Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

spouštění větráčku a záhadné stahování souborů

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Doomis
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 27 kvě 2014 18:41

spouštění větráčku a záhadné stahování souborů

#1 Příspěvek od Doomis »

Dobrý den,
prosil bych o kontrolu NB, jestli se mi tam něco nestáhlo. Občas vidím ve složce staženo nějaké soubory, které po chvilce zmizí. Najednou i větráček víc pracuje, ikdyž na NB nic nedělám. Děkuji moc za pomoc.
Vkládám log z FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2025
Ran by Domin (administrator) on DOMINIK (ASUSTeK COMPUTER INC. ASUS TUF Dash F15 FX517ZM_FX517ZM) (18-12-2025 07:47:21)
Running from C:\Users\Domin\Desktop\FRST64.exe
Loaded Profiles: Domin
Platform: Microsoft Windows 11 Home Version 25H2 26200.7462 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSOptimization\AsusOSD.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <4>
(C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe ->) (UBISOFT ENTERTAINMENT INC. -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe <6>
(C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\DenoiseAIPlugin\ArmouryCrate.DenoiseAI.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Programy\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_helper.exe
(explorer.exe ->) (5E725061-EB4B-47FD-B309-0B1348500865 -> C-Media Electronics, Inc.) C:\Program Files\WindowsApps\e2b691c9.c-media6549audiocontrolpanel_1.0.37.0_x64__y9kx1840xc4zw\VFS\ProgramFilesX86\C-Media Audio Control Panel\CMediaAudioControlPanel.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <15>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files\Programy\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\1.2.40\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\Aura Wallpaper Service\AuraWallpaperService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\ASUSACCI\ArmouryCrateControlInterface.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (C-MEDIA ELECTRONICS INC. -> C-Media Electronics, Inc.) C:\Windows\System32\DriverStore\FileRepository\cm6549_hsa.inf_amd64_cd72af0a563ecf3a\C-MediaAudioService.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_f99162a78d742d5a\DAX3API.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\Programy\PDF24\pdf24.exe <2>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_12a05294eb98ea3c\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_53e924ac91f08adf\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_e78d3557500c42db\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a20fccc4824e3254\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_59a700807e83a6f2\Intel_PIE_Service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\GameInputSvc.exe <2>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_6963c3ad1eccbcde\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ) C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_6.3.9.0_x64__qmba6cd70vzyy\ArmouryCrate.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Display Control\ASUSSmartDisplayControl.exe
(svchost.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS Hotplug Controller\AsHotplugCtrl.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.179.4.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(UBISOFT ENTERTAINMENT INC. -> Ubisoft) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [PDF24] => C:\Program Files\Programy\PDF24\pdf24.exe [684256 2025-09-15] (Geek Software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-06-21] (Adobe Inc. -> )
HKLM-x32\...\Run: [ASUS Smart Display Control] => C:\Program Files (x86)\ASUS\ASUS Smart Display Control\ASUSSmartDisplayControl.exe [178840 2024-03-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
HKU\S-1-5-21-1810987290-2590352904-1031025447-1001\...\Run: [Steam] => C:\Program Files\Programy\Steam\steam.exe [4700824 2025-11-22] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1810987290-2590352904-1031025447-1001\...\Run: [MicrosoftEdgeAutoLaunch_F3A703D7D352727854D658D2C6E9CE48] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4228688 2025-12-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1810987290-2590352904-1031025447-1001\...\Policies\Explorer: []
HKLM\...\Print\Monitors\Bullzip PDF Print Monitor: C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll [221696 2024-07-15] (Bullzip) [File not signed]

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {C7267BB8-58F6-4C0F-9CCA-B75CA8CB0578} - System32\Tasks\ASUS Device Check => C:\Program Files\ASUS\ASUS Device Check\AsDeviceCheck.exe [171128 2022-08-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {73F2CA30-E050-43BC-BA0C-4C4483AD180B} - System32\Tasks\ASUS Hotplug Controller => C:\Program Files\ASUS\ASUS Hotplug Controller\AsHotplugCtrl.exe [285416 2021-12-07] (ASUSTEK COMPUTER INCORPORATION -> ASUSTeK Computer Inc.)
Task: {37ED1367-B80A-4B6A-AC1D-DD493B4450CE} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSOptimization\AsusHotkey.exe [349744 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {01FD319F-2F8B-4BBF-9819-51B5764B6DDA} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSoftwareManager\AsusUpdateChecker.exe [845872 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {3DF15F1A-5D97-431E-A111-50B610327399} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [401304 2025-09-10] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {CE1DFF7A-B7A7-4D46-A6FD-37D9B778DD48} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\TaskSchedulerTool_ArmourySocketServer.exe [120728 2025-09-10] (ASUSTeK COMPUTER INC. -> TODO: <公司名稱>)
Task: {EFAA20BA-D9A2-4A77-93E4-943A659FBA75} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-01-05] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {9FD82D4B-4EC8-4391-9888-030EBBA700C2} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-01-05] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {88C8D40D-13E2-4F18-A006-D33FDDA98101} - System32\Tasks\ASUS\Aura Wallpaper Service => C:\Program Files\ASUS\Aura Wallpaper Service\Aura Wallpaper Service.exe [2415208 2025-07-11] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {CF6FA53A-495D-4140-89EF-1E4851982A95} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {17E9C003-7E3C-4D33-8393-C8BBCC0F8A11} - System32\Tasks\ASUSSmartDisplayControl => C:\Program Files (x86)\ASUS\ASUS Smart Display Control\ASUSSmartDisplayControl.exe [178840 2024-03-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {3E4495EC-B6BC-4F00-9F23-318F12E134B5} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4471344 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {9423CF0D-171C-4F5D-A9D6-7FCE1F21FF2B} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {EEAF411E-2FCD-4E6D-8117-0807C8DECDDA} - System32\Tasks\Microsoft\Windows\Setup\PITRTask => {093cb270-c282-4c22-b2ea-7d2bf1c30bbf} C:\WINDOWS\system32\oobe\PITRTask.dll [118784 2025-12-02] (Microsoft Windows -> Microsoft Corporation)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {3FE3E810-5CB8-44F5-9235-C285D755F4A7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.5-0\MpCmdRun.exe [1803016 2025-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9BF2D233-1F52-4024-AB38-9839697CF2B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.5-0\MpCmdRun.exe [1803016 2025-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9CD796A4-2220-4C8D-87D3-4C8F9EA91799} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.5-0\MpCmdRun.exe [1803016 2025-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5D5C1659-048B-44A5-A49E-92DB6321E9CA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.5-0\MpCmdRun.exe [1803016 2025-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3C82B386-940C-436B-80AB-DA98EB47FD0E} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3324528 2025-10-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {53397244-D235-47A1-A09F-66A1E9A0F9A2} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2023250797-1762292065-965675215-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File) <==== ATTENTION
Task: {2F0D94D7-F929-4864-B104-7E2CD5B87C71} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1810987290-2590352904-1031025447-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2025-12-02] (Microsoft Windows -> Microsoft Corporation)
Task: {BE7F3BE4-0C4E-4727-BF37-AF1BE2574AD5} - System32\Tasks\Ubisoft\Ubisoft Connect Background Update => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe [17166008 2025-12-12] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{15cd5ba9-2595-49d2-9d1e-ebb9e940a5a9}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{55a18ea8-4d1b-4810-abd4-2c57094df597}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{e3a0d289-b30b-4171-920f-16211138b93c}: [DhcpNameServer] 185.147.250.13 185.147.250.14

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Domin\AppData\Local\Microsoft\Edge\User Data\Default [2025-12-18]
Edge Extension: (Dokumenty Google offline) - C:\Users\Domin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-24]
Edge Extension: (Edge relevant text changes) - C:\Users\Domin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-30]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ArmouryCrateControlInterface; C:\WINDOWS\System32\ASUSACCI\ArmouryCrateControlInterface.exe [212184 2025-09-01] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ArmouryCrateService; C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.Service.exe [444520 2025-12-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-01-05] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\AsusAppService\AsusAppService.exe [1183792 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\1.2.40\AsusCertService.exe [497560 2025-08-21] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-01-05] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSOptimization\AsusOptimization.exe [626224 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSoftwareManager\AsusSoftwareManager.exe [1412656 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSwitch\AsusSwitch.exe [652848 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4471344 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [1436208 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 Aura Wallpaper Service; C:\Program Files\ASUS\Aura Wallpaper Service\AuraWallpaperService.exe [598632 2025-07-11] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 C-MediaAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\cm6549_hsa.inf_amd64_cd72af0a563ecf3a\C-MediaAudioService.exe [299976 2022-08-10] (C-MEDIA ELECTRONICS INC. -> C-Media Electronics, Inc.)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_f99162a78d742d5a\DAX3API.exe [2732672 2024-09-03] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_12a05294eb98ea3c\ipfsvc.exe [544896 2022-07-13] (Intel Corporation -> Intel Corporation)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [19225184 2025-02-20] (Electronic Arts, Inc. -> Electronic Arts)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_uf.exe [2773616 2022-07-13] (Intel Corporation -> Intel Corporation)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [5063064 2025-11-20] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.5-0\MpDefenderCoreService.exe [2063328 2025-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_6963c3ad1eccbcde\Display.NvContainer\NVDisplay.Container.exe [1275624 2025-10-30] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PDF24; C:\Program Files\Programy\PDF24\pdf24.exe [684256 2025-09-15] (Geek Software GmbH -> geek software GmbH)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [7334888 2025-09-09] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [2715240 2025-12-01] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 UpcElevationService; C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher Core\UpcElevationService.exe [351928 2025-12-12] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.5-0\NisSrv.exe [4426832 2025-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.5-0\MsMpEng.exe [290704 2025-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ACSEHIDRemap; C:\WINDOWS\System32\drivers\ACSEHIDRemap.sys [135160 2025-09-29] (WDKTestCert Ken,133462420546156706 -> )
R3 ACSEVirtualBus; C:\WINDOWS\System32\drivers\ACSEVirtualBus.sys [47088 2025-09-29] (WDKTestCert Ken,133462420546156706 -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [60040 2025-08-20] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_2be525c42dff92ab\AsusPTPFilter.sys [123456 2022-06-06] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSystemAnalysis\AsusSAIO.sys [51296 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSOptimization\AsusWmiAcpi.sys [50424 2025-11-11] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_e64afe811c7e4662\e1d.sys [608464 2022-07-06] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_0e92b4646ab70162\iaLPSS2_GPIO2_ADL.sys [150624 2022-07-06] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_35ed2fd5a51c2bc2\iaLPSS2_I2C_ADL.sys [220256 2022-07-06] (Intel Corporation -> Intel Corporation)
S3 iaLPSS2_SPI_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_adl.inf_amd64_a8eb11f842d6a043\iaLPSS2_SPI_ADL.sys [171632 2022-06-01] (Intel Corporation -> Intel Corporation)
S3 iaLPSS2_UART2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_adl.inf_amd64_cafb511c07eb2595\iaLPSS2_UART2_ADL.sys [329320 2022-06-01] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1600144 2022-07-06] (Intel Corporation -> Intel Corporation)
R3 IGO_VSD; C:\WINDOWS\system32\drivers\igovsd.sys [43376 2022-06-24] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88776 2022-06-28] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_2c4217605fff2443\ipf_acpi.sys [87152 2022-07-13] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_cpu.sys [80496 2022-07-13] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_lf.sys [441968 2022-07-13] (Intel Corporation -> Intel Corporation)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333192 2025-11-19] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [293016 2025-10-30] (NVIDIA Corporation -> NVIDIA Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21928 2025-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [635272 2025-12-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102792 2025-12-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-12-18 07:47 - 2025-12-18 07:47 - 000027878 _____ C:\Users\Domin\Desktop\FRST.txt
2025-12-18 07:47 - 2025-12-18 07:47 - 000000000 ____D C:\FRST
2025-12-18 07:45 - 2025-12-18 07:45 - 002444288 _____ (Farbar) C:\Users\Domin\Desktop\FRST64.exe
2025-12-17 22:26 - 2025-12-17 22:26 - 005027611 _____ C:\Users\Domin\Downloads\C.3-Koordinační situace 250-20032024.dwg
2025-12-17 20:28 - 2025-12-17 20:28 - 000714520 _____ C:\WINDOWS\system32\perfh005.dat
2025-12-17 20:28 - 2025-12-17 20:28 - 000153682 _____ C:\WINDOWS\system32\perfc005.dat
2025-12-12 20:39 - 2025-12-12 20:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Ubisoft
2025-12-02 22:18 - 2025-12-02 22:18 - 000000000 ____D C:\WINDOWS\system32\NarratorMCAT
2025-12-02 21:35 - 2025-12-17 22:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-12-02 21:27 - 2025-12-02 21:27 - 000035602 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-12-02 21:27 - 2025-12-02 21:27 - 000035602 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-12-02 06:26 - 2025-12-17 20:28 - 001692524 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-12-02 06:26 - 2025-12-02 06:26 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2025-12-02 06:22 - 2025-12-18 07:46 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2025-12-02 06:22 - 2025-12-15 19:19 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-12-02 06:22 - 2025-12-15 19:19 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-12-02 06:22 - 2025-12-12 21:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2025-12-02 06:22 - 2025-12-12 21:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-12-02 06:22 - 2025-12-12 21:31 - 000003310 _____ C:\WINDOWS\system32\Tasks\ASUSSmartDisplayControl
2025-12-02 06:22 - 2025-12-12 21:25 - 000004132 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2025-12-02 06:22 - 2025-12-12 21:25 - 000003756 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3
2025-12-02 06:22 - 2025-12-02 06:22 - 000003280 _____ C:\WINDOWS\system32\Tasks\Optimize Push Notification Data File-S-1-5-21-1810987290-2590352904-1031025447-1001
2025-12-02 06:22 - 2025-12-02 06:22 - 000003010 _____ C:\WINDOWS\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-12-02 06:22 - 2025-12-02 06:22 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2023250797-1762292065-965675215-500
2025-12-02 06:22 - 2025-12-02 06:22 - 000002490 _____ C:\WINDOWS\system32\Tasks\ASUS Hotplug Controller
2025-12-02 06:22 - 2025-12-02 06:22 - 000002442 _____ C:\WINDOWS\system32\Tasks\ASUS Device Check
2025-12-02 06:22 - 2025-12-02 06:22 - 000000020 ___SH C:\Users\Domin\ntuser.ini
2025-12-02 06:22 - 2025-12-02 06:22 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network
2025-12-02 06:20 - 2025-12-12 21:42 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2025-12-02 06:20 - 2025-12-03 00:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-12-02 06:20 - 2025-12-02 22:19 - 000780632 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-12-02 05:49 - 2025-12-02 05:49 - 000000000 ____D C:\Users\Domin\AppData\Roaming\Microsoft\Network
2025-12-02 05:48 - 2025-12-02 06:19 - 000000000 ____D C:\Users\Domin\AppData\Roaming\Microsoft\Crypto
2025-12-02 05:48 - 2025-12-02 05:48 - 000000000 ____D C:\Users\Domin\AppData\Roaming\Microsoft\SystemCertificates
2025-12-02 05:38 - 2025-12-02 06:19 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2025-12-02 05:37 - 2025-12-02 06:23 - 000000000 ____D C:\Users\Domin\AppData\Roaming\Microsoft\Windows
2025-12-02 05:37 - 2025-12-02 06:22 - 000000000 ____D C:\Users\Domin
2025-12-02 05:37 - 2025-12-02 06:19 - 000000000 ____D C:\Users\Domin\AppData\Roaming\Microsoft\Spelling
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Šablony
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Soubory cookie
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Poslední
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Okolní tiskárny
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Okolní síť
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Nabídka Start
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Dokumenty
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Documents\Obrázky
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Documents\Hudba
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Documents\Filmy
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\Data aplikací
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-12-02 05:37 - 2025-12-02 05:37 - 000000000 SHDJL C:\Users\Domin\AppData\Local\Data aplikací
2025-12-02 05:36 - 2025-12-02 05:36 - 000000000 ____D C:\WINDOWS\Firmware
2025-12-02 05:28 - 2025-12-02 22:18 - 000000000 ____D C:\WINDOWS\system32\ruxim
2025-12-02 05:28 - 2025-12-02 22:18 - 000000000 ____D C:\WINDOWS\InboxApps
2025-12-02 05:28 - 2025-12-02 05:38 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2025-12-02 05:28 - 2025-12-02 05:28 - 000000000 ____D C:\WINDOWS\system32\AccountHealthAssets
2025-12-02 05:28 - 2025-12-02 05:28 - 000000000 ____D C:\inetpub
2025-12-02 05:17 - 2025-12-02 05:17 - 000001681 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
2025-12-02 05:16 - 2025-12-02 05:16 - 000079894 _____ C:\WINDOWS\SysWOW64\ctac.json
2025-12-02 05:16 - 2025-12-02 05:16 - 000079894 _____ C:\WINDOWS\system32\ctac.json
2025-12-02 05:16 - 2025-12-02 05:16 - 000005264 _____ C:\WINDOWS\system32\ecoscore_config.json
2025-12-02 05:01 - 2025-12-02 05:01 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2025-12-02 05:01 - 2025-12-02 05:01 - 000000000 ____D C:\Program Files\Reference Assemblies
2025-12-02 05:01 - 2025-12-02 05:01 - 000000000 ____D C:\Program Files\MSBuild
2025-12-02 05:01 - 2025-12-02 05:01 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2025-12-02 05:01 - 2025-12-02 05:01 - 000000000 ____D C:\Program Files (x86)\MSBuild
2025-12-02 04:56 - 2025-12-18 07:40 - 000000000 ____D C:\WINDOWS\system32\ASUSACCI
2025-12-02 04:35 - 2025-12-02 04:35 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2025-12-02 01:48 - 2025-12-15 21:45 - 000000000 ___DC C:\WINDOWS\Panther
2025-12-01 20:46 - 2025-10-30 02:33 - 000293016 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpcf.sys
2025-12-01 20:46 - 2025-10-30 02:33 - 000126056 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2025-11-30 13:30 - 2025-10-30 16:59 - 002402696 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2025-11-30 13:30 - 2025-10-30 16:59 - 002402696 _____ C:\WINDOWS\system32\vulkaninfo.exe
2025-11-30 13:30 - 2025-10-30 16:59 - 001908104 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-11-30 13:30 - 2025-10-30 16:59 - 001908104 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2025-11-30 13:30 - 2025-10-30 16:59 - 001581968 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2025-11-30 13:30 - 2025-10-30 16:59 - 001581968 _____ C:\WINDOWS\system32\vulkan-1.dll
2025-11-30 13:30 - 2025-10-30 16:59 - 001395592 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2025-11-30 13:30 - 2025-10-30 16:59 - 001395592 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2025-11-30 13:30 - 2025-10-30 16:59 - 000478440 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2025-11-30 13:30 - 2025-10-30 16:59 - 000375016 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2025-11-30 13:30 - 2025-10-30 16:55 - 001322216 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2025-11-30 13:30 - 2025-10-30 16:55 - 000675048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2025-11-30 13:30 - 2025-10-30 16:55 - 000509160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2025-11-30 13:30 - 2025-10-30 16:54 - 026354920 _____ C:\WINDOWS\system32\nvidia-pcc.exe
2025-11-30 13:30 - 2025-10-30 16:54 - 002317544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2025-11-30 13:30 - 2025-10-30 16:54 - 001715944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2025-11-30 13:30 - 2025-10-30 16:54 - 001599720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2025-11-30 13:30 - 2025-10-30 16:54 - 001572584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2025-11-30 13:30 - 2025-10-30 16:54 - 001223400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2025-11-30 13:30 - 2025-10-30 16:54 - 001057512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2025-11-30 13:30 - 2025-10-30 16:54 - 000813288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2025-11-30 13:30 - 2025-10-30 16:53 - 024676584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2025-11-30 13:30 - 2025-10-30 16:53 - 000468712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2025-11-30 13:29 - 2025-10-30 16:53 - 021714152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2025-11-30 13:29 - 2025-10-30 16:53 - 007683304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2025-11-30 13:29 - 2025-10-30 16:53 - 005918952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2025-11-30 13:29 - 2025-10-30 16:53 - 005469928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2025-11-30 13:29 - 2025-10-30 16:53 - 004175080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2025-11-30 13:29 - 2025-10-30 16:52 - 005625560 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2025-11-30 13:29 - 2025-10-30 16:52 - 004924160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2025-11-30 13:29 - 2025-10-30 16:52 - 000853736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2025-11-30 13:29 - 2025-10-30 02:33 - 000148966 _____ C:\WINDOWS\system32\nvinfo.pb

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-12-18 07:46 - 2023-06-20 21:58 - 000000293 _____ C:\ProgramData\CMediaAudioControlPanelData.ini
2025-12-18 07:40 - 2023-07-09 16:32 - 000000000 ____D C:\Users\Domin\AppData\Local\Ubisoft Game Launcher
2025-12-18 07:39 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-12-18 07:39 - 2023-06-22 19:50 - 000000000 ____D C:\Users\Domin\AppData\Roaming\asus_framework
2025-12-18 07:39 - 2023-01-05 01:34 - 000097464 _____ C:\ProgramData\AsDeviceCheck.txt
2025-12-17 22:55 - 2023-06-20 21:51 - 000000000 ____D C:\ProgramData\NVIDIA
2025-12-17 22:54 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-12-17 22:28 - 2025-10-15 20:14 - 000000000 ____D C:\Users\Domin\Desktop\Games
2025-12-17 21:49 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-12-17 20:28 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-12-15 21:49 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-12-15 20:22 - 2023-06-21 22:06 - 000000000 ____D C:\Users\Domin\AppData\Local\CrashDumps
2025-12-13 14:30 - 2023-06-20 21:50 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-12-13 14:30 - 2023-06-20 21:50 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-12-12 22:31 - 2023-06-20 21:09 - 000000000 ____D C:\Users\Domin\AppData\Local\D3DSCache
2025-12-12 22:04 - 2025-10-05 20:14 - 000000000 ____D C:\ProgramData\Whesvc
2025-12-12 21:51 - 2023-01-05 01:36 - 000000000 ____D C:\Program Files (x86)\LightingService
2025-12-12 21:51 - 2023-01-05 01:34 - 000000000 ____D C:\Program Files\ASUS
2025-12-12 21:51 - 2023-01-05 01:33 - 000000000 ____D C:\ProgramData\Package Cache
2025-12-12 21:50 - 2023-01-05 01:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2025-12-12 21:49 - 2023-06-20 21:50 - 000000000 ____D C:\ProgramData\ASUS
2025-12-12 21:48 - 2023-06-20 21:09 - 000000000 ____D C:\Users\Domin\AppData\Local\Packages
2025-12-12 21:44 - 2024-11-09 21:05 - 000010220 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-12-12 21:44 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-12-12 21:44 - 2023-06-20 21:50 - 000012288 ___SH C:\DumpStack.log.tmp
2025-12-12 21:43 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-12-12 21:41 - 2024-04-01 17:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-12-12 21:41 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-12-12 21:41 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-12-12 21:41 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-12-12 21:41 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-12-12 21:41 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\BrowserCore
2025-12-12 21:41 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-12-12 21:31 - 2023-01-05 01:35 - 000000000 ____D C:\Program Files (x86)\ASUS
2025-12-12 21:30 - 2023-06-20 21:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-12-12 21:27 - 2023-06-20 21:16 - 218369424 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-12-12 20:38 - 2023-07-09 16:32 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2025-12-12 20:38 - 2022-06-03 14:49 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-12-07 16:57 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\OCR
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ___RD C:\Program Files\Windows Defender
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ___RD C:\Program Files (x86)\Windows Defender
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\WUModels
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\DiagTrack
2025-12-02 22:18 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-12-02 22:18 - 2024-04-01 08:21 - 000000000 ____D C:\WINDOWS\servicing
2025-12-02 06:45 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-12-02 06:40 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\appcompat
2025-12-02 06:26 - 2023-06-20 21:09 - 000000000 ____D C:\Users\Domin\AppData\Local\NVIDIA
2025-12-02 06:23 - 2023-01-05 01:29 - 000000000 __RHD C:\Users\Public\AccountPictures
2025-12-02 06:22 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Windows NT
2025-12-02 06:21 - 2024-04-01 08:26 - 000000000 __RSD C:\WINDOWS\Media
2025-12-02 06:21 - 2023-06-20 21:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2025-12-02 06:19 - 2025-09-24 20:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2025-12-02 06:19 - 2025-01-20 22:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2025-12-02 06:19 - 2024-11-15 23:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2018 – Čeština (Czech)
2025-12-02 06:19 - 2024-11-15 21:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2025-12-02 06:19 - 2024-11-14 21:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2025-12-02 06:19 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2025-12-02 06:19 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\system32\WCN
2025-12-02 06:19 - 2024-04-01 08:26 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WebThreatDefSvc
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\IME
2025-12-02 06:19 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-12-02 06:19 - 2023-08-28 21:29 - 000000000 ____D C:\Users\Domin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2025-12-02 06:19 - 2023-07-24 11:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.5
2025-12-02 06:19 - 2023-06-21 21:11 - 000000000 ____D C:\Users\Domin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-12-02 06:19 - 2023-06-21 21:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-12-02 06:19 - 2023-06-21 06:45 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2025-12-02 06:19 - 2023-06-21 06:45 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2025-12-02 06:19 - 2023-06-20 21:58 - 000000000 ____D C:\Users\Domin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-12-02 06:19 - 2023-06-20 21:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2025-12-02 06:19 - 2023-01-05 01:53 - 000000000 ____D C:\WINDOWS\OEM
2025-12-02 06:19 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2025-12-02 05:56 - 2024-04-01 08:29 - 000000000 ____D C:\WINDOWS\Setup
2025-12-02 05:46 - 2024-04-01 08:26 - 000000000 __RHD C:\Users\Public\Libraries
2025-12-02 05:45 - 2023-07-09 16:32 - 000000000 ____D C:\Users\Domin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2025-12-02 05:44 - 2024-04-01 08:26 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2025-12-02 05:40 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2025-12-02 05:40 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2025-12-02 05:40 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2025-12-02 05:40 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\system32\winrm
2025-12-02 05:40 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\system32\slmgr
2025-12-02 05:40 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2025-12-02 05:40 - 2023-06-21 06:45 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2025-12-02 05:40 - 2023-06-21 06:45 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2025-12-02 05:38 - 2024-04-01 17:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-12-02 05:38 - 2024-04-01 17:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-12-02 05:38 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\schemas
2025-12-02 05:38 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-12-02 05:28 - 2024-04-01 17:30 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-12-02 05:28 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2025-12-02 05:28 - 2024-04-01 17:28 - 000000000 ____D C:\WINDOWS\system32\cs
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-plocm
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-ploc
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemApps
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\te-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\spool
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\qps-plocm
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\qps-ploc
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\or-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\km-KH
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\is-IS
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\id-ID
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\et-EE
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\es-MX
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Com
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\be-BY
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\as-IN
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\am-ET
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2025-12-02 05:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-12-02 05:26 - 2024-04-01 17:31 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2025-12-02 05:26 - 2024-04-01 17:31 - 000028898 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2025-12-02 05:26 - 2024-04-01 08:26 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2025-12-02 05:26 - 2024-04-01 08:26 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2025-12-02 05:16 - 2024-04-01 08:22 - 000063072 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtPL080.dll
2025-12-02 05:16 - 2024-04-01 08:22 - 000063064 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtIntcPseDMA.dll
2025-12-02 05:16 - 2024-04-01 08:22 - 000063064 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtIntcLpioDMA.dll
2025-12-02 05:01 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2025-12-02 05:01 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\MUI
2025-11-30 13:17 - 2023-06-20 21:10 - 000000000 ____D C:\Users\Domin\AppData\Local\NVIDIA Corporation
2025-11-30 13:17 - 2023-01-05 01:32 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-11-19 20:49 - 2023-06-20 21:55 - 000000000 ____D C:\Users\Domin\AppData\Local\Steam

==================== Files in the root of some directories ========

2024-11-08 21:22 - 2024-11-08 21:27 - 000003584 _____ () C:\Users\Domin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

a addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2025
Ran by Domin (18-12-2025 07:48:58)
Running from C:\Users\Domin\Desktop
Microsoft Windows 11 Home Version 25H2 26200.7462 (X64) (2025-12-02 05:22:31)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1810987290-2590352904-1031025447-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1810987290-2590352904-1031025447-503 - Limited - Disabled)
Domin (S-1-5-21-1810987290-2590352904-1031025447-1001 - Administrator - Enabled) => C:\Users\Domin
Guest (S-1-5-21-1810987290-2590352904-1031025447-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1810987290-2590352904-1031025447-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Photoshop 2023 (HKLM-x32\...\PHSP_24_2) (Version: 24.2.0.315 - Adobe Inc.)
Adobe Premiere Pro 2023 (HKLM-x32\...\PPRO_23_3) (Version: 23.3 - Adobe Inc.)
AI Noise Cancelation Audio Software (HKLM-x32\...\{ab5f014e-883d-470d-bc2d-127ef91e5611}) (Version: 3.2.0 - ASUSTek Computer Inc.)
AI Noise Cancelation Audio Software SDK (HKLM\...\{9B441197-6389-46FC-BE60-56C8B6E5ADE9}) (Version: 1.0.6 - ASUSTeK COMPUTER INC.)
AniMeVisionFont_STRIX_SCAR (HKLM\...\{09125B1C-D984-4FF3-AF65-391CF4E5FD2A}) (Version: 1.0.1 - ASUSTek Computer Inc.) Hidden
Armoury Crate Service (HKLM\...\Armoury Crate Service) (Version: 6.3.9.0 - ASUSTeK COMPUTER INC.)
ASUS Aac_GmAcc HAL (HKLM\...\{998249B1-6913-447E-AA37-F445B8CA33D0}) (Version: 1.0.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_GmAcc HAL (HKLM-x32\...\{c3219916-0c5a-483c-8b38-bdd71cf96365}) (Version: 1.0.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.5.15.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{31c173d9-4e17-4866-9366-9bc08677aae8}) (Version: 2.5.15.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM\...\{4558E870-2B04-48C6-85DC-1DBC0FA072E4}) (Version: 7.8.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM-x32\...\{63ce5cc5-0b94-4068-b125-4ba3a23b30fe}) (Version: 7.8.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.2.27.0 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32\...\{08c7fe1d-d0b6-4fe8-8e3d-1440ab9a4b2b}) (Version: 1.2.27.0 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.3.43.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{4010c5b3-e196-4d82-b7bf-724331eb1a8a}) (Version: 1.3.43.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.05.13 - ASUSTeK COMPUTER INC.) Hidden
ASUS Device Check (HKLM\...\{FA325AF9-171E-4615-B301-B049DF1F78F1}) (Version: 3.6.0 - ASUS)
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.2.4.7 - ASUSTeK Computer Inc.)
ASUS Hotplug Controller (HKLM\...\{167A9DAC-ED7E-42CC-9A58-9E7A0C24B91F}) (Version: 2.0.0 - ASUS)
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.2.8.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{6d7f6ccb-a8e0-4fa5-aee3-fb8c78207c63}) (Version: 1.2.8.0 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.40 - ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{687d8d1b-026f-4cae-a027-149bbad9ec0c}) (Version: 1.0.40 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse Extern HAL (HKLM\...\{BD7477F6-7EFB-434D-8909-5B83B4F154C5}) (Version: 1.2.0.3 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse Extern HAL (HKLM-x32\...\{465c5a01-6716-4d67-99c3-05a17f892d1c}) (Version: 1.2.0.3 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM\...\{B8F984F2-7887-4DD2-8D96-F9A4BC5A4AC5}) (Version: 1.2.0.44 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{6558e27a-39e7-46b4-9ef8-18256ce28937}) (Version: 1.2.0.44 - ASUSTek COMPUTER INC.) Hidden
ASUS Smart Display Control (HKLM-x32\...\{8714A8D1-0F08-4681-9DF6-A8C4607A58B4}) (Version: 2.10.0 - ASUSTek COMPUTER INC.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.145 - ASUSTeK Computer Inc.) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.49 - ASUSTek COMPUTER INC.)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.49 - ASUSTek COMPUTER INC.)
AURA Service (HKLM-x32\...\{40955d05-8018-4e13-873a-aba0cb5254c7}) (Version: 3.08.60 - ASUSTeK COMPUTER INC.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.08.60 - ASUSTeK COMPUTER INC.) Hidden
Aura Wallpaper HTML (HKLM-x32\...\{fd36a871-5a75-4285-a469-61bbe3dbd858}) (Version: 2.1.6.0 - ASUSTek Computer Inc.)
Aura Wallpaper Service (HKLM\...\{A78E52FB-5921-0A22-5D0B-212641047CF4}) (Version: 2.1.6.0 - ASUSTeK COMPUTER INC.)
AutoCAD 2018 – Čeština (Czech) (HKLM\...\{28B89EEF-1001-0405-2102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk)
Autodesk AutoCAD 2018 – Čeština (Czech) (HKLM\...\AutoCAD 2018 – Čeština (Czech)) (Version: 22.0.49.0 - Autodesk)
Autodesk Identity Manager (HKLM\...\Autodesk Identity Manager) (Version: 1.12.0.7 - Autodesk)
Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk)
Bullzip PDF Printer 14.5.0.2974 (HKLM\...\Bullzip PDF Printer_is1) (Version: 14.5.0.2974 - Bullzip)
ČEŠTINA A WAY OUT v 0.9 (HKU\S-1-5-21-1810987290-2590352904-1031025447-1001\...\ČEŠTINA A WAY OUT v 0.9) (Version: - )
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.401.0.5914 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{9597154a-3e49-4f21-827a-ae42128440ff}) (Version: 13.401.0.5914 - Electronic Arts)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
L.A. Noire (HKLM-x32\...\{915726DF-7891-444A-AA03-0DF1D64F561A}) (Version: 2675.1.0.0 - Rockstar Games)
LibreOffice 7.5.5.2 (HKLM\...\{61C7ACC0-A7E0-43FB-80A4-C15D0F546355}) (Version: 7.5.5.2 - The Document Foundation)
Microsoft .NET Core Host - 3.1.10 (x64) (HKLM\...\{52B42932-15C1-45D4-8904-FC3117EEE69B}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.10 (x64) (HKLM\...\{752B4412-A129-4CB2-AD96-B6D97EAD3090}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM\...\{396D7BC8-E3C8-4B3E-8C60-D50D94FDF09D}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM-x32\...\{4714dd0a-ebab-4f59-a708-f8d7a793b3f5}) (Version: 3.1.10.29419 - Microsoft Corporation)
Microsoft .NET Host - 6.0.16 (x64) (HKLM\...\{1D0AC7F1-2B34-44AF-91F6-88757D768DA7}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.13 (x64) (HKLM\...\{6CD2C0A9-55E7-4133-BC19-205CCF2B64C9}) (Version: 64.52.27977 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.16 (x64) (HKLM\...\{B8537ACA-B210-4DF5-B928-E41CEB76723D}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.13 (x64) (HKLM\...\{BB5AC4BC-A263-43DA-A530-9CB56342D6B8}) (Version: 64.52.27977 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.7 (x64) (HKLM\...\{3E3E3302-0CAD-4D0D-B6C0-206B30773468}) (Version: 64.28.16731 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM\...\{C71E93D2-B8B4-4858-B2A1-4C967DBC1C5F}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM-x32\...\{2a8d0f2b-911b-4b58-8252-46b29e7a4590}) (Version: 6.0.16.32323 - Microsoft Corporation)
Microsoft .NET Runtime - 8.0.13 (x64) (HKLM\...\{C7FB4EEE-D481-4AC1-B113-120A9124FE50}) (Version: 64.52.27977 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.13 (x64) (HKLM-x32\...\{8def024a-2c3c-4c48-a40d-05682ee1ec65}) (Version: 8.0.13.34516 - Microsoft Corporation)
Microsoft .NET Runtime - 8.0.7 (x64) (HKLM\...\{CA4FE2DB-2E1C-453B-B8C9-960AB929E5B4}) (Version: 64.28.16731 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 3.1.10 - Shared Framework (HKLM-x32\...\{6efe3294-03d8-4977-9c67-9f57ab075130}) (Version: 3.1.10.20520 - Microsoft Corporation)
Microsoft ASP.NET Core 3.1.10 Shared Framework (x64) (HKLM\...\{7BEAA207-E3EB-3948-BBB3-336B04D8A2F1}) (Version: 3.1.10.20520 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 143.0.3650.80 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 143.0.3650.80 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.7 (x64) (HKLM\...\{F6FBF64F-D459-4F03-BF3B-C0A36A0596A2}) (Version: 64.28.16739 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.7 (x64) (HKLM-x32\...\{754bcfb5-42ac-4c12-8f12-b818943a1365}) (Version: 8.0.7.33814 - Microsoft Corporation)
NVIDIA App 11.0.5.420 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.5.420 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.5.11504.36206172 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.11504.36206172 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.5.0 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 581.80 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 581.80 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
PDF24 Creator 11.28.2 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: 11.28.2 - Geek Software GmbH)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.103.2534 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.101 - Rockstar Games)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 3.3.16.0 - ASUSTek COMPUTER INC.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tom Clancy's Ghost Recon Wildlands (HKLM-x32\...\Uplay Install 1771) (Version: - Ubisoft)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 167.1.12915 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)
Xbox 360 Controller Emulator (HKLM\...\{66F1BC10-A109-47A5-918D-61023175C03E}) (Version: 1.0.0.15 - ASUSTek COMPUTER INC.) Hidden
Xbox 360 Controller Emulator (HKLM\...\{6B45AA6A-7060-4A48-91B9-A085A897E483}) (Version: 1.0.0.15 - ASUSTek COMPUTER INC.) Hidden

Packages:
=========
@{MicrosoftWindows.57242383.Tasbar_1000.26100.7309.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.57242383.Tasbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.57242383.Tasbar_cw5n1h2txyewy [2025-12-12] (Microsoft Windows)
@{MicrosoftWindows.59379618.InpApp_1000.26100.7019.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.59379618.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.59379618.InpApp_cw5n1h2txyewy [2025-12-12] (Microsoft Windows)
@{MicrosoftWindows.59379618.InpApp_1000.26100.7171.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.59379618.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.59379618.InpApp_cw5n1h2txyewy [2025-12-12] (Microsoft Windows)
@{MicrosoftWindows.59379618.InpApp_1000.26100.7309.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.59379618.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.59379618.InpApp_cw5n1h2txyewy [2025-12-12] (Microsoft Windows)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2024-11-08] (INTEL CORP) [Startup Task]
Armoury Crate -> C:\Program Files\ASUS\AacAmbientHal [2025-11-12] (Sparse Package)
Armoury Crate -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_6.3.9.0_x64__qmba6cd70vzyy [2025-12-12] (ASUSTeK COMPUTER INC.)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.57242383.Tasbar_cw5n1h2txyewy [2025-12-12] (Microsoft Windows)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.59379618.InpApp_cw5n1h2txyewy [2025-12-12] (Microsoft Windows)
C-Media6549AudioControlPanel -> C:\Program Files\WindowsApps\e2b691c9.c-media6549audiocontrolpanel_1.0.37.0_x64__y9kx1840xc4zw [2023-06-20] (C-Media Electronics Inc.) [Startup Task]
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.27.6010.0_x64__rz1tebttyb220 [2025-12-12] (Dolby Laboratories)
Dolby Digital Plus decoder for PC OEMs -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyDigitalPlusDecoderOEM_1.2.581.0_x64__rz1tebttyb220 [2025-12-02] (Dolby Laboratories)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa [2025-10-17] (Apple Inc.) [Startup Task]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2509.19002.0_x64__8wekyb3d8bbwe [2025-10-31] (Microsoft Corporation) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-22] (Microsoft Corp.)
Microsoft Sonia (Natural) - English (United Kingdom) -> C:\Program Files\WindowsApps\MicrosoftWindows.Voice.en-GB.Sonia.1_1.0.4.0_x64__cw5n1h2txyewy [2025-06-03] (Microsoft Windows)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy [2025-12-12] (ASUSTeK COMPUTER INC.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.969.0_x64__56jybvy8sckqj [2025-11-11] (NVIDIA Corp.)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2023-07-07] (Samsung Electronics Co. Ltd.)
Speech Pack - English (United Kingdom) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.en-GB.1_1.0.14.0_x64__cw5n1h2txyewy [2025-06-30] (Microsoft Windows)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.373.1736.0_x64__8wekyb3d8bbwe [2025-01-29] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_8000.675.1142.0_x64__8wekyb3d8bbwe [2025-11-21] (Microsoft Corp.)
WinRAR -> C:\Program Files\Programy\WinRar [2023-06-21] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C}\localserver32 -> C:\Users\Domin\AppData\Local\Programs\TeamSpeak\notification_helper.exe => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{74F5CC00-49A9-11CF-A2F9-444553540000}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD LT 2018\en-US\acadltficn.dll => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2018\cs-CZ\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-02-20] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-02-20] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-02-20] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2018-03-14] (Autodesk, Inc -> Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-02-20] (Adobe Inc. -> )
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2018-03-14] (Autodesk, Inc -> Autodesk)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_6963c3ad1eccbcde\nvshext.dll [2025-10-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-02-20] (Adobe Inc. -> )

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [MidisrvTransferComplete] => 0

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2025-09-16 21:55 - 2025-02-03 16:17 - 000349184 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\@img\sharp-win32-ia32\lib\sharp-win32-ia32.node
2025-06-26 19:40 - 2024-07-15 20:53 - 000221696 _____ (Bullzip) [File not signed] C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll
2025-11-30 13:17 - 2025-11-30 13:17 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\plugins\NVIDIA Overlay\MessageBusRouter.dll
2024-11-14 21:39 - 2025-11-30 13:17 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1810987290-2590352904-1031025447-1001\Software\Classes\.scr: AutoCADScriptFile =>

==================== Internet Explorer (Whitelisted) =============


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2022-05-07 06:24 - 2023-06-22 20:21 - 000001009 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 3ca52znvmj.adobe.io
127.0.0.1 cc-api-data.adobe.io
127.0.0.1 ic.adobe.io
127.0.0.1 genuine.adobe.com
127.0.0.1 prod.adobegenuine.com
127.0.0.1 assets.adobedtm.com

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 192.168.0.1
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Intel(R) Wi-Fi 6 AX201 160MHz -> Netwtw10.sys
Ethernet: Intel(R) Ethernet Connection (16) I219-LM -> e1d.sys

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1810987290-2590352904-1031025447-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\asus\wallpapers\asus.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)


==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5D39D45E-FB97-403B-8D9A-FC9C9676E5DB}] => (Allow) D:\SteamLibrary\steamapps\common\Call of Duty 2\CoD2MP_s.exe () [File not signed]
FirewallRules: [{2975FA6D-FFC2-4EAC-AE26-FD8261DE0747}] => (Allow) D:\SteamLibrary\steamapps\common\Call of Duty 2\CoD2MP_s.exe () [File not signed]
FirewallRules: [{7D89727C-C0EA-4D0A-BC29-7594803A06FD}] => (Allow) D:\SteamLibrary\steamapps\common\Call of Duty 2\CoD2SP_s.exe () [File not signed]
FirewallRules: [{E632ED4A-6F85-4CFE-AADB-3C3C8115BE3A}] => (Allow) D:\SteamLibrary\steamapps\common\Call of Duty 2\CoD2SP_s.exe () [File not signed]
FirewallRules: [{E2584CD6-8686-416C-A687-49BC00F8F072}] => (Allow) D:\SteamLibrary\steamapps\common\Hogwarts Legacy\HogwartsLegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [{F1332E79-51B6-4CFA-98CB-4CD24B1CAE8E}] => (Allow) D:\SteamLibrary\steamapps\common\Hogwarts Legacy\HogwartsLegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [{D0FDFD09-A3B1-44C1-BA9D-63E321433A1B}] => (Allow) D:\program files\asus\aacambienthal\aacambientlighting.exe => No File
FirewallRules: [{B6C475B3-7D91-4728-8F97-F8157E1E0466}] => (Allow) C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{A97342BE-73AF-4D1F-A1BF-460D2FBA209B}] => (Allow) D:\SteamLibrary\steamapps\common\ItTakesTwo\Nuts\Binaries\Win64\ItTakesTwo.exe => No File
FirewallRules: [{A0E8AA0F-0134-43BC-AF1F-6EB70075FD3F}] => (Allow) D:\SteamLibrary\steamapps\common\ItTakesTwo\Nuts\Binaries\Win64\ItTakesTwo.exe => No File
FirewallRules: [{FC831BB2-1508-4FD3-97F5-F27977DF6BFC}] => (Allow) D:\SteamLibrary\steamapps\common\Little Nightmares Enhanced Edition\Little_Nightmares_Enhanced.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{7983C713-E603-43A0-8AD8-8860EB79112A}] => (Allow) D:\SteamLibrary\steamapps\common\Little Nightmares Enhanced Edition\Little_Nightmares_Enhanced.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{4C1BD841-6E9B-409A-A578-B902DF96C16B}] => (Allow) D:\SteamLibrary\steamapps\common\Little Nightmares II\EnhancedEdition\Little_Nightmares_II_Enhanced.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{47CA6346-603F-49BA-B669-BEE8C6C12C87}] => (Allow) D:\SteamLibrary\steamapps\common\Little Nightmares II\EnhancedEdition\Little_Nightmares_II_Enhanced.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{28E575A3-6B28-4E41-9B3E-F59E0C10E2DD}] => (Allow) D:\SteamLibrary\steamapps\common\Little Nightmares II\Helios\Binaries\Win64\Little Nightmares II.exe (Tarsier Studios Malmö AB -> Tarsier Studios)
FirewallRules: [{AB2D28D3-AFB3-4352-8377-E35C736BE5BE}] => (Allow) D:\SteamLibrary\steamapps\common\Little Nightmares II\Helios\Binaries\Win64\Little Nightmares II.exe (Tarsier Studios Malmö AB -> Tarsier Studios)
FirewallRules: [{BD49289E-C3FE-4687-A570-FC2570666019}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{5D4C9877-C03B-47B1-9B6C-4AB6FF3408D8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{7BAF9115-D970-40AF-8A87-A73597FE7A33}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{52593F24-EC0F-48E8-9FDF-8B77A81C4275}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{FA63EE67-700D-4FA3-A8B4-7189915F0AD7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{45D8806B-1A43-4155-9B6C-469D557BBB79}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{D3CC7BAF-4FA5-4453-906B-744FB0300750}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{DC78E653-5C38-468B-B394-8D9F91A782B6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12139.1.59021.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{85862393-09FE-4EBC-86AA-D2AC56C5AE7F}] => (Allow) D:\SteamLibrary\steamapps\common\Little Nightmares III\LittleNightmaresIII.exe (Supermassive Games Ltd. -> Supermassive Games Ltd)
FirewallRules: [{E968B445-5CC1-464D-91D4-6287733EB843}] => (Allow) D:\SteamLibrary\steamapps\common\Little Nightmares III\LittleNightmaresIII.exe (Supermassive Games Ltd. -> Supermassive Games Ltd)
FirewallRules: [{C355102E-B3FD-443F-A988-173CDC2E65B7}] => (Allow) D:\SteamLibrary\steamapps\common\Demonologist\Demonologist.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{878FA2D1-8578-4D98-928F-C3E0BCC84AB2}] => (Allow) D:\SteamLibrary\steamapps\common\Demonologist\Demonologist.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{52444451-5E14-4327-9974-FBCB3107D1EC}] => (Allow) D:\SteamLibrary\steamapps\common\Marvel's Spider-Man Remastered\Spider-Man.exe (Sony Interactive Entertainment LLC -> Insomniac Games, Inc.)
FirewallRules: [{E0EF6564-8E62-49E6-AD88-F842F1133D9D}] => (Allow) D:\SteamLibrary\steamapps\common\Marvel's Spider-Man Remastered\Spider-Man.exe (Sony Interactive Entertainment LLC -> Insomniac Games, Inc.)
FirewallRules: [{F494126F-3793-4E1E-A496-D97BA41A4021}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{647F97D9-749C-4D97-8CD1-680DF12781E5}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{119C8D7A-CCB4-4956-A869-CEA25E8D0492}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [UDP Query User{AABFC008-E5CD-41CC-B0F2-B90F67484B97}D:\steamlibrary\steamapps\common\kingdomcomedeliverance2\bin\win64mastermastersteampgo\kingdomcome.exe] => (Allow) D:\steamlibrary\steamapps\common\kingdomcomedeliverance2\bin\win64mastermastersteampgo\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [TCP Query User{265AC533-F1AD-4B86-96C1-24CDFD2F7472}D:\steamlibrary\steamapps\common\kingdomcomedeliverance2\bin\win64mastermastersteampgo\kingdomcome.exe] => (Allow) D:\steamlibrary\steamapps\common\kingdomcomedeliverance2\bin\win64mastermastersteampgo\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{098DF874-6AC3-4107-A872-2DA8A2A0580B}] => (Allow) D:\SteamLibrary\steamapps\common\Mafia II Definitive Edition\pc\Mafia2Launcher\Launcher.exe (2K Games) [File not signed]
FirewallRules: [{4B69D0DC-7F97-4AD0-8203-09AC2EEC0651}] => (Allow) D:\SteamLibrary\steamapps\common\Mafia II Definitive Edition\pc\Mafia2Launcher\Launcher.exe (2K Games) [File not signed]
FirewallRules: [{7D2290C1-6462-41A3-95CA-78B8CCE53816}] => (Allow) D:\SteamLibrary\steamapps\common\Mafia II Definitive Edition\pc\Mafia II Definitive Edition.exe (2K Czech) [File not signed]
FirewallRules: [{80B656BA-D132-45E7-882B-4630C338C9DC}] => (Allow) D:\SteamLibrary\steamapps\common\Mafia II Definitive Edition\pc\Mafia II Definitive Edition.exe (2K Czech) [File not signed]
FirewallRules: [{C0820A29-A255-4FBA-AADF-8941FAF6B0A5}] => (Allow) D:\SteamLibrary\steamapps\common\TPH\TPH.exe () [File not signed]
FirewallRules: [{A7C4ED34-0ED8-41F6-9095-80AEF1BE4FB5}] => (Allow) D:\SteamLibrary\steamapps\common\TPH\TPH.exe () [File not signed]
FirewallRules: [{13ADFFE2-7832-4FB1-B763-E15072D9FAD1}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Manor Lords\ManorLords.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{068CC321-4284-4536-9624-B62905804656}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Manor Lords\ManorLords.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{60E1625E-AAED-454F-9E36-A0C1CC910350}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia The Old Country\MafiaTheOldCountry\Binaries\Win64\MafiaTheOldCountry.exe => No File
FirewallRules: [{D4F0C82A-C7B3-427F-9999-C6A09148F28A}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia The Old Country\MafiaTheOldCountry\Binaries\Win64\MafiaTheOldCountry.exe => No File
FirewallRules: [{BC51024D-C43A-4902-9D98-E59026536EB1}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\KingdomComeDeliverance2\Bin\Win64MasterMasterSteamPGO\KingdomCome.exe => No File
FirewallRules: [{51185AAE-1BFA-4357-926C-DA0BDCD29E0D}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\KingdomComeDeliverance2\Bin\Win64MasterMasterSteamPGO\KingdomCome.exe => No File
FirewallRules: [UDP Query User{DCA1B93A-B64C-430B-9ACD-83FE1F290A3A}C:\program files\programy\steam\steamapps\common\age of empires iv\reliccardinal.exe] => (Allow) C:\program files\programy\steam\steamapps\common\age of empires iv\reliccardinal.exe (Microsoft Corp) [File not signed]
FirewallRules: [TCP Query User{41CA0658-C0C5-4C02-A03F-6E6A660E268A}C:\program files\programy\steam\steamapps\common\age of empires iv\reliccardinal.exe] => (Allow) C:\program files\programy\steam\steamapps\common\age of empires iv\reliccardinal.exe (Microsoft Corp) [File not signed]
FirewallRules: [{B0482C9E-22EF-4127-9C4D-0584309A3D23}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{FD294258-6045-4F96-B085-AE8836069121}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E3474837-993A-4247-980E-5C191B94E1F5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3AB4758C-CBEA-4018-A7D9-B05B1397C2CA}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{1D803BB7-4EC1-40AA-893B-77D9191C546B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{38B57E5E-4326-45E9-B1CA-A3110F4B3867}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{FCA69235-8D38-4C68-9356-CEED89CCF2A1}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{DFF8595E-F284-4934-BB8A-4AE62F94C217}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C4CFF126-04EA-4168-B188-6F42C597EAE6}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F987A432-DCBF-4A62-9779-811A163A8128}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0E0E3219-B3D3-4F03-BA45-6B3DF590B087}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{45156427-947A-482C-9BD8-15B8B58557FA}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => No File
FirewallRules: [{AB1989BB-EB89-4BBA-8BA8-163DE03D8505}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => No File
FirewallRules: [UDP Query User{C385DF35-DDBD-490E-B3C6-ADBF5B8337FB}C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe] => (Allow) C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe => No File
FirewallRules: [TCP Query User{FEA56304-DCAF-491F-9D7B-C8C746C52D0E}C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe] => (Allow) C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe => No File
FirewallRules: [UDP Query User{74938B1C-8F60-4004-9100-AA1E3FCE6682}C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [TCP Query User{6B5F56D2-48DC-487D-A732-A921966A6F7C}C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{51EE9B85-4CAD-4A07-8F71-187A71B85D63}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{68175CD5-5E39-4B9D-92CA-D828A1B9412B}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{FDB1FC10-F88E-4864-A73C-01BBD4F725F7}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{9AFF76D6-10DD-46B0-A2F7-48CD0CB2BB75}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{B11F81D6-8820-4BA1-A849-0E8E3E6CAD7C}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23119.303.2080.2726_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A7C81B2C-6C2E-424A-8DBF-CF654BE53E66}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23119.303.2080.2726_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6CE3B744-E99A-4E8E-9532-1061FB121E8D}] => (Allow) C:\Program Files\Programy\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{07EAAF95-1DBA-4689-BDCB-CC3007867867}] => (Allow) C:\Program Files\Programy\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1824A85D-B3DD-4E26-BF3F-E8D946957A08}] => (Allow) C:\Program Files\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2443287E-E929-451A-860D-BE8FBAC7D2D1}] => (Allow) C:\Program Files\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D09EF147-7C27-4B45-8D73-B2AA5F98F467}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [{8136FA4D-29DD-421A-9573-A42D33D5632B}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [{B6CE02B4-C8C2-4F63-8832-F683AA419C82}] => (Block) %ProgramFiles%\Autodesk\AutoCAD LT 2018\acadlt.exe => No File
FirewallRules: [{B47F3C0D-FACA-4BB8-8783-4C95257F8E98}] => (Block) %ProgramFiles%\Autodesk\AutoCAD LT 2018\acadlt.exe => No File
FirewallRules: [{01EAC10A-C7A3-48FD-A839-AC6FC35C4DC7}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Grand Theft Auto IV\GTAIV\PlayGTAIV.exe => No File
FirewallRules: [{EDD393A8-BBD4-4D09-A221-71D0908636EC}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Grand Theft Auto IV\GTAIV\PlayGTAIV.exe => No File
FirewallRules: [{861EC91A-0B3B-438C-9DB0-3478FEAE1D27}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{2E8CEFE2-3BD6-461A-9BA6-24365B2BEF09}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{DFDEEC88-0E75-4545-8C51-FA495407A87A}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia II Definitive Edition\2KLauncher\LauncherPatcher.exe => No File
FirewallRules: [{7621035E-6AEB-4808-B8CB-81D19474A558}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia II Definitive Edition\2KLauncher\LauncherPatcher.exe => No File
FirewallRules: [TCP Query User{FEBD7F82-CD22-4CAB-85A6-C209277E717E}C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe] => (Block) C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{1B0D7ACE-2CCF-45E9-9687-DEAB64287F21}C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe] => (Block) C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{2986BC8E-EFDA-486B-AD01-356564D9FE06}C:\program files\programy\kodi\kodi.exe] => (Block) C:\program files\programy\kodi\kodi.exe => No File
FirewallRules: [UDP Query User{2548AE83-F7B3-44D2-87B1-BB6BB7CE48DE}C:\program files\programy\kodi\kodi.exe] => (Block) C:\program files\programy\kodi\kodi.exe => No File
FirewallRules: [{0D9A0154-88FD-4190-B95F-108F6448E75F}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => No File
FirewallRules: [{75800DB1-3AED-4022-9926-925BDB005FA1}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{831EDAC5-AFF9-465F-96B9-22D9672DA1A1}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{BA61E5B5-A7DD-424C-A111-FB1D8D4815A6}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{59549A92-2347-474F-AEAB-36DD93E28551}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{B21301D8-AC37-4260-9263-7C5C2AC22F42}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{33358AD2-E167-4344-B751-A78DC826E4B0}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_d37b14e97dd34825\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{17141C3E-B1B8-4582-B065-2430EEAB89B6}] => (Allow) C:\Users\Domin\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{D9AFF5CD-A431-4ED7-9FF9-E54D98E7FCA2}] => (Allow) C:\Users\Domin\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{F95FDB6C-6149-414D-804D-EE6CCD58221C}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{63311DF8-89E0-4F20-A03B-234438F8FEE0}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{842802D2-1158-487F-A545-F62E681D1D74}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{376B2B1D-496B-4960-8B2B-02A574C686CD}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{5FA9DF11-04EB-46DF-84EB-6A38520249EB}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (12/15/2025 08:22:47 PM) (Source: Application Error) (EventID: 1000) (User: DOMINIK)
Description: Název chybující aplikace: cod2mp_s.exe, verze: 0.0.0.0, časové razítko: 0x4456a34f
Název chybujícího modulu: gfx_d3d_mp_x86_s.dll, verze: 0.0.0.0, časové razítko: 0x4456a300
Kód výjimky: 0xc0000005
Posun chyby: 0x0005ef40
ID chybujícího procesu: 0xc60
Čas spuštění chybující aplikace: 0x1dc6df320e70776
Cesta k chybující aplikaci: D:\SteamLibrary\steamapps\common\Call of Duty 2\cod2mp_s.exe
Cesta k chybujícímu modulu: D:\SteamLibrary\steamapps\common\Call of Duty 2\gfx_d3d_mp_x86_s.dll
ID sestavy: 33a6e407-2544-4b9c-8a70-7ad87ba80462
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

Error: (12/12/2025 09:49:50 PM) (Source: Application Error) (EventID: 1000) (User: DOMINIK)
Description: Název chybující aplikace: ArmouryCrate.UserSessionHelper.exe, verze: 6.3.5.0, časové razítko: 0x68e4a7f7
Název chybujícího modulu: ArmouryCrate.AuraPlugin.dll_unloaded, verze: 6.3.5.0, časové razítko: 0x68e47c77
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002a2b2
ID chybujícího procesu: 0x197c
Čas spuštění chybující aplikace: 0x1dc6ba89b282843
Cesta k chybující aplikaci: C:\Program Files\ASUS\Armoury Crate Service\ArmouryCrate.UserSessionHelper.exe
Cesta k chybujícímu modulu: ArmouryCrate.AuraPlugin.dll
ID sestavy: c332a1a3-d43c-42d9-8de3-0446e54f2048
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

Error: (12/02/2025 10:04:21 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 10.0.26100.7019 programu SystemSettings.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.


System errors:
=============
Error: (12/18/2025 07:38:59 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Na miniportu Microsoft Wi-Fi Direct Virtual Adapter #2, {880b0b31-6e60-45cf-a5b9-d4104135b497}, došlo k události 74.

Error: (12/17/2025 10:55:09 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.

Error: (12/17/2025 08:20:29 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Na miniportu Microsoft Wi-Fi Direct Virtual Adapter #2, {880b0b31-6e60-45cf-a5b9-d4104135b497}, došlo k události 74.

Error: (12/15/2025 09:42:56 PM) (Source: DCOM) (EventID: 10029) (User: DOMINIK)
Description: U aktivace identifikátoru CLSID Windows.Media.Capture.Internal.AppCaptureShell vypršel časový limit během čekání na zastavení služby BcastDVRUserService_329741a.

Error: (12/15/2025 09:38:55 PM) (Source: DCOM) (EventID: 10029) (User: DOMINIK)
Description: U aktivace identifikátoru CLSID Windows.Media.Capture.AppCaptureManager vypršel časový limit během čekání na zastavení služby BcastDVRUserService_329741a.

Error: (12/15/2025 09:34:54 PM) (Source: DCOM) (EventID: 10029) (User: DOMINIK)
Description: U aktivace identifikátoru CLSID Windows.Media.Capture.Internal.AppCaptureShell vypršel časový limit během čekání na zastavení služby BcastDVRUserService_329741a.

Error: (12/15/2025 09:30:53 PM) (Source: DCOM) (EventID: 10029) (User: DOMINIK)
Description: U aktivace identifikátoru CLSID Windows.Media.Capture.AppCaptureManager vypršel časový limit během čekání na zastavení služby BcastDVRUserService_329741a.

Error: (12/15/2025 07:19:31 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Na miniportu Microsoft Wi-Fi Direct Virtual Adapter #2, {880b0b31-6e60-45cf-a5b9-d4104135b497}, došlo k události 74.


Windows Defender:
================
Date: 2025-12-17 20:20:30
Description:
Antivirová ochrana v programu Microsoft Defender şĉãņ ħáş ьëέñ ѕтŏφрзđ ъèƒóгĕ ςõмρĺзŧìσй.%ň %ŧŚċäπ ІĐ:%ь{1F8A3204-901B-404B-A73D-CBAA0695320B}%π %ťŚčάή Ťγρз:%ъAntimalwarový program%π %ŧЅςάй Рдřãм℮ţеґş:%ьRychlé prohledávání%π %ťŬśęґ:%ьNT AUTHORITY\SYSTEM%ñ %тŞтóр Язášόⁿ:%ъŔРÇ ĉǿⁿиèćţìóп яũňďōŵŋ

Date: 2025-12-07 16:10:36
Description:
Antivirová ochrana v programu Microsoft Defender şĉãņ ħáş ьëέñ ѕтŏφрзđ ъèƒóгĕ ςõмρĺзŧìσй.%ň %ŧŚċäπ ІĐ:%ь{B162EF86-B7C6-40F2-AFC5-AA9363543796}%π %ťŚčάή Ťγρз:%ъAntimalwarový program%π %ŧЅςάй Рдřãм℮ţеґş:%ьRychlé prohledávání%π %ťŬśęґ:%ьNT AUTHORITY\SYSTEM%ñ %тŞтóр Язášόⁿ:%ъŖΡС ćǿñη℮¢тїôл гύиďǿẃη

Date: 2025-12-07 16:00:19
Description:
Antivirová ochrana v programu Microsoft Defender şĉãņ ħáş ьëέñ ѕтŏφрзđ ъèƒóгĕ ςõмρĺзŧìσй.%ň %ŧŚċäπ ІĐ:%ь{55E71CDC-5526-4DAA-868F-B31D12D91EE3}%π %ťŚčάή Ťγρз:%ъAntimalwarový program%π %ŧЅςάй Рдřãм℮ţеґş:%ьRychlé prohledávání%π %ťŬśęґ:%ьNT AUTHORITY\SYSTEM%ñ %тŞтóр Язášόⁿ:%ъŖΡС ćǿñη℮¢тїôл гύиďǿẃη

Date: 2025-12-07 15:47:39
Description:
Antivirová ochrana v programu Microsoft Defender şĉãņ ħáş ьëέñ ѕтŏφрзđ ъèƒóгĕ ςõмρĺзŧìσй.%ň %ŧŚċäπ ІĐ:%ь{C5A41960-0FD4-4E94-80D8-BFC7C7D29F4B}%π %ťŚčάή Ťγρз:%ъAntimalwarový program%π %ŧЅςάй Рдřãм℮ţеґş:%ьRychlé prohledávání%π %ťŬśęґ:%ьNT AUTHORITY\SYSTEM%ñ %тŞтóр Язášόⁿ:%ъŖΡС ćǿñη℮¢тїôл гύиďǿẃη

Date: 2025-12-04 00:32:28
Description:
Antivirová ochrana v programu Microsoft Defender şĉãņ ħáş ьëέñ ѕтŏφрзđ ъèƒóгĕ ςõмρĺзŧìσй.%ň %ŧŚċäπ ІĐ:%ь{2C59E450-4059-41BA-9B72-BCEDD24366D7}%π %ťŚčάή Ťγρз:%ъAntimalwarový program%π %ŧЅςάй Рдřãм℮ţеґş:%ьRychlé prohledávání%π %ťŬśęґ:%ьNT AUTHORITY\SYSTEM%ñ %тŞтóр Язášόⁿ:%ъŖΡС ćǿñη℮¢тїôл гύиďǿẃη

==================== Memory info ===========================

BIOS: American Megatrends International, LLC. FX517ZM.316 12/09/2022
Motherboard: ASUSTeK COMPUTER INC. FX517ZM
Processor: 12th Gen Intel(R) Core(TM) i7-12650H
Percentage of memory in use: 55%
Total physical RAM: 16005.17 MB
Available physical RAM: 7148 MB
Total Virtual: 24197.17 MB
Available Virtual: 14478.11 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:475.61 GB) (Free:227.16 GB) (Model: NVMe INTEL SSDPEKNU512GZ) NTFS
Drive d: (Data) (Fixed) (Total:931.5 GB) (Free:321.36 GB) (Model: NVMe KINGSTON SNV3S1000G) NTFS

\\?\Volume{172fa4f1-9868-40d3-9808-cd70702afa80}\ () (Fixed) (Total:0.8 GB) (Free:0.1 GB) NTFS
\\?\Volume{485d5b70-c404-4de1-a61e-eb89af904a93}\ (MYASUS) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
\\?\Volume{79feb94b-5614-4c3b-a8f9-6694a29819b9}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 2A560E2F)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================


předem moc děkuji.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119694
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spouštění větráčku a záhadné stahování souborů

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Doomis
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 27 kvě 2014 18:41

Re: spouštění větráčku a záhadné stahování souborů

#3 Příspěvek od Doomis »

Děkuji za rychlou reakci. Adwcleaner nic nenašel, ale i tak jsem dal preventivně opravit. Posílám log po restartu:

# -------------------------------
# Malwarebytes AdwCleaner 8.6.0.613
# -------------------------------
# Build: 08-19-2025
# Database: 2025-08-19.3 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-18-2025
# Duration: 00:00:02
# OS: Windows 11 (Build 26200.7462)
# Cleaned: 0
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1422 octets] - [18/12/2025 09:21:52]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119694
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spouštění větráčku a záhadné stahování souborů

#4 Příspěvek od Rudy »

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
Otevřte poznámkový blok a zkopírujte do něj:
Task: {9423CF0D-171C-4F5D-A9D6-7FCE1F21FF2B} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {CF6FA53A-495D-4140-89EF-1E4851982A95} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {53397244-D235-47A1-A09F-66A1E9A0F9A2} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2023250797-1762292065-965675215-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File) <==== ATTENTION
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
C:\Users\Domin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C}\localserver32 -> C:\Users\Domin\AppData\Local\Programs\TeamSpeak\notification_helper.exe => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{74F5CC00-49A9-11CF-A2F9-444553540000}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD LT 2018\en-US\acadltficn.dll => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
FirewallRules: [{D0FDFD09-A3B1-44C1-BA9D-63E321433A1B}] => (Allow) D:\program files\asus\aacambienthal\aacambientlighting.exe => No File
FirewallRules: [{A97342BE-73AF-4D1F-A1BF-460D2FBA209B}] => (Allow) D:\SteamLibrary\steamapps\common\ItTakesTwo\Nuts\Binaries\Win64\ItTakesTwo.exe => No File
FirewallRules: [{A0E8AA0F-0134-43BC-AF1F-6EB70075FD3F}] => (Allow) D:\SteamLibrary\steamapps\common\ItTakesTwo\Nuts\Binaries\Win64\ItTakesTwo.exe => No File
FirewallRules: [{60E1625E-AAED-454F-9E36-A0C1CC910350}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia The Old Country\MafiaTheOldCountry\Binaries\Win64\MafiaTheOldCountry.exe => No File
FirewallRules: [{D4F0C82A-C7B3-427F-9999-C6A09148F28A}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia The Old Country\MafiaTheOldCountry\Binaries\Win64\MafiaTheOldCountry.exe => No File
FirewallRules: [{BC51024D-C43A-4902-9D98-E59026536EB1}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\KingdomComeDeliverance2\Bin\Win64MasterMasterSteamPGO\KingdomCome.exe => No File
FirewallRules: [{51185AAE-1BFA-4357-926C-DA0BDCD29E0D}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\KingdomComeDeliverance2\Bin\Win64MasterMasterSteamPGO\KingdomCome.exe => No File
FirewallRules: [{45156427-947A-482C-9BD8-15B8B58557FA}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => No File
FirewallRules: [{AB1989BB-EB89-4BBA-8BA8-163DE03D8505}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => No File
FirewallRules: [UDP Query User{C385DF35-DDBD-490E-B3C6-ADBF5B8337FB}C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe] => (Allow) C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe => No File
FirewallRules: [TCP Query User{FEA56304-DCAF-491F-9D7B-C8C746C52D0E}C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe] => (Allow) C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe => No File
FirewallRules: [UDP Query User{74938B1C-8F60-4004-9100-AA1E3FCE6682}C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [TCP Query User{6B5F56D2-48DC-487D-A732-A921966A6F7C}C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{51EE9B85-4CAD-4A07-8F71-187A71B85D63}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{68175CD5-5E39-4B9D-92CA-D828A1B9412B}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{FDB1FC10-F88E-4864-A73C-01BBD4F725F7}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{9AFF76D6-10DD-46B0-A2F7-48CD0CB2BB75}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{D09EF147-7C27-4B45-8D73-B2AA5F98F467}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [{8136FA4D-29DD-421A-9573-A42D33D5632B}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [{B6CE02B4-C8C2-4F63-8832-F683AA419C82}] => (Block) %ProgramFiles%\Autodesk\AutoCAD LT 2018\acadlt.exe => No File
FirewallRules: [{B47F3C0D-FACA-4BB8-8783-4C95257F8E98}] => (Block) %ProgramFiles%\Autodesk\AutoCAD LT 2018\acadlt.exe => No File
FirewallRules: [{01EAC10A-C7A3-48FD-A839-AC6FC35C4DC7}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Grand Theft Auto IV\GTAIV\PlayGTAIV.exe => No File
FirewallRules: [{EDD393A8-BBD4-4D09-A221-71D0908636EC}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Grand Theft Auto IV\GTAIV\PlayGTAIV.exe => No File
FirewallRules: [{861EC91A-0B3B-438C-9DB0-3478FEAE1D27}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{2E8CEFE2-3BD6-461A-9BA6-24365B2BEF09}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{DFDEEC88-0E75-4545-8C51-FA495407A87A}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia II Definitive Edition\2KLauncher\LauncherPatcher.exe => No File
FirewallRules: [{7621035E-6AEB-4808-B8CB-81D19474A558}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia II Definitive Edition\2KLauncher\LauncherPatcher.exe => No File
FirewallRules: [TCP Query User{FEBD7F82-CD22-4CAB-85A6-C209277E717E}C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe] => (Block) C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{1B0D7ACE-2CCF-45E9-9687-DEAB64287F21}C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe] => (Block) C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{2986BC8E-EFDA-486B-AD01-356564D9FE06}C:\program files\programy\kodi\kodi.exe] => (Block) C:\program files\programy\kodi\kodi.exe => No File
FirewallRules: [UDP Query User{2548AE83-F7B3-44D2-87B1-BB6BB7CE48DE}C:\program files\programy\kodi\kodi.exe] => (Block) C:\program files\programy\kodi\kodi.exe => No File
FirewallRules: [{0D9A0154-88FD-4190-B95F-108F6448E75F}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => No File

EmptyTemp:
Hosts:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Doomis
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 27 kvě 2014 18:41

Re: spouštění větráčku a záhadné stahování souborů

#5 Příspěvek od Doomis »

Fix result of Farbar Recovery Scan Tool (x64) Version: 20-11-2025
Ran by Domin (18-12-2025 15:35:40) Run:1
Running from C:\Users\Domin\Desktop
Loaded Profiles: Domin
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Otevřte poznámkový blok a zkopírujte do něj:
Task: {9423CF0D-171C-4F5D-A9D6-7FCE1F21FF2B} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {CF6FA53A-495D-4140-89EF-1E4851982A95} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {53397244-D235-47A1-A09F-66A1E9A0F9A2} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2023250797-1762292065-965675215-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File) <==== ATTENTION
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
C:\Users\Domin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C}\localserver32 -> C:\Users\Domin\AppData\Local\Programs\TeamSpeak\notification_helper.exe => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{74F5CC00-49A9-11CF-A2F9-444553540000}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD LT 2018\en-US\acadltficn.dll => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
FirewallRules: [{D0FDFD09-A3B1-44C1-BA9D-63E321433A1B}] => (Allow) D:\program files\asus\aacambienthal\aacambientlighting.exe => No File
FirewallRules: [{A97342BE-73AF-4D1F-A1BF-460D2FBA209B}] => (Allow) D:\SteamLibrary\steamapps\common\ItTakesTwo\Nuts\Binaries\Win64\ItTakesTwo.exe => No File
FirewallRules: [{A0E8AA0F-0134-43BC-AF1F-6EB70075FD3F}] => (Allow) D:\SteamLibrary\steamapps\common\ItTakesTwo\Nuts\Binaries\Win64\ItTakesTwo.exe => No File
FirewallRules: [{60E1625E-AAED-454F-9E36-A0C1CC910350}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia The Old Country\MafiaTheOldCountry\Binaries\Win64\MafiaTheOldCountry.exe => No File
FirewallRules: [{D4F0C82A-C7B3-427F-9999-C6A09148F28A}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia The Old Country\MafiaTheOldCountry\Binaries\Win64\MafiaTheOldCountry.exe => No File
FirewallRules: [{BC51024D-C43A-4902-9D98-E59026536EB1}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\KingdomComeDeliverance2\Bin\Win64MasterMasterSteamPGO\KingdomCome.exe => No File
FirewallRules: [{51185AAE-1BFA-4357-926C-DA0BDCD29E0D}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\KingdomComeDeliverance2\Bin\Win64MasterMasterSteamPGO\KingdomCome.exe => No File
FirewallRules: [{45156427-947A-482C-9BD8-15B8B58557FA}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => No File
FirewallRules: [{AB1989BB-EB89-4BBA-8BA8-163DE03D8505}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => No File
FirewallRules: [UDP Query User{C385DF35-DDBD-490E-B3C6-ADBF5B8337FB}C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe] => (Allow) C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe => No File
FirewallRules: [TCP Query User{FEA56304-DCAF-491F-9D7B-C8C746C52D0E}C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe] => (Allow) C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe => No File
FirewallRules: [UDP Query User{74938B1C-8F60-4004-9100-AA1E3FCE6682}C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [TCP Query User{6B5F56D2-48DC-487D-A732-A921966A6F7C}C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{51EE9B85-4CAD-4A07-8F71-187A71B85D63}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{68175CD5-5E39-4B9D-92CA-D828A1B9412B}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{FDB1FC10-F88E-4864-A73C-01BBD4F725F7}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{9AFF76D6-10DD-46B0-A2F7-48CD0CB2BB75}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe => No File
FirewallRules: [{D09EF147-7C27-4B45-8D73-B2AA5F98F467}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [{8136FA4D-29DD-421A-9573-A42D33D5632B}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [{B6CE02B4-C8C2-4F63-8832-F683AA419C82}] => (Block) %ProgramFiles%\Autodesk\AutoCAD LT 2018\acadlt.exe => No File
FirewallRules: [{B47F3C0D-FACA-4BB8-8783-4C95257F8E98}] => (Block) %ProgramFiles%\Autodesk\AutoCAD LT 2018\acadlt.exe => No File
FirewallRules: [{01EAC10A-C7A3-48FD-A839-AC6FC35C4DC7}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Grand Theft Auto IV\GTAIV\PlayGTAIV.exe => No File
FirewallRules: [{EDD393A8-BBD4-4D09-A221-71D0908636EC}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Grand Theft Auto IV\GTAIV\PlayGTAIV.exe => No File
FirewallRules: [{861EC91A-0B3B-438C-9DB0-3478FEAE1D27}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{2E8CEFE2-3BD6-461A-9BA6-24365B2BEF09}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe => No File
FirewallRules: [{DFDEEC88-0E75-4545-8C51-FA495407A87A}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia II Definitive Edition\2KLauncher\LauncherPatcher.exe => No File
FirewallRules: [{7621035E-6AEB-4808-B8CB-81D19474A558}] => (Allow) C:\Program Files\Programy\Steam\steamapps\common\Mafia II Definitive Edition\2KLauncher\LauncherPatcher.exe => No File
FirewallRules: [TCP Query User{FEBD7F82-CD22-4CAB-85A6-C209277E717E}C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe] => (Block) C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{1B0D7ACE-2CCF-45E9-9687-DEAB64287F21}C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe] => (Block) C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{2986BC8E-EFDA-486B-AD01-356564D9FE06}C:\program files\programy\kodi\kodi.exe] => (Block) C:\program files\programy\kodi\kodi.exe => No File
FirewallRules: [UDP Query User{2548AE83-F7B3-44D2-87B1-BB6BB7CE48DE}C:\program files\programy\kodi\kodi.exe] => (Block) C:\program files\programy\kodi\kodi.exe => No File
FirewallRules: [{0D9A0154-88FD-4190-B95F-108F6448E75F}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => No File

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
Otevřte poznámkový blok a zkopírujte do něj: => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9423CF0D-171C-4F5D-A9D6-7FCE1F21FF2B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9423CF0D-171C-4F5D-A9D6-7FCE1F21FF2B}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Location\Notifications" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CF6FA53A-495D-4140-89EF-1E4851982A95}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF6FA53A-495D-4140-89EF-1E4851982A95}" => removed successfully
C:\WINDOWS\System32\Tasks\ASUS\P508PowerAgent_sdk => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS\P508PowerAgent_sdk" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{53397244-D235-47A1-A09F-66A1E9A0F9A2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53397244-D235-47A1-A09F-66A1E9A0F9A2}" => removed successfully
C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2023250797-1762292065-965675215-500 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-2023250797-1762292065-965675215-500" => removed successfully
Could not move "C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2" => Scheduled to move on reboot.
C:\Users\Domin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741} => removed successfully
HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6} => removed successfully
HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98} => removed successfully
HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C} => removed successfully
HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{74F5CC00-49A9-11CF-A2F9-444553540000} => removed successfully
HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3} => removed successfully
HKU\S-1-5-21-1810987290-2590352904-1031025447-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D0FDFD09-A3B1-44C1-BA9D-63E321433A1B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A97342BE-73AF-4D1F-A1BF-460D2FBA209B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A0E8AA0F-0134-43BC-AF1F-6EB70075FD3F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{60E1625E-AAED-454F-9E36-A0C1CC910350}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D4F0C82A-C7B3-427F-9999-C6A09148F28A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BC51024D-C43A-4902-9D98-E59026536EB1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{51185AAE-1BFA-4357-926C-DA0BDCD29E0D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{45156427-947A-482C-9BD8-15B8B58557FA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AB1989BB-EB89-4BBA-8BA8-163DE03D8505}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C385DF35-DDBD-490E-B3C6-ADBF5B8337FB}C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FEA56304-DCAF-491F-9D7B-C8C746C52D0E}C:\program files\programy\steam\steamapps\common\need for speed hot pursuit remastered\nfs11remastered.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{74938B1C-8F60-4004-9100-AA1E3FCE6682}C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6B5F56D2-48DC-487D-A732-A921966A6F7C}C:\program files\programy\steam\steamapps\common\red dead redemption 2\rdr2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{51EE9B85-4CAD-4A07-8F71-187A71B85D63}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{68175CD5-5E39-4B9D-92CA-D828A1B9412B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FDB1FC10-F88E-4864-A73C-01BBD4F725F7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9AFF76D6-10DD-46B0-A2F7-48CD0CB2BB75}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D09EF147-7C27-4B45-8D73-B2AA5F98F467}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8136FA4D-29DD-421A-9573-A42D33D5632B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B6CE02B4-C8C2-4F63-8832-F683AA419C82}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B47F3C0D-FACA-4BB8-8783-4C95257F8E98}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{01EAC10A-C7A3-48FD-A839-AC6FC35C4DC7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EDD393A8-BBD4-4D09-A221-71D0908636EC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{861EC91A-0B3B-438C-9DB0-3478FEAE1D27}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2E8CEFE2-3BD6-461A-9BA6-24365B2BEF09}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DFDEEC88-0E75-4545-8C51-FA495407A87A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7621035E-6AEB-4808-B8CB-81D19474A558}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FEBD7F82-CD22-4CAB-85A6-C209277E717E}C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1B0D7ACE-2CCF-45E9-9687-DEAB64287F21}C:\program files\programy\steam\steamapps\common\grand theft auto v\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2986BC8E-EFDA-486B-AD01-356564D9FE06}C:\program files\programy\kodi\kodi.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2548AE83-F7B3-44D2-87B1-BB6BB7CE48DE}C:\program files\programy\kodi\kodi.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0D9A0154-88FD-4190-B95F-108F6448E75F}" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 85236924 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 751539238 B
Windows/system/drivers => 493947 B
Edge => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 10330 B
Domin => 74884549 B

RecycleBin => 9782525 B
EmptyTemp: => 879.2 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 18-12-2025 15:36:56)

C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 => Could not move

==== End of Fixlog 15:36:56 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119694
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spouštění větráčku a záhadné stahování souborů

#6 Příspěvek od Rudy »

Smazáno. Nastala změna k lepšímu?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Doomis
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 27 kvě 2014 18:41

Re: spouštění větráčku a záhadné stahování souborů

#7 Příspěvek od Doomis »

Takhle všechno? Zkusím restartovat a ozvu se. Zatím moc děkuji. Zkusím lehkou zátěž a větší.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119694
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spouštění větráčku a záhadné stahování souborů

#8 Příspěvek od Rudy »

Mělo by být, nic závžného jsem tam nenašel. Jsou to jen zbytečnosti. Vyzkoušejte a ozvěte se.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Doomis
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 27 kvě 2014 18:41

Re: spouštění větráčku a záhadné stahování souborů

#9 Příspěvek od Doomis »

Dobrý den, děkuji za pomoc. Zdá se, že je zase klidný. Ještě si v mezičase vyfoukám větráčky a bude jako nový :) moc děkuji, podpořím Vás. Pěkný den a klidné svátky.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119694
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spouštění větráčku a záhadné stahování souborů

#10 Příspěvek od Rudy »

Také přeji hezké a klidné svátky! Za podporu děkujeme a vy nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“