Pro jistotu po vyčištění PC
Napsal: 14 dub 2026 16:41
Zdravím,
minulý měsíc se mi stala příhoda, kdy mi z mého účtu na Discordu mým přátelům byli rozeslány phishing linky. Po projetí scanerem jsem virus našel a musel jsem se ho obnovou windowsu zbavit. Včera na den je to měsíc a stalo se to znovu, tentokrát mi stačil ESET, který virus identifikoval a odstranil. Opět jsem odpojil všechna zařízení a změnil hesla.
Chci poprosit o ověření, děkuji mockrát.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-04-2026 01
Ran by Štěpán-PC (administrator) on DESKTOP-88J5IBQ (Gigabyte Technology Co., Ltd. B850 AORUS ELITE WIFI7) (14-04-2026 17:24:41)
Running from C:\Users\lipit\Desktop\FRST64.exe
Loaded Profiles: Štěpán-PC
Platform: Microsoft Windows 11 Home Version 25H2 26200.8037 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe <8>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\ArgusMonitor\ArgusMonitor.exe ->) (Argotronic GmbH -> ) C:\Program Files\ArgusMonitor\ArgusMonitorGadget.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eServiceHost.exe <2>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files\TeamViewer\crashpad_handler.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\atieclxx.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Argotronic GmbH -> ) C:\Program Files\ArgusMonitor\ArgusMonitor.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Limited) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_19.2603.53051.0_x64__8wekyb3d8bbwe\M365Copilot.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <21>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc) C:\Windows\System32\DriverStore\FileRepository\amdppkg.inf_amd64_f57cfc457aa3e60b\AmdPpkgSvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_d2d4d4a4cf935317\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\atiesrxx.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Limited) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\13.680.0.6193-1775676788\EA Desktop\EABackgroundService.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Windows (R) Win 7 DDK provider) C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\System32\DriverStore\FileRepository\rtkbtfilter.inf_amd64_4cbb33db60b92eb8\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_ddf3491657a346d3\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2603.1001.17.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_ddf3491657a346d3\RtkAudUService64.exe [2776016 2025-02-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [285616 2026-04-10] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [4147608 2026-04-03] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [42086872 2026-04-09] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [418344 2026-03-06] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [Argus Monitor] => C:\Program Files\ArgusMonitor\ArgusMonitor.exe [5521000 2025-09-26] (Argotronic GmbH -> )
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [5767832 2026-03-13] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3393184 2026-04-08] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [486512 2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\MountPoints2: {4a22f4b8-197e-11f1-8254-50ee3289c649} - "F:\Autorun.exe"
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\MountPoints2: {4a22f5bf-197e-11f1-8254-50ee3289c649} - "G:\setup\rsrc\Autorun.exe"
HKU\S-1-5-18\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [418344 2026-03-06] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\...\RunOnce: [StartRSX] => C:\Program Files\AMD\CNext\CNext\LauncherRSXRuntime.exe [71952 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Startup: C:\Users\lipit\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LG Monitor App Installer.lnk [2026-04-13]
ShortcutTarget: LG Monitor App Installer.lnk -> (No File)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {7CE57A97-14F5-4E5A-A254-949F635EE041} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1612800 2026-01-23] (Adobe Inc. -> Adobe Inc.)
Task: {2DE7854C-DCD8-4413-877F-FC2D182453ED} - System32\Tasks\AMD Install Manager - Check For Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [60526856 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-CheckForUpdates
Task: {42B2CC28-A8BF-4E4C-87E0-95C968BE07FD} - System32\Tasks\AMD Install Manager - Install Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [60526856 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-InstallUpdates -Auto
Task: {11DB3A85-459B-4EF0-B970-BAE9A4B65A5E} - System32\Tasks\AMDInstallUEP => C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe (No File)
Task: {8E658E2D-905C-4AD0-A594-E4535D6752A7} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [192784 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {A6C38186-65AE-493B-9570-0292BDD04474} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [3261608 2026-03-12] (Microsoft Windows -> Microsoft Corporation)
Task: {6A30810E-F90E-403D-BFF3-F6C7FFF1D525} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2401792 2025-09-16] () [File not signed]
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {CF93C8E2-1716-4E0D-8AD5-A34F882B3634} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1050888 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {43AEFF68-2805-44C3-B87A-742232DD2B3A} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3016765936-556789714-1882238419-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [705152 2026-04-08] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {C8813F40-9D8B-4E3C-B907-1158C4E03F95} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33920 2026-04-08] (Mozilla Corporation -> Mozilla Foundation)
Task: {44E74C3E-F65E-48E2-9170-4C367D59DCE7} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [820120 2025-02-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {1D82A5D9-045A-4113-9643-6BC35559E275} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [1203984 2026-03-09] (Advanced Micro Devices -> AMD)
Task: {96B8BE5C-E231-4532-B4C4-2F41575B715B} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [144656 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {BE73D328-8AA8-4F92-A3B2-66FE45060CEB} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [144656 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {433D1BDF-FD9F-44A4-927C-6C9D1390251C} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [312072 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {DCBAF8F5-69C1-4756-B342-7741F4DCD2B1} - System32\Tasks\Ubisoft\Ubisoft Connect Background Update => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe [17892528 2026-04-01] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5f077c22-a91d-42c4-94d8-5c1aece02181}: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF TaskBarID: 308046B0AF4A39CB -> C:\Program Files\Mozilla Firefox
FF DefaultProfile: w6qyjrtv.default-release -> 308046B0AF4A39CB
FF ProfilePath: C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\8h5xe0u8.default [2025-10-03]
FF ProfilePath: C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release [2026-04-14]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\newtab@mozilla.org.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\uBlock0@raymondhill.net.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\{6ea0a676-b3ef-48aa-b23d-24c8876945fb}.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [0] [not signed]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2026-04-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2026-04-14]
Edge:
=======
Edge Profile: C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default [2025-12-11]
Edge Extension: (Dokumenty Google offline) - C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-27]
Edge Extension: (Netflix Party is now Teleparty) - C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\igbncjcgfkfnfgbaieiimpfkobabmkce [2025-11-27]
Edge Extension: (Edge relevant text changes) - C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-09-25]
Chrome:
=======
CHR HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [180216 2026-01-23] (Adobe Inc. -> Adobe Inc.)
S2 amd3dvcacheSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0ee9fc510270aa43\amd3dvcacheSvc.exe [188528 2025-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc)
S2 AmdAppCompatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompatSvc.exe [300872 2025-01-02] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
R2 AmdPpkgSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_f57cfc457aa3e60b\AmdPpkgSvc.exe [515480 2025-12-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
S3 ArgusControlService; C:\Program Files\ArgusMonitor\ArgusControlService.exe [1916520 2025-06-21] (Argotronic GmbH -> )
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [741136 0] (Advanced Micro Devices -> AMD)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3386064 2025-10-18] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4918896 2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [20690592 2026-04-08] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [959216 2025-12-28] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5639088 2026-04-10] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [5107712 2026-04-10] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [5107712 2026-04-10] (ESET, spol. s r.o. -> ESET)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347440 2025-08-25] (UL Solutions Inc -> Futuremark)
R2 GameInputRedistService; C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe [385960 2026-03-09] (Microsoft Corporation -> Windows (R) Win 7 DDK provider)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [11467392 2026-04-13] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2026-04-13] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.26010.5-0\MpDefenderCoreService.exe [2067464 2026-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [13809968 2026-01-24] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1565304 2025-12-21] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkBtManServ; C:\WINDOWS\System32\DriverStore\FileRepository\rtkbtfilter.inf_amd64_4cbb33db60b92eb8\RtkBtManServ.exe [310496 2025-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [26384240 2026-04-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 UpcElevationService; C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher Core\UpcElevationService.exe [356536 2026-04-01] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [60417432 2026-04-03] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.26010.5-0\NisSrv.exe [4435096 2026-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.26010.5-0\MsMpEng.exe [290744 2026-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [1162000 2026-04-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 DAUpdaterSvc; C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amd3dvcache; C:\WINDOWS\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0ee9fc510270aa43\amd3dvcache.sys [43384 2025-09-29] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
R3 AmdAppCompat; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompat.sys [35144 2025-01-02] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_d2d4d4a4cf935317\amdfendrmgr.sys [37272 2026-02-26] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AmdPpkg; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_f57cfc457aa3e60b\AmdPpkg.sys [35224 2025-12-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices)
R3 amduw23g-198975-8f57807d; C:\WINDOWS\System32\DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\amdkmdag.sys [112456720 2026-03-17] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
S3 amduw23g-418637-ef495aee; C:\WINDOWS\System32\DriverStore\FileRepository\u0418637.inf_amd64_4462a7afa694670e\B418564\amdkmdag.sys [101796328 2025-09-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
S3 amduw23g-419752-a8a1c183; C:\WINDOWS\System32\DriverStore\FileRepository\u0419752.inf_amd64_024ed4a72563780a\B419298\amdkmdag.sys [101819864 2025-09-30] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63856 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 ArgusMonitor; C:\WINDOWS\System32\drivers\ArgusMonitor.sys [71864 2025-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Argotronic eGbR)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [577536 2025-06-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [204800 2025-06-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [110592 2025-06-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [40648 2026-03-06] (Microsoft Windows Hardware Compatibility Publisher -> MERCURY CREDIT OU)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [54472 2026-03-06] (Microsoft Windows Hardware Compatibility Publisher -> MERCURY CREDIT OU)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [235528 2026-04-10] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [140464 2026-04-10] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [17840 2025-11-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [353856 2026-04-10] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57928 2026-04-10] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [87328 2026-04-10] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [127584 2026-04-10] (ESET, spol. s r.o. -> ESET)
S3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [82352 2026-02-10] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234600 2026-04-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2026-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [245864 2026-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_fea9c224d1377b71\rt25cx21x64.sys [887776 2024-12-24] (Realtek Semiconductor Corp. -> Realtek)
R3 RtkBtFilter2; C:\WINDOWS\System32\DriverStore\FileRepository\rtkbtfilter.inf_amd64_4cbb33db60b92eb8\RtkBtFilter2.sys [199056 2025-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkBthLeVDspService; C:\WINDOWS\System32\DriverStore\FileRepository\rtkbthlevdsp.inf_amd64_395876bdd0e31ec3\RtkBthLeVDsp.sys [238168 2025-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [56050440 2026-04-03] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [21888 2026-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [635272 2026-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102832 2026-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 HWiNFO_206; \??\C:\Users\lipit\AppData\Local\Temp\HWiNFO_x64_206.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2026-04-14 17:24 - 2026-04-14 17:24 - 000026638 _____ C:\Users\lipit\Desktop\FRST.txt
2026-04-14 17:23 - 2026-04-14 17:24 - 000000000 ____D C:\FRST
2026-04-14 17:23 - 2026-04-14 17:23 - 002446848 _____ (Farbar) C:\Users\lipit\Desktop\FRST64.exe
2026-04-14 17:15 - 2026-04-14 17:15 - 000711764 _____ C:\WINDOWS\system32\perfh005.dat
2026-04-14 17:15 - 2026-04-14 17:15 - 000152978 _____ C:\WINDOWS\system32\perfc005.dat
2026-04-14 16:50 - 2026-04-14 16:50 - 000003900 _____ C:\WINDOWS\system32\Tasks\AMD Install Manager - Install Updates
2026-04-13 23:09 - 2026-04-13 23:09 - 000000000 ____D C:\Users\Public\Documents\LG Monitor App Installer
2026-04-13 22:18 - 2026-04-14 17:24 - 000000000 ____D C:\Users\lipit\AppData\Local\Malwarebytes
2026-04-13 22:18 - 2026-04-13 22:18 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2026-04-13 22:18 - 2026-04-13 22:18 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2026-04-13 22:17 - 2026-04-13 22:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2026-04-13 22:17 - 2026-04-13 22:17 - 000000000 ____D C:\Program Files\Malwarebytes
2026-04-08 10:52 - 2026-04-08 10:52 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\Joybrick
2026-04-07 17:03 - 2026-04-07 17:03 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2026-04-07 11:34 - 2026-04-07 13:26 - 000000000 ____D C:\Users\lipit\AppData\Roaming\FirstLoveExperience
2026-04-07 06:58 - 2026-04-13 11:57 - 000000000 ____D C:\WINDOWS\CbsTemp
2026-04-04 21:01 - 2026-04-04 21:01 - 000007597 _____ C:\Users\lipit\AppData\Local\Resmon.ResmonCfg
2026-04-03 22:43 - 2025-05-22 04:33 - 000028175 _____ C:\Users\lipit\Desktop\OptiScaler.ini
2026-04-03 09:23 - 2026-03-14 20:56 - 000000000 ____D C:\Users\lipit\Desktop\SMAPI 4.5.2 installer
2026-04-03 09:16 - 2026-04-13 16:44 - 000000000 ____D C:\Users\lipit\AppData\Roaming\StardewValley
2026-04-03 06:15 - 2026-04-03 06:15 - 000000000 ____D C:\Users\UMFD-0.Font Driver Host
2026-04-03 06:15 - 2026-04-03 06:15 - 000000000 ____D C:\Users\TEMP.Font Driver Host
2026-04-02 21:24 - 2026-04-10 20:55 - 134222904 _____ C:\WINDOWS\392667600.dat
2026-04-02 21:23 - 2026-04-11 09:28 - 000000000 ____D C:\Program Files\Riot Vanguard
2026-04-02 20:33 - 2026-04-10 20:43 - 000000000 ____D C:\Users\lipit\AppData\Roaming\Riot Client
2026-03-27 16:55 - 2026-03-27 16:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\SoftLanding
2026-03-26 18:47 - 2026-03-26 18:47 - 000000000 ____D C:\Users\UMFD-0
2026-03-26 18:47 - 2026-03-26 18:47 - 000000000 ____D C:\Users\TEMP
2026-03-25 20:20 - 2026-04-13 22:24 - 000000000 ____D C:\Users\lipit\Desktop\AOE
2026-03-25 13:40 - 2026-03-25 13:40 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\Tiny Devil Studio
2026-03-20 16:45 - 2026-03-20 16:45 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2026-03-20 16:45 - 2026-03-20 16:45 - 000003302 _____ C:\WINDOWS\system32\Tasks\StartCNBM
2026-03-20 16:45 - 2026-03-20 16:45 - 000003194 _____ C:\WINDOWS\system32\Tasks\StartAUEP
2026-03-20 16:45 - 2026-03-20 16:45 - 000002620 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2026-03-20 16:45 - 2026-03-20 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMDInstallManager
2026-03-20 16:45 - 2026-03-20 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2026-03-20 16:45 - 2026-03-20 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2026-03-20 16:44 - 2026-03-17 09:42 - 000632848 _____ C:\WINDOWS\system32\GameManager64.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000526352 _____ C:\WINDOWS\system32\EEURestart.exe
2026-03-20 16:44 - 2026-03-17 09:42 - 000480272 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000200720 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000190992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000150544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 115295760 _____ C:\WINDOWS\system32\amd_comgr_2.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 115286544 _____ C:\WINDOWS\system32\amd_comgr_3.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 096958992 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 005175312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 004832784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 003406984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.etz
2026-03-20 16:44 - 2026-03-17 09:41 - 003093520 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 003093520 _____ C:\WINDOWS\system32\vulkaninfo.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 002637328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 002637328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 002192400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001724592 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001402048 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001329168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001185296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001069584 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000998928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000801808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000678928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000606472 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000592400 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000559632 _____ C:\WINDOWS\system32\atieah64.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000550416 _____ C:\WINDOWS\system32\dgtrayicon.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000543248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000473616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000471568 _____ C:\WINDOWS\system32\amdlogum.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000450064 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000434312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendr.stz
2026-03-20 16:44 - 2026-03-17 09:41 - 000422416 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000347152 _____ C:\WINDOWS\system32\clinfo.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000247312 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000212496 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000182360 _____ C:\WINDOWS\system32\amdmiracast.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000169856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000159480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000159480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000147984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000145216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000142728 _____ C:\WINDOWS\system32\amdxc64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000122896 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000118744 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000056968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrmgr.stz
2026-03-20 16:44 - 2026-03-17 09:41 - 000051728 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000048656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2026-03-20 16:44 - 2026-03-17 09:40 - 000177168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2026-03-20 16:44 - 2026-03-17 09:40 - 000145936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2026-03-20 16:44 - 2026-03-17 09:13 - 120863472 _____ C:\WINDOWS\system32\amdxc64.so
2026-03-20 16:44 - 2026-03-06 15:07 - 000314408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ANR-bgproc-Lib.dll
2026-03-20 13:00 - 2026-03-20 13:00 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\IncontinentCell
2026-03-19 01:44 - 2026-03-19 01:44 - 000000000 ____D C:\Program Files\Microsoft GameInput
2026-03-18 22:19 - 2026-03-18 22:20 - 000000000 ____D C:\Users\lipit\AppData\Local\Saber
2026-03-17 18:42 - 2026-03-17 18:56 - 000000000 ____D C:\Users\lipit\Documents\Assassin's Creed Shadows
2026-03-17 18:42 - 2026-03-17 18:42 - 000000000 ____D C:\Users\lipit\AppData\Local\Ubisoft
2026-03-15 19:32 - 2026-04-01 21:10 - 000000000 ____D C:\Users\lipit\Documents\Assassin's Creed Odyssey
2026-03-15 19:03 - 2026-03-15 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Ubisoft
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2026-04-14 17:18 - 2025-09-28 12:48 - 000000000 ____D C:\Program Files (x86)\Steam
2026-04-14 17:16 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2026-04-14 17:15 - 2025-09-25 21:54 - 001692324 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2026-04-14 17:15 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2026-04-14 16:55 - 2025-10-03 08:47 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2026-04-14 16:51 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2026-04-14 16:49 - 2025-11-16 21:07 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2026-04-14 16:47 - 2025-09-28 12:00 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2026-04-14 16:47 - 2025-09-28 11:59 - 000003150 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2026-04-14 16:46 - 2026-03-13 19:46 - 000000000 ____D C:\Program Files\TeamViewer
2026-04-14 16:46 - 2025-09-26 03:55 - 001189856 _____ C:\WINDOWS\system32\wpbbin.exe
2026-04-14 16:46 - 2025-09-26 03:55 - 001162000 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe
2026-04-14 16:46 - 2025-09-26 03:55 - 000012288 ___SH C:\DumpStack.log.tmp
2026-04-14 16:46 - 2025-09-26 03:55 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2026-04-14 16:46 - 2025-09-26 03:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2026-04-14 16:46 - 2025-09-25 21:55 - 000089360 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe
2026-04-14 16:46 - 2025-09-25 21:49 - 000034164 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2026-04-14 16:46 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2026-04-14 16:46 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2026-04-14 02:15 - 2024-04-01 09:21 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2026-04-14 02:10 - 2025-09-26 03:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2026-04-14 00:09 - 2025-09-28 12:49 - 000000000 ____D C:\Users\lipit\AppData\Local\Steam
2026-04-13 23:10 - 2025-09-25 21:55 - 000000000 ____D C:\Users\lipit\AppData\Local\Packages
2026-04-13 23:10 - 2025-09-25 21:49 - 000000000 ____D C:\ProgramData\Packages
2026-04-13 22:19 - 2026-03-11 10:02 - 000000000 ____D C:\ProgramData\adapterhost_x86
2026-04-13 22:18 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2026-04-13 22:18 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2026-04-13 19:03 - 2025-10-12 13:02 - 000000000 ____D C:\Users\lipit\AppData\Local\Ubisoft Game Launcher
2026-04-12 18:03 - 2025-09-26 18:32 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2026-04-12 18:03 - 2025-09-26 18:32 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2026-04-12 02:43 - 2025-10-03 14:54 - 000000000 ____D C:\Users\lipit\AppData\Roaming\discord
2026-04-12 02:11 - 2026-03-12 10:17 - 000000000 ____D C:\Users\lipit\AppData\Local\Discord
2026-04-11 09:39 - 2025-09-25 21:55 - 000000000 ____D C:\Users\lipit\AppData\Local\D3DSCache
2026-04-11 09:39 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2026-04-10 20:45 - 2026-03-12 10:17 - 000002243 _____ C:\Users\lipit\Desktop\Discord.lnk
2026-04-10 20:44 - 2025-11-16 20:50 - 000000000 ____D C:\ProgramData\Riot Games
2026-04-10 20:43 - 2025-11-16 20:51 - 000000000 ____D C:\Users\lipit\AppData\Roaming\riot-client-ux
2026-04-10 15:04 - 2025-11-24 15:52 - 000353856 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000235528 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000140464 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000127584 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000087328 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000057928 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2026-04-09 22:21 - 2025-09-26 18:45 - 000000000 ____D C:\Users\lipit\AppData\Local\AMD_Common
2026-04-09 20:20 - 2025-09-26 03:55 - 000003714 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{8FBCE91D-587E-4B06-B66A-7E4A29AAF977}
2026-04-09 20:20 - 2025-09-26 03:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{4527C347-230F-4944-8561-72E5FA3B7AB0}
2026-04-09 09:56 - 2025-10-03 08:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2026-04-09 09:56 - 2025-10-03 08:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2026-04-08 21:35 - 2025-12-05 16:20 - 000000000 ____D C:\ProgramData\EA Desktop
2026-04-08 16:51 - 2025-12-10 15:04 - 000392320 _____ (Mozilla Foundation) C:\Users\lipit\Desktop\Firefox.exe
2026-04-08 16:51 - 2025-10-03 08:47 - 000001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2026-04-08 11:00 - 2026-03-03 22:42 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\Unity
2026-04-08 10:52 - 2025-09-26 03:55 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2026-04-07 14:26 - 2025-09-26 20:41 - 000000000 ____D C:\WINDOWS\Minidump
2026-04-07 14:26 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2026-04-02 23:33 - 2025-09-28 17:01 - 000000000 ____D C:\Users\lipit\Documents\My Games
2026-04-02 23:33 - 2025-09-28 17:01 - 000000000 ____D C:\Users\lipit\AppData\Roaming\SquareEnix
2026-04-02 21:34 - 2025-12-06 00:43 - 000000000 ____D C:\Users\lipit\AppData\Local\CrashDumps
2026-04-02 20:56 - 2025-11-16 20:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2026-04-02 20:38 - 2025-11-16 20:51 - 000001503 _____ C:\Users\Public\Desktop\Riot Client.lnk
2026-04-02 13:16 - 2026-01-07 12:01 - 000000000 ____D C:\Users\lipit\AppData\Local\User Data
2026-03-30 12:31 - 2026-01-25 23:36 - 000000000 ____D C:\Users\lipit\AppData\Roaming\RenPy
2026-03-21 14:08 - 2026-03-05 19:21 - 000453064 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_d.dll.0
2026-03-21 14:08 - 2026-03-05 19:21 - 000453064 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_d.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 004590024 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000911816 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000289224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000260552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000166344 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000154056 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2026-03-21 14:08 - 2025-12-28 01:42 - 000084424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2026-03-20 16:45 - 2025-09-26 18:46 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN
2026-03-20 16:45 - 2025-09-26 18:46 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR
2026-03-20 16:45 - 2025-09-26 18:45 - 000000000 ____D C:\Program Files\AMD
2026-03-20 16:45 - 2025-09-26 18:22 - 000000000 ____D C:\AMD
2026-03-17 18:41 - 2025-10-12 13:02 - 000001323 _____ C:\Users\lipit\Desktop\Ubisoft Connect.lnk
2026-03-16 21:28 - 2026-03-06 22:55 - 000000000 ____D C:\Users\lipit\Desktop\Call of Duty 2
2026-03-15 19:11 - 2026-03-04 18:44 - 000000000 ____D C:\Users\lipit\Desktop\DAO mody
==================== Files in the root of some directories ========
2025-12-07 18:58 - 2025-12-07 18:58 - 000000048 ____R () C:\Users\lipit\AppData\Local\2228D103D6E359B34623C1D0778AD46F
2026-04-04 21:01 - 2026-04-04 21:01 - 000007597 _____ () C:\Users\lipit\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-04-2026 01
Ran by Štěpán-PC (14-04-2026 17:25:11)
Running from C:\Users\lipit\Desktop
Microsoft Windows 11 Home Version 25H2 26200.8037 (X64) (2025-09-25 19:49:51)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3016765936-556789714-1882238419-500 - Administrators - Disabled)
DefaultAccount (S-1-5-21-3016765936-556789714-1882238419-503 - Limited - Disabled)
Guest (S-1-5-21-3016765936-556789714-1882238419-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3016765936-556789714-1882238419-504 - Limited - Disabled)
Štěpán-PC (S-1-5-21-3016765936-556789714-1882238419-1001 - Administrators - Enabled) => C:\Users\lipit
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3DMark (HKLM\...\{4AFE3A81-5A89-4464-944B-7B9E9C8AA92E}) (Version: 2.32.8454.0 - UL) Hidden
3DMark (HKLM-x32\...\{7b29f241-1dfb-4171-8781-9c91605f2f8b}) (Version: 2.32.8454.0 - UL)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 26.001.21411 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601149}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Age of the Ring Standalone version 9.2.0 (HKLM-x32\...\Age of the Ring Standalone_is1) (Version: 9.2.0 - AotR Staff)
AMD 3D V-Cache Performance Optimizer Driver (HKLM-x32\...\{4537278A-8E70-4021-A866-38CE644D92F8}) (Version: 1.0.0.12 - Advanced Micro Devices, Inc.) Hidden
AMD Application Compatibility Database Driver (HKLM-x32\...\{7466773D-AE4B-48F6-8E12-D64B555C1BEA}) (Version: 1.0.0.3 - Advanced Micro Devices, Inc.) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.136 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 8.02.18.557 - Advanced Micro Devices, Inc.)
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.126 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\{180E81FA-C4B4-492A-A2ED-C9E13390E01D}) (Version: 25.30.26068.1713 - Advanced Micro Devices, Inc.)
AMD Interface Driver (HKLM-x32\...\{6118E908-9B3B-4258-B7C2-7DEEA5A65A85}) (Version: 2.0.0.26 - Advanced Micro Devices, Inc.) Hidden
AMD PPM Provisioning File Driver (HKLM-x32\...\{3665A5DE-D07C-46D7-9207-713E8E9FEF32}) (Version: 8.0.0.59 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.40.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 26.3.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{be7d92a7-48a3-4400-a6bd-f687db0c75a8}) (Version: 8.02.18.557 - Advanced Micro Devices, Inc.) Hidden
Argus Monitor (HKLM-x32\...\ArgusMonitor) (Version: 7.2.6.3065 - Argotronic eGbR)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CPUID CPU-Z 2.16 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.16 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 12.4.0.2400 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Discord) (Version: 1.0.9232 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.680.0.6193 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{5bc9fb28-357f-4275-beea-a5da06c6bc74}) (Version: 13.680.0.6193 - Electronic Arts)
ESET Security (HKLM\...\{5EBE1855-7526-4CE1-BA67-10FB18C5BC7E}) (Version: 19.1.12.0 - ESET, spol. s r.o.)
FlatOut2 (HKLM-x32\...\{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Futuremark SystemInfo (HKLM-x32\...\{DF8DC852-25A6-4D4C-A707-534B9AC1DB09}) (Version: 5.88.1377.0 - Futuremark)
Gothic 3 Parallel Universe Patch 1.1.1 (HKLM-x32\...\{D896EEA8-3FDF-480A-846B-8BC37C8A4777}}_is1) (Version: 1.1.1 - George)
HWiNFO® 64 (HKLM\...\HWiNFO® 64_is1) (Version: 8.30 - Martin Malik, REALiX s.r.o.)
Infatica P2B Network (HKLM-x32\...\{C989163F-E0E5-4DE3-B7F5-46C77F411451}_is1) (Version: 1.1.4.0 - )
K-Lite Mega Codec Pack 19.2.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 19.2.0 - KLCP)
League of Legends (HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Malwarebytes version 5.5.3.246 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.5.3.246 - Malwarebytes)
Microsoft .NET Host - 6.0.36 (x64) (HKLM\...\{D6932D97-36F1-40B8-9CDC-CA8365B21000}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.36 (x64) (HKLM\...\{A9E32B25-994B-4856-A12B-0EBED3050410}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.36 (x64) (HKLM\...\{C912E33F-956A-4921-9F55-CC11AE8F09AF}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 146.0.3856.109 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 146.0.3856.109 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM\...\{A9E31119-18D8-4BF7-8B63-3CFE78CA0ABD}) (Version: 3.3.163.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.36 (x64) (HKLM\...\{61D4736B-3325-4D4A-BD41-8BD206C6A86E}) (Version: 48.144.23186 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.36 (x64) (HKLM-x32\...\{0532b8f2-12d7-43de-95fc-7b87006758a8}) (Version: 6.0.36.34217 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox) (Version: 149.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 143.0.3 - Mozilla)
MSI Afterburner 4.6.6 Beta 5 (HKLM-x32\...\Afterburner) (Version: 4.6.6 Beta 5 - MSI Co., LTD)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9800.1 - Realtek Semiconductor Corp.)
Realtek PCI-E Wireless LAN WiFi 7 Driver (HKLM-x32\...\InstallShield_{2E5C7F9D-D703-4767-978B-AFCAE58CE18B}) (Version: Drv_3.00.0045 - REALTEK Semiconductor Corp.)
Riot Client (HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Riot Game Riot_Client.) (Version: - Riot Games, Inc)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
RivaTuner Statistics Server 7.3.7 Beta 6 (HKLM-x32\...\RTSS) (Version: 7.3.7 Beta 6 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.105.2733 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.146 - Rockstar Games)
RyzenMasterSDK (HKLM\...\{A6303237-DE0F-424A-9C6F-AD9CBCA637F4}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.76.5 - TeamViewer)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 170.0.13099 - Ubisoft)
Unigine Superposition Benchmark 1.1 (HKLM\...\Superposition_is1) (Version: 1.1 - UNIGINE)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.15.2 - Black Tree Gaming Ltd.)
WinRAR 7.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.11.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Assets [2026-04-12] ()
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2026-03-20] (Advanced Micro Devices Inc.)
ESET Context Menu -> C:\Program Files\ESET\ESET Security [2026-04-13] (Sparse Package)
Malwarebytes Anti-Malware -> C:\Program Files\Malwarebytes\Anti-Malware [2026-04-13] ()
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.44.0_x64__8wekyb3d8bbwe [2026-03-12] (Microsoft Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.52.356.0_x64__dt26b99r8h8gj [2026-03-12] (Realtek Semiconductor Corp)
WinAppRuntime.Main.1.8 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.8_8000.806.2252.0_x64__8wekyb3d8bbwe [2026-04-02] (Microsoft Corp.)
WinRAR -> C:\Program Files\WinRAR [2025-09-28] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{6e1f4e4d-65f7-4c83-be2e-9e6683cda268}\localserver32 -> C:\Program Files\ESET\ESET Security\egui.exe (ESET, spol. s r.o. -> ESET)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{C52B9871-E5E9-41FD-B84D-C5ACADBEC7AE}\InprocServer32 -> C:\Users\lipit\Desktop\emulátor\LEContextMenuHandler.DLL (Paddy Xu) [File not signed]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2026-02-17] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2026-04-10] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2026-04-10] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2026-04-13] (Malwarebytes Inc -> Malwarebytes)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2026-04-10] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2026-04-13] (Malwarebytes Inc -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.X264] => C:\WINDOWS\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\WINDOWS\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\WINDOWS\system32\xvidvfw.dll [310784 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [1102848 2023-04-10] () [File not signed]
HKLM\...\Drivers32: [MidisrvTransferComplete] => 1
HKLM\...\Drivers32: [midi1] => C:\WINDOWS\system32\wdmaud2.drv [143360 2026-03-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [891904 2023-04-10] () [File not signed]
HKLM\...\Drivers32: [midi1] => C:\Windows\SysWOW64\wdmaud2.drv [91648 2026-03-12] (Microsoft Windows -> Microsoft Corporation)
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2024-02-01 00:39 - 2024-02-01 00:39 - 000228945 _____ (libusb.info) [File not signed] C:\Program Files\ArgusMonitor\libusb-1.0.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\tracing:? [16]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2024-04-01 09:26 - 2024-04-01 09:24 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 192.168.1.1
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Realtek 8922AE WiFi 7 PCI-E NIC -> rtwlane711.sys
Wi-Fi 2: Realtek 8922AE WiFi 7 PCI-E NIC -> rtwlane711.sys
Wi-Fi 4: Realtek 8922AE WiFi 7 PCI-E NIC -> rtwlane711.sys
Ethernet: Realtek PCIe 2.5GbE Family Controller -> rt25cx21x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lipit\Desktop\DKrJC6jU8AEr0mA.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{36333FD2-C637-4FF1-9995-FCF74FC4DBD0}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{ADDDDBCE-0F09-427E-B64C-227018EEDDBE}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FB23120F-5494-4D27-8741-A21852246848}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{AC4F0EC2-F7EB-4093-9334-B4051E3FF4BB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{7BA34076-D4B5-4BE7-9A75-DEC9DE18F861}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{ED21DB49-ED7A-4F73-B6A0-29D34CC2474A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8F20F0D3-3C7E-4D0F-869A-26FD3B5D054E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A55AE6FB-4E33-4AE4-8F62-E3C89E6F4815}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3A1BCE03-C15C-48FB-83BC-B4512D4B41BD}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{87C09F48-A689-4816-9232-431C97FFEF80}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E772C843-EC12-4BC0-9F3F-6DDCD092AA14}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{48F43696-4987-4CA9-81EF-2B2A2CF679F4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{55B6772C-4957-4C7F-B8EC-10F9E6A8AFD4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{84E54416-8163-41AF-BC39-EDC69B15AACA}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8B782DBA-46B5-45A7-A207-B5D77DF8D085}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{5D1CB488-F187-4F20-BFEA-F9C6980960DA}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{E59CC443-49A3-441E-91A1-95F8A09FFC50}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{8B9374D3-0723-4DE7-AD6D-80B15534D3BE}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe] => (Allow) C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe => No File
FirewallRules: [UDP Query User{363EB0E4-1853-4801-B7AE-D990AB349F13}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe] => (Allow) C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe => No File
FirewallRules: [{7F8A3366-6917-44A0-B870-F2D97126094C}] => (Allow) D:\SteamLibrary\steamapps\common\Risen 3\system\Risen3.exe => No File
FirewallRules: [{23EE444A-A834-42A0-8721-70CA74F60101}] => (Allow) D:\SteamLibrary\steamapps\common\Risen 3\system\Risen3.exe => No File
FirewallRules: [{555D090C-418D-4796-B95C-DF7C80657DB7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FB2FD57C-990C-4088-895E-48F227BFF65F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{A71152A6-B9BC-4380-BF57-270723437A4F}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe] => (Allow) D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe => No File
FirewallRules: [UDP Query User{EAB1C8BD-BE08-4E7E-B55A-11D3C01D1C4B}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe] => (Allow) D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe => No File
FirewallRules: [TCP Query User{384CC0B9-50C9-4957-B482-658972D7E118}D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [UDP Query User{F7A4572F-A85C-4BF9-82DE-D535B7DF8B75}D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [{CF193689-A877-4F57-86FC-C78F18FEBAD1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BA139914-E7BA-4395-B512-5E515A8A04F3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{C424DDF0-90A9-4A94-AA3B-C58CA50A6EE1}D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe => No File
FirewallRules: [UDP Query User{B99EC179-875C-41FD-BD98-A52C744DFFE3}D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe => No File
FirewallRules: [TCP Query User{1E637147-3653-4A15-AC15-2086298C736F}C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe] => (Allow) C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe => No File
FirewallRules: [UDP Query User{77DD47C6-3CAF-416D-B2C7-D299FFA3EB5B}C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe] => (Allow) C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe => No File
FirewallRules: [{76467BAE-AA4E-458B-B35C-EB852775126C}] => (Allow) D:\SteamLibrary\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{8FEB551F-DB39-4D56-B01A-758D6D3480DF}] => (Allow) D:\SteamLibrary\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{6ACAA00B-3E42-42CE-8D1C-1A6FA6C7A3F2}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe => No File
FirewallRules: [UDP Query User{31E18ABE-CB43-4207-A4D5-0D826CBB5E7D}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe => No File
FirewallRules: [TCP Query User{27FB82C8-5197-4844-A0B2-C671E67358A0}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{03E8B347-A5CE-4D7E-B12D-4B943CEA4452}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{50A75D1B-9EC9-4982-A963-5EE8E4F47F94}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{7668D586-3FEE-46F4-90A6-B8AC60B8A816}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{DC7E75C9-9B69-4090-A5A9-5F749E812D3D}] => (Allow) D:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{3E49B186-9BE5-4329-8695-2AE3750CF70D}] => (Allow) D:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [TCP Query User{FCB11DA8-C5C4-4170-AC5B-A4F9B81E322B}D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe] => (Allow) D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe (Standing Stone Games LLC -> Standing Stone Games, LLC.)
FirewallRules: [UDP Query User{04BC0AB5-9737-4B36-9C25-E468BC637829}D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe] => (Allow) D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe (Standing Stone Games LLC -> Standing Stone Games, LLC.)
FirewallRules: [{1A68EF4A-5946-49DA-93D7-132068325532}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => No File
FirewallRules: [{835317F0-CA17-40D9-9440-2159543D420F}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => No File
FirewallRules: [{B6DD35AF-B77C-4F1C-8C04-B681128605EC}] => (Allow) D:\SteamLibrary\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{9395CC72-55E6-4DC1-84C6-243384474117}] => (Allow) D:\SteamLibrary\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{4E03AB0C-ACE8-4BDE-BB26-89E6D7249B82}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\riftbreaker_win_release.exe => No File
FirewallRules: [{15FCC691-D4F4-43B5-9B11-5760269F922B}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\riftbreaker_win_release.exe => No File
FirewallRules: [{4779B6E4-194F-44E2-8FA9-479E214C1777}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\Launcher.exe => No File
FirewallRules: [{DB96EE98-1577-43BB-B038-FE618A2DE828}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\Launcher.exe => No File
FirewallRules: [{47C95907-80A7-4F74-8FD0-61C6BD7B3A83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe => No File
FirewallRules: [{08DA990D-D284-4AD2-90A3-2FDF7AF95D18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe => No File
FirewallRules: [{5A31D7DD-C8DE-48F3-901E-D42BA9BCA717}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File
FirewallRules: [{1841FF16-2BAC-4302-8A55-C32EDC8BEAC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File
FirewallRules: [{F82F4FAE-DAEF-47FD-81EC-65040B8CDDD0}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{75AE49D6-1767-4383-9DC4-FDD37A9441FD}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{563572A7-A33D-4FB1-921A-EF8BBDB8DC81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe => No File
FirewallRules: [{22FA7A01-EAA2-4DF6-9A04-3758F2E43861}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe => No File
FirewallRules: [TCP Query User{6488F992-8D99-4247-BD8B-116ED5CCE546}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{09A5371D-8082-4918-8451-1BC3FCDD7DA7}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{B1EB0EBC-46BA-4052-AC43-0B78379AC711}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{6F0941CF-8E4E-44D9-92B0-8C4E9C496AFB}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{924A3CCE-1E6E-4957-B72E-C97A9F9923EB}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{C1E29D8B-1B9F-4F7A-921E-5D48C04B3AA1}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{A0ABE9B3-5767-476F-9911-2DDF28294421}C:\users\lipit\desktop\club bifrost\bifrost.exe] => (Block) C:\users\lipit\desktop\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{63770082-4A8A-458E-A7B6-284150989131}C:\users\lipit\desktop\club bifrost\bifrost.exe] => (Block) C:\users\lipit\desktop\club bifrost\bifrost.exe => No File
FirewallRules: [{C93D78E0-9F4C-4D17-8FB8-ECE306F1021B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe => No File
FirewallRules: [{06D10A53-B9BE-44FD-9AC7-A1F7B155FF83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe => No File
FirewallRules: [TCP Query User{A9C8DEBE-12A1-4B3C-95D2-CC1A8ACEFFF3}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe => No File
FirewallRules: [UDP Query User{83EAD63B-485F-40C3-814C-1A5B77184504}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe => No File
FirewallRules: [{6BE5A629-8E4F-4927-B95E-70991ADB2933}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slay the Spire 2\SlayTheSpire2.exe () [File not signed]
FirewallRules: [{1564B7C5-5587-4C4E-813F-602F1E822BC5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slay the Spire 2\SlayTheSpire2.exe () [File not signed]
FirewallRules: [{904A026B-BE6C-47A4-B8F1-4E15F8B9F9E6}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Limited)
FirewallRules: [{C253F4E2-17CB-4A15-BE10-DCB7A1CBC1E2}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Limited)
FirewallRules: [TCP Query User{B55DD091-D9FC-4375-9673-07BF11B20A65}C:\program files\flatout2\flatout2.exe] => (Allow) C:\program files\flatout2\flatout2.exe () [File not signed]
FirewallRules: [UDP Query User{42482288-2634-4574-9C3E-83F7CCEBB1A7}C:\program files\flatout2\flatout2.exe] => (Allow) C:\program files\flatout2\flatout2.exe () [File not signed]
FirewallRules: [{95D23229-2EB6-40BA-837B-0D2A800678C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Strinova\Launcher\Strinova.exe => No File
FirewallRules: [{55E41176-DFA2-42C5-819F-8ADC6B87BEEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Strinova\Launcher\Strinova.exe => No File
FirewallRules: [{23A1CDB5-A750-434B-91E0-5AD23575A88F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DB54CF68-BA59-4B46-8E36-E0D5940DECDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{63E289EE-41F4-4C47-AEC1-C2A064973D7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{77441A2B-BE9A-4942-AE6D-64185C562362}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{075BF0BF-1A58-4A6E-BF73-85C2D56DA74D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassins Creed Odyssey\ACOdyssey.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{7285CC05-4156-40DA-84BE-95D708DD6E2B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassins Creed Odyssey\ACOdyssey.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{9A6332FA-C85A-4F08-A94F-13662968580B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{9EEDE2D6-D432-4ED3-898F-E2A3BF945EA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{A2A043F9-9808-400C-BCEA-1EF964D25260}] => (Allow) D:\SteamLibrary\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{4215E691-60A7-4E5A-A161-558F39DE448A}] => (Allow) D:\SteamLibrary\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{1D1FFBE2-CE21-41DA-875B-07E7CD4B7B8D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{038F153C-0A63-420F-AA00-B4A0CEC26010}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{52E45672-8F15-47BB-9DD6-FEFE1340A8F1}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C8280E6E-F6DA-4BCD-97A7-0891DC6F55D0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FC05562D-95B0-409E-BAD8-4F2C0C9A1BC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
FirewallRules: [{6EDD5D67-B762-4F30-8379-14AB98D3B98A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
==================== Restore Points =========================
07-04-2026 17:03:03 Nainstalováno rozhraní DirectX
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (04/14/2026 04:53:58 PM) (Source: Microsoft Security Client) (EventID: 3002) (User: )
Description: Event-ID 3002
Error: (04/14/2026 04:53:58 PM) (Source: Microsoft Security Client) (EventID: 2002) (User: )
Description: Event-ID 2002
Error: (04/14/2026 04:53:58 PM) (Source: Microsoft Security Client) (EventID: 2003) (User: )
Description: Event-ID 2003
Error: (04/14/2026 02:15:33 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..
Error: (04/14/2026 02:15:33 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]
Error: (04/13/2026 11:04:14 PM) (Source: Microsoft Security Client) (EventID: 3002) (User: )
Description: Event-ID 3002
Error: (04/13/2026 11:04:14 PM) (Source: Microsoft Security Client) (EventID: 2002) (User: )
Description: Event-ID 2002
Error: (04/13/2026 11:04:14 PM) (Source: Microsoft Security Client) (EventID: 2003) (User: )
Description: Event-ID 2003
System errors:
=============
Error: (04/14/2026 02:15:30 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/14/2026 02:15:30 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/13/2026 01:42:21 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/12/2026 02:43:24 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/11/2026 12:08:17 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/11/2026 12:08:17 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/10/2026 01:36:42 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/10/2026 01:36:42 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2026-03-11 09:04:36
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Bearfoos.B!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\ProgramData\Coyax\Loquco.dll
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1
Date: 2026-03-11 09:04:34
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Behavior:Win32/SuspEtherRpcConn.B
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Windows\System32\snmptrap.exe, pid
119519315058560; process:_pid:13204,ProcessStart:134176898667567445
Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Neznámý
Uživatel:
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1
Date: 2026-03-11 09:04:34
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Behavior:Win32/GenCodeInjected.H
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Windows\System32\snmptrap.exe, pid236067258395148; process:_pid:13204,ProcessStart:134176898667567445
Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Neznámý
Uživatel:
Název procesu: C:\Windows\System32\snmptrap.exe
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1
Date: 2026-03-11 09:04:34
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Behavior:Win32/GenCodeInjected.H
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Windows\System32\snmptrap.exe, pid236067258395148; process:_pid:13204,ProcessStart:134176898667567445
Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Neznámý
Uživatel:
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1
Date: 2026-03-06 18:14:37
Description:
Antivirová ochrana v programu Microsoft Defender ѕĉåп нàś ъĕéń śţöрρέð вєƒόŕē сσмφℓēţĭòņ.%ŋ %ţŚсąη ĬÐ:%в{B869FEA1-807E-43BA-8F2D-D310BCB495C4}%л %тŠçáň Ŧýр℮:%ьAntimalwarový program%ⁿ %тŞçāň Ράřàmêţĕяѕ:%ьRychlé prohledávání%ʼn %ŧŬŝèѓ:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞτőρ Ŗĕąѕōñ:%ъŔΡС ċоπʼnέĉťîõη яΰńδǿώň
Event[0]
Date: 2026-03-12 08:53:20
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0
Date: 2026-03-09 14:54:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.445.426.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.26010.1
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2026-03-09 14:54:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.445.426.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.26010.1
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
CodeIntegrity:
===============
Date: 2026-04-14 17:25:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends International, LLC. F6 07/16/2025
Motherboard: Gigabyte Technology Co., Ltd. B850 AORUS ELITE WIFI7
Processor: AMD Ryzen 7 9800X3D 8-Core Processor
Percentage of memory in use: 24%
Total physical RAM: 65140.92 MB
Available physical RAM: 48869.91 MB
Total Virtual: 69236.92 MB
Available Virtual: 47361.28 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.55 GB) (Free:385.14 GB) (Model: WD_BLACK SN7100 1TB) NTFS
Drive d: (Místní disk) (Fixed) (Total:931.51 GB) (Free:603.81 GB) (Model: Samsung SSD 980 1TB) NTFS
\\?\Volume{197d7e00-9765-486c-8bed-e2beb59348a8}\ () (Fixed) (Total:0.75 GB) (Free:0.1 GB) NTFS
\\?\Volume{df495976-8284-4a09-945c-e897a11e833f}\ () (Fixed) (Total:0.19 GB) (Free:0.16 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
minulý měsíc se mi stala příhoda, kdy mi z mého účtu na Discordu mým přátelům byli rozeslány phishing linky. Po projetí scanerem jsem virus našel a musel jsem se ho obnovou windowsu zbavit. Včera na den je to měsíc a stalo se to znovu, tentokrát mi stačil ESET, který virus identifikoval a odstranil. Opět jsem odpojil všechna zařízení a změnil hesla.
Chci poprosit o ověření, děkuji mockrát.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-04-2026 01
Ran by Štěpán-PC (administrator) on DESKTOP-88J5IBQ (Gigabyte Technology Co., Ltd. B850 AORUS ELITE WIFI7) (14-04-2026 17:24:41)
Running from C:\Users\lipit\Desktop\FRST64.exe
Loaded Profiles: Štěpán-PC
Platform: Microsoft Windows 11 Home Version 25H2 26200.8037 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe <8>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\ArgusMonitor\ArgusMonitor.exe ->) (Argotronic GmbH -> ) C:\Program Files\ArgusMonitor\ArgusMonitorGadget.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eServiceHost.exe <2>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files\TeamViewer\crashpad_handler.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\atieclxx.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Argotronic GmbH -> ) C:\Program Files\ArgusMonitor\ArgusMonitor.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Limited) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_19.2603.53051.0_x64__8wekyb3d8bbwe\M365Copilot.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <21>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc) C:\Windows\System32\DriverStore\FileRepository\amdppkg.inf_amd64_f57cfc457aa3e60b\AmdPpkgSvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_d2d4d4a4cf935317\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\atiesrxx.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Limited) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\13.680.0.6193-1775676788\EA Desktop\EABackgroundService.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Windows (R) Win 7 DDK provider) C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\System32\DriverStore\FileRepository\rtkbtfilter.inf_amd64_4cbb33db60b92eb8\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_ddf3491657a346d3\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2603.1001.17.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_ddf3491657a346d3\RtkAudUService64.exe [2776016 2025-02-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [285616 2026-04-10] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [4147608 2026-04-03] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [42086872 2026-04-09] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [418344 2026-03-06] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [Argus Monitor] => C:\Program Files\ArgusMonitor\ArgusMonitor.exe [5521000 2025-09-26] (Argotronic GmbH -> )
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [5767832 2026-03-13] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3393184 2026-04-08] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [486512 2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\MountPoints2: {4a22f4b8-197e-11f1-8254-50ee3289c649} - "F:\Autorun.exe"
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\MountPoints2: {4a22f5bf-197e-11f1-8254-50ee3289c649} - "G:\setup\rsrc\Autorun.exe"
HKU\S-1-5-18\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [418344 2026-03-06] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\...\RunOnce: [StartRSX] => C:\Program Files\AMD\CNext\CNext\LauncherRSXRuntime.exe [71952 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Startup: C:\Users\lipit\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LG Monitor App Installer.lnk [2026-04-13]
ShortcutTarget: LG Monitor App Installer.lnk -> (No File)
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {7CE57A97-14F5-4E5A-A254-949F635EE041} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1612800 2026-01-23] (Adobe Inc. -> Adobe Inc.)
Task: {2DE7854C-DCD8-4413-877F-FC2D182453ED} - System32\Tasks\AMD Install Manager - Check For Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [60526856 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-CheckForUpdates
Task: {42B2CC28-A8BF-4E4C-87E0-95C968BE07FD} - System32\Tasks\AMD Install Manager - Install Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [60526856 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-InstallUpdates -Auto
Task: {11DB3A85-459B-4EF0-B970-BAE9A4B65A5E} - System32\Tasks\AMDInstallUEP => C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe (No File)
Task: {8E658E2D-905C-4AD0-A594-E4535D6752A7} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [192784 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {A6C38186-65AE-493B-9570-0292BDD04474} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [3261608 2026-03-12] (Microsoft Windows -> Microsoft Corporation)
Task: {6A30810E-F90E-403D-BFF3-F6C7FFF1D525} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2401792 2025-09-16] () [File not signed]
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {CF93C8E2-1716-4E0D-8AD5-A34F882B3634} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1050888 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {43AEFF68-2805-44C3-B87A-742232DD2B3A} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3016765936-556789714-1882238419-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [705152 2026-04-08] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {C8813F40-9D8B-4E3C-B907-1158C4E03F95} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33920 2026-04-08] (Mozilla Corporation -> Mozilla Foundation)
Task: {44E74C3E-F65E-48E2-9170-4C367D59DCE7} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [820120 2025-02-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {1D82A5D9-045A-4113-9643-6BC35559E275} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [1203984 2026-03-09] (Advanced Micro Devices -> AMD)
Task: {96B8BE5C-E231-4532-B4C4-2F41575B715B} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [144656 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {BE73D328-8AA8-4F92-A3B2-66FE45060CEB} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [144656 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {433D1BDF-FD9F-44A4-927C-6C9D1390251C} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [312072 2026-03-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {DCBAF8F5-69C1-4756-B342-7741F4DCD2B1} - System32\Tasks\Ubisoft\Ubisoft Connect Background Update => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe [17892528 2026-04-01] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5f077c22-a91d-42c4-94d8-5c1aece02181}: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF TaskBarID: 308046B0AF4A39CB -> C:\Program Files\Mozilla Firefox
FF DefaultProfile: w6qyjrtv.default-release -> 308046B0AF4A39CB
FF ProfilePath: C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\8h5xe0u8.default [2025-10-03]
FF ProfilePath: C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release [2026-04-14]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\newtab@mozilla.org.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\uBlock0@raymondhill.net.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\{6ea0a676-b3ef-48aa-b23d-24c8876945fb}.xpi [0] [not signed]
FF Extension: (No Name) - C:\Users\lipit\AppData\Roaming\Mozilla\Firefox\Profiles\w6qyjrtv.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [0] [not signed]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2026-04-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2026-04-14]
Edge:
=======
Edge Profile: C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default [2025-12-11]
Edge Extension: (Dokumenty Google offline) - C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-11-27]
Edge Extension: (Netflix Party is now Teleparty) - C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\igbncjcgfkfnfgbaieiimpfkobabmkce [2025-11-27]
Edge Extension: (Edge relevant text changes) - C:\Users\lipit\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-09-25]
Chrome:
=======
CHR HKU\S-1-5-21-3016765936-556789714-1882238419-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [180216 2026-01-23] (Adobe Inc. -> Adobe Inc.)
S2 amd3dvcacheSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0ee9fc510270aa43\amd3dvcacheSvc.exe [188528 2025-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc)
S2 AmdAppCompatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompatSvc.exe [300872 2025-01-02] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
R2 AmdPpkgSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_f57cfc457aa3e60b\AmdPpkgSvc.exe [515480 2025-12-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
S3 ArgusControlService; C:\Program Files\ArgusMonitor\ArgusControlService.exe [1916520 2025-06-21] (Argotronic GmbH -> )
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [741136 0] (Advanced Micro Devices -> AMD)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3386064 2025-10-18] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4918896 2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [20690592 2026-04-08] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [959216 2025-12-28] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5639088 2026-04-10] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [5107712 2026-04-10] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [5107712 2026-04-10] (ESET, spol. s r.o. -> ESET)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347440 2025-08-25] (UL Solutions Inc -> Futuremark)
R2 GameInputRedistService; C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe [385960 2026-03-09] (Microsoft Corporation -> Windows (R) Win 7 DDK provider)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [11467392 2026-04-13] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2026-04-13] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.26010.5-0\MpDefenderCoreService.exe [2067464 2026-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [13809968 2026-01-24] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1565304 2025-12-21] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkBtManServ; C:\WINDOWS\System32\DriverStore\FileRepository\rtkbtfilter.inf_amd64_4cbb33db60b92eb8\RtkBtManServ.exe [310496 2025-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [26384240 2026-04-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 UpcElevationService; C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher Core\UpcElevationService.exe [356536 2026-04-01] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [60417432 2026-04-03] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.26010.5-0\NisSrv.exe [4435096 2026-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.26010.5-0\MsMpEng.exe [290744 2026-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [1162000 2026-04-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 DAUpdaterSvc; C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amd3dvcache; C:\WINDOWS\System32\DriverStore\FileRepository\amd3dvcache.inf_amd64_0ee9fc510270aa43\amd3dvcache.sys [43384 2025-09-29] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
R3 AmdAppCompat; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_e01b29e17ce4a109\AmdAppCompat.sys [35144 2025-01-02] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_d2d4d4a4cf935317\amdfendrmgr.sys [37272 2026-02-26] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AmdPpkg; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_f57cfc457aa3e60b\AmdPpkg.sys [35224 2025-12-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices)
R3 amduw23g-198975-8f57807d; C:\WINDOWS\System32\DriverStore\FileRepository\u0198975.inf_amd64_cab3843582148687\B025836\amdkmdag.sys [112456720 2026-03-17] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
S3 amduw23g-418637-ef495aee; C:\WINDOWS\System32\DriverStore\FileRepository\u0418637.inf_amd64_4462a7afa694670e\B418564\amdkmdag.sys [101796328 2025-09-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
S3 amduw23g-419752-a8a1c183; C:\WINDOWS\System32\DriverStore\FileRepository\u0419752.inf_amd64_024ed4a72563780a\B419298\amdkmdag.sys [101819864 2025-09-30] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63856 2025-09-10] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 ArgusMonitor; C:\WINDOWS\System32\drivers\ArgusMonitor.sys [71864 2025-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Argotronic eGbR)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [577536 2025-06-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [204800 2025-06-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [110592 2025-06-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [40648 2026-03-06] (Microsoft Windows Hardware Compatibility Publisher -> MERCURY CREDIT OU)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [54472 2026-03-06] (Microsoft Windows Hardware Compatibility Publisher -> MERCURY CREDIT OU)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [235528 2026-04-10] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [140464 2026-04-10] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [17840 2025-11-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [353856 2026-04-10] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57928 2026-04-10] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [87328 2026-04-10] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [127584 2026-04-10] (ESET, spol. s r.o. -> ESET)
S3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [82352 2026-02-10] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234600 2026-04-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2026-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [245864 2026-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_fea9c224d1377b71\rt25cx21x64.sys [887776 2024-12-24] (Realtek Semiconductor Corp. -> Realtek)
R3 RtkBtFilter2; C:\WINDOWS\System32\DriverStore\FileRepository\rtkbtfilter.inf_amd64_4cbb33db60b92eb8\RtkBtFilter2.sys [199056 2025-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkBthLeVDspService; C:\WINDOWS\System32\DriverStore\FileRepository\rtkbthlevdsp.inf_amd64_395876bdd0e31ec3\RtkBthLeVDsp.sys [238168 2025-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [56050440 2026-04-03] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [21888 2026-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [635272 2026-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102832 2026-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 HWiNFO_206; \??\C:\Users\lipit\AppData\Local\Temp\HWiNFO_x64_206.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2026-04-14 17:24 - 2026-04-14 17:24 - 000026638 _____ C:\Users\lipit\Desktop\FRST.txt
2026-04-14 17:23 - 2026-04-14 17:24 - 000000000 ____D C:\FRST
2026-04-14 17:23 - 2026-04-14 17:23 - 002446848 _____ (Farbar) C:\Users\lipit\Desktop\FRST64.exe
2026-04-14 17:15 - 2026-04-14 17:15 - 000711764 _____ C:\WINDOWS\system32\perfh005.dat
2026-04-14 17:15 - 2026-04-14 17:15 - 000152978 _____ C:\WINDOWS\system32\perfc005.dat
2026-04-14 16:50 - 2026-04-14 16:50 - 000003900 _____ C:\WINDOWS\system32\Tasks\AMD Install Manager - Install Updates
2026-04-13 23:09 - 2026-04-13 23:09 - 000000000 ____D C:\Users\Public\Documents\LG Monitor App Installer
2026-04-13 22:18 - 2026-04-14 17:24 - 000000000 ____D C:\Users\lipit\AppData\Local\Malwarebytes
2026-04-13 22:18 - 2026-04-13 22:18 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2026-04-13 22:18 - 2026-04-13 22:18 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2026-04-13 22:17 - 2026-04-13 22:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2026-04-13 22:17 - 2026-04-13 22:17 - 000000000 ____D C:\Program Files\Malwarebytes
2026-04-08 10:52 - 2026-04-08 10:52 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\Joybrick
2026-04-07 17:03 - 2026-04-07 17:03 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2026-04-07 11:34 - 2026-04-07 13:26 - 000000000 ____D C:\Users\lipit\AppData\Roaming\FirstLoveExperience
2026-04-07 06:58 - 2026-04-13 11:57 - 000000000 ____D C:\WINDOWS\CbsTemp
2026-04-04 21:01 - 2026-04-04 21:01 - 000007597 _____ C:\Users\lipit\AppData\Local\Resmon.ResmonCfg
2026-04-03 22:43 - 2025-05-22 04:33 - 000028175 _____ C:\Users\lipit\Desktop\OptiScaler.ini
2026-04-03 09:23 - 2026-03-14 20:56 - 000000000 ____D C:\Users\lipit\Desktop\SMAPI 4.5.2 installer
2026-04-03 09:16 - 2026-04-13 16:44 - 000000000 ____D C:\Users\lipit\AppData\Roaming\StardewValley
2026-04-03 06:15 - 2026-04-03 06:15 - 000000000 ____D C:\Users\UMFD-0.Font Driver Host
2026-04-03 06:15 - 2026-04-03 06:15 - 000000000 ____D C:\Users\TEMP.Font Driver Host
2026-04-02 21:24 - 2026-04-10 20:55 - 134222904 _____ C:\WINDOWS\392667600.dat
2026-04-02 21:23 - 2026-04-11 09:28 - 000000000 ____D C:\Program Files\Riot Vanguard
2026-04-02 20:33 - 2026-04-10 20:43 - 000000000 ____D C:\Users\lipit\AppData\Roaming\Riot Client
2026-03-27 16:55 - 2026-03-27 16:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\SoftLanding
2026-03-26 18:47 - 2026-03-26 18:47 - 000000000 ____D C:\Users\UMFD-0
2026-03-26 18:47 - 2026-03-26 18:47 - 000000000 ____D C:\Users\TEMP
2026-03-25 20:20 - 2026-04-13 22:24 - 000000000 ____D C:\Users\lipit\Desktop\AOE
2026-03-25 13:40 - 2026-03-25 13:40 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\Tiny Devil Studio
2026-03-20 16:45 - 2026-03-20 16:45 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2026-03-20 16:45 - 2026-03-20 16:45 - 000003302 _____ C:\WINDOWS\system32\Tasks\StartCNBM
2026-03-20 16:45 - 2026-03-20 16:45 - 000003194 _____ C:\WINDOWS\system32\Tasks\StartAUEP
2026-03-20 16:45 - 2026-03-20 16:45 - 000002620 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2026-03-20 16:45 - 2026-03-20 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMDInstallManager
2026-03-20 16:45 - 2026-03-20 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2026-03-20 16:45 - 2026-03-20 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2026-03-20 16:44 - 2026-03-17 09:42 - 000632848 _____ C:\WINDOWS\system32\GameManager64.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000526352 _____ C:\WINDOWS\system32\EEURestart.exe
2026-03-20 16:44 - 2026-03-17 09:42 - 000480272 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000200720 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000190992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2026-03-20 16:44 - 2026-03-17 09:42 - 000150544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 115295760 _____ C:\WINDOWS\system32\amd_comgr_2.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 115286544 _____ C:\WINDOWS\system32\amd_comgr_3.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 096958992 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 005175312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 004832784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 003406984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.etz
2026-03-20 16:44 - 2026-03-17 09:41 - 003093520 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 003093520 _____ C:\WINDOWS\system32\vulkaninfo.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 002637328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 002637328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 002192400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001873936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001724592 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001402048 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001329168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001185296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 001069584 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000998928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000801808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000678928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000606472 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000592400 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000559632 _____ C:\WINDOWS\system32\atieah64.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000550416 _____ C:\WINDOWS\system32\dgtrayicon.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000543248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000473616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000471568 _____ C:\WINDOWS\system32\amdlogum.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000450064 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000434312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendr.stz
2026-03-20 16:44 - 2026-03-17 09:41 - 000422416 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000347152 _____ C:\WINDOWS\system32\clinfo.exe
2026-03-20 16:44 - 2026-03-17 09:41 - 000247312 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000212496 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000182360 _____ C:\WINDOWS\system32\amdmiracast.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000169856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000159480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000159480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000147984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000145216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000142728 _____ C:\WINDOWS\system32\amdxc64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000131248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000122896 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000118744 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000056968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrmgr.stz
2026-03-20 16:44 - 2026-03-17 09:41 - 000051728 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2026-03-20 16:44 - 2026-03-17 09:41 - 000048656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2026-03-20 16:44 - 2026-03-17 09:40 - 000177168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2026-03-20 16:44 - 2026-03-17 09:40 - 000145936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2026-03-20 16:44 - 2026-03-17 09:13 - 120863472 _____ C:\WINDOWS\system32\amdxc64.so
2026-03-20 16:44 - 2026-03-06 15:07 - 000314408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ANR-bgproc-Lib.dll
2026-03-20 13:00 - 2026-03-20 13:00 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\IncontinentCell
2026-03-19 01:44 - 2026-03-19 01:44 - 000000000 ____D C:\Program Files\Microsoft GameInput
2026-03-18 22:19 - 2026-03-18 22:20 - 000000000 ____D C:\Users\lipit\AppData\Local\Saber
2026-03-17 18:42 - 2026-03-17 18:56 - 000000000 ____D C:\Users\lipit\Documents\Assassin's Creed Shadows
2026-03-17 18:42 - 2026-03-17 18:42 - 000000000 ____D C:\Users\lipit\AppData\Local\Ubisoft
2026-03-15 19:32 - 2026-04-01 21:10 - 000000000 ____D C:\Users\lipit\Documents\Assassin's Creed Odyssey
2026-03-15 19:03 - 2026-03-15 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Ubisoft
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2026-04-14 17:18 - 2025-09-28 12:48 - 000000000 ____D C:\Program Files (x86)\Steam
2026-04-14 17:16 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2026-04-14 17:15 - 2025-09-25 21:54 - 001692324 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2026-04-14 17:15 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2026-04-14 16:55 - 2025-10-03 08:47 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2026-04-14 16:51 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2026-04-14 16:49 - 2025-11-16 21:07 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2026-04-14 16:47 - 2025-09-28 12:00 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2026-04-14 16:47 - 2025-09-28 11:59 - 000003150 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2026-04-14 16:46 - 2026-03-13 19:46 - 000000000 ____D C:\Program Files\TeamViewer
2026-04-14 16:46 - 2025-09-26 03:55 - 001189856 _____ C:\WINDOWS\system32\wpbbin.exe
2026-04-14 16:46 - 2025-09-26 03:55 - 001162000 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe
2026-04-14 16:46 - 2025-09-26 03:55 - 000012288 ___SH C:\DumpStack.log.tmp
2026-04-14 16:46 - 2025-09-26 03:55 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2026-04-14 16:46 - 2025-09-26 03:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2026-04-14 16:46 - 2025-09-25 21:55 - 000089360 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe
2026-04-14 16:46 - 2025-09-25 21:49 - 000034164 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2026-04-14 16:46 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2026-04-14 16:46 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2026-04-14 02:15 - 2024-04-01 09:21 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2026-04-14 02:10 - 2025-09-26 03:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2026-04-14 00:09 - 2025-09-28 12:49 - 000000000 ____D C:\Users\lipit\AppData\Local\Steam
2026-04-13 23:10 - 2025-09-25 21:55 - 000000000 ____D C:\Users\lipit\AppData\Local\Packages
2026-04-13 23:10 - 2025-09-25 21:49 - 000000000 ____D C:\ProgramData\Packages
2026-04-13 22:19 - 2026-03-11 10:02 - 000000000 ____D C:\ProgramData\adapterhost_x86
2026-04-13 22:18 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2026-04-13 22:18 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2026-04-13 19:03 - 2025-10-12 13:02 - 000000000 ____D C:\Users\lipit\AppData\Local\Ubisoft Game Launcher
2026-04-12 18:03 - 2025-09-26 18:32 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2026-04-12 18:03 - 2025-09-26 18:32 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2026-04-12 02:43 - 2025-10-03 14:54 - 000000000 ____D C:\Users\lipit\AppData\Roaming\discord
2026-04-12 02:11 - 2026-03-12 10:17 - 000000000 ____D C:\Users\lipit\AppData\Local\Discord
2026-04-11 09:39 - 2025-09-25 21:55 - 000000000 ____D C:\Users\lipit\AppData\Local\D3DSCache
2026-04-11 09:39 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2026-04-10 20:45 - 2026-03-12 10:17 - 000002243 _____ C:\Users\lipit\Desktop\Discord.lnk
2026-04-10 20:44 - 2025-11-16 20:50 - 000000000 ____D C:\ProgramData\Riot Games
2026-04-10 20:43 - 2025-11-16 20:51 - 000000000 ____D C:\Users\lipit\AppData\Roaming\riot-client-ux
2026-04-10 15:04 - 2025-11-24 15:52 - 000353856 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000235528 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000140464 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000127584 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000087328 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2026-04-10 15:04 - 2025-11-24 15:52 - 000057928 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2026-04-09 22:21 - 2025-09-26 18:45 - 000000000 ____D C:\Users\lipit\AppData\Local\AMD_Common
2026-04-09 20:20 - 2025-09-26 03:55 - 000003714 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{8FBCE91D-587E-4B06-B66A-7E4A29AAF977}
2026-04-09 20:20 - 2025-09-26 03:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{4527C347-230F-4944-8561-72E5FA3B7AB0}
2026-04-09 09:56 - 2025-10-03 08:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2026-04-09 09:56 - 2025-10-03 08:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2026-04-08 21:35 - 2025-12-05 16:20 - 000000000 ____D C:\ProgramData\EA Desktop
2026-04-08 16:51 - 2025-12-10 15:04 - 000392320 _____ (Mozilla Foundation) C:\Users\lipit\Desktop\Firefox.exe
2026-04-08 16:51 - 2025-10-03 08:47 - 000001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2026-04-08 11:00 - 2026-03-03 22:42 - 000000000 ____D C:\Users\lipit\AppData\LocalLow\Unity
2026-04-08 10:52 - 2025-09-26 03:55 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2026-04-07 14:26 - 2025-09-26 20:41 - 000000000 ____D C:\WINDOWS\Minidump
2026-04-07 14:26 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2026-04-02 23:33 - 2025-09-28 17:01 - 000000000 ____D C:\Users\lipit\Documents\My Games
2026-04-02 23:33 - 2025-09-28 17:01 - 000000000 ____D C:\Users\lipit\AppData\Roaming\SquareEnix
2026-04-02 21:34 - 2025-12-06 00:43 - 000000000 ____D C:\Users\lipit\AppData\Local\CrashDumps
2026-04-02 20:56 - 2025-11-16 20:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2026-04-02 20:38 - 2025-11-16 20:51 - 000001503 _____ C:\Users\Public\Desktop\Riot Client.lnk
2026-04-02 13:16 - 2026-01-07 12:01 - 000000000 ____D C:\Users\lipit\AppData\Local\User Data
2026-03-30 12:31 - 2026-01-25 23:36 - 000000000 ____D C:\Users\lipit\AppData\Roaming\RenPy
2026-03-21 14:08 - 2026-03-05 19:21 - 000453064 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_d.dll.0
2026-03-21 14:08 - 2026-03-05 19:21 - 000453064 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_d.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 004590024 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000911816 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000289224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000260552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000166344 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2026-03-21 14:08 - 2025-12-28 01:42 - 000154056 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2026-03-21 14:08 - 2025-12-28 01:42 - 000084424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2026-03-20 16:45 - 2025-09-26 18:46 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN
2026-03-20 16:45 - 2025-09-26 18:46 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR
2026-03-20 16:45 - 2025-09-26 18:45 - 000000000 ____D C:\Program Files\AMD
2026-03-20 16:45 - 2025-09-26 18:22 - 000000000 ____D C:\AMD
2026-03-17 18:41 - 2025-10-12 13:02 - 000001323 _____ C:\Users\lipit\Desktop\Ubisoft Connect.lnk
2026-03-16 21:28 - 2026-03-06 22:55 - 000000000 ____D C:\Users\lipit\Desktop\Call of Duty 2
2026-03-15 19:11 - 2026-03-04 18:44 - 000000000 ____D C:\Users\lipit\Desktop\DAO mody
==================== Files in the root of some directories ========
2025-12-07 18:58 - 2025-12-07 18:58 - 000000048 ____R () C:\Users\lipit\AppData\Local\2228D103D6E359B34623C1D0778AD46F
2026-04-04 21:01 - 2026-04-04 21:01 - 000007597 _____ () C:\Users\lipit\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-04-2026 01
Ran by Štěpán-PC (14-04-2026 17:25:11)
Running from C:\Users\lipit\Desktop
Microsoft Windows 11 Home Version 25H2 26200.8037 (X64) (2025-09-25 19:49:51)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3016765936-556789714-1882238419-500 - Administrators - Disabled)
DefaultAccount (S-1-5-21-3016765936-556789714-1882238419-503 - Limited - Disabled)
Guest (S-1-5-21-3016765936-556789714-1882238419-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3016765936-556789714-1882238419-504 - Limited - Disabled)
Štěpán-PC (S-1-5-21-3016765936-556789714-1882238419-1001 - Administrators - Enabled) => C:\Users\lipit
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3DMark (HKLM\...\{4AFE3A81-5A89-4464-944B-7B9E9C8AA92E}) (Version: 2.32.8454.0 - UL) Hidden
3DMark (HKLM-x32\...\{7b29f241-1dfb-4171-8781-9c91605f2f8b}) (Version: 2.32.8454.0 - UL)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 26.001.21411 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601149}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Age of the Ring Standalone version 9.2.0 (HKLM-x32\...\Age of the Ring Standalone_is1) (Version: 9.2.0 - AotR Staff)
AMD 3D V-Cache Performance Optimizer Driver (HKLM-x32\...\{4537278A-8E70-4021-A866-38CE644D92F8}) (Version: 1.0.0.12 - Advanced Micro Devices, Inc.) Hidden
AMD Application Compatibility Database Driver (HKLM-x32\...\{7466773D-AE4B-48F6-8E12-D64B555C1BEA}) (Version: 1.0.0.3 - Advanced Micro Devices, Inc.) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.136 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 8.02.18.557 - Advanced Micro Devices, Inc.)
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.126 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\{180E81FA-C4B4-492A-A2ED-C9E13390E01D}) (Version: 25.30.26068.1713 - Advanced Micro Devices, Inc.)
AMD Interface Driver (HKLM-x32\...\{6118E908-9B3B-4258-B7C2-7DEEA5A65A85}) (Version: 2.0.0.26 - Advanced Micro Devices, Inc.) Hidden
AMD PPM Provisioning File Driver (HKLM-x32\...\{3665A5DE-D07C-46D7-9207-713E8E9FEF32}) (Version: 8.0.0.59 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.40.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 26.3.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{be7d92a7-48a3-4400-a6bd-f687db0c75a8}) (Version: 8.02.18.557 - Advanced Micro Devices, Inc.) Hidden
Argus Monitor (HKLM-x32\...\ArgusMonitor) (Version: 7.2.6.3065 - Argotronic eGbR)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CPUID CPU-Z 2.16 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.16 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 12.4.0.2400 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Discord) (Version: 1.0.9232 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.680.0.6193 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{5bc9fb28-357f-4275-beea-a5da06c6bc74}) (Version: 13.680.0.6193 - Electronic Arts)
ESET Security (HKLM\...\{5EBE1855-7526-4CE1-BA67-10FB18C5BC7E}) (Version: 19.1.12.0 - ESET, spol. s r.o.)
FlatOut2 (HKLM-x32\...\{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Futuremark SystemInfo (HKLM-x32\...\{DF8DC852-25A6-4D4C-A707-534B9AC1DB09}) (Version: 5.88.1377.0 - Futuremark)
Gothic 3 Parallel Universe Patch 1.1.1 (HKLM-x32\...\{D896EEA8-3FDF-480A-846B-8BC37C8A4777}}_is1) (Version: 1.1.1 - George)
HWiNFO® 64 (HKLM\...\HWiNFO® 64_is1) (Version: 8.30 - Martin Malik, REALiX s.r.o.)
Infatica P2B Network (HKLM-x32\...\{C989163F-E0E5-4DE3-B7F5-46C77F411451}_is1) (Version: 1.1.4.0 - )
K-Lite Mega Codec Pack 19.2.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 19.2.0 - KLCP)
League of Legends (HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Malwarebytes version 5.5.3.246 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.5.3.246 - Malwarebytes)
Microsoft .NET Host - 6.0.36 (x64) (HKLM\...\{D6932D97-36F1-40B8-9CDC-CA8365B21000}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.36 (x64) (HKLM\...\{A9E32B25-994B-4856-A12B-0EBED3050410}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.36 (x64) (HKLM\...\{C912E33F-956A-4921-9F55-CC11AE8F09AF}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 146.0.3856.109 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 146.0.3856.109 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM\...\{A9E31119-18D8-4BF7-8B63-3CFE78CA0ABD}) (Version: 3.3.163.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.36 (x64) (HKLM\...\{61D4736B-3325-4D4A-BD41-8BD206C6A86E}) (Version: 48.144.23186 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.36 (x64) (HKLM-x32\...\{0532b8f2-12d7-43de-95fc-7b87006758a8}) (Version: 6.0.36.34217 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox) (Version: 149.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 143.0.3 - Mozilla)
MSI Afterburner 4.6.6 Beta 5 (HKLM-x32\...\Afterburner) (Version: 4.6.6 Beta 5 - MSI Co., LTD)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9800.1 - Realtek Semiconductor Corp.)
Realtek PCI-E Wireless LAN WiFi 7 Driver (HKLM-x32\...\InstallShield_{2E5C7F9D-D703-4767-978B-AFCAE58CE18B}) (Version: Drv_3.00.0045 - REALTEK Semiconductor Corp.)
Riot Client (HKU\S-1-5-21-3016765936-556789714-1882238419-1001\...\Riot Game Riot_Client.) (Version: - Riot Games, Inc)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
RivaTuner Statistics Server 7.3.7 Beta 6 (HKLM-x32\...\RTSS) (Version: 7.3.7 Beta 6 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.105.2733 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.146 - Rockstar Games)
RyzenMasterSDK (HKLM\...\{A6303237-DE0F-424A-9C6F-AD9CBCA637F4}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.76.5 - TeamViewer)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 170.0.13099 - Ubisoft)
Unigine Superposition Benchmark 1.1 (HKLM\...\Superposition_is1) (Version: 1.1 - UNIGINE)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.15.2 - Black Tree Gaming Ltd.)
WinRAR 7.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.11.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Assets [2026-04-12] ()
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2026-03-20] (Advanced Micro Devices Inc.)
ESET Context Menu -> C:\Program Files\ESET\ESET Security [2026-04-13] (Sparse Package)
Malwarebytes Anti-Malware -> C:\Program Files\Malwarebytes\Anti-Malware [2026-04-13] ()
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.44.0_x64__8wekyb3d8bbwe [2026-03-12] (Microsoft Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.52.356.0_x64__dt26b99r8h8gj [2026-03-12] (Realtek Semiconductor Corp)
WinAppRuntime.Main.1.8 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.8_8000.806.2252.0_x64__8wekyb3d8bbwe [2026-04-02] (Microsoft Corp.)
WinRAR -> C:\Program Files\WinRAR [2025-09-28] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{6e1f4e4d-65f7-4c83-be2e-9e6683cda268}\localserver32 -> C:\Program Files\ESET\ESET Security\egui.exe (ESET, spol. s r.o. -> ESET)
CustomCLSID: HKU\S-1-5-21-3016765936-556789714-1882238419-1001_Classes\CLSID\{C52B9871-E5E9-41FD-B84D-C5ACADBEC7AE}\InprocServer32 -> C:\Users\lipit\Desktop\emulátor\LEContextMenuHandler.DLL (Paddy Xu) [File not signed]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2026-02-17] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2026-04-10] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2026-04-10] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2026-03-04] (AVB Disc Soft, SIA -> Disc Soft Limited)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2026-04-13] (Malwarebytes Inc -> Malwarebytes)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2026-04-10] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2026-04-13] (Malwarebytes Inc -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.X264] => C:\WINDOWS\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\WINDOWS\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\WINDOWS\system32\xvidvfw.dll [310784 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [1102848 2023-04-10] () [File not signed]
HKLM\...\Drivers32: [MidisrvTransferComplete] => 1
HKLM\...\Drivers32: [midi1] => C:\WINDOWS\system32\wdmaud2.drv [143360 2026-03-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [891904 2023-04-10] () [File not signed]
HKLM\...\Drivers32: [midi1] => C:\Windows\SysWOW64\wdmaud2.drv [91648 2026-03-12] (Microsoft Windows -> Microsoft Corporation)
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2024-02-01 00:39 - 2024-02-01 00:39 - 000228945 _____ (libusb.info) [File not signed] C:\Program Files\ArgusMonitor\libusb-1.0.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\tracing:? [16]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2024-04-01 09:26 - 2024-04-01 09:24 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 192.168.1.1
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Realtek 8922AE WiFi 7 PCI-E NIC -> rtwlane711.sys
Wi-Fi 2: Realtek 8922AE WiFi 7 PCI-E NIC -> rtwlane711.sys
Wi-Fi 4: Realtek 8922AE WiFi 7 PCI-E NIC -> rtwlane711.sys
Ethernet: Realtek PCIe 2.5GbE Family Controller -> rt25cx21x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-3016765936-556789714-1882238419-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lipit\Desktop\DKrJC6jU8AEr0mA.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{36333FD2-C637-4FF1-9995-FCF74FC4DBD0}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{ADDDDBCE-0F09-427E-B64C-227018EEDDBE}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FB23120F-5494-4D27-8741-A21852246848}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{AC4F0EC2-F7EB-4093-9334-B4051E3FF4BB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{7BA34076-D4B5-4BE7-9A75-DEC9DE18F861}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{ED21DB49-ED7A-4F73-B6A0-29D34CC2474A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8F20F0D3-3C7E-4D0F-869A-26FD3B5D054E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A55AE6FB-4E33-4AE4-8F62-E3C89E6F4815}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3A1BCE03-C15C-48FB-83BC-B4512D4B41BD}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{87C09F48-A689-4816-9232-431C97FFEF80}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E772C843-EC12-4BC0-9F3F-6DDCD092AA14}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{48F43696-4987-4CA9-81EF-2B2A2CF679F4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{55B6772C-4957-4C7F-B8EC-10F9E6A8AFD4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{84E54416-8163-41AF-BC39-EDC69B15AACA}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8B782DBA-46B5-45A7-A207-B5D77DF8D085}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{5D1CB488-F187-4F20-BFEA-F9C6980960DA}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{E59CC443-49A3-441E-91A1-95F8A09FFC50}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{8B9374D3-0723-4DE7-AD6D-80B15534D3BE}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe] => (Allow) C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe => No File
FirewallRules: [UDP Query User{363EB0E4-1853-4801-B7AE-D990AB349F13}C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe] => (Allow) C:\users\lipit\desktop\fallen brand new world\fallen_1.0.5a\fallen.exe => No File
FirewallRules: [{7F8A3366-6917-44A0-B870-F2D97126094C}] => (Allow) D:\SteamLibrary\steamapps\common\Risen 3\system\Risen3.exe => No File
FirewallRules: [{23EE444A-A834-42A0-8721-70CA74F60101}] => (Allow) D:\SteamLibrary\steamapps\common\Risen 3\system\Risen3.exe => No File
FirewallRules: [{555D090C-418D-4796-B95C-DF7C80657DB7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FB2FD57C-990C-4088-895E-48F227BFF65F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{A71152A6-B9BC-4380-BF57-270723437A4F}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe] => (Allow) D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe => No File
FirewallRules: [UDP Query User{EAB1C8BD-BE08-4E7E-B55A-11D3C01D1C4B}D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe] => (Allow) D:\steamlibrary\steamapps\common\battlefield 6\bf6.exe => No File
FirewallRules: [TCP Query User{384CC0B9-50C9-4957-B482-658972D7E118}D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [UDP Query User{F7A4572F-A85C-4BF9-82DE-D535B7DF8B75}D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) D:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [{CF193689-A877-4F57-86FC-C78F18FEBAD1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BA139914-E7BA-4395-B512-5E515A8A04F3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{C424DDF0-90A9-4A94-AA3B-C58CA50A6EE1}D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe => No File
FirewallRules: [UDP Query User{B99EC179-875C-41FD-BD98-A52C744DFFE3}D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe] => (Allow) D:\steamlibrary\steamapps\common\grand theft auto v enhanced\gta5_enhanced.exe => No File
FirewallRules: [TCP Query User{1E637147-3653-4A15-AC15-2086298C736F}C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe] => (Allow) C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe => No File
FirewallRules: [UDP Query User{77DD47C6-3CAF-416D-B2C7-D299FFA3EB5B}C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe] => (Allow) C:\users\lipit\desktop\peeping.dorm.manager.build.14407700\peeping dorm manager.exe => No File
FirewallRules: [{76467BAE-AA4E-458B-B35C-EB852775126C}] => (Allow) D:\SteamLibrary\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{8FEB551F-DB39-4D56-B01A-758D6D3480DF}] => (Allow) D:\SteamLibrary\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{6ACAA00B-3E42-42CE-8D1C-1A6FA6C7A3F2}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe => No File
FirewallRules: [UDP Query User{31E18ABE-CB43-4207-A4D5-0D826CBB5E7D}D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe] => (Allow) D:\xboxgames\sea of thieves\content\athena\binaries\wingdk\sotgame.exe => No File
FirewallRules: [TCP Query User{27FB82C8-5197-4844-A0B2-C671E67358A0}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{03E8B347-A5CE-4D7E-B12D-4B943CEA4452}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{50A75D1B-9EC9-4982-A963-5EE8E4F47F94}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{7668D586-3FEE-46F4-90A6-B8AC60B8A816}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{DC7E75C9-9B69-4090-A5A9-5F749E812D3D}] => (Allow) D:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{3E49B186-9BE5-4329-8695-2AE3750CF70D}] => (Allow) D:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [TCP Query User{FCB11DA8-C5C4-4170-AC5B-A4F9B81E322B}D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe] => (Allow) D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe (Standing Stone Games LLC -> Standing Stone Games, LLC.)
FirewallRules: [UDP Query User{04BC0AB5-9737-4B36-9C25-E468BC637829}D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe] => (Allow) D:\steamlibrary\steamapps\common\lord of the rings online\x64\lotroclient64.exe (Standing Stone Games LLC -> Standing Stone Games, LLC.)
FirewallRules: [{1A68EF4A-5946-49DA-93D7-132068325532}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => No File
FirewallRules: [{835317F0-CA17-40D9-9440-2159543D420F}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => No File
FirewallRules: [{B6DD35AF-B77C-4F1C-8C04-B681128605EC}] => (Allow) D:\SteamLibrary\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{9395CC72-55E6-4DC1-84C6-243384474117}] => (Allow) D:\SteamLibrary\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{4E03AB0C-ACE8-4BDE-BB26-89E6D7249B82}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\riftbreaker_win_release.exe => No File
FirewallRules: [{15FCC691-D4F4-43B5-9B11-5760269F922B}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\riftbreaker_win_release.exe => No File
FirewallRules: [{4779B6E4-194F-44E2-8FA9-479E214C1777}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\Launcher.exe => No File
FirewallRules: [{DB96EE98-1577-43BB-B038-FE618A2DE828}] => (Allow) D:\SteamLibrary\steamapps\common\Riftbreaker\bin\Launcher.exe => No File
FirewallRules: [{47C95907-80A7-4F74-8FD0-61C6BD7B3A83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe => No File
FirewallRules: [{08DA990D-D284-4AD2-90A3-2FDF7AF95D18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe => No File
FirewallRules: [{5A31D7DD-C8DE-48F3-901E-D42BA9BCA717}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File
FirewallRules: [{1841FF16-2BAC-4302-8A55-C32EDC8BEAC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe => No File
FirewallRules: [{F82F4FAE-DAEF-47FD-81EC-65040B8CDDD0}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{75AE49D6-1767-4383-9DC4-FDD37A9441FD}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{563572A7-A33D-4FB1-921A-EF8BBDB8DC81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe => No File
FirewallRules: [{22FA7A01-EAA2-4DF6-9A04-3758F2E43861}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe => No File
FirewallRules: [TCP Query User{6488F992-8D99-4247-BD8B-116ED5CCE546}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{09A5371D-8082-4918-8451-1BC3FCDD7DA7}C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa18252.9720.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{B1EB0EBC-46BA-4052-AC43-0B78379AC711}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{6F0941CF-8E4E-44D9-92B0-8C4E9C496AFB}C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa8628.19837.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{924A3CCE-1E6E-4957-B72E-C97A9F9923EB}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{C1E29D8B-1B9F-4F7A-921E-5D48C04B3AA1}C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe] => (Block) C:\users\lipit\appdata\local\temp\rar$exa14768.18710.rartemp\club bifrost\bifrost.exe => No File
FirewallRules: [TCP Query User{A0ABE9B3-5767-476F-9911-2DDF28294421}C:\users\lipit\desktop\club bifrost\bifrost.exe] => (Block) C:\users\lipit\desktop\club bifrost\bifrost.exe => No File
FirewallRules: [UDP Query User{63770082-4A8A-458E-A7B6-284150989131}C:\users\lipit\desktop\club bifrost\bifrost.exe] => (Block) C:\users\lipit\desktop\club bifrost\bifrost.exe => No File
FirewallRules: [{C93D78E0-9F4C-4D17-8FB8-ECE306F1021B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe => No File
FirewallRules: [{06D10A53-B9BE-44FD-9AC7-A1F7B155FF83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe => No File
FirewallRules: [TCP Query User{A9C8DEBE-12A1-4B3C-95D2-CC1A8ACEFFF3}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe => No File
FirewallRules: [UDP Query User{83EAD63B-485F-40C3-814C-1A5B77184504}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe => No File
FirewallRules: [{6BE5A629-8E4F-4927-B95E-70991ADB2933}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slay the Spire 2\SlayTheSpire2.exe () [File not signed]
FirewallRules: [{1564B7C5-5587-4C4E-813F-602F1E822BC5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slay the Spire 2\SlayTheSpire2.exe () [File not signed]
FirewallRules: [{904A026B-BE6C-47A4-B8F1-4E15F8B9F9E6}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Limited)
FirewallRules: [{C253F4E2-17CB-4A15-BE10-DCB7A1CBC1E2}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Limited)
FirewallRules: [TCP Query User{B55DD091-D9FC-4375-9673-07BF11B20A65}C:\program files\flatout2\flatout2.exe] => (Allow) C:\program files\flatout2\flatout2.exe () [File not signed]
FirewallRules: [UDP Query User{42482288-2634-4574-9C3E-83F7CCEBB1A7}C:\program files\flatout2\flatout2.exe] => (Allow) C:\program files\flatout2\flatout2.exe () [File not signed]
FirewallRules: [{95D23229-2EB6-40BA-837B-0D2A800678C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Strinova\Launcher\Strinova.exe => No File
FirewallRules: [{55E41176-DFA2-42C5-819F-8ADC6B87BEEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Strinova\Launcher\Strinova.exe => No File
FirewallRules: [{23A1CDB5-A750-434B-91E0-5AD23575A88F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DB54CF68-BA59-4B46-8E36-E0D5940DECDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{63E289EE-41F4-4C47-AEC1-C2A064973D7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{77441A2B-BE9A-4942-AE6D-64185C562362}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{075BF0BF-1A58-4A6E-BF73-85C2D56DA74D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassins Creed Odyssey\ACOdyssey.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{7285CC05-4156-40DA-84BE-95D708DD6E2B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassins Creed Odyssey\ACOdyssey.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{9A6332FA-C85A-4F08-A94F-13662968580B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{9EEDE2D6-D432-4ED3-898F-E2A3BF945EA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{A2A043F9-9808-400C-BCEA-1EF964D25260}] => (Allow) D:\SteamLibrary\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{4215E691-60A7-4E5A-A161-558F39DE448A}] => (Allow) D:\SteamLibrary\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{1D1FFBE2-CE21-41DA-875B-07E7CD4B7B8D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{038F153C-0A63-420F-AA00-B4A0CEC26010}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{52E45672-8F15-47BB-9DD6-FEFE1340A8F1}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C8280E6E-F6DA-4BCD-97A7-0891DC6F55D0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FC05562D-95B0-409E-BAD8-4F2C0C9A1BC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
FirewallRules: [{6EDD5D67-B762-4F30-8379-14AB98D3B98A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
==================== Restore Points =========================
07-04-2026 17:03:03 Nainstalováno rozhraní DirectX
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (04/14/2026 04:53:58 PM) (Source: Microsoft Security Client) (EventID: 3002) (User: )
Description: Event-ID 3002
Error: (04/14/2026 04:53:58 PM) (Source: Microsoft Security Client) (EventID: 2002) (User: )
Description: Event-ID 2002
Error: (04/14/2026 04:53:58 PM) (Source: Microsoft Security Client) (EventID: 2003) (User: )
Description: Event-ID 2003
Error: (04/14/2026 02:15:33 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..
Error: (04/14/2026 02:15:33 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]
Error: (04/13/2026 11:04:14 PM) (Source: Microsoft Security Client) (EventID: 3002) (User: )
Description: Event-ID 3002
Error: (04/13/2026 11:04:14 PM) (Source: Microsoft Security Client) (EventID: 2002) (User: )
Description: Event-ID 2002
Error: (04/13/2026 11:04:14 PM) (Source: Microsoft Security Client) (EventID: 2003) (User: )
Description: Event-ID 2003
System errors:
=============
Error: (04/14/2026 02:15:30 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/14/2026 02:15:30 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/13/2026 01:42:21 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/12/2026 02:43:24 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/11/2026 12:08:17 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/11/2026 12:08:17 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/10/2026 01:36:42 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/10/2026 01:36:42 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-88J5IBQ)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2026-03-11 09:04:36
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Bearfoos.B!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\ProgramData\Coyax\Loquco.dll
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1
Date: 2026-03-11 09:04:34
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Behavior:Win32/SuspEtherRpcConn.B
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Windows\System32\snmptrap.exe, pid
119519315058560; process:_pid:13204,ProcessStart:134176898667567445Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Neznámý
Uživatel:
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1
Date: 2026-03-11 09:04:34
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Behavior:Win32/GenCodeInjected.H
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Windows\System32\snmptrap.exe, pid
236067258395148; process:_pid:13204,ProcessStart:134176898667567445Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Neznámý
Uživatel:
Název procesu: C:\Windows\System32\snmptrap.exe
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1
Date: 2026-03-11 09:04:34
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Behavior:Win32/GenCodeInjected.H
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Windows\System32\snmptrap.exe, pid
236067258395148; process:_pid:13204,ProcessStart:134176898667567445Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Neznámý
Uživatel:
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.445.470.0, AS: 1.445.470.0, NIS: 1.445.470.0
Verze modulu: AM: 1.1.26010.1, NIS: 1.1.26010.1
Date: 2026-03-06 18:14:37
Description:
Antivirová ochrana v programu Microsoft Defender ѕĉåп нàś ъĕéń śţöрρέð вєƒόŕē сσмφℓēţĭòņ.%ŋ %ţŚсąη ĬÐ:%в{B869FEA1-807E-43BA-8F2D-D310BCB495C4}%л %тŠçáň Ŧýр℮:%ьAntimalwarový program%ⁿ %тŞçāň Ράřàmêţĕяѕ:%ьRychlé prohledávání%ʼn %ŧŬŝèѓ:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞτőρ Ŗĕąѕōñ:%ъŔΡС ċоπʼnέĉťîõη яΰńδǿώň
Event[0]
Date: 2026-03-12 08:53:20
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0
Date: 2026-03-09 14:54:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.445.426.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.26010.1
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2026-03-09 14:54:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.445.426.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.26010.1
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
CodeIntegrity:
===============
Date: 2026-04-14 17:25:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends International, LLC. F6 07/16/2025
Motherboard: Gigabyte Technology Co., Ltd. B850 AORUS ELITE WIFI7
Processor: AMD Ryzen 7 9800X3D 8-Core Processor
Percentage of memory in use: 24%
Total physical RAM: 65140.92 MB
Available physical RAM: 48869.91 MB
Total Virtual: 69236.92 MB
Available Virtual: 47361.28 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.55 GB) (Free:385.14 GB) (Model: WD_BLACK SN7100 1TB) NTFS
Drive d: (Místní disk) (Fixed) (Total:931.51 GB) (Free:603.81 GB) (Model: Samsung SSD 980 1TB) NTFS
\\?\Volume{197d7e00-9765-486c-8bed-e2beb59348a8}\ () (Fixed) (Total:0.75 GB) (Free:0.1 GB) NTFS
\\?\Volume{df495976-8284-4a09-945c-e897a11e833f}\ () (Fixed) (Total:0.19 GB) (Free:0.16 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
