Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Bruno39
Návštěvník
Návštěvník
Příspěvky: 35
Registrován: 01 led 2016 14:43

Prosím kontrolu logu

#1 Příspěvek od Bruno39 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2022
Ran by marti (administrator) on DESKTOP-F5ANT23 (05-11-2022 09:02:42)
Running from C:\Users\marti\Desktop
Loaded Profiles: marti
Platform: Microsoft Windows 10 Pro Version 21H2 19044.2130 (X64) Language: Slovenčina (Slovensko)
Default browser: Brave
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(A-Volute SAS -> A-Volute) C:\Users\marti\AppData\Local\NhNotifSys\sonicstudio\asusns.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\sonar\SteelSeriesSonar.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesEngine.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesPrismSync.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCopyAccelerator.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.35\msedgewebview2.exe <6>
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <10>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.25\AsSysCtrlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_7.70.13002.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_7.70.13002.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\NisSrv.exe
(services.exe ->) (MongoDB, Inc) [File not signed] C:\Program Files\MongoDB\Server\6.0\bin\mongod.exe
(services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_766052fd974747a3\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f8a05495a6e8bc10\RtkAudUService64.exe <2>
(services.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe <2>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <4>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe <2>
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f8a05495a6e8bc10\RtkAudUService64.exe [3496120 2022-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12849016 2022-10-28] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [UrbanVPN] => C:\Program Files\UrbanVPN\UrbanVPNUpdater.exe /checknow -minuseractions -startappfirst -restartapp "C:\Program Files\UrbanVPN\bin\urbanvpn-gui.exe" (No File)
HKU\S-1-5-21-733111624-1376839028-291746203-1001\...\Run: [MicrosoftEdgeAutoLaunch_4A886EB596DDE810C696BFE47BAAC943] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3891624 2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-733111624-1376839028-291746203-1001\...\RunOnce: [Application Restart #0] => C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe [3283760 2022-11-02] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\107.1.45.118\Installer\chrmstp.exe [2022-11-03] (Brave Software, Inc. -> Brave Software, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08F9175F-D72F-4FAF-B561-DFB885DAF73B} - System32\Tasks\NahimicTask32 => C:\Windows\system32\..\SysWOW64\NahimicSvc32.exe [833688 2021-11-01] (A-Volute SAS -> Nahimic)
Task: {29A34316-B59F-4311-A4B9-FECEEEBB2288} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1471104 2021-10-22] (ASUSTeK Computer Inc. -> )
Task: {2AFFAA47-C30B-4150-86F3-AF160F2FBCC2} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-06-06] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {308661C5-EBF6-4818-9498-4094DFF24DF8} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4329008 2021-10-13] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {4486BDE1-614C-40A0-8A2A-55F04F4BBB1D} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1610808 2021-04-14] (ASUSTeK Computer Inc. -> )
Task: {57178B7B-6A6A-49C1-B1AB-7905A680E738} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1858928 2022-08-31] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {594526C1-A3B9-4A64-A3B2-EE427FE85174} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-17] (Nvidia Corporation -> NVIDIA Corporation)
Task: {5B59BD2C-CE30-4F67-AD2A-F717B235461A} - System32\Tasks\NahimicTask64 => C:\Windows\system32\.\NahimicSvc64.exe [1094808 2021-11-01] (A-Volute SAS -> Nahimic)
Task: {5BF5C241-D433-4C71-B07F-23FC1974AB8F} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-06-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {7B6AD266-44D5-4905-9C8E-9CED0CAE97FF} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-06-06] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {7FD8454A-69A8-4FDB-B63C-8340D7EE17DB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {925D6016-0B2E-4828-A2FE-1ED505624FCF} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [308592 2022-08-31] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {987773EC-1BE0-4152-8445-A29ADA77FC7E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9D070B46-1B9C-429A-8F4B-E2F8D50924D5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A3AB9634-02DE-4F3A-A57A-EFC19F05508B} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1094808 2021-11-01] (A-Volute SAS -> Nahimic)
Task: {A48F5F47-32E1-4CA3-B7FA-2F029088961A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B51CCEA8-037F-429E-BCC6-A49EA5A88BBB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BB57185A-023E-4A3E-9516-A90448195B71} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BF92F3A9-0DC4-435F-8FED-3FB8AD99423A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C428FA55-54DB-4BE0-BE77-05709F3D1024} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2159944 2021-10-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {C5546357-814B-484C-A88D-7AB79BE6DCD3} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [833688 2021-11-01] (A-Volute SAS -> Nahimic)
Task: {C5746ACF-517F-4EBD-AD27-E5E2BC2CC3C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C8B6F864-9430-47D7-9860-04160861A9AC} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d879c82f3ded23 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-06-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {CF8BD48C-DB8A-4CA3-97B8-26DB9BE089C8} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D7144ECC-DA07-4A1F-B59B-A171C47B44C6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-08-30] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {D75869EE-35AA-4F0C-B0EB-1EC2DF36A7C3} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1254760 2022-09-29] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {E30E6606-FEA4-4DDE-9A0F-530E1BB77C71} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E5F195A6-6C3F-4BE6-9452-E94B33E07D27} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {E835B41A-440A-47B8-B443-29F3C3383214} - System32\Tasks\CCleanerSkipUAC - marti => C:\Program Files\CCleaner\CCleaner64.exe [36689920 2022-04-11] (Piriform Software Ltd) [File not signed]
Task: {E9F478C2-F592-4257-BD54-4E5C863A78EC} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F05EAB26-0690-4D5D-AFEC-1351835B7419} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [43797544 2022-09-01] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9272e2bf-6bd5-1513-a95c-605fd4c46776}: [NameServer] 103.86.96.100,103.86.99.100
Tcpip\..\Interfaces\{c2689347-8f0c-4c41-bce9-b92241d756e3}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-05]
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
Edge DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
Edge DefaultSearchKeyword: Default -> duckduckgo.com
Edge DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
Edge Extension: (DuckDuckGo) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2022-11-03]
Edge Extension: (The Camelizer) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bpggaanjmbjoahhknlajnhdhkljekpbg [2022-06-06]
Edge Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hfaciehifhdcgoolaejkoncjciicbemc [2022-06-06]
Edge Extension: (BetterTTV) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\icllegkipkooaicfmdfaloehobmglglb [2022-10-02]
Edge Extension: (Adblock) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kmiahfbflcnmlobepelpgkmolhodmiek [2022-06-06]
Edge Extension: (Urban Free VPN Proxy) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nimlmejbmnecnaghgmbahmbaddhjbecg [2022-10-24]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2022-08-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2022-08-05] (Oracle America, Inc. -> Oracle Corporation)

Brave:
=======
BRA DefaultProfile: Default
BRA Profile: C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-11-05]
BRA DefaultSearchURL: Default -> hxxps://search.brave.com/search?q={searchTerms}&source=desktop
BRA DefaultSearchKeyword: Default -> :br
BRA DefaultSuggestURL: Default -> hxxps://search.brave.com/api/suggest?q={searchTerms}
BRA Extension: (Steam Inventory Helper) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2022-10-31]
BRA Extension: (Hola VPN - The Website Unblocker) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2022-10-28]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-11-04]
BRA Extension: (Brave NTP background images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-11]
BRA Extension: (Wallet Data Files Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-09-19]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-11-05]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2022-08-07]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-06-06]
BRA Extension: (Brave NTP sponsored images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\mjgplcflbkgklplplbakkopkafojhbmk [2022-11-05]
BRA Extension: (Brave Ads Resources) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\obponfmfefkaeehakbehbnnlcbebebhd [2022-10-31]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\omkkefoeihpbpebhhbhmjekpnegokpbj [2022-11-05]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-11-02]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [394864 2022-10-14] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe [468504 2022-07-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.25\AsSysCtrlService.exe [1360016 2021-10-13] (ASUSTeK Computer Inc. -> ) [File not signed]
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-06-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2022-10-14] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-07-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-06-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [845256 2022-11-04] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9811832 2022-05-31] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-06-06] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-06-06] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [51730952 2022-09-29] (Electronic Arts, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-03] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-08-23] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-07-29] (Epic Games Inc. -> Epic Games, Inc.)
S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [25690504 2022-10-23] (FACE IT LIMITED -> )
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [3887976 2022-09-26] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 MongoDB; C:\Program Files\MongoDB\Server\6.0\bin\mongod.exe [56164864 2022-09-29] (MongoDB, Inc) [File not signed]
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1920152 2021-11-01] (A-Volute SAS -> Nahimic)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [310136 2021-06-11] (nordvpn s.a. -> TEFINCOM S.A.)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [300408 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [254328 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [6739056 2022-09-21] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224192 2022-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35200 2022-10-28] (SteelSeries ApS -> )
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5936680 2022-10-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [134752 2022-10-07] (Skutta, Kristjan -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\NisSrv.exe [3191224 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MsMpEng.exe [133536 2022-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [10099288 2022-10-07] (PUBG CORPORATION -> KRAFTON, Inc)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\107.1.45.118\elevation_service.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_766052fd974747a3\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_766052fd974747a3\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 ProtonVPN Service; "C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe" [X]
S2 TunnelBearMaintenance; "C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe" [X]
S2 UrbanVPNServiceInteractive; "C:\Program Files\UrbanVPN\bin\urbanvpnserv.exe" [X]
S3 UrbanVPNUpdater; "C:\Program Files\UrbanVPN\UrbanVPNUpdater.exe" /runservice [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [34112 2019-07-02] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43168 2022-10-14] (ASUSTeK Computer Inc. -> )
R3 AVoluteSS3Vad; C:\Windows\System32\drivers\AVoluteSS3Vad.sys [93672 2021-10-14] (A-Volute -> Windows (R) Win 7 DDK provider)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32320 2022-09-25] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 EspoDriver; C:\Windows\system32\drivers\EspoDriver.sys [6237640 2022-10-21] (Esportal AB -> )
R1 FACEIT; C:\Windows\System32\Drivers\FACEIT.sys [16617568 2022-10-23] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 FNETHYRAMAS; C:\Windows\System32\drivers\FNETHYRAMAS.SYS [56496 2022-06-07] (FNet Co., Ltd. -> FNet Co., Ltd.)
S3 HidHide; C:\Windows\System32\drivers\HidHide.sys [61408 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [35344 2022-10-14] (ASUSTEK COMPUTER INC. -> ASUSTeK Computer Inc.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18496 2022-06-08] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 NDivert; C:\Program Files\NordVPN\7.1.2.0\Drivers\NDivert.sys [131472 2022-06-28] (nordvpn s.a. -> Nordvpn S.A.)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [44928 2022-02-22] (nordvpn s.a. -> TEFINCOM S.A.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [47784 2022-05-03] (SteelSeries ApS -> SteelSeries ApS)
S2 SSGDIO; C:\Windows\SysWOW64\DRIVERS\ssgdio64.sys [14608 2022-06-07] (ATI Technologies, Inc -> ATI Technologies Inc.)
R3 sshid; C:\Windows\System32\drivers\sshid.sys [43960 2022-08-18] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_5f23057de8eba7db\SteelSeries-Sonar-VAD.sys [92856 2022-09-21] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S3 tap-tb-0901; C:\Windows\System32\drivers\tap-tb-0901.sys [38656 2022-06-20] (TunnelBear, Inc. -> The OpenVPN Project)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
R3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2022-07-04] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49616 2022-11-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [469280 2022-11-01] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-01] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\Windows\System32\drivers\wintun.sys [29592 2022-06-10] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 xhunter1; C:\Windows\xhunter1.sys [1445920 2022-10-10] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz153; \??\C:\Windows\temp\cpuz153\cpuz153_x64.sys [X]
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S3 MpKsleadf44c3; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F201BB5F-F10E-4982-8406-29D828A08467}\MpKslDrv.sys [X]
S3 ProtonVPNCallout; \??\C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.CalloutDriver.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-11-05 09:02 - 2022-11-05 09:03 - 000031795 _____ C:\Users\marti\Desktop\FRST.txt
2022-11-05 09:02 - 2022-11-05 09:02 - 000000000 ____D C:\FRST
2022-11-05 09:01 - 2022-11-05 09:01 - 002374656 _____ (Farbar) C:\Users\marti\Desktop\FRST64.exe
2022-11-03 17:48 - 2022-11-03 17:48 - 000151712 _____ C:\Users\marti\Downloads\Girl Drawing_..💀 _ Sketchbook art inspiration, Hand art drawing, Art sketchbook.💀 _ Sketchbook art inspiration, Hand art drawing, Art sketchbook.💀 _ Sketchbook art inspiration, Hand art drawing, Art sketchbook
2022-11-02 16:34 - 2022-11-02 16:34 - 000075932 _____ C:\Users\marti\Downloads\Diploma de alumna de hogwarts.jfif
2022-11-01 10:01 - 2022-11-01 10:01 - 000001161 _____ C:\Users\marti\Desktop\frog - odkaz.lnk
2022-10-28 07:40 - 2022-07-14 00:32 - 000060112 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2022-10-26 17:13 - 2022-10-26 17:13 - 1826444174 _____ C:\Users\marti\Downloads\Krasky z Dubaje - Dziewczyny,z.Dubaju.2021.720p.WEBRip.CZ.2.0.MIKI.mkv
2022-10-26 17:13 - 2022-10-26 17:13 - 000017931 _____ C:\Users\marti\Downloads\[SkT]_Krasky_z_Dubaje___Dziewczyny_z_Dubaju_(2021)(CZ)[WebRip][720p]_=_CSFD_56%.torrent
2022-10-25 15:43 - 2022-10-25 15:44 - 000000000 ____D C:\ProgramData\UrbanVPN
2022-10-25 15:43 - 2022-10-25 15:43 - 000000000 ____D C:\Users\marti\UrbanVPN
2022-10-25 15:43 - 2022-10-25 15:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UrbanVPN
2022-10-25 15:43 - 2022-10-25 15:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2022-10-25 15:43 - 2022-10-25 15:43 - 000000000 ____D C:\Program Files\TAP-Windows
2022-10-25 15:42 - 2022-10-25 15:42 - 032229200 _____ (Urban Security) C:\Users\marti\Downloads\UrbanVPN2.exe
2022-10-25 15:42 - 2022-10-25 15:42 - 000000000 ____D C:\Users\marti\AppData\Local\AdvinstAnalytics
2022-10-25 15:36 - 2022-10-25 15:40 - 000000000 ____D C:\Users\marti\AppData\Local\ProtonVPN
2022-10-25 15:36 - 2022-10-25 15:39 - 000000000 ____D C:\ProgramData\ProtonVPN
2022-10-25 15:36 - 2022-10-25 15:36 - 000000000 ____D C:\Users\marti\AppData\Roaming\Proton Technologies AG
2022-10-25 15:36 - 2022-10-25 15:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProtonVPN
2022-10-25 15:27 - 2022-10-25 15:27 - 000000000 ____D C:\Users\marti\AppData\Roaming\TunnelBear
2022-10-25 15:27 - 2022-10-25 15:27 - 000000000 ____D C:\Users\marti\AppData\Local\TunnelBear
2022-10-25 15:27 - 2022-10-25 15:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TunnelBear
2022-10-22 16:51 - 2022-10-22 16:51 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2022-10-22 16:51 - 2022-10-22 16:51 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2022-10-22 14:08 - 2022-10-22 14:08 - 000002904 _____ C:\Windows\system32\Drivers\etc\hosts.rollback
2022-10-22 14:08 - 2022-10-22 14:08 - 000000000 ____D C:\ProgramData\Naughty Dog
2022-10-22 14:08 - 2022-07-29 10:34 - 000001102 _____ C:\Windows\system32\Drivers\etc\hosts.backup
2022-10-22 14:07 - 2022-10-22 17:26 - 000000000 ____D C:\Windows\SysWOW64\directx
2022-10-22 12:42 - 2022-10-22 16:45 - 000000881 _____ C:\Users\Public\Desktop\UNCHARTED - Legacy of Thieves Collection.lnk
2022-10-22 08:35 - 2022-10-22 08:35 - 000250460 _____ C:\Users\marti\Downloads\[SkT]UNCHARTED__LEGACY_OF_THIEVES_COLLECTION_(CZ_PL).torrent
2022-10-21 14:43 - 2022-10-21 14:43 - 006237640 ____S C:\Windows\system32\Drivers\EspoDriver.sys
2022-10-21 14:43 - 2022-10-21 14:43 - 000001106 _____ C:\Users\marti\Desktop\Esportal Client.lnk
2022-10-21 14:43 - 2022-10-21 14:43 - 000000000 ____D C:\Users\marti\AppData\Local\esportal-client
2022-10-21 14:43 - 2022-10-21 14:43 - 000000000 ____D C:\Program Files\esportal-client
2022-10-20 16:38 - 2022-11-04 00:50 - 000000000 ____D C:\Users\marti\AppData\Roaming\Blitz
2022-10-20 16:38 - 2022-10-20 16:38 - 000002213 _____ C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz.lnk
2022-10-20 16:38 - 2022-10-20 16:38 - 000002205 _____ C:\Users\marti\Desktop\Blitz.lnk
2022-10-20 16:37 - 2022-10-30 10:40 - 000000000 ____D C:\Users\marti\AppData\Local\blitz-updater
2022-10-20 16:12 - 2022-10-20 16:12 - 000000000 ____D C:\Users\marti\WebstormProjects
2022-10-20 16:05 - 2022-10-20 16:11 - 000000000 ____D C:\Users\marti\AppData\Roaming\JetBrains
2022-10-20 16:05 - 2022-10-20 16:05 - 000000000 ____D C:\Users\marti\AppData\Local\JetBrains
2022-10-20 16:05 - 2022-10-20 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2022-10-20 16:04 - 2022-10-20 16:04 - 000000000 ____D C:\Program Files\JetBrains
2022-10-20 15:59 - 2022-10-20 15:59 - 000000000 ____D C:\data
2022-10-20 15:56 - 2022-10-20 15:58 - 000000000 ____D C:\Users\marti\AppData\Roaming\MongoDB Compass
2022-10-20 15:56 - 2022-10-20 15:56 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MongoDB Inc
2022-10-20 15:56 - 2022-10-20 15:56 - 000000000 ____D C:\Users\marti\AppData\Local\MongoDBCompass
2022-10-20 15:56 - 2022-10-20 15:56 - 000000000 ____D C:\Users\marti\AppData\Local\mongodb
2022-10-20 15:54 - 2022-10-20 15:54 - 000000000 ____D C:\Program Files\MongoDB
2022-10-20 15:47 - 2022-10-20 15:47 - 000000049 _____ C:\Users\marti\.npmrc
2022-10-20 15:22 - 2022-10-20 16:11 - 000000000 ____D C:\Users\marti\AppData\Local\npm-cache
2022-10-20 15:22 - 2022-10-20 15:22 - 000000000 ____D C:\Users\marti\AppData\Roaming\npm
2022-10-20 15:22 - 2022-10-20 15:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js
2022-10-20 15:22 - 2022-10-20 15:22 - 000000000 ____D C:\Program Files\nodejs
2022-10-20 14:29 - 2022-10-20 14:29 - 000000000 ____D C:\Users\marti\Tracing
2022-10-20 10:47 - 2022-10-20 10:47 - 000000000 ____D C:\Users\marti\AppData\Roaming\Font Manager
2022-10-19 13:43 - 2022-10-19 13:43 - 000006880 _____ C:\Users\marti\Downloads\rtings-icc-profile.icm
2022-10-19 12:10 - 2022-10-13 10:20 - 000041984 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2022-10-19 12:08 - 2022-10-14 05:22 - 001967856 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-10-19 12:08 - 2022-10-14 05:22 - 001967856 _____ C:\Windows\system32\vulkaninfo.exe
2022-10-19 12:08 - 2022-10-14 05:22 - 001524472 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-10-19 12:08 - 2022-10-14 05:22 - 001524472 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-10-19 12:08 - 2022-10-14 05:22 - 001472552 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-10-19 12:08 - 2022-10-14 05:22 - 001432352 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-10-19 12:08 - 2022-10-14 05:22 - 001432352 _____ C:\Windows\system32\vulkan-1.dll
2022-10-19 12:08 - 2022-10-14 05:22 - 001213952 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-10-19 12:08 - 2022-10-14 05:22 - 001145632 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-10-19 12:08 - 2022-10-14 05:22 - 001145632 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-10-19 12:08 - 2022-10-14 05:18 - 001522664 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2022-10-19 12:08 - 2022-10-14 05:18 - 001185792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2022-10-19 12:08 - 2022-10-14 05:18 - 000870392 _____ C:\Windows\system32\nvofapi64.dll
2022-10-19 12:08 - 2022-10-14 05:18 - 000822760 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2022-10-19 12:08 - 2022-10-14 05:18 - 000693240 _____ C:\Windows\SysWOW64\nvofapi.dll
2022-10-19 12:08 - 2022-10-14 05:17 - 002246664 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2022-10-19 12:08 - 2022-10-14 05:17 - 001653288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2022-10-19 12:08 - 2022-10-14 05:17 - 001261072 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2022-10-19 12:08 - 2022-10-14 05:17 - 000987640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2022-10-19 12:08 - 2022-10-14 05:17 - 000709112 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2022-10-19 12:08 - 2022-10-14 05:16 - 015218664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2022-10-19 12:08 - 2022-10-14 05:16 - 012540952 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2022-10-19 12:08 - 2022-10-14 05:16 - 005906944 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2022-10-19 12:08 - 2022-10-14 05:16 - 005752824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2022-10-19 12:08 - 2022-10-14 05:16 - 005429288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2022-10-19 12:08 - 2022-10-14 05:16 - 003101208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2022-10-19 12:08 - 2022-10-14 05:16 - 000457264 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2022-10-19 12:08 - 2022-10-14 05:15 - 000853544 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2022-10-19 12:08 - 2022-10-13 10:20 - 000095170 _____ C:\Windows\system32\nvinfo.pb
2022-10-19 08:25 - 2022-10-19 08:26 - 008791352 _____ (Malwarebytes) C:\Users\marti\Desktop\adwcleaner.exe
2022-10-15 07:21 - 2022-10-15 07:21 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-10-15 07:21 - 2022-10-15 07:21 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-10-15 07:21 - 2022-10-15 07:21 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-10-15 07:21 - 2022-10-15 07:21 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-10-15 07:21 - 2022-10-15 07:21 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-10-15 07:21 - 2022-10-15 07:21 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-10-15 07:21 - 2022-10-15 07:21 - 000012253 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-10-15 07:16 - 2022-10-15 07:16 - 000000000 ___HD C:\$WinREAgent
2022-10-09 18:21 - 2022-10-09 18:21 - 000000000 ____D C:\ProgramData\enlisted
2022-10-09 17:14 - 2022-10-09 17:14 - 000000000 ____D C:\Users\marti\AppData\Local\Gaijin
2022-10-09 17:13 - 2022-10-09 17:13 - 007711488 _____ (Gaijin Network ) C:\Users\marti\Downloads\enlisted_launcher_1.0.3.100-d0jd4dpir.exe
2022-10-09 17:13 - 2022-10-09 17:13 - 000000000 ____D C:\ProgramData\Gaijin
2022-10-07 22:50 - 2022-10-07 22:54 - 000000000 ____D C:\Users\marti\Documents\Assassin's Creed Valhalla
2022-10-07 14:29 - 2022-10-08 10:09 - 000009090 _____ C:\GetDeviceCap.xml
2022-10-07 14:29 - 2022-10-08 10:09 - 000000908 _____ C:\QueryAllDevice.xml
2022-10-07 14:29 - 2022-10-08 10:09 - 000000228 _____ C:\SetMatrixLEDScript.xml
2022-10-07 03:19 - 2022-10-07 03:19 - 000000000 ____D C:\Program Files (x86)\DODI-Repacks
2022-10-07 02:33 - 2022-10-07 02:33 - 000000000 ____D C:\Users\marti\AppData\Local\TslGame
2022-10-07 02:32 - 2022-10-10 01:09 - 000000000 ____D C:\Program Files\Common Files\PUBG
2022-10-07 02:32 - 2022-10-10 00:54 - 001445920 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2022-10-07 02:32 - 2022-10-07 02:32 - 000000000 ____D C:\Users\marti\AppData\Local\WELLBIA
2022-10-07 02:32 - 2022-10-07 02:32 - 000000000 ____D C:\Program Files\Common Files\Wellbia.com

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-11-05 09:02 - 2022-06-06 19:04 - 000000000 ____D C:\Users\marti\AppData\Roaming\discordptb
2022-11-05 09:02 - 2022-06-06 18:53 - 000000000 ____D C:\Program Files (x86)\Steam
2022-11-05 08:57 - 2022-06-06 19:03 - 000000000 ____D C:\Users\marti\AppData\Local\DiscordPTB
2022-11-05 08:34 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-05 08:27 - 2022-06-06 17:58 - 000000000 ____D C:\ProgramData\ASUS
2022-11-05 08:24 - 2022-06-06 18:10 - 000000000 ____D C:\ProgramData\NVIDIA
2022-11-05 08:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-11-05 08:23 - 2022-06-06 17:58 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-11-05 08:23 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-04 23:49 - 2022-06-06 20:38 - 000000000 ____D C:\Users\marti\AppData\Local\CrashDumps
2022-11-04 23:25 - 2022-06-06 17:58 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-11-04 22:48 - 2022-09-10 11:42 - 000048950 _____ C:\Windows\system32\perfh01B.dat
2022-11-04 22:48 - 2022-09-10 11:42 - 000012092 _____ C:\Windows\system32\perfc01B.dat
2022-11-04 22:48 - 2022-06-06 18:04 - 000884720 _____ C:\Windows\system32\PerfStringBackup.INI
2022-11-04 22:48 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-11-04 22:43 - 2022-06-06 18:12 - 000000000 ____D C:\Program Files\ASUS
2022-11-04 22:43 - 2022-06-06 18:07 - 000000000 ____D C:\Users\marti\AppData\Local\D3DSCache
2022-11-04 22:41 - 2022-07-12 12:25 - 000003112 _____ C:\Windows\system32\Tasks\NahimicTask32
2022-11-04 22:41 - 2022-07-12 12:25 - 000003092 _____ C:\Windows\system32\Tasks\NahimicTask64
2022-11-04 22:41 - 2022-06-06 17:58 - 000901328 _____ () C:\Windows\system32\wpbbin.exe
2022-11-04 22:41 - 2022-06-06 17:58 - 000845256 _____ C:\Windows\system32\AsusUpdateCheck.exe
2022-11-04 22:41 - 2022-06-06 17:58 - 000008192 ___SH C:\DumpStack.log.tmp
2022-11-04 22:41 - 2022-06-06 17:58 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-11-03 22:52 - 2022-06-06 21:59 - 000000032 _____ C:\Users\marti\AppData\Roaming\.machineId
2022-11-03 22:52 - 2022-06-06 21:55 - 000000000 ____D C:\ProgramData\Riot Games
2022-11-03 21:51 - 2022-06-09 19:54 - 000000000 ____D C:\Users\marti\AppData\Roaming\qBittorrent
2022-11-03 19:08 - 2022-06-06 18:13 - 000002376 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2022-11-03 19:08 - 2022-06-06 18:13 - 000002335 _____ C:\Users\Public\Desktop\Brave.lnk
2022-11-03 18:42 - 2022-06-06 19:04 - 000000000 ____D C:\Users\marti\AppData\Roaming\discord
2022-11-03 18:41 - 2022-06-07 16:33 - 000000000 ____D C:\Users\marti\AppData\Local\Discord
2022-11-03 17:44 - 2022-06-06 18:08 - 000000000 ____D C:\Users\marti\AppData\Local\PlaceholderTileLogoFolder
2022-11-03 17:29 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-11-03 17:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2022-11-01 10:03 - 2022-06-06 18:08 - 000000000 ____D C:\Program Files (x86)\ASUS
2022-11-01 10:01 - 2022-06-06 18:39 - 000000000 ____D C:\ProgramData\SteelSeries
2022-11-01 10:01 - 2022-06-06 17:58 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-11-01 10:00 - 2022-06-06 18:07 - 000000000 ____D C:\Users\marti\AppData\Local\Packages
2022-10-28 16:19 - 2022-08-01 23:17 - 000016658 _____ C:\GetDeviceStatus.xml
2022-10-28 13:28 - 2022-08-05 14:21 - 000000000 ____D C:\Users\marti\AppData\Roaming\.minecraft
2022-10-28 13:27 - 2022-08-05 14:21 - 000000000 ____D C:\Users\marti\AppData\Roaming\.tlauncher
2022-10-28 07:40 - 2022-06-06 18:27 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-28 07:40 - 2022-06-06 18:27 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-28 07:40 - 2022-06-06 18:27 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-28 07:40 - 2022-06-06 18:27 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-28 07:40 - 2022-06-06 18:27 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-28 07:40 - 2022-06-06 18:27 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-28 07:40 - 2022-06-06 18:27 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-28 07:40 - 2022-06-06 18:27 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-28 07:40 - 2022-06-06 18:27 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-28 07:40 - 2022-06-06 18:27 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-10-28 07:40 - 2022-06-06 18:06 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-10-28 07:40 - 2022-06-06 18:05 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-10-27 19:00 - 2022-07-20 16:52 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2022-10-26 08:15 - 2022-06-07 18:55 - 000000000 ____D C:\Users\marti\AppData\Roaming\Telegram Desktop
2022-10-25 15:43 - 2022-06-06 18:05 - 000000000 ____D C:\Users\marti
2022-10-25 15:27 - 2022-06-06 18:09 - 000000000 ____D C:\ProgramData\Package Cache
2022-10-25 15:20 - 2022-06-10 10:46 - 000000000 ____D C:\Users\marti\AppData\Local\NordVPN
2022-10-24 13:32 - 2022-09-11 16:24 - 000000000 ____D C:\Users\marti\AppData\Roaming\Goldberg SteamEmu Saves
2022-10-24 11:59 - 2022-06-10 10:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2022-10-24 11:59 - 2022-06-10 10:46 - 000000000 ____D C:\Program Files\NordVPN
2022-10-23 20:02 - 2022-06-06 18:40 - 000000000 ____D C:\Users\marti\AppData\Roaming\steelseries-gg-client
2022-10-23 11:18 - 2022-06-07 16:33 - 000002227 _____ C:\Users\marti\Desktop\Discord.lnk
2022-10-23 07:41 - 2022-09-27 14:59 - 000000000 ____D C:\Program Files\FACEIT AC
2022-10-23 07:40 - 2022-09-27 15:00 - 016617568 _____ C:\Windows\system32\Drivers\FACEIT.sys
2022-10-22 16:51 - 2022-07-10 12:51 - 002815456 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2022-10-22 16:51 - 2022-07-10 12:51 - 000452048 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2022-10-22 16:51 - 2022-07-10 12:51 - 000243168 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2022-10-22 16:51 - 2022-07-10 12:51 - 000198096 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2022-10-22 16:51 - 2022-07-10 12:51 - 000153048 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2022-10-22 16:51 - 2022-07-10 12:51 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2022-10-22 08:19 - 2022-07-29 10:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2022-10-22 08:19 - 2022-07-29 10:34 - 000000000 ____D C:\Program Files\CCleaner
2022-10-20 16:17 - 2022-09-29 13:04 - 000000000 ____D C:\Users\marti\AppData\Roaming\DS4Windows
2022-10-20 15:56 - 2022-06-06 19:03 - 000000000 ____D C:\Users\marti\AppData\Local\SquirrelTemp
2022-10-20 14:25 - 2022-06-06 17:58 - 000258168 _____ C:\Windows\system32\FNTCACHE.DAT
2022-10-19 12:12 - 2022-06-06 18:28 - 000000000 ____D C:\Users\marti\AppData\Local\NVIDIA
2022-10-19 08:26 - 2022-06-29 19:02 - 000000000 ____D C:\AdwCleaner
2022-10-17 07:25 - 2022-06-06 18:27 - 002890296 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2022-10-17 07:25 - 2022-06-06 18:27 - 002224696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2022-10-17 07:25 - 2022-06-06 18:27 - 001297464 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2022-10-15 16:14 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-10-15 16:14 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-10-15 16:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-10-15 16:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-10-15 16:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2022-10-15 16:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2022-10-15 16:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2022-10-15 16:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2022-10-15 16:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-10-15 16:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-10-15 07:24 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-10-15 07:23 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2022-10-15 07:23 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2022-10-15 07:21 - 2022-06-06 18:02 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-10-15 07:16 - 2022-06-09 19:46 - 000000000 ____D C:\Windows\system32\MRT
2022-10-15 07:14 - 2022-06-09 19:46 - 147398024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-10-14 16:10 - 2022-06-06 18:11 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-10-14 16:10 - 2022-06-06 18:09 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2022-10-14 16:09 - 2022-07-12 12:24 - 000035344 ____N (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2022-10-14 16:09 - 2022-06-07 12:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2022-10-14 16:09 - 2022-06-07 12:37 - 000000000 ____D C:\Program Files\CPUID
2022-10-14 16:09 - 2022-06-06 18:13 - 000000000 ____D C:\Program Files (x86)\LightingService
2022-10-14 16:09 - 2022-06-06 18:09 - 000151608 _____ (©ASUSTeK Computer Inc.) C:\Windows\system32\AsIO3.dll
2022-10-14 16:09 - 2022-06-06 18:09 - 000123744 _____ (©ASUSTeK Computer Inc.) C:\Windows\SysWOW64\AsIO3.dll
2022-10-14 16:09 - 2022-06-06 18:09 - 000043168 _____ C:\Windows\system32\Drivers\AsIO3.sys
2022-10-14 16:09 - 2022-06-06 18:09 - 000000074 _____ C:\Windows\skipsavetoini
2022-10-14 16:01 - 2022-06-10 10:46 - 000000000 ____D C:\ProgramData\NordVPN
2022-10-14 12:52 - 2022-06-10 10:46 - 000001957 _____ C:\Users\marti\Desktop\NordVPN.lnk
2022-10-14 05:14 - 2022-06-06 18:05 - 007587816 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2022-10-14 05:14 - 2022-06-06 18:05 - 006457784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2022-10-13 10:20 - 2022-06-06 18:05 - 000129000 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2022-10-12 03:39 - 2022-07-10 12:51 - 000316920 _____ (Microsoft Corporation) C:\Windows\system32\GameInputRedist.dll
2022-10-12 01:55 - 2022-07-10 12:51 - 000199672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameInputRedist.dll
2022-10-11 16:10 - 2022-06-11 13:22 - 000000000 ____D C:\Program Files\Epic Games
2022-10-11 15:29 - 2022-08-05 19:20 - 000000000 ____D C:\Users\marti\AppData\Local\Ubisoft Game Launcher
2022-10-11 14:07 - 2022-06-15 23:10 - 000000000 ____D C:\Users\marti\Documents\My Games
2022-10-10 18:48 - 2022-07-10 12:48 - 000000000 ____D C:\Users\marti\AppData\Local\Battle.net
2022-10-10 18:23 - 2022-07-10 12:49 - 000000000 ____D C:\Program Files (x86)\Overwatch
2022-10-09 18:21 - 2022-06-14 14:31 - 000000000 ____D C:\Users\marti\AppData\Roaming\EasyAntiCheat
2022-10-09 11:44 - 2022-06-06 20:31 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-10-08 11:00 - 2022-06-07 18:56 - 000000000 ____D C:\Users\marti\Downloads\Telegram Desktop
2022-10-08 07:27 - 2022-06-06 17:58 - 000003632 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-08 07:27 - 2022-06-06 17:58 - 000003508 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-07 17:55 - 2022-06-22 09:57 - 000002353 _____ C:\Users\marti\Desktop\bruno.txt
2022-10-07 17:53 - 2022-06-15 22:16 - 000000000 ____D C:\ProgramData\Origin
2022-10-07 17:52 - 2022-06-15 22:18 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-10-07 17:52 - 2022-06-15 22:16 - 000000000 ____D C:\Users\marti\AppData\Roaming\Origin
2022-10-07 17:52 - 2022-06-15 22:16 - 000000000 ____D C:\Users\marti\AppData\Local\Origin
2022-10-07 08:30 - 2022-06-06 18:53 - 000001032 _____ C:\Users\Public\Desktop\Steam.lnk
2022-10-07 08:26 - 2022-06-06 18:54 - 000000000 ____D C:\Users\marti\AppData\Local\Steam
2022-10-07 03:25 - 2022-07-10 12:48 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-10-07 02:46 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2022-10-07 02:33 - 2022-06-11 13:18 - 000000000 ____D C:\Users\marti\AppData\Local\UnrealEngine
2022-10-07 02:32 - 2022-06-21 19:45 - 000000000 ____D C:\Users\marti\AppData\Local\BattlEye

==================== Files in the root of some directories ========

2022-06-06 21:59 - 2022-11-03 22:52 - 000000032 _____ () C:\Users\marti\AppData\Roaming\.machineId

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Přílohy
Addition.rar
(22.53 KiB) Staženo 24 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím kontrolu logu

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\...\Run: [UrbanVPN] => C:\Program Files\UrbanVPN\UrbanVPNUpdater.exe /checknow -minuseractions -startappfirst -restartapp "C:\Program Files\UrbanVPN\bin\urbanvpn-gui.exe" (No File)
Task: {E5F195A6-6C3F-4BE6-9452-E94B33E07D27} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
CustomCLSID: HKU\S-1-5-21-733111624-1376839028-291746203-1001_Classes\CLSID\{d936918b-9c4b-555e-074a-c79314be04e1}\localserver32 -> "C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe" -ToastActivated => No File
AlternateDataStreams: C:\ProgramData:err [1984]
AlternateDataStreams: C:\Users\All Users:err [1984]
AlternateDataStreams: C:\ProgramData\Application Data:err [1984]
AlternateDataStreams: C:\Users\marti\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\marti\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9210]
FirewallRules: [TCP Query User{EB3174CB-3254-4FCA-9D4C-C3FBC73437FD}C:\users\marti\appdata\local\discord\app-1.0.9006\discord.exe] => (Allow) C:\users\marti\appdata\local\discord\app-1.0.9006\discord.exe => No File
FirewallRules: [UDP Query User{F8DD5F29-5DB1-486E-8413-0D396BFA2CB4}C:\users\marti\appdata\local\discord\app-1.0.9006\discord.exe] => (Allow) C:\users\marti\appdata\local\discord\app-1.0.9006\discord.exe => No File
FirewallRules: [{9BF76BEC-CF28-4F64-AEF3-D2368D6042CA}] => (Allow) C:\Program Files\UrbanVPN\bin\urbanvpn.exe => No File

Hosts:
EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Bruno39
Návštěvník
Návštěvník
Příspěvky: 35
Registrován: 01 led 2016 14:43

Re: Prosím kontrolu logu

#3 Příspěvek od Bruno39 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 04-11-2022
Ran by marti (05-11-2022 16:45:20) Run:1
Running from C:\Users\marti\Desktop
Loaded Profiles: marti
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\...\Run: [UrbanVPN] => C:\Program Files\UrbanVPN\UrbanVPNUpdater.exe /checknow -minuseractions -startappfirst -restartapp "C:\Program Files\UrbanVPN\bin\urbanvpn-gui.exe" (No File)
Task: {E5F195A6-6C3F-4BE6-9452-E94B33E07D27} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
CustomCLSID: HKU\S-1-5-21-733111624-1376839028-291746203-1001_Classes\CLSID\{d936918b-9c4b-555e-074a-c79314be04e1}\localserver32 -> "C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe" -ToastActivated => No File
AlternateDataStreams: C:\ProgramData:err [1984]
AlternateDataStreams: C:\Users\All Users:err [1984]
AlternateDataStreams: C:\ProgramData\Application Data:err [1984]
AlternateDataStreams: C:\Users\marti\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\marti\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9210]
FirewallRules: [TCP Query User{EB3174CB-3254-4FCA-9D4C-C3FBC73437FD}C:\users\marti\appdata\local\discord\app-1.0.9006\discord.exe] => (Allow) C:\users\marti\appdata\local\discord\app-1.0.9006\discord.exe => No File
FirewallRules: [UDP Query User{F8DD5F29-5DB1-486E-8413-0D396BFA2CB4}C:\users\marti\appdata\local\discord\app-1.0.9006\discord.exe] => (Allow) C:\users\marti\appdata\local\discord\app-1.0.9006\discord.exe => No File
FirewallRules: [{9BF76BEC-CF28-4F64-AEF3-D2368D6042CA}] => (Allow) C:\Program Files\UrbanVPN\bin\urbanvpn.exe => No File

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\UrbanVPN" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E5F195A6-6C3F-4BE6-9452-E94B33E07D27}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E5F195A6-6C3F-4BE6-9452-E94B33E07D27}" => removed successfully
C:\Windows\System32\Tasks\ASUS\P508PowerAgent_sdk => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS\P508PowerAgent_sdk" => removed successfully
HKU\S-1-5-21-733111624-1376839028-291746203-1001_Classes\CLSID\{d936918b-9c4b-555e-074a-c79314be04e1} => removed successfully
C:\ProgramData => ":err" ADS removed successfully
"C:\Users\All Users" => ":err" ADS not found.
"C:\ProgramData\Application Data" => ":err" ADS not found.
C:\Users\marti\Application Data => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS removed successfully
"C:\Users\marti\AppData\Roaming" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS not found.
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EB3174CB-3254-4FCA-9D4C-C3FBC73437FD}C:\users\marti\appdata\local\discord\app-1.0.9006\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F8DD5F29-5DB1-486E-8413-0D396BFA2CB4}C:\users\marti\appdata\local\discord\app-1.0.9006\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9BF76BEC-CF28-4F64-AEF3-D2368D6042CA}" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18034565 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 743703277 B
Windows/system/drivers => -113235909 B
Edge => 0 B
Brave => 699052764 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 386938 B
marti => 21006344 B

RecycleBin => 3086603 B
EmptyTemp: => 1.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:45:56 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím kontrolu logu

#4 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Bruno39
Návštěvník
Návštěvník
Příspěvky: 35
Registrován: 01 led 2016 14:43

Re: Prosím kontrolu logu

#5 Příspěvek od Bruno39 »

Ďakujem pekne

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím kontrolu logu

#6 Příspěvek od Rudy »

Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno