sami se instaluji aplikace
Napsal: 25 pro 2025 21:34
Dobrý den
Prosim o kontrolu logu. Sami se instaluji aplikace. Opera, nejaky 360 total security free, click to aim AD, Bright VPN atd. Mam 10 leteho syna ktery hraje a zda se ze instaluje co kde vidi.
dekuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2025
Ran by laser (administrator) on DAVID (ASUSTeK COMPUTER INC. TUF Gaming FX505GM_FX505GM) (25-12-2025 21:16:55)
Running from C:\Users\laser\Desktop\FRST64.exe
Loaded Profiles: laser & WsiAccount
Platform: Microsoft Windows 11 Home Version 25H2 26200.7462 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\PopWndLog.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <4>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe <8>
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(C:\Program Files\LGHUB\lghub_updater.exe ->) (Logitech Inc -> Sentry and Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\ShadowPlay\nvsphelper64.exe
(C:\Users\laser\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\laser\AppData\Local\Programs\Opera\125.0.5729.49\opera_crashreporter.exe
(C:\Users\laser\MediaGet2\mediaget.exe ->) (Global Microtrading PTE. LTD -> ) C:\Users\laser\MediaGet2\mediaget_crashpad_handler.exe
(C:\Users\laser\MediaGet2\mediaget.exe ->) (Infatica Pte. Ltd. -> ) C:\Users\laser\AppData\Local\Infatica-m\infatica-service-app.exe
(C:\Users\laser\MediaGet2\mediaget.exe ->) (The Qt Company Oy -> The Qt Company Ltd.) C:\Users\laser\MediaGet2\QtWebEngineProcess.exe
(Discord Inc. -> Discord Inc.) C:\Users\laser\AppData\Local\Discord\app-1.0.9219\Discord.exe <6>
(DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxEM.exe
(explorer.exe ->) (Bright Data Ltd -> Bright Data Ltd.) C:\Program Files (x86)\Bright VPN\Bright VPN.exe <3>
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Global Microtrading PTE. LTD -> MediaGet) C:\Users\laser\MediaGet2\mediaget.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <41>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\laser\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\laser\AppData\Local\Programs\Opera\opera.exe <12>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\AsusOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(services.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe
(services.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_8559c34713c70ce4\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_3623bab62426ba87\Intel_PIE_Service.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Windows\System32\mfevtps.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_2047fc29611592bd\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> WhatsApp.Root) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2587.9.0_x64__cv1g1gvanyjgm\WhatsApp.Root.exe
(sihost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek Computer Inc.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2512.1001.34.0_x64__8wekyb3d8bbwe\XboxPcTray.exe
(svchost.exe ->) (ASUSTek Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUSTeK COMPUTER INC\Asus Power Scheme\ASUSPowerScheme.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrl.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2512.1001.34.0_x64__8wekyb3d8bbwe\XboxPcApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2512.1001.34.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.195.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.222.1112.0002_1\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [413000 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [50941392 2025-12-17] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [5750936 2025-12-23] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Discord] => C:\Users\laser\AppData\Local\Discord\Update.exe [1526504 2024-09-04] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [MicrosoftEdgeAutoLaunch_68D9B7BDED78E42E32EDD98D937439AB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4228688 2025-12-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [24686744 2025-12-12] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [MediaGet2] => C:\Users\laser\MediaGet2\mediaget.exe [12475800 2025-12-25] (Global Microtrading PTE. LTD -> MediaGet)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Infatica-m] => C:\Users\laser\AppData\Local\Infatica-m\infatica-service-app.exe [7635008 2025-12-25] (Infatica Pte. Ltd. -> )
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Bright VPN] => C:\Program Files (x86)\Bright VPN\Bright VPN.exe [136519712 2025-12-25] (Bright Data Ltd -> Bright Data Ltd.)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Opera Browser Assistant] => C:\Users\laser\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4709336 2025-10-27] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Opera Stable] => C:\Users\laser\AppData\Local\Programs\Opera\opera.exe [2088408 2025-12-18] (Opera Norway AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{49210152-871f-4ffa-961d-a172abcbc09d}] -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2025-11-06] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\143.0.7499.170\Installer\chrmstp.exe [2025-12-23] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {D33BE7A1-FAC8-47C9-8A4E-AB9F8C9D7444} - System32\Tasks\ASUS Display Control => C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrl.exe [4713440 2018-06-04] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {07AA90B3-B9AF-4DCC-BD5E-573325424DD7} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {BB48A1E0-E2C0-4A8C-86B6-DD79347A6E7E} - System32\Tasks\ASUS Power Scheme Service => C:\Program Files\ASUSTeK COMPUTER INC\Asus Power Scheme\AsusPowerScheme.exe [4463584 2018-06-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {C0B075DB-4658-49D2-B1C7-FE3BD8824620} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSoftwareManager\AsusUpdateChecker.exe [846384 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {06530565-7C3B-4206-AA94-0EF645AB99DD} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4471344 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {BFC88BA1-721D-44F2-925A-EC212A4FED47} - System32\Tasks\DSB Notification => C:\Program Files\ASUS\DSB Notification\DSBNotification.exe [782816 2018-05-11] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {D1D22C49-FD9A-4E5F-A265-BB8F18F342A0} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem144.0.7547.0{0410F4F4-6E37-4A0B-B60B-1AF6D2277B30} => C:\Program Files (x86)\Google\GoogleUpdater\144.0.7547.0\updater.exe [7056536 2025-11-26] (Google LLC -> Google LLC)
Task: {E83B0A35-8823-4921-BD70-39F56AFD795C} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\av\McAfee VirusScan\upgrade.exe [37909112 2018-01-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {E4917B10-2717-4DA0-A6EB-F9DAF13DC966} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [1965736 2017-12-12] (McAfee, Inc. -> McAfee, Inc.)
Task: {01F13DCB-D9F3-4E6C-B69E-8DBC47AF94F6} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {5BFF0FD0-0D81-42EF-BA8D-79C784BADCEE} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {DB48C914-216A-404A-9A16-9C9BF816A1ED} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [745296 2017-10-05] (McAfee, Inc. -> McAfee, Inc.)
Task: {146F1832-629B-443D-AA22-0AB170CD63CC} - System32\Tasks\Microsoft\Windows\Setup\PITRTask => {093cb270-c282-4c22-b2ea-7d2bf1c30bbf} C:\WINDOWS\system32\oobe\PITRTask.dll [118784 2025-12-10] (Microsoft Windows -> Microsoft Corporation)
Task: {DD12BD6B-E8D4-489C-8AC3-F0A9B340266D} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3324528 2025-10-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CC6990F0-950C-45F7-A8EC-3D68C37403BA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {77B3F7C0-C76C-42C1-95C2-3FF826E43420} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {66662C3E-4A9A-46E0-9D02-4066F2BA1FBE} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [654784 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5FD8E8EE-4461-4AA3-B75F-E4DDCE65A506} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0EBAEF1-B070-4F43-ADE1-0924C9D1635F} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {3A68CECD-08E7-425E-ABB3-9A2397FE0282} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {038B3A1D-0E6E-4992-9082-FA153633B81B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {B6D5D421-6696-4F92-971E-354F3D910A2F} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3795286163-1351623110-3534515452-1001 => C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.222.1112.0002_1\OneDriveLauncher.exe [745832 2025-12-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {6BF965EF-9868-41E2-B3B7-739600DA7C0F} - System32\Tasks\Opera scheduled assistant Autoupdate 1766688691 => C:\Users\laser\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [6233560 2025-12-18] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --installdir="C:\Users\laser\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {ABF09CEC-E44D-4334-9CA6-BF7D730BFEBC} - System32\Tasks\Opera scheduled Autoupdate 1766688682 => C:\Users\laser\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [6233560 2025-12-18] (Opera Norway AS -> Opera Software)
Task: {E7A4494E-1703-4600-9DE7-88BF210038A8} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [861984 2019-02-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{061b6c30-728b-47fc-97da-c65123570088}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2330bf5a-a3a5-4755-b267-c325861828b3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2330bf5a-a3a5-4755-b267-c325861828b3}\C4163756274633: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2330bf5a-a3a5-4755-b267-c325861828b3}\C416375627465374: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{dbced7d6-c2c7-47d9-80e0-8d2162094299}: [DhcpNameServer] 10.66.40.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default [2025-12-25]
Edge HomePage: Default -> hxxp://www.google.com
Edge StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
Edge Session Restore: Default -> is enabled.
Edge Extension: (McAfee® WebAdvisor) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2025-12-10]
Edge Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-12-21]
Edge Extension: (Google Mail Checker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\glbpkcehjkihaknkjifkehdpjfngbdga [2025-01-28]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2025-12-16]
Edge Extension: (Edge relevant text changes) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-01-27]
FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default [2025-11-27]
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (AVG Secure Search) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2025-01-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-27]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2025-01-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-01-27]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1 [2025-12-25]
CHR Notifications: Profile 1 -> hxxps://cvul3fe071bc739eg1cg.potentialconnection.co.in; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.tiktok.com
CHR Session Restore: Profile 1 -> is enabled.
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-12-12]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-12-19]
CHR Extension: (360 Internet Protection) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\glcimepnljoholdmjchkloafkggfoijh [2025-12-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-01-27]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\System Profile [2025-12-25]
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\AsusAppService\AsusAppService.exe [1156144 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSDisplayCtrolService; C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe [16864 2018-06-04] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSoftwareManager\AsusSoftwareManager.exe [1410096 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\AsusOptimization\AsusOptimization.exe [206608 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSwitch\AsusSwitch.exe [652848 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4471344 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [599824 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3386064 2025-11-27] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [20276904 2025-03-10] (BattlEye Innovations e.K. -> )
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc. -> McAfee, Inc.)
R2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [223640 2019-09-03] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2025-01-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [959216 2025-05-31] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3344336 2025-12-17] (Epic Games Inc. -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [367064 2024-11-23] (Epic Games Inc. -> Epic Games, Inc.)
R3 GameInputRedistService; C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe [141680 2025-10-20] (Microsoft Corporation -> Microsoft Corporation)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [302416 2018-06-29] (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [19908248 2025-12-12] (Logitech Inc -> Logitech, Inc.)
S4 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_8\McApExe.exe [730888 2018-05-17] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2017-09-27] (McAfee, Inc. -> McAfee, Inc.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.7.371.0\McCSPServiceHost.exe [2140888 2017-12-14] (McAfee, Inc. -> McAfee, Inc.)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MpDefenderCoreService.exe [2063376 2025-12-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [359888 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [512976 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [475600 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-20] (McAfee, Inc. -> McAfee, Inc.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_2047fc29611592bd\Display.NvContainer\NVDisplay.Container.exe [1275608 2025-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1061528 2018-03-06] (McAfee, Inc. -> McAfee, Inc.)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1098888 2025-09-23] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 QHProtected; C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe [3082096 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
R2 RefreshRateService; C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe [40672 2021-09-10] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1576056 2025-12-03] (Rockstar Games, Inc. -> Rockstar Games)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\NisSrv.exe [4426832 2025-12-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MsMpEng.exe [290704 2025-12-18] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S1 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [199896 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [100592 2023-12-21] (Microsoft Windows Hardware Compatibility Publisher -> 360.cn)
R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [351296 2025-04-03] (Microsoft Windows Hardware Compatibility Publisher -> 360.cn)
S1 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [58200 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
U0 360elam64; C:\WINDOWS\System32\DRIVERS\360elam64.sys [18048 2025-08-22] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn)
R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [577264 2025-07-23] (Microsoft Windows Hardware Compatibility Publisher -> 360.cn)
S4 360Hvm; C:\WINDOWS\System32\Drivers\360Hvm64.sys [460056 2025-10-28] (Microsoft Windows Hardware Compatibility Publisher -> 360安全中心)
R3 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [96424 2023-03-15] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemAnalysis\AsusSAIO.sys [51296 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [7859856 2025-11-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77216 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34488 2022-08-09] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333192 2025-11-18] (Microsoft Windows -> Microsoft Corporation)
R3 logi_generic_hid_filter; C:\WINDOWS\system32\drivers\logi_generic_hid_filter.sys [62400 2025-12-12] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2025-12-12] (Logitech Inc -> Logitech)
R3 logi_joy_hid_filter; C:\WINDOWS\system32\drivers\logi_joy_hid_filter.sys [63936 2025-12-12] (Logitech Inc -> Logitech)
R3 logi_joy_hid_lo; C:\WINDOWS\system32\drivers\logi_joy_hid_lo.sys [51648 2025-12-12] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2025-12-12] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2025-12-12] (Logitech Inc -> Logitech)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [496544 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [357792 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83952 2018-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [528288 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [948128 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [521104 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108432 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115104 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252832 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [21928 2025-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [635272 2025-12-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102792 2025-12-18] (Microsoft Windows -> Microsoft Corporation)
S0 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-12-25 21:16 - 2025-12-25 21:17 - 000037532 _____ C:\Users\laser\Desktop\FRST.txt
2025-12-25 21:14 - 2025-12-25 21:14 - 002444288 _____ (Farbar) C:\Users\laser\Desktop\FRST64.exe
2025-12-25 20:57 - 2025-12-25 20:57 - 004875672 _____ () C:\Users\laser\Downloads\MediaGet_id838675ids1s.exe
2025-12-25 20:30 - 2025-12-25 20:30 - 000000000 ____D C:\ProgramData\360Quarant
2025-12-25 19:52 - 2025-12-25 21:10 - 000000000 ____D C:\Users\laser\AppData\Roaming\360safe
2025-12-25 19:52 - 2025-12-25 21:10 - 000000000 ____D C:\ProgramData\360safe
2025-12-25 19:52 - 2025-12-25 20:38 - 000000000 ____D C:\Users\laser\AppData\LocalLow\360WD
2025-12-25 19:51 - 2025-12-25 21:15 - 000000000 ____D C:\Users\laser\AppData\Roaming\360TotalSecurity
2025-12-25 19:51 - 2025-12-25 20:27 - 000000000 ____D C:\Users\laser\AppData\Roaming\bright-vpn
2025-12-25 19:51 - 2025-12-25 19:52 - 000000000 ____D C:\ProgramData\360TotalSecurity
2025-12-25 19:51 - 2025-12-25 19:51 - 000004458 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1766688691
2025-12-25 19:51 - 2025-12-25 19:51 - 000004176 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1766688682
2025-12-25 19:51 - 2025-12-25 19:51 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bright VPN.lnk
2025-12-25 19:51 - 2025-12-25 19:51 - 000001386 _____ C:\Users\laser\Desktop\Prohlížeč Opera.lnk
2025-12-25 19:51 - 2025-12-25 19:51 - 000001386 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2025-12-25 19:51 - 2025-12-25 19:51 - 000001228 _____ C:\Users\Public\Desktop\360 Total Security.lnk
2025-12-25 19:51 - 2025-12-25 19:51 - 000000001 _____ C:\WINDOWS\system32\Drivers\360Hvm64.dat
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 _RSHD C:\360SANDBOX
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Security Center
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 ____D C:\Users\laser\AppData\Local\Opera Software
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 ____D C:\Users\laser\AppData\Local\bright-vpn-updater
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 ____D C:\Program Files (x86)\360
2025-12-25 19:51 - 2023-03-15 09:02 - 000199896 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AntiHacker64.sys
2025-12-25 19:51 - 2023-03-15 09:02 - 000096424 _____ (360.cn) C:\WINDOWS\system32\Drivers\360netmon.sys
2025-12-25 19:51 - 2023-03-15 09:02 - 000058200 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Camera64.sys
2025-12-25 19:50 - 2025-12-25 20:33 - 000000970 _____ C:\Users\laser\infatica-service-app.dat
2025-12-25 19:50 - 2025-12-25 19:51 - 000000000 ____D C:\Program Files (x86)\Bright VPN
2025-12-25 19:50 - 2025-12-25 19:50 - 000000952 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet.lnk
2025-12-25 19:50 - 2025-12-25 19:50 - 000000922 _____ C:\Users\laser\Desktop\MediaGet.lnk
2025-12-25 19:50 - 2025-12-25 19:50 - 000000000 ____D C:\Users\laser\Downloads\MediaGet Downloads
2025-12-25 19:50 - 2025-12-25 19:50 - 000000000 ____D C:\Users\laser\AppData\Roaming\Opera Software
2025-12-25 19:50 - 2025-12-25 19:50 - 000000000 ____D C:\Users\laser\AppData\Local\Infatica-m
2025-12-25 19:50 - 2025-12-25 19:50 - 000000000 ____D C:\Users\laser\AppData\Local\BrightData
2025-12-25 19:50 - 2025-12-25 19:50 - 000000000 ____D C:\ProgramData\BrightData
2025-12-25 19:49 - 2025-12-25 19:51 - 000000000 ____D C:\Users\laser\MediaGet2
2025-12-25 19:49 - 2025-12-25 19:50 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet2
2025-12-25 19:49 - 2025-12-25 19:49 - 004875672 _____ () C:\Users\laser\Downloads\MediaGet_id830567ids1s.exe
2025-12-25 19:49 - 2025-12-25 19:49 - 000000000 ____D C:\Users\laser\AppData\Local\Media Get LLC
2025-12-23 22:50 - 2025-12-23 22:50 - 000000000 _____ C:\Users\laser\Desktop\Nový Textový dokument.txt
2025-12-23 20:34 - 2025-12-23 20:34 - 000714490 _____ C:\WINDOWS\system32\perfh005.dat
2025-12-23 20:34 - 2025-12-23 20:34 - 000153652 _____ C:\WINDOWS\system32\perfc005.dat
2025-12-22 13:08 - 2025-12-25 16:31 - 000000000 ____D C:\Users\laser\Documents\Euro Truck Simulator 2
2025-12-22 12:17 - 2025-12-22 12:17 - 000000222 _____ C:\Users\laser\Desktop\Euro Truck Simulator 2 Demo.url
2025-12-21 13:23 - 2025-12-21 13:23 - 000000000 ____D C:\Users\laser\AppData\Roaming\Minecraft Bedrock
2025-12-19 16:00 - 2025-12-25 11:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-12-12 19:03 - 2025-12-12 19:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_logi_generic_hid_filter_01009.Wdf
2025-12-12 19:02 - 2025-12-25 11:44 - 000000000 ____D C:\Users\laser\AppData\Local\LGHUB
2025-12-12 19:02 - 2025-12-12 19:25 - 000000000 ____D C:\Users\laser\AppData\Roaming\G HUB
2025-12-12 19:02 - 2025-12-12 19:04 - 000000000 ____D C:\Users\laser\AppData\Roaming\lghub
2025-12-12 19:02 - 2025-12-12 19:02 - 000073040 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000063936 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_hid_filter.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000062400 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_generic_hid_filter.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000051648 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_hid_lo.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000044880 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000032080 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2025-12-12 19:02 - 2025-12-12 19:02 - 000000000 ____D C:\ProgramData\Logishrd
2025-12-12 19:02 - 2025-12-12 19:02 - 000000000 ____D C:\Program Files\Logitech
2025-12-12 19:02 - 2025-12-12 19:02 - 000000000 ____D C:\Program Files\Logi
2025-12-12 19:02 - 2025-12-12 19:02 - 000000000 ____D C:\Program Files\LGHUB
2025-12-12 19:01 - 2025-12-12 19:02 - 000000000 ____D C:\ProgramData\LGHUB
2025-12-12 19:00 - 2025-12-12 19:00 - 069589656 _____ (Logitech, Inc.) C:\Users\laser\Downloads\lghub_installer (1).exe
2025-12-12 18:50 - 2025-12-12 18:50 - 069589656 _____ (Logitech, Inc.) C:\Users\laser\Downloads\lghub_installer.exe
2025-12-12 18:50 - 2025-12-12 18:50 - 000000000 ____D C:\Users\laser\AppData\Local\Sentry
2025-12-11 02:33 - 2025-12-11 02:33 - 000000000 ____D C:\WINDOWS\system32\NarratorMCAT
2025-12-10 23:09 - 2025-12-10 23:12 - 000000000 ___HD C:\$WinREAgent
2025-12-10 18:20 - 2025-12-10 18:20 - 000035602 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-12-10 18:20 - 2025-12-10 18:20 - 000035602 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-12-08 12:27 - 2025-12-08 12:27 - 002715256 _____ C:\Users\laser\Downloads\BeamMP_Installer (1).zip
2025-12-03 23:27 - 2025-12-03 23:27 - 000000211 _____ C:\Users\laser\AppData\Roaming\com.reolink.app.client
2025-12-03 21:26 - 2025-12-03 21:27 - 343353215 _____ C:\Users\laser\Downloads\sksuperb2_fastlane.zip
2025-11-28 21:04 - 2025-11-28 21:04 - 000000000 ____D C:\ProgramData\Embody
2025-11-27 16:49 - 2025-11-27 16:49 - 000001635 _____ C:\Users\laser\Desktop\ServerConfig.toml
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-12-25 21:17 - 2025-03-16 00:45 - 000000000 ____D C:\FRST
2025-12-25 21:15 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-12-25 21:12 - 2025-01-28 01:15 - 000000000 ____D C:\Program Files (x86)\Steam
2025-12-25 20:35 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-12-25 20:33 - 2025-01-27 23:30 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2025-12-25 20:29 - 2025-01-27 23:52 - 000000000 ____D C:\Users\laser\AppData\Local\D3DSCache
2025-12-25 20:28 - 2025-01-28 10:40 - 000000000 ____D C:\Users\laser\AppData\Roaming\discord
2025-12-25 20:27 - 2025-01-28 10:40 - 000000000 ____D C:\Users\laser\AppData\Local\Discord
2025-12-25 20:27 - 2025-01-27 23:55 - 000000000 ___RD C:\Users\laser\OneDrive
2025-12-25 20:26 - 2025-01-27 23:52 - 000000000 __SHD C:\Users\laser\IntelGraphicsProfiles
2025-12-25 20:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-12-25 19:53 - 2025-01-28 08:24 - 000000000 ____D C:\ProgramData\NVIDIA
2025-12-25 19:53 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-12-25 19:52 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-12-25 19:50 - 2025-01-27 23:50 - 000000000 ____D C:\Users\laser
2025-12-25 19:43 - 2025-01-28 11:09 - 000000000 ____D C:\Users\laser\AppData\Local\Roblox
2025-12-25 19:06 - 2025-01-28 08:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-12-25 18:49 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-12-25 17:27 - 2025-03-19 20:47 - 000000000 ____D C:\Users\laser\AppData\Local\Battle.net
2025-12-25 17:26 - 2025-03-19 20:47 - 000000000 ____D C:\Program Files (x86)\Battle.net
2025-12-23 22:07 - 2025-01-27 23:57 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-12-23 22:07 - 2025-01-27 23:57 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-12-23 20:34 - 2025-01-27 23:32 - 001692324 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-12-23 20:30 - 2025-01-28 08:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-12-23 20:30 - 2025-01-28 08:28 - 000000288 _____ C:\pefdata.dat
2025-12-23 20:30 - 2025-01-28 08:23 - 000012288 ___SH C:\DumpStack.log.tmp
2025-12-23 20:30 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-12-23 20:30 - 2024-04-01 08:21 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-12-23 12:27 - 2025-09-19 15:29 - 000000000 ____D C:\Users\laser\AppData\Local\BeamNG
2025-12-23 11:43 - 2025-01-28 10:47 - 000000222 _____ C:\Users\laser\Desktop\Farming Simulator 19.url
2025-12-23 11:43 - 2025-01-28 01:20 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-12-22 20:42 - 2025-03-13 11:50 - 000000000 ____D C:\Users\laser\AppData\Local\CrashDumps
2025-12-22 08:52 - 2025-01-27 23:30 - 000003714 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{4E757026-A521-4B61-955B-EF04C6FA9440}
2025-12-22 08:52 - 2025-01-27 23:30 - 000003588 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{39DFE86E-07E4-493B-84B5-ADDCD5027974}
2025-12-22 01:27 - 2025-01-27 23:29 - 000000000 ____D C:\ProgramData\Packages
2025-12-21 16:00 - 2025-08-17 11:05 - 000000000 ____D C:\Users\laser\AppData\Roaming\BeamMP-Launcher
2025-12-21 15:59 - 2025-08-17 11:05 - 000001062 _____ C:\Users\laser\Desktop\BeamMP-Launcher.lnk
2025-12-21 15:59 - 2025-08-17 11:05 - 000001048 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BeamMP-Launcher.lnk
2025-12-21 13:23 - 2025-01-27 23:52 - 000000000 ____D C:\Users\laser\AppData\Local\Packages
2025-12-20 21:52 - 2025-01-28 08:23 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-12-20 21:52 - 2025-01-28 08:23 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-12-20 17:08 - 2025-01-28 01:05 - 000000000 ____D C:\Users\laser\AppData\Roaming\EasyAntiCheat
2025-12-19 20:03 - 2025-09-24 16:38 - 000440696 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_b.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 004606328 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 000878968 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 000289144 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 000244088 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 000166256 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 000153976 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2025-12-19 20:03 - 2025-01-28 10:48 - 000076152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2025-12-19 18:39 - 2025-01-28 01:05 - 000000000 ____D C:\Users\laser\AppData\Local\FortniteGame
2025-12-19 18:39 - 2025-01-28 00:03 - 000000000 ____D C:\Users\laser\AppData\Local\UnrealEngine
2025-12-19 13:10 - 2025-07-17 17:18 - 000001397 _____ C:\Users\laser\Desktop\Roblox Player.lnk
2025-12-19 13:10 - 2025-01-28 11:09 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2025-12-18 13:40 - 2018-11-17 01:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-12-18 13:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-12-18 13:22 - 2025-01-28 10:40 - 000002249 _____ C:\Users\laser\Desktop\Discord.lnk
2025-12-15 19:28 - 2025-01-27 23:54 - 000000000 ____D C:\Users\laser\AppData\Local\NVIDIA Corporation
2025-12-15 19:27 - 2025-09-18 18:12 - 000003834 _____ C:\WINDOWS\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-12-15 19:27 - 2025-09-18 18:12 - 000001436 _____ C:\Users\Public\Desktop\NVIDIA App.lnk
2025-12-15 19:27 - 2018-12-28 15:30 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-12-13 23:17 - 2025-01-27 23:39 - 000004130 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2025-12-13 02:01 - 2025-01-27 23:55 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-12-13 02:01 - 2025-01-27 23:55 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-12-13 02:01 - 2025-01-27 23:55 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-12-13 02:01 - 2025-01-27 23:55 - 000002385 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-12-12 19:02 - 2025-01-27 23:50 - 000000000 ___SD C:\Users\laser\AppData\Roaming\Microsoft\Credentials
2025-12-12 19:01 - 2018-12-28 15:28 - 000000000 ____D C:\ProgramData\Package Cache
2025-12-11 02:34 - 2025-01-28 08:23 - 000297184 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-12-11 02:33 - 2025-07-10 04:05 - 000000000 ____D C:\WINDOWS\system32\ruxim
2025-12-11 02:33 - 2025-01-27 23:13 - 000000000 ____D C:\WINDOWS\InboxApps
2025-12-11 02:33 - 2024-04-01 17:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ___RD C:\Program Files\Windows Defender
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ___RD C:\Program Files (x86)\Windows Defender
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\WUModels
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\DiagTrack
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\BrowserCore
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-12-11 02:33 - 2024-04-01 08:21 - 000000000 ____D C:\WINDOWS\servicing
2025-12-10 18:19 - 2025-01-28 08:25 - 003276800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-12-10 18:12 - 2025-01-28 10:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-12-10 18:10 - 2025-01-28 10:41 - 218369424 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-12-08 16:06 - 2025-01-30 16:09 - 000000000 ____D C:\WINDOWS\Minidump
2025-12-05 00:48 - 2025-07-20 22:33 - 000000000 ____D C:\Users\laser\AppData\Roaming\reolink
2025-12-03 19:46 - 2025-11-02 10:31 - 000000000 ____D C:\ProgramData\Whesvc
2025-11-28 14:47 - 2025-02-05 21:56 - 000000000 ____D C:\Program Files\Rockstar Games
==================== Files in the root of some directories ========
2025-12-25 19:50 - 2025-12-25 20:33 - 000000970 _____ () C:\Users\laser\infatica-service-app.dat
2025-12-03 23:27 - 2025-12-03 23:27 - 000000211 _____ () C:\Users\laser\AppData\Roaming\com.reolink.app.client
2025-07-25 11:05 - 2025-07-25 11:05 - 000000048 ____R () C:\Users\laser\AppData\Local\53489728C91F3DE3E449829AA6B05E28
2025-03-10 18:49 - 2025-03-10 18:49 - 000007605 _____ () C:\Users\laser\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2025
Ran by laser (25-12-2025 21:18:49)
Running from C:\Users\laser\Desktop
Microsoft Windows 11 Home Version 25H2 26200.7462 (X64) (2025-01-27 22:29:34)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3795286163-1351623110-3534515452-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3795286163-1351623110-3534515452-503 - Limited - Disabled)
Guest (S-1-5-21-3795286163-1351623110-3534515452-501 - Limited - Disabled)
laser (S-1-5-21-3795286163-1351623110-3534515452-1001 - Administrator - Enabled) => C:\Users\laser
WDAGUtilityAccount (S-1-5-21-3795286163-1351623110-3534515452-504 - Limited - Disabled)
WsiAccount (S-1-5-21-3795286163-1351623110-3534515452-1002 - Limited - Disabled) => C:\Users\WsiAccount
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: 360 Total Security (Enabled - Up to date) {FFDC234A-CE9B-08F9-406B-F876951CE066}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 11.0.0.1259 - 360 Security Center)
Asus Dispslay Control Service (HKLM\...\{0F0328FA-E13C-4897-89B1-7A08CBF6A938}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
ASUS GiftBox Service (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 3.2.3.0 - ASUSTeK COMPUTER INC.)
ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.1.10.0 - ASUSTeK COMPUTER INC.)
Asus Power Scheme (HKLM\...\{81E49E2E-C0A5-471E-854F-82125D30A828}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BeamMP-Launcher verze 2.0.71 (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\{4A233C59-AF33-417D-B19E-B49D67433455}_is1) (Version: 2.0.71 - BeamMP)
Bright VPN 1.572.298 (HKLM\...\54cf4d4c-268a-577e-8fe3-97e36e306708) (Version: 1.572.298 - Bright Data Ltd.)
Discord (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Discord) (Version: 1.0.9219 - Discord Inc.)
DSB Notification (HKLM\...\{A82D01C4-0F9C-4FD6-9E2F-EDBD1E9826DC}) (Version: 1.2.0 - ASUSTeK COMPUTER INC.)
Epic Games Launcher (HKLM-x32\...\{C5C3EE71-4047-4144-946E-18D500510CB5}) (Version: 1.3.128.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{5122B8BC-D6DF-48FF-8D4E-15A63EEC5073}) (Version: 2.8.1 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 143.0.7499.170 - Google LLC)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.4.11000.6436 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1137 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{B39E9D6B-906D-47C0-8FA1-833987DA6F63}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{CE08DF9B-FD93-4667-8D88-55A216DC6669}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{BEB5BAB5-60E3-46D3-BC68-748807F35B8E}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.5.0.1027 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{49F223FE-D3BD-4FB9-96BF-41361123804A}) (Version: 16.5.0.1027 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{72759DFB-9080-46A5-ACCF-5BA26A6FF3FD}) (Version: 30.100.1727.1 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{2D79E334-B178-45B9-A2A6-7A60A084C268}) (Version: 16.8.0.1000 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{0459ef97-6cc2-4a78-a664-516669c498e2}) (Version: 20.70.0.0u - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{DA51C5EF-89BF-40D5-9D33-02D3B4FB11C1}) (Version: 20.70.0.1716 - Intel Corporation) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2025.9.814157 - Logitech)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R8 - McAfee, Inc.)
MediaGet (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\MediaGet) (Version: 3.01.4337 - Global Microtrading PTE. LTD)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 143.0.3650.96 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 143.0.3650.96 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM\...\{ECB4BDD1-984C-9F25-299C-A9EF75C14197}) (Version: 10.1.26100.6879 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\OneDriveSetup.exe) (Version: 25.222.1112.0002 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{66C00D72-5E34-495E-A4A1-1A31D7BE2FA7}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{632D85A6-B94C-440E-B565-26F73CF778D3}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
NVIDIA App 11.0.5.420 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.5.420 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.5.11504.36206172 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.11504.36206172 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.5.0 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 581.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 581.29 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
Opera Stable 125.0.5729.49 (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Opera 125.0.5729.49) (Version: 125.0.5729.49 - Opera Software)
RefreshRateService (HKLM-x32\...\{7E5E84CB-B190-4658-A4DC-166779C329D1}) (Version: 2.1.0 - ASUSTeK COMPUTER INC.)
Reolink 8.20.5 (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\3e633401-0468-5835-935c-33d2b4b2a764) (Version: 8.20.5 - Reolink Technology Co., Ltd.)
Roblox Player for laser (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for laser (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.105.2705 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.146 - Rockstar Games)
SDÍLEJ.CZ Manager (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\69f070f18ade444c) (Version: 0.0.1.42 - SDÍLEJ.CZ)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.51 - Ghisler Software GmbH)
USB RACING WHEEL (HKLM-x32\...\SM33C1) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-06-11] ()
@{MicrosoftWindows.58683691.InpApp_1000.26100.6899.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.58683691.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.58683691.InpApp_cw5n1h2txyewy [2025-12-11] ()
@{MicrosoftWindows.59379618.InpApp_1000.26100.7171.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.59379618.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.59379618.InpApp_cw5n1h2txyewy [2025-12-11] (Microsoft Windows)
5A894077.McAfeeSecurity -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2025-01-28] (McAfee LLC.)
ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.2.4.0_x64__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.)
ASUS Keyboard Hotkeys -> C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.) [Startup Task]
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.57242383.Tasbar_cw5n1h2txyewy [2025-12-11] (Microsoft Windows)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.59379618.InpApp_cw5n1h2txyewy [2025-12-11] (Microsoft Windows)
Deep Rock Galactic -> C:\Program Files\WindowsApps\CoffeeStainStudios.DeepRockGalactic_39.1.53330.0_x64__496a1srhmar9w [2025-07-02] (Coffee Stain Publishing)
DTS Headphone:X v1 -> C:\Program Files\WindowsApps\dtsinc.dtsheadphonexv1_2.0.0.0_x64__t5j2fzbtdg37r [2025-01-28] (DTS, Inc.)
eManual -> C:\Program Files\WindowsApps\b9eced6f.emanual_2.0.3.0_x86__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.)
Forza Horizon 5 -> C:\Program Files\WindowsApps\Microsoft.624F8B84B80_3.685.421.0_x64__8wekyb3d8bbwe [2025-06-06] (Microsoft Studios)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\appup.intelgraphicscontrolpanel_3.3.0.0_x64__8j3eq9eme6ctt [2025-01-28] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.43.0_x64__w1wdnht996qgy [2025-12-21] (LinkedIn) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2025-01-28] (Microsoft Corp.)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.19127.20402.0_x86__8wekyb3d8bbwe [2025-12-13] (Microsoft Corporation)
Minecraft for Windows -> C:\Program Files\WindowsApps\MICROSOFT.MINECRAFTUWP_1.21.13101.0_x64__8wekyb3d8bbwe [2025-12-18] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.2.2.0_x64__8wekyb3d8bbwe [2025-04-10] (Microsoft Studios)
Minecraft: Java Edition -> C:\Program Files\WindowsApps\Microsoft.MinecraftJavaEdition_1.0.5.0_x64__8wekyb3d8bbwe [2025-04-10] (Microsoft Studios)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy [2025-12-13] (ASUSTeK COMPUTER INC.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.969.0_x64__56jybvy8sckqj [2025-11-08] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.169.0_x64__dt26b99r8h8gj [2025-01-28] (Realtek Semiconductor Corp)
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.143.6538.0_x64__8wekyb3d8bbwe [2025-09-18] (Microsoft Studios)
Warhammer 40,000: Darktide -> C:\Program Files\WindowsApps\FatsharkAB.Warhammer40000DarktideNew_1.9.4599.0_x64__hwm6pnepa3ng2 [2025-09-26] (Fatshark AB)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2587.9.0_x64__cv1g1gvanyjgm [2025-12-22] (WhatsApp Inc.) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3795286163-1351623110-3534515452-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.222.1112.0002_1\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3795286163-1351623110-3534515452-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.222.1112.0002_1\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3795286163-1351623110-3534515452-1001_Classes\CLSID\{DFF20505-B08F-455B-AD70-4FBD055088E0}\localserver32 -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-3795286163-1351623110-3534515452-1002_Classes\CLSID\{D3E34B21-9D75-101A-8C3D-00AA001A1652}\localserver32 -> C:\Program Files\WindowsApps\Microsoft.Paint_11.2503.381.0_x64__8wekyb3d8bbwe\PaintApp\mspaint.exe => No File
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers1: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ContextMenuHandlers4: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_2047fc29611592bd\nvshext.dll [2025-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers6: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [MidisrvTransferComplete] => 0
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\laser\Desktop\asd - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
==================== Loaded Modules (Whitelisted) =============
2025-12-25 20:27 - 2025-12-25 20:27 - 000136704 _____ () [File not signed] \\?\C:\Users\laser\AppData\Local\Temp\3a1bb959-8146-40f4-b48b-b2dba0844d9e.tmp.node
2025-12-25 19:51 - 2025-12-25 19:51 - 002525184 _____ () [File not signed] C:\Program Files (x86)\Bright VPN\ffmpeg.dll
2025-12-25 19:51 - 2025-12-25 19:51 - 000384000 _____ () [File not signed] C:\Program Files (x86)\Bright VPN\libegl.dll
2025-12-25 19:51 - 2025-12-25 19:51 - 006728704 _____ () [File not signed] C:\Program Files (x86)\Bright VPN\libglesv2.dll
2025-12-25 19:51 - 2025-12-25 19:51 - 004486656 _____ () [File not signed] C:\Program Files (x86)\Bright VPN\vk_swiftshader.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 009400320 _____ () [File not signed] C:\Users\laser\MediaGet2\opencv_core320.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000186880 _____ () [File not signed] C:\Users\laser\MediaGet2\opencv_img_hash320.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 002482688 _____ () [File not signed] C:\Users\laser\MediaGet2\opencv_imgcodecs320.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 019027456 _____ () [File not signed] C:\Users\laser\MediaGet2\opencv_imgproc320.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000252416 _____ () [File not signed] C:\Users\laser\MediaGet2\opencv_videoio320.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000384000 _____ () [File not signed] C:\Users\laser\MediaGet2\sentry.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 005635072 _____ (FFmpeg Project) [File not signed] C:\Users\laser\MediaGet2\avcodec-58.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 001106432 _____ (FFmpeg Project) [File not signed] C:\Users\laser\MediaGet2\avformat-58.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000356352 _____ (FFmpeg Project) [File not signed] C:\Users\laser\MediaGet2\avutil-56.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000101376 _____ (FFmpeg Project) [File not signed] C:\Users\laser\MediaGet2\swresample-3.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000412672 _____ (FFmpeg Project) [File not signed] C:\Users\laser\MediaGet2\swscale-5.dll
2018-12-03 22:19 - 2018-12-03 22:19 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2025-12-15 19:27 - 2025-12-15 19:27 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\plugins\NVIDIA Overlay\MessageBusRouter.dll
2025-09-18 18:12 - 2025-12-15 19:27 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 002507264 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\laser\MediaGet2\libcrypto-1_1.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000530432 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\laser\MediaGet2\libssl-1_1.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 076519424 _____ (The Qt Company Ltd.) [File not signed] C:\Users\laser\MediaGet2\Qt5WebEngineCore.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4340]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 192.168.1.1
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Intel(R) Wireless-AC 9560 160MHz -> Netwtw08.sys
Ethernet 2: Realtek PCIe GbE Family Controller #2 -> rt640x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) #2 -> bthpan.sys
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA App\NvDLISR
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\laser\AppData\Local\Packages\Microsoft.GamingApp_8wekyb3d8bbwe\LocalState\wallpaper\2030093255_52.png
HKU\S-1-5-21-3795286163-1351623110-3534515452-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{2C3E84F8-B9AD-4913-B8E1-2BE82C12DA5C}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4980FB51-B7C7-4E41-B667-BD5BCB93B278}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B99805F9-70B1-4DAF-A6C0-55553763332B}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{21A25D2E-214D-4E71-8E8E-E24F17A2BDBD}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{B84B87AD-5BF1-49DD-95CC-48D016378DEB}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{007156DD-4E39-4D0A-91A1-6CFEF61E9762}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{2B0052A2-E874-44AD-8F6E-07A7AB980469}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F573971E-FA41-4FD8-85DE-97CCFA265FA0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9CD24817-9F87-4272-8389-E8DAF44F8AE7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{9839C8E0-0F74-4D17-A910-0BD09676343F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{2C955F80-A667-4520-BBC8-8A9AF9612B15}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 3\RelicCoH3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [{6B973356-5F68-4C59-9CC1-569C8E851409}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 3\RelicCoH3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [TCP Query User{438858E1-FAFD-4056-B158-4A9431AC5D5A}D:\xbox\gtav\gta5.exe] => (Allow) D:\xbox\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{9A1DB50B-70BF-4A35-989E-676366D474CE}D:\xbox\gtav\gta5.exe] => (Allow) D:\xbox\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{5AE25822-D261-4066-A85F-E1ED5314EC80}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Allow) D:\xbox\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed?]
FirewallRules: [UDP Query User{18CCD2FB-4C89-469D-A9A4-BC5F91CD0116}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Allow) D:\xbox\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed?]
FirewallRules: [TCP Query User{C324EF2B-4C33-4027-8B18-36E7A224C7A1}D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{33AD400E-80E4-4AD4-BF5D-C662CC817A12}D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{01776A0B-87F8-4413-AB82-851CEA144F0D}C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe] => (Allow) C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe (Access Denied) [File not signed?]
FirewallRules: [UDP Query User{1579E4E6-AC2D-4488-81BE-D3B0E8CBD113}C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe] => (Allow) C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe (Access Denied) [File not signed?]
FirewallRules: [{EB94567E-1375-4849-B9F6-0DC83D4C7E0B}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB) [File not signed]
FirewallRules: [{BF9D2EC6-02A7-4F2E-BF77-0E18D580A956}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB) [File not signed]
FirewallRules: [TCP Query User{6C8FB92A-B6D9-48D9-9E12-6FA255AC2FFB}D:\xbox\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\xbox\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [UDP Query User{CE2D49F9-1D7D-4321-BD91-F1FBFCFE3986}D:\xbox\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\xbox\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [TCP Query User{035419D5-4758-4C34-B416-0C5A0321745F}D:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) D:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{977ED157-602E-4457-97E0-9F7DFAC31318}D:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) D:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [{8E303220-2A89-4985-9A88-F3E3CF522DD5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wobbly Life\Wobbly Life.exe () [File not signed]
FirewallRules: [{64F69AF9-F6BA-4769-80D0-57C70D70C469}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wobbly Life\Wobbly Life.exe () [File not signed]
FirewallRules: [TCP Query User{86C2E231-F124-49D6-9DF2-3D6BEAEDBB2B}C:\users\laser\appdata\local\programs\reolink\reolink.exe] => (Allow) C:\users\laser\appdata\local\programs\reolink\reolink.exe (Reolink Innovation Inc. -> Reolink Technology Co., Ltd.)
FirewallRules: [UDP Query User{05CB7A3A-EF25-4972-A252-10344BB964C9}C:\users\laser\appdata\local\programs\reolink\reolink.exe] => (Allow) C:\users\laser\appdata\local\programs\reolink\reolink.exe (Reolink Innovation Inc. -> Reolink Technology Co., Ltd.)
FirewallRules: [TCP Query User{5D759539-75D4-4F1B-AC9B-AE032F0DCF95}C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{E7DF12C7-24B0-4C0E-AC26-46E0D53823F3}C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{F50F77FC-BF26-40E8-96EE-26015B3FA23B}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{9533446C-AD99-40AA-A1C8-297CE17FEA3A}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{6D07C9AB-056E-4DEB-AB68-ACC4A1AA5DA4}D:\xbox\dyinglightthebeast\ph_ft\work\bin\x64\dyinglightgame_thebeast_x64_rwdi.exe] => (Allow) D:\xbox\dyinglightthebeast\ph_ft\work\bin\x64\dyinglightgame_thebeast_x64_rwdi.exe (Techland S.A. -> Techland)
FirewallRules: [UDP Query User{87615E16-D1A9-4CED-A421-85361B610942}D:\xbox\dyinglightthebeast\ph_ft\work\bin\x64\dyinglightgame_thebeast_x64_rwdi.exe] => (Allow) D:\xbox\dyinglightthebeast\ph_ft\work\bin\x64\dyinglightgame_thebeast_x64_rwdi.exe (Techland S.A. -> Techland)
FirewallRules: [{5A31ABF3-9AEC-43C2-BDBB-CA01F7E2B0EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Autobahn Police Simulator 2\highwaypatrol2.exe () [File not signed]
FirewallRules: [{E7972DF5-960A-40A3-BEA0-DA6C5050EC27}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Autobahn Police Simulator 2\highwaypatrol2.exe () [File not signed]
FirewallRules: [{CF6C5FF6-51CF-45A0-B892-82DCD4869A56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MonBazou\Mon Bazou.exe () [File not signed]
FirewallRules: [{4BE6C7A1-E544-4353-88DB-B633B2D54C9C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MonBazou\Mon Bazou.exe () [File not signed]
FirewallRules: [TCP Query User{B98064C0-91D0-4B62-9D92-DEA53C90E55D}C:\users\laser\appdata\roaming\beammp-launcher\beammp-launcher.exe] => (Allow) C:\users\laser\appdata\roaming\beammp-launcher\beammp-launcher.exe (BeamMP Mod Team -> BeamMP Ltd.) [File not signed]
FirewallRules: [UDP Query User{2B072B24-8B2C-440A-8D2E-3C5BBFEEA671}C:\users\laser\appdata\roaming\beammp-launcher\beammp-launcher.exe] => (Allow) C:\users\laser\appdata\roaming\beammp-launcher\beammp-launcher.exe (BeamMP Mod Team -> BeamMP Ltd.) [File not signed]
FirewallRules: [TCP Query User{CEA3D8FA-69E8-4115-9FD0-8A6FB2B967CA}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [UDP Query User{898A6C28-3695-400B-9C64-739B08650A03}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{B04E07D6-ECBD-47D9-B325-A165A0891A56}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{8805B2C5-D05D-4C67-90BC-6177CE8D3CBB}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{1A9AB492-3BF7-43B5-9FAC-CDE90C98D36A}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{5140CC79-0288-4DFA-96EE-50E693F23F70}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{127A2E5B-EF9B-49BB-8C52-343B7DFD1E68}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{75B0B488-6473-4109-83B0-3D821F72B88D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{4B833697-CF1F-414C-B9C5-B8663AB41152}C:\xboxgames\minecraft for windows\content\minecraft.windows.exe] => (Allow) C:\xboxgames\minecraft for windows\content\minecraft.windows.exe (Access Denied) [File not signed?]
FirewallRules: [UDP Query User{74996EE4-196C-4C39-924A-276EC0C10F88}C:\xboxgames\minecraft for windows\content\minecraft.windows.exe] => (Allow) C:\xboxgames\minecraft for windows\content\minecraft.windows.exe (Access Denied) [File not signed?]
FirewallRules: [{4CB243E9-08AD-4C8F-B8E6-C72C0D17C34C}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1984348F-56E1-4439-B319-DBF2119AD38B}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{C5AB8BE4-388F-4F96-8A23-AC6EA6DBA877}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{E1C8A656-DF71-4903-8CDF-8E07C0C1006A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{9FECC54C-71AC-4EC9-A0EA-C5F33583F6BF}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{9B1E9AEF-729F-44FE-A712-2BB822F4303C}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{D2457054-35AA-430A-B345-534C6E60F0C2}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1AC51375-26B5-4236-B2D2-934DAD516B25}] => (Allow) C:\Users\laser\MediaGet2\mediaget.exe (Global Microtrading PTE. LTD -> MediaGet)
FirewallRules: [{3EE82278-5288-48DF-8E71-3391FA0E0B19}] => (Allow) C:\Users\laser\MediaGet2\mediaget.exe (Global Microtrading PTE. LTD -> MediaGet)
FirewallRules: [{0D27C116-B924-4820-BE70-DE99A372945C}] => (Allow) C:\Users\laser\MediaGet2\QtWebEngineProcess.exe (The Qt Company Oy -> The Qt Company Ltd.)
FirewallRules: [{B2A963F7-F03C-4CC0-9AE5-DB4938E1AEDF}] => (Allow) C:\Users\laser\MediaGet2\QtWebEngineProcess.exe (The Qt Company Oy -> The Qt Company Ltd.)
FirewallRules: [{A79563F6-1270-43E4-BAF7-D5D3BAF893CD}] => (Allow) C:\Users\laser\AppData\Local\Programs\Opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{6DED1136-0BE2-469B-8620-1D8A9D190E8A}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{0A4B14F6-EC86-4E14-8E9E-9F2A5DA5E613}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{FA795838-276F-427A-AB64-5C183E50B7A1}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{BBE91A39-677C-4EE9-9641-F58E6E4ED259}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{F893EFFE-A7F4-4E42-931D-883216370A3A}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{13D6A5E5-6FDD-4513-958E-808AD3A31738}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/25/2025 08:26:34 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 07:39:28 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 06:37:14 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 06:32:56 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 05:56:27 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 05:38:30 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 05:38:29 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 04:59:42 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
System errors:
=============
Error: (12/25/2025 08:56:14 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}
Error: (12/25/2025 08:56:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/25/2025 08:56:14 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2025 08:56:14 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}
Error: (12/25/2025 08:56:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/25/2025 08:56:14 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2025 08:56:14 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{8F2BC96B-68C5-40E8-9CE1-368E3ACAC09B}
Error: (12/25/2025 08:56:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
================
Date: 2025-12-25 19:52:23
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/MediaGet
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\laser\MediaGet2\mediaget.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT Authority\System
Název procesu: System
Verze bezpečnostních informací: AV: 1.443.322.0, AS: 1.443.322.0, NIS: 1.443.322.0
Verze modulu: AM: 1.1.25110.1, NIS: 1.1.25110.1
Date: 2025-12-25 19:52:23
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/MediaGet
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\laser\MediaGet2\mediaget.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT Authority\System
Název procesu: System
Verze bezpečnostních informací: AV: 1.443.322.0, AS: 1.443.322.0, NIS: 1.443.322.0
Verze modulu: AM: 1.1.25110.1, NIS: 1.1.25110.1
Date: 2025-12-25 19:52:22
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/MediaGet
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\laser\MediaGet2\mediaget.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT Authority\System
Název procesu: System
Verze bezpečnostních informací: AV: 1.443.322.0, AS: 1.443.322.0, NIS: 1.443.322.0
Verze modulu: AM: 1.1.25110.1, NIS: 1.1.25110.1
Date: 2025-12-25 19:52:22
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/MediaGet
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\laser\MediaGet2\mediaget.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT Authority\System
Název procesu: System
Verze bezpečnostních informací: AV: 1.443.322.0, AS: 1.443.322.0, NIS: 1.443.322.0
Verze modulu: AM: 1.1.25110.1, NIS: 1.1.25110.1
Date: 2025-12-25 19:52:18
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/MediaGet
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\laser\MediaGet2\mediaget.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT Authority\System
Název procesu: System
Verze bezpečnostních informací: AV: 1.443.322.0, AS: 1.443.322.0, NIS: 1.443.322.0
Verze modulu: AM: 1.1.25110.1, NIS: 1.1.25110.1
CodeIntegrity:
===============
Date: 2025-12-25 20:27:01
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume5\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. FX505GM.307 05/25/2020
Motherboard: ASUSTeK COMPUTER INC. FX505GM
Processor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Percentage of memory in use: 60%
Total physical RAM: 16234.78 MB
Available physical RAM: 6485.38 MB
Total Virtual: 23048.74 MB
Available Virtual: 10669.5 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:237.42 GB) (Free:7.23 GB) (Model: WDC PC SN520 SDAPNUW-256G-1002) (Protected) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1863 GB) (Free:820.2 GB) (Model: Samsung SSD 870 QVO 2TB) (Protected) NTFS
\\?\Volume{ce630175-c0cb-4232-a9dd-299ccc1282b1}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.05 GB) NTFS
\\?\Volume{b2371fa7-5808-4b0f-b22d-ae726f9a3693}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 864658EB)
Partition: GPT.
==================== End of Addition.txt =======================
Prosim o kontrolu logu. Sami se instaluji aplikace. Opera, nejaky 360 total security free, click to aim AD, Bright VPN atd. Mam 10 leteho syna ktery hraje a zda se ze instaluje co kde vidi.
dekuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2025
Ran by laser (administrator) on DAVID (ASUSTeK COMPUTER INC. TUF Gaming FX505GM_FX505GM) (25-12-2025 21:16:55)
Running from C:\Users\laser\Desktop\FRST64.exe
Loaded Profiles: laser & WsiAccount
Platform: Microsoft Windows 11 Home Version 25H2 26200.7462 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\ATKOSD2.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\PopWndLog.exe
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <4>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe <8>
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(C:\Program Files\LGHUB\lghub_updater.exe ->) (Logitech Inc -> Sentry and Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\ShadowPlay\nvsphelper64.exe
(C:\Users\laser\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\laser\AppData\Local\Programs\Opera\125.0.5729.49\opera_crashreporter.exe
(C:\Users\laser\MediaGet2\mediaget.exe ->) (Global Microtrading PTE. LTD -> ) C:\Users\laser\MediaGet2\mediaget_crashpad_handler.exe
(C:\Users\laser\MediaGet2\mediaget.exe ->) (Infatica Pte. Ltd. -> ) C:\Users\laser\AppData\Local\Infatica-m\infatica-service-app.exe
(C:\Users\laser\MediaGet2\mediaget.exe ->) (The Qt Company Oy -> The Qt Company Ltd.) C:\Users\laser\MediaGet2\QtWebEngineProcess.exe
(Discord Inc. -> Discord Inc.) C:\Users\laser\AppData\Local\Discord\app-1.0.9219\Discord.exe <6>
(DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxEM.exe
(explorer.exe ->) (Bright Data Ltd -> Bright Data Ltd.) C:\Program Files (x86)\Bright VPN\Bright VPN.exe <3>
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Global Microtrading PTE. LTD -> MediaGet) C:\Users\laser\MediaGet2\mediaget.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <41>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\laser\AppData\Local\Programs\Opera\assistant\browser_assistant.exe <2>
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\laser\AppData\Local\Programs\Opera\opera.exe <12>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\AsusOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
(services.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe
(services.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a7428663aca90897\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9060c624376479b7\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_8559c34713c70ce4\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_3623bab62426ba87\Intel_PIE_Service.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Windows\System32\mfevtps.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_2047fc29611592bd\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> WhatsApp.Root) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2587.9.0_x64__cv1g1gvanyjgm\WhatsApp.Root.exe
(sihost.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek Computer Inc.) C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy\ATK Package\HControl.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2512.1001.34.0_x64__8wekyb3d8bbwe\XboxPcTray.exe
(svchost.exe ->) (ASUSTek Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUSTeK COMPUTER INC\Asus Power Scheme\ASUSPowerScheme.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrl.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2512.1001.34.0_x64__8wekyb3d8bbwe\XboxPcApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2512.1001.34.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.195.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.222.1112.0002_1\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [413000 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [50941392 2025-12-17] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [5750936 2025-12-23] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Discord] => C:\Users\laser\AppData\Local\Discord\Update.exe [1526504 2024-09-04] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [MicrosoftEdgeAutoLaunch_68D9B7BDED78E42E32EDD98D937439AB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4228688 2025-12-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [24686744 2025-12-12] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [MediaGet2] => C:\Users\laser\MediaGet2\mediaget.exe [12475800 2025-12-25] (Global Microtrading PTE. LTD -> MediaGet)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Infatica-m] => C:\Users\laser\AppData\Local\Infatica-m\infatica-service-app.exe [7635008 2025-12-25] (Infatica Pte. Ltd. -> )
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Bright VPN] => C:\Program Files (x86)\Bright VPN\Bright VPN.exe [136519712 2025-12-25] (Bright Data Ltd -> Bright Data Ltd.)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Opera Browser Assistant] => C:\Users\laser\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4709336 2025-10-27] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Run: [Opera Stable] => C:\Users\laser\AppData\Local\Programs\Opera\opera.exe [2088408 2025-12-18] (Opera Norway AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{49210152-871f-4ffa-961d-a172abcbc09d}] -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2025-11-06] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\143.0.7499.170\Installer\chrmstp.exe [2025-12-23] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {D33BE7A1-FAC8-47C9-8A4E-AB9F8C9D7444} - System32\Tasks\ASUS Display Control => C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrl.exe [4713440 2018-06-04] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {07AA90B3-B9AF-4DCC-BD5E-573325424DD7} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {BB48A1E0-E2C0-4A8C-86B6-DD79347A6E7E} - System32\Tasks\ASUS Power Scheme Service => C:\Program Files\ASUSTeK COMPUTER INC\Asus Power Scheme\AsusPowerScheme.exe [4463584 2018-06-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {C0B075DB-4658-49D2-B1C7-FE3BD8824620} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSoftwareManager\AsusUpdateChecker.exe [846384 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {06530565-7C3B-4206-AA94-0EF645AB99DD} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4471344 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {BFC88BA1-721D-44F2-925A-EC212A4FED47} - System32\Tasks\DSB Notification => C:\Program Files\ASUS\DSB Notification\DSBNotification.exe [782816 2018-05-11] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {D1D22C49-FD9A-4E5F-A265-BB8F18F342A0} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem144.0.7547.0{0410F4F4-6E37-4A0B-B60B-1AF6D2277B30} => C:\Program Files (x86)\Google\GoogleUpdater\144.0.7547.0\updater.exe [7056536 2025-11-26] (Google LLC -> Google LLC)
Task: {E83B0A35-8823-4921-BD70-39F56AFD795C} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\av\McAfee VirusScan\upgrade.exe [37909112 2018-01-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {E4917B10-2717-4DA0-A6EB-F9DAF13DC966} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [1965736 2017-12-12] (McAfee, Inc. -> McAfee, Inc.)
Task: {01F13DCB-D9F3-4E6C-B69E-8DBC47AF94F6} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {5BFF0FD0-0D81-42EF-BA8D-79C784BADCEE} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-25] (McAfee, Inc. -> McAfee, Inc.)
Task: {DB48C914-216A-404A-9A16-9C9BF816A1ED} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [745296 2017-10-05] (McAfee, Inc. -> McAfee, Inc.)
Task: {146F1832-629B-443D-AA22-0AB170CD63CC} - System32\Tasks\Microsoft\Windows\Setup\PITRTask => {093cb270-c282-4c22-b2ea-7d2bf1c30bbf} C:\WINDOWS\system32\oobe\PITRTask.dll [118784 2025-12-10] (Microsoft Windows -> Microsoft Corporation)
Task: {DD12BD6B-E8D4-489C-8AC3-F0A9B340266D} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3324528 2025-10-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CC6990F0-950C-45F7-A8EC-3D68C37403BA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {77B3F7C0-C76C-42C1-95C2-3FF826E43420} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {66662C3E-4A9A-46E0-9D02-4066F2BA1FBE} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [654784 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5FD8E8EE-4461-4AA3-B75F-E4DDCE65A506} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0EBAEF1-B070-4F43-ADE1-0924C9D1635F} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {3A68CECD-08E7-425E-ABB3-9A2397FE0282} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {038B3A1D-0E6E-4992-9082-FA153633B81B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\Update Core\/noshim
Task: {B6D5D421-6696-4F92-971E-354F3D910A2F} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3795286163-1351623110-3534515452-1001 => C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.222.1112.0002_1\OneDriveLauncher.exe [745832 2025-12-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {6BF965EF-9868-41E2-B3B7-739600DA7C0F} - System32\Tasks\Opera scheduled assistant Autoupdate 1766688691 => C:\Users\laser\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [6233560 2025-12-18] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --installdir="C:\Users\laser\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {ABF09CEC-E44D-4334-9CA6-BF7D730BFEBC} - System32\Tasks\Opera scheduled Autoupdate 1766688682 => C:\Users\laser\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [6233560 2025-12-18] (Opera Norway AS -> Opera Software)
Task: {E7A4494E-1703-4600-9DE7-88BF210038A8} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [861984 2019-02-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{061b6c30-728b-47fc-97da-c65123570088}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2330bf5a-a3a5-4755-b267-c325861828b3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2330bf5a-a3a5-4755-b267-c325861828b3}\C4163756274633: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2330bf5a-a3a5-4755-b267-c325861828b3}\C416375627465374: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{dbced7d6-c2c7-47d9-80e0-8d2162094299}: [DhcpNameServer] 10.66.40.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default [2025-12-25]
Edge HomePage: Default -> hxxp://www.google.com
Edge StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
Edge Session Restore: Default -> is enabled.
Edge Extension: (McAfee® WebAdvisor) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2025-12-10]
Edge Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-12-21]
Edge Extension: (Google Mail Checker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\glbpkcehjkihaknkjifkehdpjfngbdga [2025-01-28]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2025-12-16]
Edge Extension: (Edge relevant text changes) - C:\Users\laser\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-01-27]
FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default [2025-11-27]
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (AVG Secure Search) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2025-01-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-27]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2025-01-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-01-27]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1 [2025-12-25]
CHR Notifications: Profile 1 -> hxxps://cvul3fe071bc739eg1cg.potentialconnection.co.in; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.tiktok.com
CHR Session Restore: Profile 1 -> is enabled.
CHR Extension: (Dokumenty Google offline) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-12-12]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-12-19]
CHR Extension: (360 Internet Protection) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\glcimepnljoholdmjchkloafkggfoijh [2025-12-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\laser\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-01-27]
CHR Profile: C:\Users\laser\AppData\Local\Google\Chrome\User Data\System Profile [2025-12-25]
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AsHidService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe [173504 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe [227776 2019-03-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\AsusAppService\AsusAppService.exe [1156144 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSDisplayCtrolService; C:\Program Files\ASUSTeK COMPUTER INC\Asus Dispslay Control Service\ASUSDisplayCtrlService.exe [16864 2018-06-04] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSLiveUpdateAgent; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSoftwareManager\AsusSoftwareManager.exe [1410096 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\AsusOptimization\AsusOptimization.exe [206608 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSwitch\AsusSwitch.exe [652848 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4471344 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [599824 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3386064 2025-11-27] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [20276904 2025-03-10] (BattlEye Innovations e.K. -> )
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc. -> McAfee, Inc.)
R2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [223640 2019-09-03] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2025-01-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [959216 2025-05-31] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3344336 2025-12-17] (Epic Games Inc. -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [367064 2024-11-23] (Epic Games Inc. -> Epic Games, Inc.)
R3 GameInputRedistService; C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe [141680 2025-10-20] (Microsoft Corporation -> Microsoft Corporation)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [302416 2018-06-29] (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [19908248 2025-12-12] (Logitech Inc -> Logitech, Inc.)
S4 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_8\McApExe.exe [730888 2018-05-17] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2017-09-27] (McAfee, Inc. -> McAfee, Inc.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.7.371.0\McCSPServiceHost.exe [2140888 2017-12-14] (McAfee, Inc. -> McAfee, Inc.)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MpDefenderCoreService.exe [2063376 2025-12-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [359888 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [512976 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [475600 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-20] (McAfee, Inc. -> McAfee, Inc.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_2047fc29611592bd\Display.NvContainer\NVDisplay.Container.exe [1275608 2025-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1061528 2018-03-06] (McAfee, Inc. -> McAfee, Inc.)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1098888 2025-09-23] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 QHProtected; C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe [3082096 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
R2 RefreshRateService; C:\Program Files (x86)\ASUSTeK COMPUTER INC\RefreshRateService\RefreshRateService.exe [40672 2021-09-10] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek Computer Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1576056 2025-12-03] (Rockstar Games, Inc. -> Rockstar Games)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\NisSrv.exe [4426832 2025-12-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25110.6-0\MsMpEng.exe [290704 2025-12-18] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S1 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [199896 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [100592 2023-12-21] (Microsoft Windows Hardware Compatibility Publisher -> 360.cn)
R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [351296 2025-04-03] (Microsoft Windows Hardware Compatibility Publisher -> 360.cn)
S1 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [58200 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
U0 360elam64; C:\WINDOWS\System32\DRIVERS\360elam64.sys [18048 2025-08-22] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn)
R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [577264 2025-07-23] (Microsoft Windows Hardware Compatibility Publisher -> 360.cn)
S4 360Hvm; C:\WINDOWS\System32\Drivers\360Hvm64.sys [460056 2025-10-28] (Microsoft Windows Hardware Compatibility Publisher -> 360安全中心)
R3 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [96424 2023-03-15] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSystemAnalysis\AsusSAIO.sys [51296 2025-11-17] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys [36368 2019-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [7859856 2025-11-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77216 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34488 2022-08-09] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333192 2025-11-18] (Microsoft Windows -> Microsoft Corporation)
R3 logi_generic_hid_filter; C:\WINDOWS\system32\drivers\logi_generic_hid_filter.sys [62400 2025-12-12] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2025-12-12] (Logitech Inc -> Logitech)
R3 logi_joy_hid_filter; C:\WINDOWS\system32\drivers\logi_joy_hid_filter.sys [63936 2025-12-12] (Logitech Inc -> Logitech)
R3 logi_joy_hid_lo; C:\WINDOWS\system32\drivers\logi_joy_hid_lo.sys [51648 2025-12-12] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2025-12-12] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2025-12-12] (Logitech Inc -> Logitech)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [496544 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [357792 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83952 2018-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [528288 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [948128 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [521104 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108432 2018-04-30] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115104 2018-05-16] (McAfee, Inc. -> McAfee LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252832 2018-05-16] (McAfee, Inc. -> McAfee LLC)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [21928 2025-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [635272 2025-12-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102792 2025-12-18] (Microsoft Windows -> Microsoft Corporation)
S0 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-12-25 21:16 - 2025-12-25 21:17 - 000037532 _____ C:\Users\laser\Desktop\FRST.txt
2025-12-25 21:14 - 2025-12-25 21:14 - 002444288 _____ (Farbar) C:\Users\laser\Desktop\FRST64.exe
2025-12-25 20:57 - 2025-12-25 20:57 - 004875672 _____ () C:\Users\laser\Downloads\MediaGet_id838675ids1s.exe
2025-12-25 20:30 - 2025-12-25 20:30 - 000000000 ____D C:\ProgramData\360Quarant
2025-12-25 19:52 - 2025-12-25 21:10 - 000000000 ____D C:\Users\laser\AppData\Roaming\360safe
2025-12-25 19:52 - 2025-12-25 21:10 - 000000000 ____D C:\ProgramData\360safe
2025-12-25 19:52 - 2025-12-25 20:38 - 000000000 ____D C:\Users\laser\AppData\LocalLow\360WD
2025-12-25 19:51 - 2025-12-25 21:15 - 000000000 ____D C:\Users\laser\AppData\Roaming\360TotalSecurity
2025-12-25 19:51 - 2025-12-25 20:27 - 000000000 ____D C:\Users\laser\AppData\Roaming\bright-vpn
2025-12-25 19:51 - 2025-12-25 19:52 - 000000000 ____D C:\ProgramData\360TotalSecurity
2025-12-25 19:51 - 2025-12-25 19:51 - 000004458 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1766688691
2025-12-25 19:51 - 2025-12-25 19:51 - 000004176 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1766688682
2025-12-25 19:51 - 2025-12-25 19:51 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bright VPN.lnk
2025-12-25 19:51 - 2025-12-25 19:51 - 000001386 _____ C:\Users\laser\Desktop\Prohlížeč Opera.lnk
2025-12-25 19:51 - 2025-12-25 19:51 - 000001386 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2025-12-25 19:51 - 2025-12-25 19:51 - 000001228 _____ C:\Users\Public\Desktop\360 Total Security.lnk
2025-12-25 19:51 - 2025-12-25 19:51 - 000000001 _____ C:\WINDOWS\system32\Drivers\360Hvm64.dat
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 _RSHD C:\360SANDBOX
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Security Center
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 ____D C:\Users\laser\AppData\Local\Opera Software
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 ____D C:\Users\laser\AppData\Local\bright-vpn-updater
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2025-12-25 19:51 - 2025-12-25 19:51 - 000000000 ____D C:\Program Files (x86)\360
2025-12-25 19:51 - 2023-03-15 09:02 - 000199896 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AntiHacker64.sys
2025-12-25 19:51 - 2023-03-15 09:02 - 000096424 _____ (360.cn) C:\WINDOWS\system32\Drivers\360netmon.sys
2025-12-25 19:51 - 2023-03-15 09:02 - 000058200 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Camera64.sys
2025-12-25 19:50 - 2025-12-25 20:33 - 000000970 _____ C:\Users\laser\infatica-service-app.dat
2025-12-25 19:50 - 2025-12-25 19:51 - 000000000 ____D C:\Program Files (x86)\Bright VPN
2025-12-25 19:50 - 2025-12-25 19:50 - 000000952 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet.lnk
2025-12-25 19:50 - 2025-12-25 19:50 - 000000922 _____ C:\Users\laser\Desktop\MediaGet.lnk
2025-12-25 19:50 - 2025-12-25 19:50 - 000000000 ____D C:\Users\laser\Downloads\MediaGet Downloads
2025-12-25 19:50 - 2025-12-25 19:50 - 000000000 ____D C:\Users\laser\AppData\Roaming\Opera Software
2025-12-25 19:50 - 2025-12-25 19:50 - 000000000 ____D C:\Users\laser\AppData\Local\Infatica-m
2025-12-25 19:50 - 2025-12-25 19:50 - 000000000 ____D C:\Users\laser\AppData\Local\BrightData
2025-12-25 19:50 - 2025-12-25 19:50 - 000000000 ____D C:\ProgramData\BrightData
2025-12-25 19:49 - 2025-12-25 19:51 - 000000000 ____D C:\Users\laser\MediaGet2
2025-12-25 19:49 - 2025-12-25 19:50 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet2
2025-12-25 19:49 - 2025-12-25 19:49 - 004875672 _____ () C:\Users\laser\Downloads\MediaGet_id830567ids1s.exe
2025-12-25 19:49 - 2025-12-25 19:49 - 000000000 ____D C:\Users\laser\AppData\Local\Media Get LLC
2025-12-23 22:50 - 2025-12-23 22:50 - 000000000 _____ C:\Users\laser\Desktop\Nový Textový dokument.txt
2025-12-23 20:34 - 2025-12-23 20:34 - 000714490 _____ C:\WINDOWS\system32\perfh005.dat
2025-12-23 20:34 - 2025-12-23 20:34 - 000153652 _____ C:\WINDOWS\system32\perfc005.dat
2025-12-22 13:08 - 2025-12-25 16:31 - 000000000 ____D C:\Users\laser\Documents\Euro Truck Simulator 2
2025-12-22 12:17 - 2025-12-22 12:17 - 000000222 _____ C:\Users\laser\Desktop\Euro Truck Simulator 2 Demo.url
2025-12-21 13:23 - 2025-12-21 13:23 - 000000000 ____D C:\Users\laser\AppData\Roaming\Minecraft Bedrock
2025-12-19 16:00 - 2025-12-25 11:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-12-12 19:03 - 2025-12-12 19:03 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_logi_generic_hid_filter_01009.Wdf
2025-12-12 19:02 - 2025-12-25 11:44 - 000000000 ____D C:\Users\laser\AppData\Local\LGHUB
2025-12-12 19:02 - 2025-12-12 19:25 - 000000000 ____D C:\Users\laser\AppData\Roaming\G HUB
2025-12-12 19:02 - 2025-12-12 19:04 - 000000000 ____D C:\Users\laser\AppData\Roaming\lghub
2025-12-12 19:02 - 2025-12-12 19:02 - 000073040 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000063936 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_hid_filter.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000062400 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_generic_hid_filter.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000051648 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_hid_lo.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000044880 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000032080 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2025-12-12 19:02 - 2025-12-12 19:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2025-12-12 19:02 - 2025-12-12 19:02 - 000000000 ____D C:\ProgramData\Logishrd
2025-12-12 19:02 - 2025-12-12 19:02 - 000000000 ____D C:\Program Files\Logitech
2025-12-12 19:02 - 2025-12-12 19:02 - 000000000 ____D C:\Program Files\Logi
2025-12-12 19:02 - 2025-12-12 19:02 - 000000000 ____D C:\Program Files\LGHUB
2025-12-12 19:01 - 2025-12-12 19:02 - 000000000 ____D C:\ProgramData\LGHUB
2025-12-12 19:00 - 2025-12-12 19:00 - 069589656 _____ (Logitech, Inc.) C:\Users\laser\Downloads\lghub_installer (1).exe
2025-12-12 18:50 - 2025-12-12 18:50 - 069589656 _____ (Logitech, Inc.) C:\Users\laser\Downloads\lghub_installer.exe
2025-12-12 18:50 - 2025-12-12 18:50 - 000000000 ____D C:\Users\laser\AppData\Local\Sentry
2025-12-11 02:33 - 2025-12-11 02:33 - 000000000 ____D C:\WINDOWS\system32\NarratorMCAT
2025-12-10 23:09 - 2025-12-10 23:12 - 000000000 ___HD C:\$WinREAgent
2025-12-10 18:20 - 2025-12-10 18:20 - 000035602 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-12-10 18:20 - 2025-12-10 18:20 - 000035602 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-12-08 12:27 - 2025-12-08 12:27 - 002715256 _____ C:\Users\laser\Downloads\BeamMP_Installer (1).zip
2025-12-03 23:27 - 2025-12-03 23:27 - 000000211 _____ C:\Users\laser\AppData\Roaming\com.reolink.app.client
2025-12-03 21:26 - 2025-12-03 21:27 - 343353215 _____ C:\Users\laser\Downloads\sksuperb2_fastlane.zip
2025-11-28 21:04 - 2025-11-28 21:04 - 000000000 ____D C:\ProgramData\Embody
2025-11-27 16:49 - 2025-11-27 16:49 - 000001635 _____ C:\Users\laser\Desktop\ServerConfig.toml
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-12-25 21:17 - 2025-03-16 00:45 - 000000000 ____D C:\FRST
2025-12-25 21:15 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-12-25 21:12 - 2025-01-28 01:15 - 000000000 ____D C:\Program Files (x86)\Steam
2025-12-25 20:35 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-12-25 20:33 - 2025-01-27 23:30 - 000003750 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2025-12-25 20:29 - 2025-01-27 23:52 - 000000000 ____D C:\Users\laser\AppData\Local\D3DSCache
2025-12-25 20:28 - 2025-01-28 10:40 - 000000000 ____D C:\Users\laser\AppData\Roaming\discord
2025-12-25 20:27 - 2025-01-28 10:40 - 000000000 ____D C:\Users\laser\AppData\Local\Discord
2025-12-25 20:27 - 2025-01-27 23:55 - 000000000 ___RD C:\Users\laser\OneDrive
2025-12-25 20:26 - 2025-01-27 23:52 - 000000000 __SHD C:\Users\laser\IntelGraphicsProfiles
2025-12-25 20:26 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-12-25 19:53 - 2025-01-28 08:24 - 000000000 ____D C:\ProgramData\NVIDIA
2025-12-25 19:53 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-12-25 19:52 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-12-25 19:50 - 2025-01-27 23:50 - 000000000 ____D C:\Users\laser
2025-12-25 19:43 - 2025-01-28 11:09 - 000000000 ____D C:\Users\laser\AppData\Local\Roblox
2025-12-25 19:06 - 2025-01-28 08:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-12-25 18:49 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-12-25 17:27 - 2025-03-19 20:47 - 000000000 ____D C:\Users\laser\AppData\Local\Battle.net
2025-12-25 17:26 - 2025-03-19 20:47 - 000000000 ____D C:\Program Files (x86)\Battle.net
2025-12-23 22:07 - 2025-01-27 23:57 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-12-23 22:07 - 2025-01-27 23:57 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-12-23 20:34 - 2025-01-27 23:32 - 001692324 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-12-23 20:30 - 2025-01-28 08:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-12-23 20:30 - 2025-01-28 08:28 - 000000288 _____ C:\pefdata.dat
2025-12-23 20:30 - 2025-01-28 08:23 - 000012288 ___SH C:\DumpStack.log.tmp
2025-12-23 20:30 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-12-23 20:30 - 2024-04-01 08:21 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-12-23 12:27 - 2025-09-19 15:29 - 000000000 ____D C:\Users\laser\AppData\Local\BeamNG
2025-12-23 11:43 - 2025-01-28 10:47 - 000000222 _____ C:\Users\laser\Desktop\Farming Simulator 19.url
2025-12-23 11:43 - 2025-01-28 01:20 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-12-22 20:42 - 2025-03-13 11:50 - 000000000 ____D C:\Users\laser\AppData\Local\CrashDumps
2025-12-22 08:52 - 2025-01-27 23:30 - 000003714 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{4E757026-A521-4B61-955B-EF04C6FA9440}
2025-12-22 08:52 - 2025-01-27 23:30 - 000003588 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{39DFE86E-07E4-493B-84B5-ADDCD5027974}
2025-12-22 01:27 - 2025-01-27 23:29 - 000000000 ____D C:\ProgramData\Packages
2025-12-21 16:00 - 2025-08-17 11:05 - 000000000 ____D C:\Users\laser\AppData\Roaming\BeamMP-Launcher
2025-12-21 15:59 - 2025-08-17 11:05 - 000001062 _____ C:\Users\laser\Desktop\BeamMP-Launcher.lnk
2025-12-21 15:59 - 2025-08-17 11:05 - 000001048 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BeamMP-Launcher.lnk
2025-12-21 13:23 - 2025-01-27 23:52 - 000000000 ____D C:\Users\laser\AppData\Local\Packages
2025-12-20 21:52 - 2025-01-28 08:23 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-12-20 21:52 - 2025-01-28 08:23 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-12-20 17:08 - 2025-01-28 01:05 - 000000000 ____D C:\Users\laser\AppData\Roaming\EasyAntiCheat
2025-12-19 20:03 - 2025-09-24 16:38 - 000440696 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_b.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 004606328 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 000878968 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 000289144 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 000244088 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 000166256 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-12-19 20:03 - 2025-01-28 10:48 - 000153976 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2025-12-19 20:03 - 2025-01-28 10:48 - 000076152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2025-12-19 18:39 - 2025-01-28 01:05 - 000000000 ____D C:\Users\laser\AppData\Local\FortniteGame
2025-12-19 18:39 - 2025-01-28 00:03 - 000000000 ____D C:\Users\laser\AppData\Local\UnrealEngine
2025-12-19 13:10 - 2025-07-17 17:18 - 000001397 _____ C:\Users\laser\Desktop\Roblox Player.lnk
2025-12-19 13:10 - 2025-01-28 11:09 - 000000000 ____D C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2025-12-18 13:40 - 2018-11-17 01:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-12-18 13:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-12-18 13:22 - 2025-01-28 10:40 - 000002249 _____ C:\Users\laser\Desktop\Discord.lnk
2025-12-15 19:28 - 2025-01-27 23:54 - 000000000 ____D C:\Users\laser\AppData\Local\NVIDIA Corporation
2025-12-15 19:27 - 2025-09-18 18:12 - 000003834 _____ C:\WINDOWS\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-12-15 19:27 - 2025-09-18 18:12 - 000001436 _____ C:\Users\Public\Desktop\NVIDIA App.lnk
2025-12-15 19:27 - 2018-12-28 15:30 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-12-13 23:17 - 2025-01-27 23:39 - 000004130 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2025-12-13 02:01 - 2025-01-27 23:55 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-12-13 02:01 - 2025-01-27 23:55 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-12-13 02:01 - 2025-01-27 23:55 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3795286163-1351623110-3534515452-1001
2025-12-13 02:01 - 2025-01-27 23:55 - 000002385 _____ C:\Users\laser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-12-12 19:02 - 2025-01-27 23:50 - 000000000 ___SD C:\Users\laser\AppData\Roaming\Microsoft\Credentials
2025-12-12 19:01 - 2018-12-28 15:28 - 000000000 ____D C:\ProgramData\Package Cache
2025-12-11 02:34 - 2025-01-28 08:23 - 000297184 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-12-11 02:33 - 2025-07-10 04:05 - 000000000 ____D C:\WINDOWS\system32\ruxim
2025-12-11 02:33 - 2025-01-27 23:13 - 000000000 ____D C:\WINDOWS\InboxApps
2025-12-11 02:33 - 2024-04-01 17:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ___RD C:\Program Files\Windows Defender
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ___RD C:\Program Files (x86)\Windows Defender
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\WUModels
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\DiagTrack
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\BrowserCore
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-12-11 02:33 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-12-11 02:33 - 2024-04-01 08:21 - 000000000 ____D C:\WINDOWS\servicing
2025-12-10 18:19 - 2025-01-28 08:25 - 003276800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-12-10 18:12 - 2025-01-28 10:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-12-10 18:10 - 2025-01-28 10:41 - 218369424 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-12-08 16:06 - 2025-01-30 16:09 - 000000000 ____D C:\WINDOWS\Minidump
2025-12-05 00:48 - 2025-07-20 22:33 - 000000000 ____D C:\Users\laser\AppData\Roaming\reolink
2025-12-03 19:46 - 2025-11-02 10:31 - 000000000 ____D C:\ProgramData\Whesvc
2025-11-28 14:47 - 2025-02-05 21:56 - 000000000 ____D C:\Program Files\Rockstar Games
==================== Files in the root of some directories ========
2025-12-25 19:50 - 2025-12-25 20:33 - 000000970 _____ () C:\Users\laser\infatica-service-app.dat
2025-12-03 23:27 - 2025-12-03 23:27 - 000000211 _____ () C:\Users\laser\AppData\Roaming\com.reolink.app.client
2025-07-25 11:05 - 2025-07-25 11:05 - 000000048 ____R () C:\Users\laser\AppData\Local\53489728C91F3DE3E449829AA6B05E28
2025-03-10 18:49 - 2025-03-10 18:49 - 000007605 _____ () C:\Users\laser\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2025
Ran by laser (25-12-2025 21:18:49)
Running from C:\Users\laser\Desktop
Microsoft Windows 11 Home Version 25H2 26200.7462 (X64) (2025-01-27 22:29:34)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3795286163-1351623110-3534515452-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3795286163-1351623110-3534515452-503 - Limited - Disabled)
Guest (S-1-5-21-3795286163-1351623110-3534515452-501 - Limited - Disabled)
laser (S-1-5-21-3795286163-1351623110-3534515452-1001 - Administrator - Enabled) => C:\Users\laser
WDAGUtilityAccount (S-1-5-21-3795286163-1351623110-3534515452-504 - Limited - Disabled)
WsiAccount (S-1-5-21-3795286163-1351623110-3534515452-1002 - Limited - Disabled) => C:\Users\WsiAccount
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: 360 Total Security (Enabled - Up to date) {FFDC234A-CE9B-08F9-406B-F876951CE066}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 11.0.0.1259 - 360 Security Center)
Asus Dispslay Control Service (HKLM\...\{0F0328FA-E13C-4897-89B1-7A08CBF6A938}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
ASUS GiftBox Service (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 3.2.3.0 - ASUSTeK COMPUTER INC.)
ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.1.10.0 - ASUSTeK COMPUTER INC.)
Asus Power Scheme (HKLM\...\{81E49E2E-C0A5-471E-854F-82125D30A828}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BeamMP-Launcher verze 2.0.71 (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\{4A233C59-AF33-417D-B19E-B49D67433455}_is1) (Version: 2.0.71 - BeamMP)
Bright VPN 1.572.298 (HKLM\...\54cf4d4c-268a-577e-8fe3-97e36e306708) (Version: 1.572.298 - Bright Data Ltd.)
Discord (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Discord) (Version: 1.0.9219 - Discord Inc.)
DSB Notification (HKLM\...\{A82D01C4-0F9C-4FD6-9E2F-EDBD1E9826DC}) (Version: 1.2.0 - ASUSTeK COMPUTER INC.)
Epic Games Launcher (HKLM-x32\...\{C5C3EE71-4047-4144-946E-18D500510CB5}) (Version: 1.3.128.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{5122B8BC-D6DF-48FF-8D4E-15A63EEC5073}) (Version: 2.8.1 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 143.0.7499.170 - Google LLC)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.4.11000.6436 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1137 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{B39E9D6B-906D-47C0-8FA1-833987DA6F63}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{CE08DF9B-FD93-4667-8D88-55A216DC6669}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{BEB5BAB5-60E3-46D3-BC68-748807F35B8E}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.5.0.1027 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{49F223FE-D3BD-4FB9-96BF-41361123804A}) (Version: 16.5.0.1027 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{72759DFB-9080-46A5-ACCF-5BA26A6FF3FD}) (Version: 30.100.1727.1 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{2D79E334-B178-45B9-A2A6-7A60A084C268}) (Version: 16.8.0.1000 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{0459ef97-6cc2-4a78-a664-516669c498e2}) (Version: 20.70.0.0u - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{DA51C5EF-89BF-40D5-9D33-02D3B4FB11C1}) (Version: 20.70.0.1716 - Intel Corporation) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2025.9.814157 - Logitech)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R8 - McAfee, Inc.)
MediaGet (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\MediaGet) (Version: 3.01.4337 - Global Microtrading PTE. LTD)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 143.0.3650.96 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 143.0.3650.96 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM\...\{ECB4BDD1-984C-9F25-299C-A9EF75C14197}) (Version: 10.1.26100.6879 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\OneDriveSetup.exe) (Version: 25.222.1112.0002 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{66C00D72-5E34-495E-A4A1-1A31D7BE2FA7}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{632D85A6-B94C-440E-B565-26F73CF778D3}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
NVIDIA App 11.0.5.420 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.5.420 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.5.11504.36206172 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.11504.36206172 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.5.0 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 581.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 581.29 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
Opera Stable 125.0.5729.49 (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\Opera 125.0.5729.49) (Version: 125.0.5729.49 - Opera Software)
RefreshRateService (HKLM-x32\...\{7E5E84CB-B190-4658-A4DC-166779C329D1}) (Version: 2.1.0 - ASUSTeK COMPUTER INC.)
Reolink 8.20.5 (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\3e633401-0468-5835-935c-33d2b4b2a764) (Version: 8.20.5 - Reolink Technology Co., Ltd.)
Roblox Player for laser (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for laser (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.105.2705 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.146 - Rockstar Games)
SDÍLEJ.CZ Manager (HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\...\69f070f18ade444c) (Version: 0.0.1.42 - SDÍLEJ.CZ)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.51 - Ghisler Software GmbH)
USB RACING WHEEL (HKLM-x32\...\SM33C1) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-06-11] ()
@{MicrosoftWindows.58683691.InpApp_1000.26100.6899.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.58683691.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.58683691.InpApp_cw5n1h2txyewy [2025-12-11] ()
@{MicrosoftWindows.59379618.InpApp_1000.26100.7171.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.59379618.InpApp/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.59379618.InpApp_cw5n1h2txyewy [2025-12-11] (Microsoft Windows)
5A894077.McAfeeSecurity -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2025-01-28] (McAfee LLC.)
ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.2.4.0_x64__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.)
ASUS Keyboard Hotkeys -> C:\Program Files\WindowsApps\b9eced6f.asuskeyboardhotkeys_1.0.12.0_x86__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.) [Startup Task]
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.57242383.Tasbar_cw5n1h2txyewy [2025-12-11] (Microsoft Windows)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.59379618.InpApp_cw5n1h2txyewy [2025-12-11] (Microsoft Windows)
Deep Rock Galactic -> C:\Program Files\WindowsApps\CoffeeStainStudios.DeepRockGalactic_39.1.53330.0_x64__496a1srhmar9w [2025-07-02] (Coffee Stain Publishing)
DTS Headphone:X v1 -> C:\Program Files\WindowsApps\dtsinc.dtsheadphonexv1_2.0.0.0_x64__t5j2fzbtdg37r [2025-01-28] (DTS, Inc.)
eManual -> C:\Program Files\WindowsApps\b9eced6f.emanual_2.0.3.0_x86__qmba6cd70vzyy [2025-01-28] (ASUSTeK COMPUTER INC.)
Forza Horizon 5 -> C:\Program Files\WindowsApps\Microsoft.624F8B84B80_3.685.421.0_x64__8wekyb3d8bbwe [2025-06-06] (Microsoft Studios)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\appup.intelgraphicscontrolpanel_3.3.0.0_x64__8j3eq9eme6ctt [2025-01-28] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.43.0_x64__w1wdnht996qgy [2025-12-21] (LinkedIn) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2025-01-28] (Microsoft Corp.)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.19127.20402.0_x86__8wekyb3d8bbwe [2025-12-13] (Microsoft Corporation)
Minecraft for Windows -> C:\Program Files\WindowsApps\MICROSOFT.MINECRAFTUWP_1.21.13101.0_x64__8wekyb3d8bbwe [2025-12-18] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.2.2.0_x64__8wekyb3d8bbwe [2025-04-10] (Microsoft Studios)
Minecraft: Java Edition -> C:\Program Files\WindowsApps\Microsoft.MinecraftJavaEdition_1.0.5.0_x64__8wekyb3d8bbwe [2025-04-10] (Microsoft Studios)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy [2025-12-13] (ASUSTeK COMPUTER INC.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.969.0_x64__56jybvy8sckqj [2025-11-08] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.169.0_x64__dt26b99r8h8gj [2025-01-28] (Realtek Semiconductor Corp)
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.143.6538.0_x64__8wekyb3d8bbwe [2025-09-18] (Microsoft Studios)
Warhammer 40,000: Darktide -> C:\Program Files\WindowsApps\FatsharkAB.Warhammer40000DarktideNew_1.9.4599.0_x64__hwm6pnepa3ng2 [2025-09-26] (Fatshark AB)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2587.9.0_x64__cv1g1gvanyjgm [2025-12-22] (WhatsApp Inc.) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3795286163-1351623110-3534515452-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.222.1112.0002_1\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3795286163-1351623110-3534515452-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> C:\Users\laser\AppData\Local\Microsoft\OneDrive\25.222.1112.0002_1\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3795286163-1351623110-3534515452-1001_Classes\CLSID\{DFF20505-B08F-455B-AD70-4FBD055088E0}\localserver32 -> C:\Program Files\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-3795286163-1351623110-3534515452-1002_Classes\CLSID\{D3E34B21-9D75-101A-8C3D-00AA001A1652}\localserver32 -> C:\Program Files\WindowsApps\Microsoft.Paint_11.2503.381.0_x64__8wekyb3d8bbwe\PaintApp\mspaint.exe => No File
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers1: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-12-03] () [File not signed] [File is in use]
ContextMenuHandlers4: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_2047fc29611592bd\nvshext.dll [2025-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers6: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [MidisrvTransferComplete] => 0
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\laser\Desktop\asd - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
==================== Loaded Modules (Whitelisted) =============
2025-12-25 20:27 - 2025-12-25 20:27 - 000136704 _____ () [File not signed] \\?\C:\Users\laser\AppData\Local\Temp\3a1bb959-8146-40f4-b48b-b2dba0844d9e.tmp.node
2025-12-25 19:51 - 2025-12-25 19:51 - 002525184 _____ () [File not signed] C:\Program Files (x86)\Bright VPN\ffmpeg.dll
2025-12-25 19:51 - 2025-12-25 19:51 - 000384000 _____ () [File not signed] C:\Program Files (x86)\Bright VPN\libegl.dll
2025-12-25 19:51 - 2025-12-25 19:51 - 006728704 _____ () [File not signed] C:\Program Files (x86)\Bright VPN\libglesv2.dll
2025-12-25 19:51 - 2025-12-25 19:51 - 004486656 _____ () [File not signed] C:\Program Files (x86)\Bright VPN\vk_swiftshader.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 009400320 _____ () [File not signed] C:\Users\laser\MediaGet2\opencv_core320.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000186880 _____ () [File not signed] C:\Users\laser\MediaGet2\opencv_img_hash320.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 002482688 _____ () [File not signed] C:\Users\laser\MediaGet2\opencv_imgcodecs320.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 019027456 _____ () [File not signed] C:\Users\laser\MediaGet2\opencv_imgproc320.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000252416 _____ () [File not signed] C:\Users\laser\MediaGet2\opencv_videoio320.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000384000 _____ () [File not signed] C:\Users\laser\MediaGet2\sentry.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 005635072 _____ (FFmpeg Project) [File not signed] C:\Users\laser\MediaGet2\avcodec-58.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 001106432 _____ (FFmpeg Project) [File not signed] C:\Users\laser\MediaGet2\avformat-58.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000356352 _____ (FFmpeg Project) [File not signed] C:\Users\laser\MediaGet2\avutil-56.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000101376 _____ (FFmpeg Project) [File not signed] C:\Users\laser\MediaGet2\swresample-3.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000412672 _____ (FFmpeg Project) [File not signed] C:\Users\laser\MediaGet2\swscale-5.dll
2018-12-03 22:19 - 2018-12-03 22:19 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2025-12-15 19:27 - 2025-12-15 19:27 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\plugins\NVIDIA Overlay\MessageBusRouter.dll
2025-09-18 18:12 - 2025-12-15 19:27 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 002507264 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\laser\MediaGet2\libcrypto-1_1.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 000530432 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\laser\MediaGet2\libssl-1_1.dll
2025-12-25 19:50 - 2025-12-25 19:50 - 076519424 _____ (The Qt Company Ltd.) [File not signed] C:\Users\laser\MediaGet2\Qt5WebEngineCore.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4340]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 192.168.1.1
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Intel(R) Wireless-AC 9560 160MHz -> Netwtw08.sys
Ethernet 2: Realtek PCIe GbE Family Controller #2 -> rt640x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) #2 -> bthpan.sys
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA App\NvDLISR
HKU\S-1-5-21-3795286163-1351623110-3534515452-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\laser\AppData\Local\Packages\Microsoft.GamingApp_8wekyb3d8bbwe\LocalState\wallpaper\2030093255_52.png
HKU\S-1-5-21-3795286163-1351623110-3534515452-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{2C3E84F8-B9AD-4913-B8E1-2BE82C12DA5C}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4980FB51-B7C7-4E41-B667-BD5BCB93B278}] => (Allow) C:\Program Files\WindowsApps\microsoftteams_24193.1904.3031.6050_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B99805F9-70B1-4DAF-A6C0-55553763332B}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{21A25D2E-214D-4E71-8E8E-E24F17A2BDBD}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{B84B87AD-5BF1-49DD-95CC-48D016378DEB}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{007156DD-4E39-4D0A-91A1-6CFEF61E9762}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{2B0052A2-E874-44AD-8F6E-07A7AB980469}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F573971E-FA41-4FD8-85DE-97CCFA265FA0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9CD24817-9F87-4272-8389-E8DAF44F8AE7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{9839C8E0-0F74-4D17-A910-0BD09676343F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{2C955F80-A667-4520-BBC8-8A9AF9612B15}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 3\RelicCoH3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [{6B973356-5F68-4C59-9CC1-569C8E851409}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 3\RelicCoH3.exe (Relic Entertainment Inc -> Relic Entertainment)
FirewallRules: [TCP Query User{438858E1-FAFD-4056-B158-4A9431AC5D5A}D:\xbox\gtav\gta5.exe] => (Allow) D:\xbox\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{9A1DB50B-70BF-4A35-989E-676366D474CE}D:\xbox\gtav\gta5.exe] => (Allow) D:\xbox\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{5AE25822-D261-4066-A85F-E1ED5314EC80}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Allow) D:\xbox\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed?]
FirewallRules: [UDP Query User{18CCD2FB-4C89-469D-A9A4-BC5F91CD0116}D:\xbox\forza horizon 5\content\forzahorizon5.exe] => (Allow) D:\xbox\forza horizon 5\content\forzahorizon5.exe (Access Denied) [File not signed?]
FirewallRules: [TCP Query User{C324EF2B-4C33-4027-8B18-36E7A224C7A1}D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{33AD400E-80E4-4AD4-BF5D-C662CC817A12}D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\xbox\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{01776A0B-87F8-4413-AB82-851CEA144F0D}C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe] => (Allow) C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe (Access Denied) [File not signed?]
FirewallRules: [UDP Query User{1579E4E6-AC2D-4488-81BE-D3B0E8CBD113}C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe] => (Allow) C:\xboxgames\deep rock galactic\content\fsd\binaries\wingdk\fsd-wingdk-shipping.exe (Access Denied) [File not signed?]
FirewallRules: [{EB94567E-1375-4849-B9F6-0DC83D4C7E0B}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB) [File not signed]
FirewallRules: [{BF9D2EC6-02A7-4F2E-BF77-0E18D580A956}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB) [File not signed]
FirewallRules: [TCP Query User{6C8FB92A-B6D9-48D9-9E12-6FA255AC2FFB}D:\xbox\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\xbox\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [UDP Query User{CE2D49F9-1D7D-4321-BD91-F1FBFCFE3986}D:\xbox\killingfloor2\binaries\win64\kfgame.exe] => (Allow) D:\xbox\killingfloor2\binaries\win64\kfgame.exe (Tripwire Interactive, LLC.) [File not signed]
FirewallRules: [TCP Query User{035419D5-4758-4C34-B416-0C5A0321745F}D:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) D:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{977ED157-602E-4457-97E0-9F7DFAC31318}D:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) D:\steamlibrary\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe => No File
FirewallRules: [{8E303220-2A89-4985-9A88-F3E3CF522DD5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wobbly Life\Wobbly Life.exe () [File not signed]
FirewallRules: [{64F69AF9-F6BA-4769-80D0-57C70D70C469}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wobbly Life\Wobbly Life.exe () [File not signed]
FirewallRules: [TCP Query User{86C2E231-F124-49D6-9DF2-3D6BEAEDBB2B}C:\users\laser\appdata\local\programs\reolink\reolink.exe] => (Allow) C:\users\laser\appdata\local\programs\reolink\reolink.exe (Reolink Innovation Inc. -> Reolink Technology Co., Ltd.)
FirewallRules: [UDP Query User{05CB7A3A-EF25-4972-A252-10344BB964C9}C:\users\laser\appdata\local\programs\reolink\reolink.exe] => (Allow) C:\users\laser\appdata\local\programs\reolink\reolink.exe (Reolink Innovation Inc. -> Reolink Technology Co., Ltd.)
FirewallRules: [TCP Query User{5D759539-75D4-4F1B-AC9B-AE032F0DCF95}C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{E7DF12C7-24B0-4C0E-AC26-46E0D53823F3}C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\users\laser\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{F50F77FC-BF26-40E8-96EE-26015B3FA23B}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{9533446C-AD99-40AA-A1C8-297CE17FEA3A}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{6D07C9AB-056E-4DEB-AB68-ACC4A1AA5DA4}D:\xbox\dyinglightthebeast\ph_ft\work\bin\x64\dyinglightgame_thebeast_x64_rwdi.exe] => (Allow) D:\xbox\dyinglightthebeast\ph_ft\work\bin\x64\dyinglightgame_thebeast_x64_rwdi.exe (Techland S.A. -> Techland)
FirewallRules: [UDP Query User{87615E16-D1A9-4CED-A421-85361B610942}D:\xbox\dyinglightthebeast\ph_ft\work\bin\x64\dyinglightgame_thebeast_x64_rwdi.exe] => (Allow) D:\xbox\dyinglightthebeast\ph_ft\work\bin\x64\dyinglightgame_thebeast_x64_rwdi.exe (Techland S.A. -> Techland)
FirewallRules: [{5A31ABF3-9AEC-43C2-BDBB-CA01F7E2B0EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Autobahn Police Simulator 2\highwaypatrol2.exe () [File not signed]
FirewallRules: [{E7972DF5-960A-40A3-BEA0-DA6C5050EC27}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Autobahn Police Simulator 2\highwaypatrol2.exe () [File not signed]
FirewallRules: [{CF6C5FF6-51CF-45A0-B892-82DCD4869A56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MonBazou\Mon Bazou.exe () [File not signed]
FirewallRules: [{4BE6C7A1-E544-4353-88DB-B633B2D54C9C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MonBazou\Mon Bazou.exe () [File not signed]
FirewallRules: [TCP Query User{B98064C0-91D0-4B62-9D92-DEA53C90E55D}C:\users\laser\appdata\roaming\beammp-launcher\beammp-launcher.exe] => (Allow) C:\users\laser\appdata\roaming\beammp-launcher\beammp-launcher.exe (BeamMP Mod Team -> BeamMP Ltd.) [File not signed]
FirewallRules: [UDP Query User{2B072B24-8B2C-440A-8D2E-3C5BBFEEA671}C:\users\laser\appdata\roaming\beammp-launcher\beammp-launcher.exe] => (Allow) C:\users\laser\appdata\roaming\beammp-launcher\beammp-launcher.exe (BeamMP Mod Team -> BeamMP Ltd.) [File not signed]
FirewallRules: [TCP Query User{CEA3D8FA-69E8-4115-9FD0-8A6FB2B967CA}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [UDP Query User{898A6C28-3695-400B-9C64-739B08650A03}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Block) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{B04E07D6-ECBD-47D9-B325-A165A0891A56}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{8805B2C5-D05D-4C67-90BC-6177CE8D3CBB}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{1A9AB492-3BF7-43B5-9FAC-CDE90C98D36A}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{5140CC79-0288-4DFA-96EE-50E693F23F70}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.56.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{127A2E5B-EF9B-49BB-8C52-343B7DFD1E68}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{75B0B488-6473-4109-83B0-3D821F72B88D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{4B833697-CF1F-414C-B9C5-B8663AB41152}C:\xboxgames\minecraft for windows\content\minecraft.windows.exe] => (Allow) C:\xboxgames\minecraft for windows\content\minecraft.windows.exe (Access Denied) [File not signed?]
FirewallRules: [UDP Query User{74996EE4-196C-4C39-924A-276EC0C10F88}C:\xboxgames\minecraft for windows\content\minecraft.windows.exe] => (Allow) C:\xboxgames\minecraft for windows\content\minecraft.windows.exe (Access Denied) [File not signed?]
FirewallRules: [{4CB243E9-08AD-4C8F-B8E6-C72C0D17C34C}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1984348F-56E1-4439-B319-DBF2119AD38B}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{C5AB8BE4-388F-4F96-8A23-AC6EA6DBA877}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{E1C8A656-DF71-4903-8CDF-8E07C0C1006A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 19\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{9FECC54C-71AC-4EC9-A0EA-C5F33583F6BF}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{9B1E9AEF-729F-44FE-A712-2BB822F4303C}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci.inf_amd64_472daecefb3d7475\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{D2457054-35AA-430A-B345-534C6E60F0C2}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1AC51375-26B5-4236-B2D2-934DAD516B25}] => (Allow) C:\Users\laser\MediaGet2\mediaget.exe (Global Microtrading PTE. LTD -> MediaGet)
FirewallRules: [{3EE82278-5288-48DF-8E71-3391FA0E0B19}] => (Allow) C:\Users\laser\MediaGet2\mediaget.exe (Global Microtrading PTE. LTD -> MediaGet)
FirewallRules: [{0D27C116-B924-4820-BE70-DE99A372945C}] => (Allow) C:\Users\laser\MediaGet2\QtWebEngineProcess.exe (The Qt Company Oy -> The Qt Company Ltd.)
FirewallRules: [{B2A963F7-F03C-4CC0-9AE5-DB4938E1AEDF}] => (Allow) C:\Users\laser\MediaGet2\QtWebEngineProcess.exe (The Qt Company Oy -> The Qt Company Ltd.)
FirewallRules: [{A79563F6-1270-43E4-BAF7-D5D3BAF893CD}] => (Allow) C:\Users\laser\AppData\Local\Programs\Opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{6DED1136-0BE2-469B-8620-1D8A9D190E8A}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{0A4B14F6-EC86-4E14-8E9E-9F2A5DA5E613}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{FA795838-276F-427A-AB64-5C183E50B7A1}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{BBE91A39-677C-4EE9-9641-F58E6E4ED259}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{F893EFFE-A7F4-4E42-931D-883216370A3A}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{13D6A5E5-6FDD-4513-958E-808AD3A31738}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/25/2025 08:26:34 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 07:39:28 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 06:37:14 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 06:32:56 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 05:56:27 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 05:38:30 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 05:38:29 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
Error: (12/25/2025 04:59:42 PM) (Source: AVLogEvent) (EventID: 5002) (User: NT AUTHORITY)
Description: McShield failed to start.
Error Code:a7f40220
System errors:
=============
Error: (12/25/2025 08:56:14 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}
Error: (12/25/2025 08:56:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/25/2025 08:56:14 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2025 08:56:14 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{ECC2E0CA-E42A-4DCB-ABE9-40A4E87D484A}
Error: (12/25/2025 08:56:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/25/2025 08:56:14 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee CSP Service bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2025 08:56:14 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby mccspsvc s argumenty Není k dispozici za účelem spuštění serveru:
{8F2BC96B-68C5-40E8-9CE1-368E3ACAC09B}
Error: (12/25/2025 08:56:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee CSP Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
================
Date: 2025-12-25 19:52:23
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/MediaGet
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\laser\MediaGet2\mediaget.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT Authority\System
Název procesu: System
Verze bezpečnostních informací: AV: 1.443.322.0, AS: 1.443.322.0, NIS: 1.443.322.0
Verze modulu: AM: 1.1.25110.1, NIS: 1.1.25110.1
Date: 2025-12-25 19:52:23
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/MediaGet
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\laser\MediaGet2\mediaget.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT Authority\System
Název procesu: System
Verze bezpečnostních informací: AV: 1.443.322.0, AS: 1.443.322.0, NIS: 1.443.322.0
Verze modulu: AM: 1.1.25110.1, NIS: 1.1.25110.1
Date: 2025-12-25 19:52:22
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/MediaGet
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\laser\MediaGet2\mediaget.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT Authority\System
Název procesu: System
Verze bezpečnostních informací: AV: 1.443.322.0, AS: 1.443.322.0, NIS: 1.443.322.0
Verze modulu: AM: 1.1.25110.1, NIS: 1.1.25110.1
Date: 2025-12-25 19:52:22
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/MediaGet
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\laser\MediaGet2\mediaget.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT Authority\System
Název procesu: System
Verze bezpečnostních informací: AV: 1.443.322.0, AS: 1.443.322.0, NIS: 1.443.322.0
Verze modulu: AM: 1.1.25110.1, NIS: 1.1.25110.1
Date: 2025-12-25 19:52:18
Description:
Antivirová ochrana v programu Microsoft Defender zjistil potenciálně nežádoucí aplikaci.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUABundler:Win32/MediaGet
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\laser\MediaGet2\mediaget.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT Authority\System
Název procesu: System
Verze bezpečnostních informací: AV: 1.443.322.0, AS: 1.443.322.0, NIS: 1.443.322.0
Verze modulu: AM: 1.1.25110.1, NIS: 1.1.25110.1
CodeIntegrity:
===============
Date: 2025-12-25 20:27:01
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume5\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. FX505GM.307 05/25/2020
Motherboard: ASUSTeK COMPUTER INC. FX505GM
Processor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Percentage of memory in use: 60%
Total physical RAM: 16234.78 MB
Available physical RAM: 6485.38 MB
Total Virtual: 23048.74 MB
Available Virtual: 10669.5 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:237.42 GB) (Free:7.23 GB) (Model: WDC PC SN520 SDAPNUW-256G-1002) (Protected) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1863 GB) (Free:820.2 GB) (Model: Samsung SSD 870 QVO 2TB) (Protected) NTFS
\\?\Volume{ce630175-c0cb-4232-a9dd-299ccc1282b1}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.05 GB) NTFS
\\?\Volume{b2371fa7-5808-4b0f-b22d-ae726f9a3693}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 864658EB)
Partition: GPT.
==================== End of Addition.txt =======================
