580A956}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB) [File not signed]
FirewallRules: [{D56EB322-2A33-4298-8AFA-8A1276E5C1B0}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.35.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{6A4FD9F1-AD70-44AB-9BE1-3BDF71EF9317}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.35.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{DD0E79E3-56E2-4F28-95F9-E37FA791DD9E}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.35.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{3918AFC3-58F7-42E3-AC29-0F75A238CE52}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.35.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{195C56C0-2782-4472-8065-E75D7BB69E06}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9517308A-C982-4DA9-9266-A5887D171B6F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DC1A27F0-7556-4129-9155-D4993465875D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A18843CD-27F3-47C4-8F31-A2226D11836C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.138.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{6C8FB92A-B6D9-48D9-9E12-6FA255AC2FFB}D:\xbox\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\xbox\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [UDP Query User{CE2D49F9-1D7D-4321-BD91-F1FBFCFE3986}D:\xbox\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\xbox\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{1A2E76C9-37FE-41B2-8D62-778915FB7CC7}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{71DDCCC0-4259-475D-8293-FFABA8E2A258}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\135.0.3179.85\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0DF38592-C0EC-4734-B682-26A1DD046A83}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_e327b78dfa89bb15\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)

==================== Restore Points =========================

15-04-2025 17:26:59 Windows Update
20-04-2025 21:40:32 Windows Update
20-04-2025 21:40:56 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (04/20/2025 10:13:08 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (04/20/2025 10:13:07 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (04/20/2025 10:07:15 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DAVID$ přes https://INTC-KeyId-17a00575d05e58e38812 ... s/Aik/scep se nepovedla:

GetCACaps

Metoda: GET(47ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (04/20/2025 10:07:08 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (04/20/2025 09:42:09 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (04/20/2025 09:41:36 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (04/20/2025 09:34:54 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220

Error: (04/20/2025 09:31:55 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220


System errors:
=============
Error: (04/20/2025 10:09:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (04/20/2025 10:09:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).

Error: (04/20/2025 10:07:16 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}

Error: (04/20/2025 10:07:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (04/20/2025 10:07:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).

Error: (04/20/2025 10:07:16 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}

Error: (04/20/2025 10:07:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (04/20/2025 10:07:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).


Windows Defender:
================
Date: 2025-04-15 17:03:21
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2025-04-14 12:57:05
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2025-04-05 01:52:19
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2025-04-05 00:12:00
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2025-04-04 23:39:05
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

CodeIntegrity:
===============
Date: 2025-04-20 22:17:25
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume5\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2025-04-20 22:09:58
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2025-04-20 22:07:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. FX505GM.307 05/25/2020
Motherboard: ASUSTeK COMPUTER INC. FX505GM
Processor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Percentage of memory in use: 52%
Total physical RAM: 16234.78 MB
Available physical RAM: 7763.21 MB
Total Virtual: 26474.78 MB
Available Virtual: 16879.8 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:237.42 GB) (Free:116.74 GB) (Model: WDC PC SN520 SDAPNUW-256G-1002) (Protected) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1863 GB) (Free:1100.5 GB) (Model: Samsung SSD 870 QVO 2TB) (Protected) NTFS

\\?\Volume{ce630175-c0cb-4232-a9dd-299ccc1282b1}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.1 GB) NTFS
\\?\Volume{b2371fa7-5808-4b0f-b22d-ae726f9a3693}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 864658EB)

Partition: GPT.

==================== End of Addition.txt =======================

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5938]
FirewallRules: [TCP Query User{DB8CEF04-8830-44BB-A890-4465E2E0C63F}D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe] => (Allow) D:\xbox\starcraft ii\versions\base92440\sc2_x64.exe => No File
FirewallRules: [UDP Query User{F5A41E63-A803-44C4-86BC-505EC9251BD6}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe] => (Allow) D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe => No File
FirewallRules: [TCP Query User{6F48F351-9D6F-4F1A-BE81-399913F3B74D}D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe] => (Allow) D:\epic\dyinglight2stayhuman\ph\work\bin\x64\dyinglightgame_x64_rwdi.exe => No File
FirewallRules: [UDP Query User{264BF4DF-A016-4B54-99FA-54E9A9793830}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Block) D:\xbox\forza horizon 5\content\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{DB96AB58-EDE4-4FA0-8062-E435AC988DC7}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Block) D:\xbox\forza horizon 5\content\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{70202E6D-924C-4C38-8EAC-A92A5E283871}C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe] => (Allow) C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe => No File
FirewallRules: [TCP Query User{7842496D-DF95-4FE1-BCE9-A2199C8EADAA}C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe] => (Allow) C:\xboxgames\warhammer 40,000- darktide\content\binaries\darktide.exe => No File
FirewallRules: [{007156DD-4E39-4D0A-91A1-6CFEF61E9762}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe => No File

EmptyTemp:
End

Uložte do C:\Users\laser\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.