Výkon Grafické Karty

[Jan Hnídek]

Dobrý den, můj laptop Asus TUF Gaming F15 s grafickou kartou RTX 3050 poslední půl roku nefunguje jak má. Hry které my při koupi laptopu fungovali na 240 FPS fungují teď max. na 90 FPS. Ve správce úloh mi to ukazuje, že grafická karta funguje na 100% zátěž, ale dřív na 100% zátěž hučel tak, že to šlo slyšet do místnosti vedle, teď je mnohem víc potichu. Prosím někoho o radu. Děkuji

[Rudy]

Zdravím!
Podíváme se, co v PC všechno běží a zda nemáte nějaké viry. Dejte logy FRST+Addition: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .

[Jan Hnídek]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-12-2023
Ran by Giovanny Gerberos (administrator) on DESKTOP-1UR8901 (ASUSTeK COMPUTER INC. ASUS TUF Gaming F15 FX506HCB_FX506HCB) (27-12-2023 08:34:35)
Running from C:\Users\Giovanny Gerberos\Downloads\FRST64.exe
Loaded Profiles: Giovanny Gerberos
Platform: Microsoft Windows 10 Home Version 22H2 19045.3803 (X64) Language: Czech (Czechia) -> English (United States)
Default browser: Brave
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSACCI\ArmouryCrateControlInterface.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTeK COMPUTER INC.) C:\Windows\System32\ASUSACCI\ACCIMonitor.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOSD.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler64.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe <2>
(DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_597623a539cfcca8\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_597623a539cfcca8\igfxEMN.exe
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <25>
(explorer.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Allplan GmbH -> ALLPLAN GmbH) C:\Program Files\Allplan\AllplanUpdateLauncher 2024\AllplanUpdateLauncher.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemote.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\ASUSACCI\ArmouryCrateControlInterface.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\13.0.0.8122\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_597623a539cfcca8\igfxCUIServiceN.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_74e28d819fb21cc3\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_4d9e9544615ee129\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a4e86d7e8f40267a\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_f866bf1588e6868a\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_0bfc7052a9e9b3c5\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_2792f9c5c14276e4\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_8dbc192915c33897\RtkAudUService64.exe <3>
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <4>
(svchost.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS Hotplug Controller\AsHotplugCtrl.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2310.8.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe [18088224 2023-05-02] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10837528 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [138214768 2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [CZC Halfling GK750] => C:\Program Files\CZC\CZC Halfling GK750.exe [1828864 2020-03-11] (TODO: <Company name>) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Program Files\Autodesk\Genuine Service\GenuineService.exe [3638792 2023-09-21] (Autodesk, Inc. -> Autodesk)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [Discord] => C:\Users\Giovanny Gerberos\AppData\Local\Discord\Update.exe [1525016 2023-03-22] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent (No File)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [MicrosoftEdgeAutoLaunch_DB9C30AC44DC92780F993C9E33BC6499] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Giovanny Gerberos\AppData\Local\Microsoft\Teams\Update.exe [2585832 2023-06-08] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [utweb] => C:\Users\Giovanny Gerberos\AppData\Roaming\uTorrent Web\utweb.exe [6425088 2023-10-11] (Rainberry Inc -> Rainberry Inc.)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37138384 2023-11-16] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\RunOnce: [Application Restart #0] => C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe [2759704 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.130\Installer\chrmstp.exe [2023-12-26] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\Installer\chrmstp.exe [2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2023-11-22]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {7BEB0CB0-7147-4982-91F4-1DE5426F155F} - System32\Tasks\ASUS Hotplug Controller => C:\Program Files\ASUS\ASUS Hotplug Controller\AsHotplugCtrl.exe [285416 2021-12-07] (ASUSTEK COMPUTER INCORPORATION -> ASUSTeK Computer Inc.)
Task: {D8578947-0FA8-46D1-99C8-6F2E0202DE21} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusHotkey.exe [310912 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {13D42581-33E5-4A09-B5A3-6DC489CB607C} - System32\Tasks\ASUS Update Checker 2.0 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusUpdateChecker.exe [797816 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {577F4E7D-6FA2-4D04-92E0-8CABDB46430D} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [313192 2023-06-06] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {38D23589-238E-427A-AF3F-70E7BBD1D9DA} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1945960 2023-06-06] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {4A36921A-7911-4615-90EA-7C649ECEE74A} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-12-25] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {FC048829-CFEC-4A0A-A2B6-E79DEAAAADA8} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-12-25] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {D477833E-8979-4581-95B3-69A5B9E143DF} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [139091304 2023-05-31] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {F2F26790-9E02-4B6F-9AC1-3F0F3AD0C177} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {85434D63-4084-441C-9D03-167B1E4B1CCF} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4147944 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {DF5E74E1-1BC9-49B8-9955-0734A0C175E3} - System32\Tasks\AutoUpdate Allplan 2024 => C:\Program Files\Allplan\Allplan 2024\Prg\NemDownloadHandler.exe [45392 2023-10-05] (Allplan GmbH -> ALLPLAN GmbH) -> /v 2024 /f "C:\ProgramData\Nemetschek\Allplan\2024\Etc\AllplanUpdate.inf"
Task: {243B10B6-5B38-4527-89EE-0648262DC2D1} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{7FBE6E65-6C64-4407-A0F9-FC7BC4865B1C} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {A82435AE-B61C-445D-8F8C-42AE9267C003} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{52B199C0-D3B7-4594-8BE7-069B1B97154C} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {94E474FE-89FD-4C35-9307-E199A3E76FB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2023-04-01] (Google LLC -> Google LLC)
Task: {1217F40C-66E7-4028-BD7A-F6A871CA567A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2023-04-01] (Google LLC -> Google LLC)
Task: {DDE23A36-2F86-41D8-BBAA-00D0027550CB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC024038-14A0-4650-8581-CB436CFF0002} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {044D8494-4FC5-470D-B22A-3A41C0950538} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306728 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {AE56AA27-F681-452B-93FF-65F31DFBA28E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306728 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {BF32DFF2-2E71-4B7E-ABA0-1E489D159A64} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169144 2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {1AB8AC06-D879-4807-B3F9-37FFEA07C8CE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {03CBE4F8-FED0-4321-9E88-AE5C8E96298C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6E99BA1B-90CB-449F-BBF9-076FC7BE1072} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {875E03F9-0F35-4788-B3A2-CC102806A41F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DF95253E-D4B0-4099-A0D2-6916600FB6A9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {2DA23231-66EC-4BC1-8479-FDE5E1B6E6F4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F222C96-106D-4597-BD40-84103C5C1E99} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D11D00E0-76D2-4E90-B7C0-1A0C4FBE347A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C3119EB5-A7D9-4EFE-9F9A-619BE4DC2F9B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D25E658E-2013-4331-8E77-85E8C9B66828} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6C137742-4FDB-4748-A9EB-6BD126122DF7} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E2B4074B-F008-4326-BBBC-8D3AC1FB8054} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0CF37D6E-4809-448C-B370-2FD6447DF930} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F36053A-8188-4976-A36D-7B0A4D0F6272} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {88D2356F-4F34-4DDF-8F83-B0E016CFFD6A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3288555297-1109179779-228674543-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {9960EB72-C119-426E-AC55-6D27B58223F0} - System32\Tasks\Opera scheduled Autoupdate 1688631835 => C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {04CB3B6A-9409-4A40-8B31-5FBF338A1186} - System32\Tasks\Opera scheduled Autoupdate 1695031924 => C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {79B294C9-BAE6-4911-B77E-02E67945C2CD} - System32\Tasks\Opera scheduled Autoupdate 1698410484 => C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {5D45142B-89AC-40F6-9C37-D0AB72C1CF34} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-22] (Overwolf Ltd -> Overwolf LTD)
Task: {6CFD7DC5-3113-4B1D-8B6C-EB66A13EA357} - System32\Tasks\RtkAudUService64_BG => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_8dbc192915c33897\RtkAudUService64.exe [1356392 2021-09-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{1ed53e37-20a7-489e-9c62-aded745a5fb5}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{3bc20abb-5f11-4dba-82a0-4db2ebc81e9b}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{3bc20abb-5f11-4dba-82a0-4db2ebc81e9b}: [DhcpDomain] home
Tcpip\..\Interfaces\{da99221b-e39f-4f55-8b84-77526c91a94c}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{da99221b-e39f-4f55-8b84-77526c91a94c}: [DhcpDomain] home
Tcpip\..\Interfaces\{da99221b-e39f-4f55-8b84-77526c91a94c}\7496F66716E6E69702745627265627F63791023702960586F6E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{da99221b-e39f-4f55-8b84-77526c91a94c}\7596C6C616F5D416764616C656E616: [DhcpNameServer] 192.168.10.1

Edge:
=======
Edge Profile: C:\Users\Giovanny Gerberos\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-17]
Edge Extension: (Google Docs Offline) - C:\Users\Giovanny Gerberos\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-21]
Edge Extension: (Edge relevant text changes) - C:\Users\Giovanny Gerberos\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-21]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1.dll [2023-09-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\plugin2\npjp2.dll [2023-09-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Giovanny Gerberos\AppData\Local\Google\Chrome\User Data\Default [2023-10-29]
CHR Extension: (Google Docs Offline) - C:\Users\Giovanny Gerberos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Giovanny Gerberos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-31]
CHR HKU\S-1-5-21-3288555297-1109179779-228674543-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

Opera:
=======
OPR DefaultProfile: Default

Brave:
=======
BRA Profile: C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-12-27]
BRA Extension: (Ali Reviews) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bbaogjaeflnjolejjcpceoapngapnbaj [2023-11-20]
BRA Extension: (Thieve AliExpress Tools) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bniadokhddgdbbcpolbgjcnmaphkbpni [2023-08-11]
BRA Extension: (Tampermonkey) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-12-08]
BRA Extension: (Volume Booster) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ejkiikneibegknkgimmihdpcbcedgmpo [2023-12-19]
BRA Extension: (Google Docs Offline) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
BRA Extension: (Excel Online) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2023-11-14]
BRA Extension: (Application Launcher For Drive (by Google)) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-22]
BRA Extension: (DSers - AliExpress.com Product Importer) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mmanaflgaempokjfbeeabkadnkoidjam [2023-12-21]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2023-12-25]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-12-25]
BRA Extension: (Brave NTP background images) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-09-19]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-12-27]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-12-25]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-12-27]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2023-07-30]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2023-09-20]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\gccbbckogglekeggclmmekihdgdpdgoe [2023-12-27]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-11-07]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-04-01]
BRA Extension: (Brave Ads Resources) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\iblokdlgekdjophgeonmanpnjihcjkjj [2023-12-21]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-12-27]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-12-06]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2023-11-26]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-25]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [15280648 2022-11-23] (Autodesk, Inc. -> Autodesk)
R2 AllplanUpdateLauncher 2024; C:\Program Files\Allplan\AllplanUpdateLauncher 2024\AllplanUpdateLauncher.exe [23888 2023-10-05] (Allplan GmbH -> ALLPLAN GmbH)
R2 ArmouryCrateControlInterface; C:\Windows\System32\ASUSACCI\ArmouryCrateControlInterface.exe [1181232 2023-06-06] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe [401880 2023-12-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-12-25] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusAppService; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\AsusAppService\AsusAppService.exe [1177320 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [502120 2023-11-22] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R2 ASUSLinkNear; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe [1631976 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemote.exe [772840 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-12-25] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 ASUSOptimization; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe [508032 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe [1111160 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitch.exe [641144 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4147944 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [834280 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [10539808 2023-05-21] (Autodesk, Inc. -> Autodesk, Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15772456 2023-11-23] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\brave_vpn_helper.exe [2765336 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10837528 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [10409328 2022-07-27] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
R2 DtsApo4Service; C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe [137056 2018-11-07] (DTS, Inc. -> DTS Inc.)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [955816 2023-11-09] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncHelper.exe [3514384 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 IntelAudioService; C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_0bfc7052a9e9b3c5\AS\IAS\IntelAudioService.exe [530552 2023-01-19] (Intel Corporation -> Intel)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4801896 2023-12-01] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\OneDriveUpdaterService.exe [3851280 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-22] (Overwolf Ltd -> Overwolf LTD)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1932248 2023-11-28] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\elevation_service.exe" [X]
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]
S3 EpicOnlineServices; "C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_2792f9c5c14276e4\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_2792f9c5c14276e4\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcxHdAudio; C:\Windows\System32\drivers\AcxHdAudio.sys [526848 2023-11-16] (Microsoft Windows -> Microsoft Corporation)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [59344 2023-11-22] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R3 AsusPTPDrv; C:\Windows\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_2be525c42dff92ab\AsusPTPFilter.sys [123456 2022-06-06] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSAIO.sys [49312 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusWmiAcpi.sys [48808 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-10-30] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\Windows\System32\drivers\AsRadioControl.sys [33424 2021-07-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 iaLPSS2_GPIO2_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2021-07-19] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_1308f85f1b0adf27\iaLPSS2_I2C_TGL.sys [204440 2021-07-19] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1605320 2022-12-23] (Intel Corporation -> Intel Corporation)
R3 IntcUSB; C:\Windows\System32\DriverStore\FileRepository\intcusb.inf_amd64_a63c64fdd7b6a5c5\IntcUSB.sys [915592 2023-01-19] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\Windows\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88776 2022-06-22] (Intel Corporation -> Intel Corporation)
R3 MpKsl812cd538; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41232874-5B54-4C7B-8FE6-2D819BD1263F}\MpKslDrv.sys [263560 2023-12-27] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterx64; C:\Windows\system32\DRIVERS\mtkbtfilterx.sys [321064 2023-04-13] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\Windows\System32\drivers\mtkwl6ex.sys [1419768 2023-04-10] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\Windows\System32\drivers\nvpcf.sys [208512 2021-10-13] (Nvidia Corporation -> NVIDIA Corporation)
S3 ovpn-dco; C:\Windows\System32\drivers\ovpn-dco.sys [90568 2023-05-15] (WDKTestCert lev,132435948852968539 -> OpenVPN, Inc)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2022-11-07] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-12-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2023-12-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-06] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-02-28] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-12-26 21:10 - 2023-12-26 21:11 - 000070166 _____ C:\Users\Giovanny Gerberos\Downloads\Addition.txt
2023-12-26 21:08 - 2023-12-27 08:35 - 000044647 _____ C:\Users\Giovanny Gerberos\Downloads\FRST.txt
2023-12-26 21:08 - 2023-12-27 08:34 - 000000000 ____D C:\FRST
2023-12-26 21:08 - 2023-12-26 21:08 - 002387456 _____ (Farbar) C:\Users\Giovanny Gerberos\Downloads\FRST64.exe
2023-12-26 18:30 - 2023-12-26 18:30 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\LocalLow\Beam Team Games
2023-12-26 18:29 - 2023-09-20 05:17 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\Stranded.Deep.v1.0.31.0.25
2023-12-26 18:20 - 2023-12-26 18:26 - 1341483616 _____ C:\Users\Giovanny Gerberos\Downloads\Stranded.Deep.v1.0.31.0.25.rar
2023-12-26 14:58 - 2023-12-26 14:58 - 000000000 ____D C:\Windows\LastGood
2023-12-26 14:49 - 2023-12-26 14:49 - 019046916 _____ C:\Windows\Minidump\122623-11671-01.dmp
2023-12-26 14:46 - 2023-12-26 15:31 - 000000004 ____H C:\ProgramData\cm-lock
2023-12-25 21:25 - 2023-12-27 07:55 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\asus_framework
2023-12-25 21:21 - 2023-12-26 10:27 - 000000000 ____D C:\Program Files (x86)\LightingService
2023-12-25 21:20 - 2023-12-25 21:21 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2023-12-25 21:20 - 2023-12-25 21:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-12-25 21:20 - 2023-12-25 21:20 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\AcSdkInsLog
2023-12-25 21:10 - 2023-12-26 10:32 - 000000000 ____D C:\Program Files (x86)\ASUS
2023-12-25 21:10 - 2023-11-22 17:07 - 000524648 _____ (Asustek Computer Inc.) C:\Windows\system32\AsIO3.dll
2023-12-25 21:10 - 2023-11-22 17:07 - 000430440 _____ (Asustek Computer Inc.) C:\Windows\SysWOW64\AsIO3.dll
2023-12-25 21:10 - 2023-11-22 01:18 - 000059344 _____ (Asustek Computer Inc.) C:\Windows\system32\Drivers\AsIO3.sys
2023-12-25 21:09 - 2023-07-19 04:10 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\AC Full Package_1.2.4.0
2023-12-25 20:50 - 2023-12-25 21:07 - 3949382161 _____ C:\Users\Giovanny Gerberos\Downloads\Armoury_Crate_Full_Installation_Package.zip
2023-12-25 20:47 - 2021-06-02 15:03 - 000067464 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2023-12-25 20:46 - 2023-12-25 20:46 - 000000000 ____D C:\Windows\LastGood.Tmp
2023-12-25 20:45 - 2021-10-30 01:22 - 001523328 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2023-12-25 20:45 - 2021-10-30 01:22 - 001172608 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2023-12-25 20:45 - 2021-10-30 01:22 - 000800376 _____ C:\Windows\system32\nvofapi64.dll
2023-12-25 20:45 - 2021-10-30 01:22 - 000656512 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2023-12-25 20:45 - 2021-10-30 01:22 - 000635008 _____ C:\Windows\SysWOW64\nvofapi.dll
2023-12-25 20:45 - 2021-10-30 01:21 - 002114704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2023-12-25 20:45 - 2021-10-30 01:21 - 001597584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2023-12-25 20:45 - 2021-10-30 01:21 - 000981136 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2023-12-25 20:45 - 2021-10-30 01:21 - 000792192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2023-12-25 20:45 - 2021-10-30 01:21 - 000707728 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2023-12-25 20:45 - 2021-10-30 01:20 - 008724096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2023-12-25 20:45 - 2021-10-30 01:20 - 007843968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2023-12-25 20:45 - 2021-10-30 01:20 - 005727376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2023-12-25 20:45 - 2021-10-30 01:20 - 004938896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2023-12-25 20:45 - 2021-10-30 01:20 - 002850448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2023-12-25 20:45 - 2021-10-30 01:20 - 000452232 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2023-12-25 20:45 - 2021-10-30 01:19 - 000849016 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2023-12-25 20:45 - 2021-10-30 01:18 - 006430848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2023-12-25 20:45 - 2021-10-21 01:48 - 000085748 _____ C:\Windows\system32\nvinfo.pb
2023-12-25 15:35 - 2023-12-25 15:35 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\LocalLow\Endnight
2023-12-25 14:59 - 2023-12-25 15:14 - 758430291 _____ C:\Users\Giovanny Gerberos\Downloads\Sons.of.the.Forest.v43470.part3.rar
2023-12-25 14:58 - 2023-12-25 14:58 - 1063004405 _____ C:\Users\Giovanny Gerberos\Downloads\Sons.of.the.Forest.v43470.part1.rar
2023-12-25 14:22 - 2023-12-25 15:14 - 1063004405 _____ C:\Users\Giovanny Gerberos\Downloads\Sons.of.the.Forest.v43470.part2.rar
2023-12-19 20:41 - 2023-12-20 16:44 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\Watches
2023-12-19 20:40 - 2023-12-19 20:40 - 000057698 _____ C:\Users\Giovanny Gerberos\Downloads\S88bfb441a2c448bb89ba575fa98404bdk.webp
2023-12-18 15:33 - 2023-12-18 15:33 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\RenPy
2023-12-17 17:31 - 2023-12-17 17:31 - 000000000 ____D C:\Windows\InboxApps
2023-12-17 11:06 - 2023-12-17 11:06 - 000000000 ____D C:\Users\Giovanny Gerberos\Documents\House Flipper
2023-12-17 10:30 - 2023-12-17 10:30 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\LocalLow\Empyrean
2023-12-17 10:23 - 2023-12-26 15:17 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\game
2023-12-17 09:39 - 2023-12-17 10:20 - 4022064769 _____ C:\Users\Giovanny Gerberos\Downloads\House.Flipper.v1.23287.part2.rar
2023-12-17 09:37 - 2023-12-17 10:14 - 1063004405 _____ C:\Users\Giovanny Gerberos\Downloads\House.Flipper.v1.23287.part1.rar
2023-12-16 21:49 - 2023-12-16 21:49 - 000000000 ____D C:\Users\Giovanny Gerberos\Documents\House Flipper 2
2023-12-16 21:48 - 2023-12-16 21:48 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\LocalLow\Frozen District
2023-12-16 21:47 - 2023-12-16 21:47 - 000001150 _____ C:\Users\Giovanny Gerberos\Desktop\House Flipper 2.lnk
2023-12-16 21:47 - 2023-12-16 21:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\House Flipper 2
2023-12-16 21:47 - 2023-12-16 21:47 - 000000000 ____D C:\Program Files (x86)\House Flipper 2
2023-12-16 21:18 - 2023-12-16 21:46 - 000000000 ____D C:\Users\Giovanny Gerberos\Downloads\House.Flipper.2-RUNE
2023-12-16 20:45 - 2023-12-16 22:33 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\uTorrent Web
2023-12-16 20:45 - 2023-12-16 20:45 - 000001939 _____ C:\Users\Giovanny Gerberos\Desktop\uTorrent Web.lnk
2023-12-16 20:24 - 2023-12-16 20:24 - 001762816 _____ ( ) C:\Users\Giovanny Gerberos\Downloads\utweb_installer.exe
2023-12-16 20:23 - 2023-12-16 20:24 - 024674304 _____ C:\Users\Giovanny Gerberos\Downloads\Unconfirmed 135509.crdownload
2023-12-15 18:15 - 2023-12-15 18:22 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\7DaysToDie
2023-12-15 18:15 - 2023-12-15 18:15 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\LocalLow\The Fun Pimps
2023-12-14 21:00 - 2023-12-14 21:00 - 000085836 _____ C:\Users\Giovanny Gerberos\Downloads\2
2023-12-14 20:56 - 2023-12-14 20:56 - 000084016 _____ C:\Users\Giovanny Gerberos\Downloads\S2f9c6d6a4cb54dc68997c4d2eb3f86109.webp
2023-12-14 20:48 - 2023-12-14 20:48 - 012543600 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (8).svg
2023-12-14 20:46 - 2023-12-14 20:46 - 012544222 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (7).svg
2023-12-14 20:29 - 2023-12-14 20:29 - 012542707 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (6).svg
2023-12-14 20:21 - 2023-12-14 20:21 - 000346484 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (5).svg
2023-12-14 20:18 - 2023-12-14 20:18 - 000357856 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (4).svg
2023-12-14 20:13 - 2023-12-14 20:13 - 000689303 _____ C:\Users\Giovanny Gerberos\Downloads\water.svg
2023-12-14 20:10 - 2023-12-14 20:10 - 000765198 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (3).svg
2023-12-14 20:09 - 2023-12-14 20:09 - 000781133 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (2).svg
2023-12-14 20:08 - 2023-12-14 20:08 - 000759708 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (1).svg
2023-12-14 20:06 - 2023-12-14 20:06 - 000924481 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof.svg
2023-12-13 16:41 - 2023-12-13 16:41 - 000016707 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2023-12-13 16:38 - 2023-12-13 16:38 - 000000000 ___HD C:\$WinREAgent
2023-12-12 19:06 - 2023-12-12 19:06 - 000111432 _____ C:\Users\Giovanny Gerberos\Downloads\download.jfif
2023-12-09 13:45 - 2023-12-09 13:46 - 065812970 _____ C:\Users\Giovanny Gerberos\Downloads\Slender_v0_9_7.zip
2023-12-09 12:29 - 2023-12-09 15:08 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\Steam
2023-12-09 12:27 - 2023-12-09 12:27 - 002296488 _____ C:\Users\Giovanny Gerberos\Downloads\SteamSetup (1).exe
2023-12-09 08:26 - 2023-12-09 08:26 - 037590056 _____ (Gemfor s.r.o.) C:\Users\Giovanny Gerberos\Downloads\dslman.exe
2023-12-04 21:56 - 2023-12-04 21:56 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-12-03 09:39 - 2023-12-03 09:39 - 000016445 _____ C:\Users\Giovanny Gerberos\Desktop\download.jfif
2023-12-02 18:31 - 2023-12-07 18:06 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\New folder (2)
2023-12-02 15:42 - 2023-12-02 15:42 - 000000000 ____D C:\Users\Giovanny Gerberos\Apple
2023-12-01 17:58 - 2023-12-01 17:58 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\New folder
2023-11-29 19:44 - 2023-11-29 19:44 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CapCut
2023-11-28 22:55 - 2023-11-28 22:55 - 000001139 _____ C:\Users\Giovanny Gerberos\Desktop\Cities Skylines II.lnk
2023-11-27 09:22 - 2023-12-27 08:33 - 000000068 ___SH C:\Windows\system32\Drivers\wmilib.winsecurity
2023-11-27 09:22 - 2023-12-27 07:55 - 000000068 ___SH C:\Windows\system32\Drivers\xboxgip.winsecurity
2023-11-27 09:21 - 2023-11-27 09:21 - 000000053 ___SH C:\Windows\system32\Drivers\WUDFRd.winsecurity
2023-11-27 09:21 - 2023-11-27 09:21 - 000000053 ___SH C:\Windows\system32\Drivers\WpdUpFltr.winsecurity

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-12-27 08:34 - 2023-04-08 08:59 - 000003752 _____ C:\Windows\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2023-12-27 08:32 - 2023-04-01 23:04 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-27 08:32 - 2023-04-01 22:28 - 000000000 ____D C:\Windows\system32\ASUSACCI
2023-12-27 08:32 - 2023-04-01 21:44 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-12-27 08:32 - 2022-09-08 04:11 - 000000000 ____D C:\Windows\SystemTemp
2023-12-27 08:05 - 2023-04-28 10:11 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-12-27 07:56 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-27 07:55 - 2023-04-12 20:24 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\CrashDumps
2023-12-27 07:55 - 2023-04-02 08:23 - 000000000 __SHD C:\Users\Giovanny Gerberos\IntelGraphicsProfiles
2023-12-27 07:55 - 2023-04-01 22:38 - 000000000 ____D C:\ProgramData\NVIDIA
2023-12-26 23:47 - 2023-04-01 21:51 - 000000000 ____D C:\Users\Giovanny Gerberos
2023-12-26 21:08 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2023-12-26 20:27 - 2023-07-31 10:27 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-26 20:02 - 2023-04-20 17:57 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\discord
2023-12-26 19:35 - 2023-04-20 17:57 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\Discord
2023-12-26 18:28 - 2023-06-07 17:06 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Word
2023-12-26 18:28 - 2023-04-01 21:53 - 000000000 ___RD C:\Users\Giovanny Gerberos\OneDrive
2023-12-26 17:51 - 2023-05-27 21:53 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\D3DSCache
2023-12-26 15:38 - 2023-04-01 21:50 - 001605602 _____ C:\Windows\system32\PerfStringBackup.INI
2023-12-26 15:38 - 2019-12-07 15:41 - 000684862 _____ C:\Windows\system32\perfh005.dat
2023-12-26 15:38 - 2019-12-07 15:41 - 000137626 _____ C:\Windows\system32\perfc005.dat
2023-12-26 15:30 - 2023-04-01 21:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-12-26 15:30 - 2022-04-22 21:52 - 000000000 ____D C:\Intel
2023-12-26 15:30 - 2021-01-01 22:08 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-26 15:30 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2023-12-26 14:59 - 2023-04-01 22:39 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\NVIDIA
2023-12-26 14:49 - 2023-04-11 18:32 - 000000000 ____D C:\Windows\Minidump
2023-12-26 14:49 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2023-12-26 14:48 - 2023-04-11 18:32 - 1564659409 _____ C:\Windows\MEMORY.DMP
2023-12-26 14:46 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-12-26 10:32 - 2023-04-01 22:38 - 000000000 ____D C:\ProgramData\Package Cache
2023-12-26 10:32 - 2023-04-01 22:26 - 000000000 ____D C:\Program Files\ASUS
2023-12-26 10:29 - 2023-04-01 22:17 - 000000000 ____D C:\ProgramData\ASUS
2023-12-26 10:26 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-26 10:26 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2023-12-25 21:26 - 2023-04-01 22:35 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\ASUS
2023-12-25 21:23 - 2023-04-01 21:52 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\Packages
2023-12-25 21:23 - 2023-04-01 21:52 - 000000000 ____D C:\ProgramData\Packages
2023-12-25 20:46 - 2023-04-01 22:59 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2023-12-25 20:42 - 2023-04-01 22:27 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\PlaceholderTileLogoFolder
2023-12-25 18:22 - 2023-08-03 08:59 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\The Real World
2023-12-23 17:45 - 2023-04-01 21:44 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-22 21:33 - 2023-04-01 21:52 - 000000000 ___SD C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Credentials
2023-12-21 17:37 - 2023-04-01 22:32 - 000002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-12-21 17:37 - 2023-04-01 22:32 - 000002323 _____ C:\Users\Public\Desktop\Brave.lnk
2023-12-18 20:27 - 2023-04-01 23:04 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-12-17 17:32 - 2023-06-08 20:21 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-12-17 17:32 - 2023-04-01 21:44 - 000561696 _____ C:\Windows\system32\FNTCACHE.DAT
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2023-12-17 17:31 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2023-12-17 10:30 - 2023-11-24 07:43 - 000000000 ____D C:\Users\Public\Documents\Steam
2023-12-16 21:51 - 2023-07-31 10:27 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\BitTorrentHelper
2023-12-16 20:45 - 2023-07-31 10:27 - 000001925 _____ C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2023-12-15 20:16 - 2023-06-07 17:05 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-12-15 20:16 - 2023-06-07 17:05 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-15 20:16 - 2023-04-01 22:30 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3288555297-1109179779-228674543-1001
2023-12-15 19:16 - 2023-11-09 18:54 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\EasyAntiCheat
2023-12-15 19:16 - 2023-05-05 14:31 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-12-15 18:14 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-12-15 18:10 - 2023-06-07 16:57 - 000000000 ____D C:\Program Files\Microsoft Office
2023-12-13 16:42 - 2019-12-07 15:44 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2023-12-13 16:42 - 2019-12-07 15:44 - 000020827 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2023-12-13 16:42 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2023-12-13 16:41 - 2023-04-01 21:47 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-12-09 21:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2023-12-08 23:01 - 2023-11-11 14:46 - 000000000 ____D C:\Program Files\Epic Games
2023-12-07 17:20 - 2023-04-01 23:04 - 000003768 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-12-07 17:20 - 2023-04-01 23:04 - 000003644 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-12-07 17:20 - 2023-04-01 22:31 - 000003572 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{52B199C0-D3B7-4594-8BE7-069B1B97154C}
2023-12-07 17:20 - 2023-04-01 22:31 - 000003448 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{7FBE6E65-6C64-4407-A0F9-FC7BC4865B1C}
2023-12-06 19:38 - 2023-04-01 21:44 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-11-29 19:44 - 2023-05-18 19:03 - 000001288 _____ C:\Users\Giovanny Gerberos\Desktop\CapCut.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-12-2023
Ran by Giovanny Gerberos (27-12-2023 08:36:30)
Running from C:\Users\Giovanny Gerberos\Downloads
Microsoft Windows 10 Home Version 22H2 19045.3803 (X64) (2023-04-01 20:48:16)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3288555297-1109179779-228674543-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3288555297-1109179779-228674543-503 - Limited - Disabled)
Giovanny Gerberos (S-1-5-21-3288555297-1109179779-228674543-1001 - Administrator - Enabled) => C:\Users\Giovanny Gerberos
Guest (S-1-5-21-3288555297-1109179779-228674543-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3288555297-1109179779-228674543-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Allplan 2024 (HKLM-x32\...\{16ee956c-0326-409a-9db6-c72a420cc108}) (Version: 24.46.50202 - ALLPLAN GmbH)
Allplan-2024-aow-Tch (HKLM\...\{092E0F8F-4886-A02D-2A55-0B080A4BB0E4}) (Version: 24.46.50202 - ALLPLAN GmbH) Hidden
Allplan-2024-etc-Tch (HKLM\...\{2157204E-8721-41BB-2B51-4B2EF6458F0E}) (Version: 24.46.50202 - ALLPLAN GmbH) Hidden
Allplan-2024-lib-Tch (HKLM\...\{673C9168-3535-2402-2917-0A212959F152}) (Version: 24.46.50202 - ALLPLAN GmbH) Hidden
Allplan-2024-pcc (HKLM\...\{D43BAD49-4D45-A07B-7B3D-3CE4F1A91F0D}) (Version: 24.46.50202 - ALLPLAN GmbH) Hidden
Allplan-2024-pea (HKLM\...\{9549C9F6-3913-A9DF-932E-ED0B7121B683}) (Version: 24.46.10343 - ALLPLAN GmbH) Hidden
Allplan-2024-prg (HKLM\...\{494235BB-D495-FDE2-C28E-FD7B23D6D803}) (Version: 24.46.50202 - ALLPLAN GmbH) Hidden
Allplan-2024-std-Tch (HKLM\...\{1EE26219-6724-D3EA-9B27-4BB04113DA06}) (Version: 24.45.55458 - ALLPLAN GmbH) Hidden
Allplan-2024-tex-Tch (HKLM\...\{69051D51-1E96-4B74-47E4-5784A38178C1}) (Version: 24.43.54328 - ALLPLAN GmbH) Hidden
ARMOURY CRATE Service (HKLM\...\{01378DC3-088F-4F55-AAFA-DC6A9CCA292A}) (Version: 5.7.9 - ASUS)
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.39 - ASUSTek COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.0.0.9 - ASUSTeK Computer Inc.)
ASUS Hotplug Controller (HKLM\...\{167A9DAC-ED7E-42CC-9A58-9E7A0C24B91F}) (Version: 2.0.0 - ASUS)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.107 - ASUSTeK Computer Inc.) Hidden
Audacity 3.3.0 (HKLM\...\Audacity_is1) (Version: 3.3.0 - Audacity Team)
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.42 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.42 - ASUS)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.07.33 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{8c7eaca7-3c49-433c-b087-eaf0abb806d9}) (Version: 3.07.33 - ASUSTeK Computer Inc.)
AutoCAD Open in Desktop (HKLM\...\{E03EC70C-079C-4B5D-86D1-75759A46ED71}) (Version: 1.0.27.0 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{8ECA94E8-BB0D-4E0C-AD18-817EA930E700}) (Version: 3.4.1 - Autodesk)
Autodesk AutoCAD 2024 - English (HKLM\...\{CC46AD7F-5075-3702-B2BF-CFCC5AB8468B}) (Version: 24.3.61.0 - Autodesk, Inc.)
Autodesk Genuine Service (HKLM\...\{E5AB199F-1837-453E-8A48-DC6366310F15}) (Version: 7.3.0.222 - Autodesk)
Autodesk Identity Manager (HKLM\...\Autodesk Identity Manager) (Version: 1.9.18.0 - Autodesk)
Autodesk Interoperability Engine Manager (HKLM\...\{412B8C29-F1BC-3791-A0BA-490A502077FA}) (Version: 1.1.0.28 - Autodesk.com) Hidden
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 120.1.61.109 - Autoři prohlížeče Brave)
CapCut (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\CapCut) (Version: 2.9.0.966 - Bytedance Pte. Ltd.)
Cities Skylines II (HKLM-x32\...\Cities Skylines II_is1) (Version: - )
CodeMeter Runtime Kit v7.50 (HKLM\...\{63B002D2-7785-4039-8B88-3C06C27747F0}) (Version: 7.50.5271.500 - WIBU-SYSTEMS AG)
CZC Halfling GK750 (HKLM-x32\...\CZC Halfling GK750) (Version: V1.02n - CZC.cz s.r.o.)
Descript 66.1.1-release.20230612.18761 (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\47d4069d-eba1-5137-bc5f-9c138f7a3859) (Version: 66.1.1-release.20230612.18761 - Descript, Inc.)
Discord (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Discord) (Version: 1.0.9012 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{B85FAA6E-A9AA-4655-9029-E1A4EDC05E1A}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{4757C19B-4CE3-418C-91D2-E15E938091FB}) (Version: 2.0.39.0 - Epic Games, Inc.)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 120.0.6099.130 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 85.0.26.0 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
House Flipper 2 (HKLM-x32\...\House Flipper 2_is1) (Version: - )
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{3DAC4F8C-80E6-4204-8A58-747FA4CBAA03}) (Version: 16.0.246 - Intel Corporation)
Java 8 Update 351 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180351F0}) (Version: 8.0.3510.10 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft .NET Host - 6.0.8 (x64) (HKLM\...\{6950FA03-8B88-4675-B685-FB21CA1762CC}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.8 (x64) (HKLM\...\{3C3CA326-3F1D-43B7-B0AD-CBC06B2DED5A}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.8 (x64) (HKLM\...\{7CEA3ABF-FE24-42AF-ADE6-B4A3EE346743}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.17029.20108 - Microsoft Corporation)
Microsoft ASP.NET Core 6.0.8 - Shared Framework (x64) (HKLM-x32\...\{1182f806-658a-4241-9202-d43e13bf2719}) (Version: 6.0.8.22363 - Microsoft Corporation)
Microsoft ASP.NET Core 6.0.8 Shared Framework (x64) (HKLM\...\{FA97D589-B37E-3B49-A8D2-4764029773FE}) (Version: 6.0.8.22363 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.91 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.91 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Teams) (Version: 1.5.00.30767 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM\...\{EB3983F9-3D60-456D-A11A-C1366C79AD3E}) (Version: 48.35.45540 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM-x32\...\{ca35acb3-b442-44fb-924c-4448120bf689}) (Version: 6.0.8.31518 - Microsoft Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Graphics Driver 496.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.49 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.92 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.1.3 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17029.20000 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17029.20068 - Microsoft Corporation) Hidden
Python 3.10.10 (64-bit) (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\{d792a453-39b9-418b-b84a-a3c081f4a96c}) (Version: 3.10.10150.0 - Python Software Foundation)
Python 3.10.10 Add to Path (64-bit) (HKLM\...\{8537571F-1A2B-4D99-8042-55ABFAA1CB75}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Core Interpreter (64-bit) (HKLM\...\{8D186605-9E75-4786-926B-A6434419C86D}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Development Libraries (64-bit) (HKLM\...\{BE74226F-199B-4DCE-AB22-4269DC9A83FC}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Documentation (64-bit) (HKLM\...\{BA63FB24-50D4-4D04-A1DD-BDB3A3098C0E}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Executables (64-bit) (HKLM\...\{81F82011-7F71-4D82-A213-9D4C704959EA}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 pip Bootstrap (64-bit) (HKLM\...\{861EF849-90A5-4F4A-BAD4-479141466551}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Standard Library (64-bit) (HKLM\...\{DCFC24EF-C987-4F08-A807-C562D5546446}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Tcl/Tk Support (64-bit) (HKLM\...\{254DC21E-9E4E-48BC-943D-6DB473D6356A}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Test Suite (64-bit) (HKLM\...\{C5A7DCFD-705B-41AC-8615-4A33DBFC5272}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Utility Scripts (64-bit) (HKLM\...\{D8E25ACB-4E67-4402-8A53-5B5DAB83FD2C}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{41E422A9-9003-495A-84C4-FFD3DC55925E}) (Version: 3.10.10150.0 - Python Software Foundation)
Roblox Player for Giovanny Gerberos (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\roblox-player) (Version: - Roblox Corporation)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.3.6.0 - ASUSTek COMPUTER INC.)
Speciální aplikace Autodesk (HKLM-x32\...\{00A2237F-C1A4-4498-8B21-24CA66D8C756}) (Version: 3.4.1 - Autodesk)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.5.0.30767 - Microsoft Corporation)
Telegram Desktop (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.8.3 - Telegram FZ-LLC)
The Real World (HKLM\...\{27698707-7A36-4FF2-BDDD-D7A1E7013819}) (Version: 2.1.104 - matrix)
The Real World (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\the_real_world) (Version: 1.9.80 - TRW)
TikTok (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\f4596a59a31356969472018d605011d3) (Version: 1.0 - BraveSoftware\Brave-Browser)
TLauncher (HKLM-x32\...\TLauncher) (Version: 2.885 - TLauncher Inc.)
Uložit do služby Autodesk Web and Mobile (HKLM\...\{AC9D2EAD-0DA0-4E0B-8672-546F5B1E6E73}) (Version: 3.0.31 - Autodesk)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
uTorrent Web (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\utweb) (Version: 1.4.0 - Rainberry, Inc.)
WinRAR 6.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.21.0 - win.rar GmbH)

Packages:
=========
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.7.9.0_x64__qmba6cd70vzyy [2023-12-26] (ASUSTeK COMPUTER INC.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2023.11.13.0_neutral__6rarf9sa4v8jt [2023-11-21] (Disney)
HEVC Video Extensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_2.0.61933.0_x64__8wekyb3d8bbwe [2023-08-08] (Microsoft Corporation)
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5287.0_x64__8j3eq9eme6ctt [2023-12-15] (INTEL CORP) [Startup Task]
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa [2023-12-15] (Apple Inc.) [Startup Task]
Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe [2023-12-13] (Microsoft) [Startup Task]
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy [2023-11-28] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-11-23] (NVIDIA Corp.)
Photos Add-on -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2023-08-15] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-05-15] (Microsoft Corporation)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.29.256.0_x64__dt26b99r8h8gj [2023-04-01] (Realtek Semiconductor Corp)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-07] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0 [2023-12-08] (Spotify AB) [Startup Task]
Thunderbolt™ Control Center -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.37.0_x64__8j3eq9eme6ctt [2023-12-25] (INTEL CORP)
TradingView -> C:\Program Files\WindowsApps\TradingView.Desktop_2.7.1.5365_x64__n534cwy3pjxzj [2023-12-19] (TradingView, Inc.) [Startup Task]
TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2023.2.0.0_x64__v826wp6bftszj [2023-11-28] (Charles Milette) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{169B5B8E-E315-41C7-9574-66FC7E530D10}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Giovanny Gerberos\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.22272.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{8B4929F8-076F-4AEC-AFEE-8928747B7AE3}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{AA46BA8A-9825-40FD-8493-0BA3C4D5CEB5}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{AF18D91C-A699-4578-ADC6-972F3BA007F0}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2024\en-US\acadficn.dll (Autodesk, Inc. -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2023-04-28] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2023-04-28] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_2792f9c5c14276e4\nvshext.dll [2021-10-30] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Brave\TikTok.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\chrome_proxy.exe (Brave Software, Inc.) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc

==================== Loaded Modules (Whitelisted) =============

2023-12-25 21:20 - 2023-04-14 14:18 - 000186368 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\ac_node_addon\build\Release\ac_node_addon.node
2023-12-25 21:20 - 2023-04-14 14:18 - 000175104 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\ffi-napi\build\Release\ffi_bindings.node
2023-12-25 21:20 - 2023-04-14 14:18 - 000159744 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\ref-napi\prebuilds\win32-ia32\electron.napi.node
2023-12-25 21:20 - 2023-04-14 14:18 - 000319488 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\sharp\build\Release\sharp-win32-ia32.node
2023-12-25 21:20 - 2023-04-26 16:06 - 000541696 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\usb\prebuilds\win32-ia32\node.napi.node

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:CM_7453407cdd697230a89db0149d7eada88fef00b3fdac100c38e1de8fa2fabdca [74]
AlternateDataStreams: C:\Windows:CM_ac741491a2b5f1c13fdeabe3f5a76e4e388202d79e832f22f1ffc1310b0735dc [74]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9890]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-3288555297-1109179779-228674543-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_351\bin\ssv.dll [2023-09-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_351\bin\jp2ssv.dll [2023-09-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\sharepoint.com -> hxxps://stavlib-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Python310\Scripts\;C:\Program Files\Python310\;%INTEL_DEV_REDIST%redist\intel64_win\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\dotnet\
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\Control Panel\Desktop\\Wallpaper -> c:\users\giovanny gerberos\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\chess-real-world-tate-brothers-2249620-wallhere.com.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Autodesk Access"
HKLM\...\StartupApproved\Run: => "BraveVpnWireguardService"
HKLM\...\StartupApproved\Run32: => "Autodesk Genuine Service "
HKLM\...\StartupApproved\Run32: => "CZC Halfling GK750"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "GoogleDriveFS"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_DB9C30AC44DC92780F993C9E33BC6499"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "utweb"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2F336593-9618-42FB-BFA8-EA6395069385}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{63E4714C-479E-4BE0-9238-A0892DFFFDC4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{14F056A2-AB07-49D2-8CCC-58B705E93EED}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{230DB162-BDF6-47F2-98B2-D7FF21A121D0}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{FE6DDE71-24E1-43E9-A9B5-0864B7D2B4A3}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [UDP Query User{36EBA426-D1C7-4A82-A88C-B46E9B69BF93}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [TCP Query User{47D0BCD4-FCE0-4036-A189-40CF61C88D3A}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => No File
FirewallRules: [UDP Query User{9A560A51-5C0B-47EC-95AC-51A36188FAAF}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => No File
FirewallRules: [TCP Query User{29B680D4-ABE4-43D7-94E7-D6853F764EDC}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [UDP Query User{8AE5CA91-9706-482E-AD1B-2C6D0137CA8C}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [TCP Query User{62970A16-48DA-4207-84F7-6B97D5F73B0D}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe => No File
FirewallRules: [UDP Query User{66D36F28-9F25-4D96-B7AE-0E3362F42766}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe => No File
FirewallRules: [TCP Query User{CBBFE42C-9AA6-4C49-9A97-BEA959302B13}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe => No File
FirewallRules: [UDP Query User{E38A7B8A-482A-4CF0-AC40-B23B9229372A}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe => No File
FirewallRules: [TCP Query User{9D0BEC1D-FA2B-4BA4-A3D6-9E62D8679B87}C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe] => (Allow) C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe => No File
FirewallRules: [UDP Query User{501A8A6D-E416-4B5A-8E43-46D07F5EE20F}C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe] => (Allow) C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe => No File
FirewallRules: [{BBF78A76-5990-4A41-8046-F1C5AA310FA8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{F53C562C-EEAC-458E-865F-707DAE38DD3D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{7298B49D-EB51-45F6-A3D3-BEB748EAB906}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{13366204-14B6-4BB7-AE00-B37A53657BCC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{DE39E393-FFC7-45BE-B7ED-9C473C936A84}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{7865A4F3-2A53-4E57-95E1-3F184A4F9A02}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{B7E85F4E-8D47-47F9-9376-6F55B37CA443}] => (Block) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{35E34998-8EB8-4B3B-98ED-3054E7CB4C44}] => (Block) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{09383E32-F58E-4570-BF6C-C9EE3DDDA99F}] => (Allow) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{75C3C12E-5FEE-4E77-8690-5D1713B40598}] => (Allow) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{463BA660-A8D3-4D4B-9FD5-5A4E9758FB00}] => (Block) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{7DF80189-A620-43BD-BBB2-A2CAE127A85A}] => (Block) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{83B28621-F5FB-4C8B-8C97-F1C4ADF0A512}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.33\OverwolfBrowser.exe => No File
FirewallRules: [{64245585-879F-4038-B2BA-546F458E5A49}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.33\OverwolfBrowser.exe => No File
FirewallRules: [TCP Query User{13536A41-DB91-4A59-B563-8BD17C32D5CE}C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe] => (Allow) C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe => No File
FirewallRules: [UDP Query User{606F12C9-BEC2-4757-8497-16B1DB4E4CE5}C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe] => (Allow) C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe => No File
FirewallRules: [{D52E29E9-D234-46B6-B6C1-E217D5461F5F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F16F3BB4-ABBC-4ACA-AD19-44CC26A72F77}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D45AA7EA-7556-4479-AA15-C83AFF988AC8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{487E8796-728C-412B-9E9D-D3C082F67342}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{82A51363-C0E8-4E30-8E8F-E9C691D14CDC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DF57DE3-75D8-4BD9-9F9C-E4E302176839}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\100.0.4815.30\opera.exe => No File
FirewallRules: [TCP Query User{3138F897-8A9E-4649-8827-0C08F62D95AF}C:\users\giovanny gerberos\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [UDP Query User{9F8E58E4-5D74-4092-829C-744D449091A9}C:\users\giovanny gerberos\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [TCP Query User{76C69344-9BD8-4AFD-B9A9-BE9CBE1C62FC}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8DD47D54-78F1-4482-8364-9A3644E77389}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [TCP Query User{AC794F59-6CB1-4A8B-B1E8-DF8964D01950}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{79738054-8E9B-403F-94EE-B40EAB003F15}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{6E76D057-95E8-4A34-A049-E91F317FA5A8}C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe] => (Allow) C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe => No File
FirewallRules: [UDP Query User{107D5E9D-D146-41DB-902C-DA0D6B73061C}C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe] => (Allow) C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe => No File
FirewallRules: [{F8B0AC3F-951C-4B47-ADCF-9ED1F49F6A81}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio-gui.exe => No File
FirewallRules: [{72A77FA8-D0DC-41D5-AABC-E9BAA6A05BF1}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio-gui.exe => No File
FirewallRules: [{EC0FFAC2-FF1B-4D6E-AEBE-A58585C5C650}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio.exe => No File
FirewallRules: [{B21AB863-A5F6-4A74-B1A4-AC9FC1DE3FA1}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio.exe => No File
FirewallRules: [{DF69439F-4877-46DB-9D9B-5186993FBAA6}] => (Allow) C:\Program Files (x86)\Download Studio\QtWebEngineProcess.exe => No File
FirewallRules: [{BA3D80D0-6FED-437B-B2A9-1D38FD0B47A5}] => (Allow) C:\Program Files (x86)\Download Studio\QtWebEngineProcess.exe => No File
FirewallRules: [TCP Query User{E1B3CC87-30CF-42E9-BAB3-1AEB716693CF}C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe] => (Allow) C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe => No File
FirewallRules: [UDP Query User{5BAEC9CA-CE56-4216-B66A-1B11C9C97878}C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe] => (Allow) C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe => No File
FirewallRules: [TCP Query User{362A5FFB-1E0B-4139-BC8D-6C3BC56319B7}C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe => No File
FirewallRules: [UDP Query User{539DE22D-50E8-4D13-B709-6F8C7FBC141B}C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe => No File
FirewallRules: [TCP Query User{527507F7-6411-4FE8-963D-07C927B8FC04}C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe] => (Allow) C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe => No File
FirewallRules: [UDP Query User{D67E867D-3483-400E-8B9E-F564BF356CE1}C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe] => (Allow) C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe => No File
FirewallRules: [TCP Query User{E945A3B3-4C40-47B0-90B3-A0C1AC73FD95}C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe] => (Allow) C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe => No File
FirewallRules: [UDP Query User{CE38E2E2-1F94-4A9A-9CE9-E343D6E9B779}C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe] => (Allow) C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe => No File
FirewallRules: [{DA65403B-DB2F-40E6-A243-CF69A01EF32C}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\102.0.4880.56\opera.exe => No File
FirewallRules: [TCP Query User{D27DA708-9890-4317-BF37-3020DD181A15}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [UDP Query User{4136E35B-2EE9-43B9-80B6-0D7A78E3E115}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [{4D87ED97-DFE0-434E-BC9F-DB5EFD0EE4E6}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\104.0.4944.33\opera.exe => No File
FirewallRules: [TCP Query User{4F848C61-989A-47EE-8319-F545AF421749}C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe] => (Allow) C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe => No File
FirewallRules: [UDP Query User{C7060A75-67CF-4815-A8A2-1301393E7B33}C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe] => (Allow) C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe => No File
FirewallRules: [TCP Query User{B0B23E7E-3E40-4006-868F-3FE0394D9313}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{FC5E7201-1EF7-45CB-80D5-EE5F5F013B21}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [{AC7254A7-F539-4DAA-B9FA-E4CA7F8E11DB}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
FirewallRules: [{F9E6E5CF-4478-4E95-AD9E-D71B652CA5B6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{55A22C92-6FDD-435F-AD42-88CEF9524E7F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{26C616B9-B149-4A7E-8A14-A8BD56595531}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B982B9A9-E0A9-4F3B-94D2-B35DF0386DFB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2A2C4657-5EC0-4FB4-821A-3BDE1B4568D5}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{BD1BC434-3037-49F6-868E-599E5F3115CD}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{CCE91F63-B8D1-4A24-AC82-FF7033F916E0}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{BE44C198-2A9C-47E6-87A1-541B4F0899C6}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{AFB1020C-31AC-45E1-A1D1-EE3F81D440C6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7D891FD2-07D5-4C62-89B3-5A847DEA225A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5C65A794-68EF-4729-9AF3-73E12A5DA3E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{895FEAF6-438B-4BC5-95A9-2388F25F3D0E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F6C93931-BE2D-4BFA-BF5B-AC8846EEEAF8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F66B591C-B504-419E-9AC7-B0190E89C819}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{64095614-1639-41A8-847F-1E22D5FA51FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F589FA66-63DE-44BB-A934-A74EAE2EBDCF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EC297051-ADF8-4987-B519-46561C526AEE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A3592ACC-E070-41A0-A34C-8DD98206DCCD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{07053B02-F8F4-46E2-8531-D83CA5D9712F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe => No File
FirewallRules: [{6D1DF960-87D1-497F-8455-DF56D7755E6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe => No File
FirewallRules: [{CAF223EA-BFE7-4644-B8F9-CDBF7FE0FD59}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{72DACA7C-7FCD-43E6-B434-C26DF1347F07}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5B11D308-35CC-4F3B-BC6D-EF8216705334}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E6C136E6-0841-45C2-A2A5-86DE8B10A513}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CEDBF682-F98C-49A2-B60C-12BC64030D6C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{22C99629-722F-47BA-B319-661CB6EB95DB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{3820FB53-CC6D-4941-BFBD-F4ADB5228A6B}C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [UDP Query User{40631006-957A-4684-8206-D7674055B3D7}C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [{A11512D5-839C-4F6C-843F-394E96589772}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{3612EA65-AB4F-4F38-93B5-DFD242BAF409}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{A3A89C32-2F9B-4313-96D8-E4BEFBAE200D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{6D645568-C9C5-4B5E-ABBB-E808575CE9FE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{EEC8B1FE-C5CC-4063-B097-8659A2ADC48E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{540BD5C4-A8E8-4010-B5E2-7AA23BAC6CA6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{65DDE1DD-7342-4090-9320-FDF226F2594A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{F862C4EC-37B2-450C-82CA-194F48899FB4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{40D71752-0DC2-4722-B125-055D2396D80C}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Roaming\uTorrent Web\utweb.exe (Rainberry Inc -> Rainberry Inc.)
FirewallRules: [{B043B882-0C20-4D3A-AFBB-3AA4703A3822}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Roaming\uTorrent Web\utweb.exe (Rainberry Inc -> Rainberry Inc.)
FirewallRules: [TCP Query User{ADD6E514-834B-4BA5-9326-3E3D1B2CD2F1}C:\program files (x86)\house flipper 2\houseflipper2.exe] => (Allow) C:\program files (x86)\house flipper 2\houseflipper2.exe () [File not signed]
FirewallRules: [UDP Query User{01B85457-8DE7-4191-BD52-D0FA0C6CCEE1}C:\program files (x86)\house flipper 2\houseflipper2.exe] => (Allow) C:\program files (x86)\house flipper 2\houseflipper2.exe () [File not signed]
FirewallRules: [{F85BAED1-0BA5-4CD1-9056-E77F486D6FFE}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{69D758A4-3956-4897-8892-62EFB7FCC5FE}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.91\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{4873E57E-20A0-4983-BCFF-661F942942FE}C:\users\giovanny gerberos\desktop\game\sonsoftheforest.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\sonsoftheforest.exe () [File not signed]
FirewallRules: [UDP Query User{00D69A3C-82BB-45F4-8429-93E91C07EF4A}C:\users\giovanny gerberos\desktop\game\sonsoftheforest.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\sonsoftheforest.exe () [File not signed]
FirewallRules: [{B48BF6B5-4A9B-4CE5-BAD4-1768C9FDBCCC}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{AB4D9204-C8A0-472D-AEB4-CCB03586C52C}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{0763C66F-0F64-4604-93B9-B6536BC867F2}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{688D357B-17D8-4208-A81E-1F85861A1D10}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [{68A45988-0894-4EC7-AE4B-0292644C88CA}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{EC327678-F3DC-4127-BE6F-A173B963055B}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{6AD715F0-4EFE-4798-A24C-06C12EB95731}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{059D8B75-C1FB-4B63-A253-2E7E09A501C6}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{E10A77EB-F546-4CD7-A313-85D796B3A724}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{6B1C7837-F076-493C-8376-F24523CBAE41}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
FirewallRules: [{251ECB37-0D5B-4B16-98C6-6E928B8BDBD9}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
FirewallRules: [{B8683899-8E83-428C-AFD3-CDEF015E3EF8}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5EA0FCB6-2F25-4BA4-92B2-DCEAAF78127D}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [{CC83F5F8-5F7C-45A5-BC68-7DA66AEE0C03}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:476.33 GB) (Free:220.67 GB) (46%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/27/2023 07:55:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ArmourySocketServer.exe, version: 0.0.15.19, time stamp: 0x647ef2da
Faulting module name: ArmourySocketServer.exe, version: 0.0.15.19, time stamp: 0x647ef2da
Exception code: 0xc0000005
Fault offset: 0x00000000000d9cae
Faulting process id: 0x3478
Faulting application start time: 0x01da3891a7c4b069
Faulting application path: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Faulting module path: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Report Id: 61768880-7504-429e-a60f-bde6e8c8efd4
Faulting package full name:
Faulting package-relative application ID:

Error: (12/26/2023 06:30:29 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\Giovanny Gerberos\AppData\Local\CapCut\Apps\CapCut.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_a863d714867441db.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_60b6a03d71f818d5.manifest.

Error: (12/26/2023 06:30:02 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\Giovanny Gerberos\AppData\Local\CapCut\Apps\CapCut.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_a863d714867441db.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_60b6a03d71f818d5.manifest.

Error: (12/26/2023 03:31:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ArmourySocketServer.exe, version: 0.0.15.19, time stamp: 0x647ef2da
Faulting module name: ArmourySocketServer.exe, version: 0.0.15.19, time stamp: 0x647ef2da
Exception code: 0xc0000005
Fault offset: 0x00000000000d9cae
Faulting process id: 0x1314
Faulting application start time: 0x01da38082786b019
Faulting application path: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Faulting module path: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Report Id: 08721dcd-2c19-4287-8aae-c031a2a3dbcb
Faulting package full name:
Faulting package-relative application ID:

Error: (12/26/2023 03:20:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: dwm.exe, version: 10.0.19041.3636, time stamp: 0x6e55ef4a
Faulting module name: KERNELBASE.dll, version: 10.0.19041.3758, time stamp: 0xd80f8f12
Exception code: 0xc00001ad
Fault offset: 0x000000000012db22
Faulting process id: 0x3494
Faulting application start time: 0x01da3806a8c556c0
Faulting application path: C:\Windows\system32\dwm.exe
Faulting module path: C:\Windows\System32\KERNELBASE.dll
Report Id: 3d83f56e-481f-4059-8392-bdb82592f8a1
Faulting package full name:
Faulting package-relative application ID:

Error: (12/26/2023 03:20:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: dwm.exe, version: 10.0.19041.3636, time stamp: 0x6e55ef4a
Faulting module name: KERNELBASE.dll, version: 10.0.19041.3758, time stamp: 0xd80f8f12
Exception code: 0xc00001ad
Fault offset: 0x000000000012db22
Faulting process id: 0x2778
Faulting application start time: 0x01da3806a71946b9
Faulting application path: C:\Windows\system32\dwm.exe
Faulting module path: C:\Windows\System32\KERNELBASE.dll
Report Id: 96a758d1-f457-4150-a989-103b7d817f85
Faulting package full name:
Faulting package-relative application ID:

Error: (12/26/2023 03:20:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ArmouryCrate.UserSessionHelper.exe, version: 5.7.0.0, time stamp: 0x65653d07
Faulting module name: KERNELBASE.dll, version: 10.0.19041.3758, time stamp: 0xd80f8f12
Exception code: 0xe0434352
Fault offset: 0x000000000002cf19
Faulting process id: 0x2e74
Faulting application start time: 0x01da3806a3ba46d3
Faulting application path: C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe
Faulting module path: C:\Windows\System32\KERNELBASE.dll
Report Id: 776c1cd7-81c5-4679-b3b0-d386803ab67a
Faulting package full name:
Faulting package-relative application ID:

Error: (12/26/2023 03:20:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SystemSettings.exe, version: 10.0.19041.3758, time stamp: 0xbdd5eb20
Faulting module name: igd10um64xe.DLL, version: 31.0.101.3413, time stamp: 0x63000ea2
Exception code: 0xc0000005
Fault offset: 0x000000000007974c
Faulting process id: 0x2b90
Faulting application start time: 0x01da3806a6b8b0b3
Faulting application path: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Faulting module path: C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a4e86d7e8f40267a\igd10um64xe.DLL
Report Id: 0e331ea9-9f59-4682-b66d-1ff83e2e1304
Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel


System errors:
=============
Error: (12/27/2023 07:55:12 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Miniport Microsoft Wi-Fi Direct Virtual Adapter #2, {b06f3ddc-9228-4266-89c8-14b3c5053782}, had event 74

Error: (12/26/2023 06:30:44 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1UR8901)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.

Error: (12/26/2023 03:32:54 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1UR8901)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.

Error: (12/26/2023 03:31:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1UR8901)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.

Error: (12/26/2023 03:30:58 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 15:14:02 on ‎26.‎12.‎2023 was unexpected.

Error: (12/26/2023 03:29:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1UR8901)
Description: The server {5F7F3F7B-1177-4D4B-B1DB-BC6F671B8F25} did not register with DCOM within the required timeout.

Error: (12/26/2023 03:22:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Služba DPS (Diagnostic Policy Service) service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 300000 milliseconds: Restartovat službu.

Error: (12/26/2023 03:21:23 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1UR8901)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2023-12-26 22:18:10
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2023-12-25 19:59:16
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2023-12-24 19:57:14
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2023-12-23 20:59:14
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2023-12-22 19:54:28
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
Event[0]:

Date: 2023-07-28 11:22:22
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.393.1596.0
Update Source: Server Microsoft Update
Security intelligence Type: Antivirový program
Update Type: Úplné
Current Engine Version:
Previous Engine Version: 1.1.23060.1005
Error code: 0x80240438
Error description: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2023-04-02 09:23:32
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to upload a suspicious file for further analysis.
Filename: C:\Windows\System32\spool\drivers\x64\3\New\FXSUI.DLL
Sha256: 1bda96cffd3ea46ffb97e1a6b3156bd2628781c29a1530a9cfa9e67c51fee2f3
Current security intelligence Version: AV: 1.385.1815.0, AS: 1.385.1815.0
Current Engine Version: 1.1.20100.6
Error code: 0x80508016

CodeIntegrity:
===============
Date: 2023-12-27 08:36:58
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a4e86d7e8f40267a\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends International, LLC. FX506HCB.313 03/03/2023
Motherboard: ASUSTeK COMPUTER INC. FX506HCB
Processor: 11th Gen Intel(R) Core(TM) i5-11400H @ 2.70GHz
Percentage of memory in use: 69%
Total physical RAM: 7914.84 MB
Available physical RAM: 2391.81 MB
Total Virtual: 27370.84 MB
Available Virtual: 19382.06 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.33 GB) (Free:220.67 GB) (Model: NVMe INTEL SSDPEKNU512GZ) (Protected) NTFS

\\?\Volume{44178dde-df9d-4c33-84fe-737925dba6b0}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{f8c8b421-6383-4c01-9ac2-fc29033ea11a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: F312E1E9)

Partition: GPT.

==================== End of Addition.txt =======================

[Jan Hnídek]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-12-2023
Ran by Giovanny Gerberos (administrator) on DESKTOP-1UR8901 (ASUSTeK COMPUTER INC. ASUS TUF Gaming F15 FX506HCB_FX506HCB) (27-12-2023 08:34:35)
Running from C:\Users\Giovanny Gerberos\Downloads\FRST64.exe
Loaded Profiles: Giovanny Gerberos
Platform: Microsoft Windows 10 Home Version 22H2 19045.3803 (X64) Language: Czech (Czechia) -> English (United States)
Default browser: Brave
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSACCI\ArmouryCrateControlInterface.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTeK COMPUTER INC.) C:\Windows\System32\ASUSACCI\ACCIMonitor.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOSD.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler64.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe <2>
(DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_597623a539cfcca8\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_597623a539cfcca8\igfxEMN.exe
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <25>
(explorer.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Allplan GmbH -> ALLPLAN GmbH) C:\Program Files\Allplan\AllplanUpdateLauncher 2024\AllplanUpdateLauncher.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemote.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\ASUSACCI\ArmouryCrateControlInterface.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\13.0.0.8122\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_597623a539cfcca8\igfxCUIServiceN.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_74e28d819fb21cc3\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_4d9e9544615ee129\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a4e86d7e8f40267a\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_f866bf1588e6868a\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_0bfc7052a9e9b3c5\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_2792f9c5c14276e4\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_8dbc192915c33897\RtkAudUService64.exe <3>
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <4>
(svchost.exe ->) (ASUSTEK COMPUTER INCORPORATION -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS Hotplug Controller\AsHotplugCtrl.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2310.8.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe [18088224 2023-05-02] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10837528 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [138214768 2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [CZC Halfling GK750] => C:\Program Files\CZC\CZC Halfling GK750.exe [1828864 2020-03-11] (TODO: <Company name>) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Program Files\Autodesk\Genuine Service\GenuineService.exe [3638792 2023-09-21] (Autodesk, Inc. -> Autodesk)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [Discord] => C:\Users\Giovanny Gerberos\AppData\Local\Discord\Update.exe [1525016 2023-03-22] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent (No File)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [MicrosoftEdgeAutoLaunch_DB9C30AC44DC92780F993C9E33BC6499] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Giovanny Gerberos\AppData\Local\Microsoft\Teams\Update.exe [2585832 2023-06-08] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [utweb] => C:\Users\Giovanny Gerberos\AppData\Roaming\uTorrent Web\utweb.exe [6425088 2023-10-11] (Rainberry Inc -> Rainberry Inc.)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37138384 2023-11-16] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\RunOnce: [Application Restart #0] => C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe [2759704 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.130\Installer\chrmstp.exe [2023-12-26] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\Installer\chrmstp.exe [2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2023-11-22]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {7BEB0CB0-7147-4982-91F4-1DE5426F155F} - System32\Tasks\ASUS Hotplug Controller => C:\Program Files\ASUS\ASUS Hotplug Controller\AsHotplugCtrl.exe [285416 2021-12-07] (ASUSTEK COMPUTER INCORPORATION -> ASUSTeK Computer Inc.)
Task: {D8578947-0FA8-46D1-99C8-6F2E0202DE21} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusHotkey.exe [310912 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {13D42581-33E5-4A09-B5A3-6DC489CB607C} - System32\Tasks\ASUS Update Checker 2.0 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusUpdateChecker.exe [797816 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {577F4E7D-6FA2-4D04-92E0-8CABDB46430D} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [313192 2023-06-06] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {38D23589-238E-427A-AF3F-70E7BBD1D9DA} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1945960 2023-06-06] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {4A36921A-7911-4615-90EA-7C649ECEE74A} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-12-25] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {FC048829-CFEC-4A0A-A2B6-E79DEAAAADA8} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-12-25] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {D477833E-8979-4581-95B3-69A5B9E143DF} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [139091304 2023-05-31] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {F2F26790-9E02-4B6F-9AC1-3F0F3AD0C177} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {85434D63-4084-441C-9D03-167B1E4B1CCF} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4147944 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {DF5E74E1-1BC9-49B8-9955-0734A0C175E3} - System32\Tasks\AutoUpdate Allplan 2024 => C:\Program Files\Allplan\Allplan 2024\Prg\NemDownloadHandler.exe [45392 2023-10-05] (Allplan GmbH -> ALLPLAN GmbH) -> /v 2024 /f "C:\ProgramData\Nemetschek\Allplan\2024\Etc\AllplanUpdate.inf"
Task: {243B10B6-5B38-4527-89EE-0648262DC2D1} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{7FBE6E65-6C64-4407-A0F9-FC7BC4865B1C} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {A82435AE-B61C-445D-8F8C-42AE9267C003} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{52B199C0-D3B7-4594-8BE7-069B1B97154C} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {94E474FE-89FD-4C35-9307-E199A3E76FB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2023-04-01] (Google LLC -> Google LLC)
Task: {1217F40C-66E7-4028-BD7A-F6A871CA567A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2023-04-01] (Google LLC -> Google LLC)
Task: {DDE23A36-2F86-41D8-BBAA-00D0027550CB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC024038-14A0-4650-8581-CB436CFF0002} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {044D8494-4FC5-470D-B22A-3A41C0950538} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306728 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {AE56AA27-F681-452B-93FF-65F31DFBA28E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306728 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {BF32DFF2-2E71-4B7E-ABA0-1E489D159A64} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169144 2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {1AB8AC06-D879-4807-B3F9-37FFEA07C8CE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {03CBE4F8-FED0-4321-9E88-AE5C8E96298C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6E99BA1B-90CB-449F-BBF9-076FC7BE1072} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {875E03F9-0F35-4788-B3A2-CC102806A41F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DF95253E-D4B0-4099-A0D2-6916600FB6A9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {2DA23231-66EC-4BC1-8479-FDE5E1B6E6F4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F222C96-106D-4597-BD40-84103C5C1E99} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D11D00E0-76D2-4E90-B7C0-1A0C4FBE347A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C3119EB5-A7D9-4EFE-9F9A-619BE4DC2F9B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D25E658E-2013-4331-8E77-85E8C9B66828} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6C137742-4FDB-4748-A9EB-6BD126122DF7} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E2B4074B-F008-4326-BBBC-8D3AC1FB8054} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0CF37D6E-4809-448C-B370-2FD6447DF930} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F36053A-8188-4976-A36D-7B0A4D0F6272} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {88D2356F-4F34-4DDF-8F83-B0E016CFFD6A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3288555297-1109179779-228674543-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {9960EB72-C119-426E-AC55-6D27B58223F0} - System32\Tasks\Opera scheduled Autoupdate 1688631835 => C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {04CB3B6A-9409-4A40-8B31-5FBF338A1186} - System32\Tasks\Opera scheduled Autoupdate 1695031924 => C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {79B294C9-BAE6-4911-B77E-02E67945C2CD} - System32\Tasks\Opera scheduled Autoupdate 1698410484 => C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {5D45142B-89AC-40F6-9C37-D0AB72C1CF34} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-22] (Overwolf Ltd -> Overwolf LTD)
Task: {6CFD7DC5-3113-4B1D-8B6C-EB66A13EA357} - System32\Tasks\RtkAudUService64_BG => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_8dbc192915c33897\RtkAudUService64.exe [1356392 2021-09-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{1ed53e37-20a7-489e-9c62-aded745a5fb5}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{3bc20abb-5f11-4dba-82a0-4db2ebc81e9b}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{3bc20abb-5f11-4dba-82a0-4db2ebc81e9b}: [DhcpDomain] home
Tcpip\..\Interfaces\{da99221b-e39f-4f55-8b84-77526c91a94c}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{da99221b-e39f-4f55-8b84-77526c91a94c}: [DhcpDomain] home
Tcpip\..\Interfaces\{da99221b-e39f-4f55-8b84-77526c91a94c}\7496F66716E6E69702745627265627F63791023702960586F6E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{da99221b-e39f-4f55-8b84-77526c91a94c}\7596C6C616F5D416764616C656E616: [DhcpNameServer] 192.168.10.1

Edge:
=======
Edge Profile: C:\Users\Giovanny Gerberos\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-17]
Edge Extension: (Google Docs Offline) - C:\Users\Giovanny Gerberos\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-21]
Edge Extension: (Edge relevant text changes) - C:\Users\Giovanny Gerberos\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-21]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1.dll [2023-09-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\plugin2\npjp2.dll [2023-09-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Giovanny Gerberos\AppData\Local\Google\Chrome\User Data\Default [2023-10-29]
CHR Extension: (Google Docs Offline) - C:\Users\Giovanny Gerberos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Giovanny Gerberos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-31]
CHR HKU\S-1-5-21-3288555297-1109179779-228674543-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

Opera:
=======
OPR DefaultProfile: Default

Brave:
=======
BRA Profile: C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-12-27]
BRA Extension: (Ali Reviews) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bbaogjaeflnjolejjcpceoapngapnbaj [2023-11-20]
BRA Extension: (Thieve AliExpress Tools) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bniadokhddgdbbcpolbgjcnmaphkbpni [2023-08-11]
BRA Extension: (Tampermonkey) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-12-08]
BRA Extension: (Volume Booster) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ejkiikneibegknkgimmihdpcbcedgmpo [2023-12-19]
BRA Extension: (Google Docs Offline) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
BRA Extension: (Excel Online) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2023-11-14]
BRA Extension: (Application Launcher For Drive (by Google)) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-22]
BRA Extension: (DSers - AliExpress.com Product Importer) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mmanaflgaempokjfbeeabkadnkoidjam [2023-12-21]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2023-12-25]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-12-25]
BRA Extension: (Brave NTP background images) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-09-19]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-12-27]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-12-25]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-12-27]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2023-07-30]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2023-09-20]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\gccbbckogglekeggclmmekihdgdpdgoe [2023-12-27]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-11-07]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-04-01]
BRA Extension: (Brave Ads Resources) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\iblokdlgekdjophgeonmanpnjihcjkjj [2023-12-21]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-12-27]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-12-06]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2023-11-26]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Giovanny Gerberos\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-25]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [15280648 2022-11-23] (Autodesk, Inc. -> Autodesk)
R2 AllplanUpdateLauncher 2024; C:\Program Files\Allplan\AllplanUpdateLauncher 2024\AllplanUpdateLauncher.exe [23888 2023-10-05] (Allplan GmbH -> ALLPLAN GmbH)
R2 ArmouryCrateControlInterface; C:\Windows\System32\ASUSACCI\ArmouryCrateControlInterface.exe [1181232 2023-06-06] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.Service.exe [401880 2023-12-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-12-25] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusAppService; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\AsusAppService\AsusAppService.exe [1177320 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [502120 2023-11-22] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R2 ASUSLinkNear; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe [1631976 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemote.exe [772840 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-12-25] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 ASUSOptimization; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusOptimization.exe [508032 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSoftwareManager\AsusSoftwareManager.exe [1111160 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitch.exe [641144 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4147944 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [834280 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [10539808 2023-05-21] (Autodesk, Inc. -> Autodesk, Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15772456 2023-11-23] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-04-01] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\brave_vpn_helper.exe [2765336 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10837528 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [10409328 2022-07-27] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
R2 DtsApo4Service; C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe [137056 2018-11-07] (DTS, Inc. -> DTS Inc.)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [955816 2023-11-09] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncHelper.exe [3514384 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 IntelAudioService; C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_0bfc7052a9e9b3c5\AS\IAS\IntelAudioService.exe [530552 2023-01-19] (Intel Corporation -> Intel)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4801896 2023-12-01] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\OneDriveUpdaterService.exe [3851280 2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-22] (Overwolf Ltd -> Overwolf LTD)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1932248 2023-11-28] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\elevation_service.exe" [X]
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]
S3 EpicOnlineServices; "C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_2792f9c5c14276e4\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_2792f9c5c14276e4\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcxHdAudio; C:\Windows\System32\drivers\AcxHdAudio.sys [526848 2023-11-16] (Microsoft Windows -> Microsoft Corporation)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [59344 2023-11-22] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R3 AsusPTPDrv; C:\Windows\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_2be525c42dff92ab\AsusPTPFilter.sys [123456 2022-06-06] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSystemAnalysis\AsusSAIO.sys [49312 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSOptimization\AsusWmiAcpi.sys [48808 2023-10-23] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-10-30] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\Windows\System32\drivers\AsRadioControl.sys [33424 2021-07-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 iaLPSS2_GPIO2_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2021-07-19] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_1308f85f1b0adf27\iaLPSS2_I2C_TGL.sys [204440 2021-07-19] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1605320 2022-12-23] (Intel Corporation -> Intel Corporation)
R3 IntcUSB; C:\Windows\System32\DriverStore\FileRepository\intcusb.inf_amd64_a63c64fdd7b6a5c5\IntcUSB.sys [915592 2023-01-19] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\Windows\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88776 2022-06-22] (Intel Corporation -> Intel Corporation)
R3 MpKsl812cd538; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41232874-5B54-4C7B-8FE6-2D819BD1263F}\MpKslDrv.sys [263560 2023-12-27] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterx64; C:\Windows\system32\DRIVERS\mtkbtfilterx.sys [321064 2023-04-13] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\Windows\System32\drivers\mtkwl6ex.sys [1419768 2023-04-10] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\Windows\System32\drivers\nvpcf.sys [208512 2021-10-13] (Nvidia Corporation -> NVIDIA Corporation)
S3 ovpn-dco; C:\Windows\System32\drivers\ovpn-dco.sys [90568 2023-05-15] (WDKTestCert lev,132435948852968539 -> OpenVPN, Inc)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2022-11-07] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-12-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2023-12-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-06] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-02-28] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-12-26 21:10 - 2023-12-26 21:11 - 000070166 _____ C:\Users\Giovanny Gerberos\Downloads\Addition.txt
2023-12-26 21:08 - 2023-12-27 08:35 - 000044647 _____ C:\Users\Giovanny Gerberos\Downloads\FRST.txt
2023-12-26 21:08 - 2023-12-27 08:34 - 000000000 ____D C:\FRST
2023-12-26 21:08 - 2023-12-26 21:08 - 002387456 _____ (Farbar) C:\Users\Giovanny Gerberos\Downloads\FRST64.exe
2023-12-26 18:30 - 2023-12-26 18:30 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\LocalLow\Beam Team Games
2023-12-26 18:29 - 2023-09-20 05:17 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\Stranded.Deep.v1.0.31.0.25
2023-12-26 18:20 - 2023-12-26 18:26 - 1341483616 _____ C:\Users\Giovanny Gerberos\Downloads\Stranded.Deep.v1.0.31.0.25.rar
2023-12-26 14:58 - 2023-12-26 14:58 - 000000000 ____D C:\Windows\LastGood
2023-12-26 14:49 - 2023-12-26 14:49 - 019046916 _____ C:\Windows\Minidump\122623-11671-01.dmp
2023-12-26 14:46 - 2023-12-26 15:31 - 000000004 ____H C:\ProgramData\cm-lock
2023-12-25 21:25 - 2023-12-27 07:55 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\asus_framework
2023-12-25 21:21 - 2023-12-26 10:27 - 000000000 ____D C:\Program Files (x86)\LightingService
2023-12-25 21:20 - 2023-12-25 21:21 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2023-12-25 21:20 - 2023-12-25 21:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-12-25 21:20 - 2023-12-25 21:20 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\AcSdkInsLog
2023-12-25 21:10 - 2023-12-26 10:32 - 000000000 ____D C:\Program Files (x86)\ASUS
2023-12-25 21:10 - 2023-11-22 17:07 - 000524648 _____ (Asustek Computer Inc.) C:\Windows\system32\AsIO3.dll
2023-12-25 21:10 - 2023-11-22 17:07 - 000430440 _____ (Asustek Computer Inc.) C:\Windows\SysWOW64\AsIO3.dll
2023-12-25 21:10 - 2023-11-22 01:18 - 000059344 _____ (Asustek Computer Inc.) C:\Windows\system32\Drivers\AsIO3.sys
2023-12-25 21:09 - 2023-07-19 04:10 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\AC Full Package_1.2.4.0
2023-12-25 20:50 - 2023-12-25 21:07 - 3949382161 _____ C:\Users\Giovanny Gerberos\Downloads\Armoury_Crate_Full_Installation_Package.zip
2023-12-25 20:47 - 2021-06-02 15:03 - 000067464 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2023-12-25 20:46 - 2023-12-25 20:46 - 000000000 ____D C:\Windows\LastGood.Tmp
2023-12-25 20:45 - 2021-10-30 01:22 - 001523328 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2023-12-25 20:45 - 2021-10-30 01:22 - 001172608 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2023-12-25 20:45 - 2021-10-30 01:22 - 000800376 _____ C:\Windows\system32\nvofapi64.dll
2023-12-25 20:45 - 2021-10-30 01:22 - 000656512 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2023-12-25 20:45 - 2021-10-30 01:22 - 000635008 _____ C:\Windows\SysWOW64\nvofapi.dll
2023-12-25 20:45 - 2021-10-30 01:21 - 002114704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2023-12-25 20:45 - 2021-10-30 01:21 - 001597584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2023-12-25 20:45 - 2021-10-30 01:21 - 000981136 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2023-12-25 20:45 - 2021-10-30 01:21 - 000792192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2023-12-25 20:45 - 2021-10-30 01:21 - 000707728 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2023-12-25 20:45 - 2021-10-30 01:20 - 008724096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2023-12-25 20:45 - 2021-10-30 01:20 - 007843968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2023-12-25 20:45 - 2021-10-30 01:20 - 005727376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2023-12-25 20:45 - 2021-10-30 01:20 - 004938896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2023-12-25 20:45 - 2021-10-30 01:20 - 002850448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2023-12-25 20:45 - 2021-10-30 01:20 - 000452232 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2023-12-25 20:45 - 2021-10-30 01:19 - 000849016 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2023-12-25 20:45 - 2021-10-30 01:18 - 006430848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2023-12-25 20:45 - 2021-10-21 01:48 - 000085748 _____ C:\Windows\system32\nvinfo.pb
2023-12-25 15:35 - 2023-12-25 15:35 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\LocalLow\Endnight
2023-12-25 14:59 - 2023-12-25 15:14 - 758430291 _____ C:\Users\Giovanny Gerberos\Downloads\Sons.of.the.Forest.v43470.part3.rar
2023-12-25 14:58 - 2023-12-25 14:58 - 1063004405 _____ C:\Users\Giovanny Gerberos\Downloads\Sons.of.the.Forest.v43470.part1.rar
2023-12-25 14:22 - 2023-12-25 15:14 - 1063004405 _____ C:\Users\Giovanny Gerberos\Downloads\Sons.of.the.Forest.v43470.part2.rar
2023-12-19 20:41 - 2023-12-20 16:44 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\Watches
2023-12-19 20:40 - 2023-12-19 20:40 - 000057698 _____ C:\Users\Giovanny Gerberos\Downloads\S88bfb441a2c448bb89ba575fa98404bdk.webp
2023-12-18 15:33 - 2023-12-18 15:33 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\RenPy
2023-12-17 17:31 - 2023-12-17 17:31 - 000000000 ____D C:\Windows\InboxApps
2023-12-17 11:06 - 2023-12-17 11:06 - 000000000 ____D C:\Users\Giovanny Gerberos\Documents\House Flipper
2023-12-17 10:30 - 2023-12-17 10:30 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\LocalLow\Empyrean
2023-12-17 10:23 - 2023-12-26 15:17 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\game
2023-12-17 09:39 - 2023-12-17 10:20 - 4022064769 _____ C:\Users\Giovanny Gerberos\Downloads\House.Flipper.v1.23287.part2.rar
2023-12-17 09:37 - 2023-12-17 10:14 - 1063004405 _____ C:\Users\Giovanny Gerberos\Downloads\House.Flipper.v1.23287.part1.rar
2023-12-16 21:49 - 2023-12-16 21:49 - 000000000 ____D C:\Users\Giovanny Gerberos\Documents\House Flipper 2
2023-12-16 21:48 - 2023-12-16 21:48 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\LocalLow\Frozen District
2023-12-16 21:47 - 2023-12-16 21:47 - 000001150 _____ C:\Users\Giovanny Gerberos\Desktop\House Flipper 2.lnk
2023-12-16 21:47 - 2023-12-16 21:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\House Flipper 2
2023-12-16 21:47 - 2023-12-16 21:47 - 000000000 ____D C:\Program Files (x86)\House Flipper 2
2023-12-16 21:18 - 2023-12-16 21:46 - 000000000 ____D C:\Users\Giovanny Gerberos\Downloads\House.Flipper.2-RUNE
2023-12-16 20:45 - 2023-12-16 22:33 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\uTorrent Web
2023-12-16 20:45 - 2023-12-16 20:45 - 000001939 _____ C:\Users\Giovanny Gerberos\Desktop\uTorrent Web.lnk
2023-12-16 20:24 - 2023-12-16 20:24 - 001762816 _____ ( ) C:\Users\Giovanny Gerberos\Downloads\utweb_installer.exe
2023-12-16 20:23 - 2023-12-16 20:24 - 024674304 _____ C:\Users\Giovanny Gerberos\Downloads\Unconfirmed 135509.crdownload
2023-12-15 18:15 - 2023-12-15 18:22 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\7DaysToDie
2023-12-15 18:15 - 2023-12-15 18:15 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\LocalLow\The Fun Pimps
2023-12-14 21:00 - 2023-12-14 21:00 - 000085836 _____ C:\Users\Giovanny Gerberos\Downloads\2
2023-12-14 20:56 - 2023-12-14 20:56 - 000084016 _____ C:\Users\Giovanny Gerberos\Downloads\S2f9c6d6a4cb54dc68997c4d2eb3f86109.webp
2023-12-14 20:48 - 2023-12-14 20:48 - 012543600 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (8).svg
2023-12-14 20:46 - 2023-12-14 20:46 - 012544222 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (7).svg
2023-12-14 20:29 - 2023-12-14 20:29 - 012542707 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (6).svg
2023-12-14 20:21 - 2023-12-14 20:21 - 000346484 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (5).svg
2023-12-14 20:18 - 2023-12-14 20:18 - 000357856 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (4).svg
2023-12-14 20:13 - 2023-12-14 20:13 - 000689303 _____ C:\Users\Giovanny Gerberos\Downloads\water.svg
2023-12-14 20:10 - 2023-12-14 20:10 - 000765198 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (3).svg
2023-12-14 20:09 - 2023-12-14 20:09 - 000781133 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (2).svg
2023-12-14 20:08 - 2023-12-14 20:08 - 000759708 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof (1).svg
2023-12-14 20:06 - 2023-12-14 20:06 - 000924481 _____ C:\Users\Giovanny Gerberos\Downloads\Water Proof.svg
2023-12-13 16:41 - 2023-12-13 16:41 - 000016707 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2023-12-13 16:38 - 2023-12-13 16:38 - 000000000 ___HD C:\$WinREAgent
2023-12-12 19:06 - 2023-12-12 19:06 - 000111432 _____ C:\Users\Giovanny Gerberos\Downloads\download.jfif
2023-12-09 13:45 - 2023-12-09 13:46 - 065812970 _____ C:\Users\Giovanny Gerberos\Downloads\Slender_v0_9_7.zip
2023-12-09 12:29 - 2023-12-09 15:08 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\Steam
2023-12-09 12:27 - 2023-12-09 12:27 - 002296488 _____ C:\Users\Giovanny Gerberos\Downloads\SteamSetup (1).exe
2023-12-09 08:26 - 2023-12-09 08:26 - 037590056 _____ (Gemfor s.r.o.) C:\Users\Giovanny Gerberos\Downloads\dslman.exe
2023-12-04 21:56 - 2023-12-04 21:56 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-12-03 09:39 - 2023-12-03 09:39 - 000016445 _____ C:\Users\Giovanny Gerberos\Desktop\download.jfif
2023-12-02 18:31 - 2023-12-07 18:06 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\New folder (2)
2023-12-02 15:42 - 2023-12-02 15:42 - 000000000 ____D C:\Users\Giovanny Gerberos\Apple
2023-12-01 17:58 - 2023-12-01 17:58 - 000000000 ____D C:\Users\Giovanny Gerberos\Desktop\New folder
2023-11-29 19:44 - 2023-11-29 19:44 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CapCut
2023-11-28 22:55 - 2023-11-28 22:55 - 000001139 _____ C:\Users\Giovanny Gerberos\Desktop\Cities Skylines II.lnk
2023-11-27 09:22 - 2023-12-27 08:33 - 000000068 ___SH C:\Windows\system32\Drivers\wmilib.winsecurity
2023-11-27 09:22 - 2023-12-27 07:55 - 000000068 ___SH C:\Windows\system32\Drivers\xboxgip.winsecurity
2023-11-27 09:21 - 2023-11-27 09:21 - 000000053 ___SH C:\Windows\system32\Drivers\WUDFRd.winsecurity
2023-11-27 09:21 - 2023-11-27 09:21 - 000000053 ___SH C:\Windows\system32\Drivers\WpdUpFltr.winsecurity

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-12-27 08:34 - 2023-04-08 08:59 - 000003752 _____ C:\Windows\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2023-12-27 08:32 - 2023-04-01 23:04 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-27 08:32 - 2023-04-01 22:28 - 000000000 ____D C:\Windows\system32\ASUSACCI
2023-12-27 08:32 - 2023-04-01 21:44 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-12-27 08:32 - 2022-09-08 04:11 - 000000000 ____D C:\Windows\SystemTemp
2023-12-27 08:05 - 2023-04-28 10:11 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-12-27 07:56 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-27 07:55 - 2023-04-12 20:24 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\CrashDumps
2023-12-27 07:55 - 2023-04-02 08:23 - 000000000 __SHD C:\Users\Giovanny Gerberos\IntelGraphicsProfiles
2023-12-27 07:55 - 2023-04-01 22:38 - 000000000 ____D C:\ProgramData\NVIDIA
2023-12-26 23:47 - 2023-04-01 21:51 - 000000000 ____D C:\Users\Giovanny Gerberos
2023-12-26 21:08 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2023-12-26 20:27 - 2023-07-31 10:27 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-26 20:02 - 2023-04-20 17:57 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\discord
2023-12-26 19:35 - 2023-04-20 17:57 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\Discord
2023-12-26 18:28 - 2023-06-07 17:06 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Word
2023-12-26 18:28 - 2023-04-01 21:53 - 000000000 ___RD C:\Users\Giovanny Gerberos\OneDrive
2023-12-26 17:51 - 2023-05-27 21:53 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\D3DSCache
2023-12-26 15:38 - 2023-04-01 21:50 - 001605602 _____ C:\Windows\system32\PerfStringBackup.INI
2023-12-26 15:38 - 2019-12-07 15:41 - 000684862 _____ C:\Windows\system32\perfh005.dat
2023-12-26 15:38 - 2019-12-07 15:41 - 000137626 _____ C:\Windows\system32\perfc005.dat
2023-12-26 15:30 - 2023-04-01 21:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-12-26 15:30 - 2022-04-22 21:52 - 000000000 ____D C:\Intel
2023-12-26 15:30 - 2021-01-01 22:08 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-26 15:30 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2023-12-26 14:59 - 2023-04-01 22:39 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\NVIDIA
2023-12-26 14:49 - 2023-04-11 18:32 - 000000000 ____D C:\Windows\Minidump
2023-12-26 14:49 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2023-12-26 14:48 - 2023-04-11 18:32 - 1564659409 _____ C:\Windows\MEMORY.DMP
2023-12-26 14:46 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-12-26 10:32 - 2023-04-01 22:38 - 000000000 ____D C:\ProgramData\Package Cache
2023-12-26 10:32 - 2023-04-01 22:26 - 000000000 ____D C:\Program Files\ASUS
2023-12-26 10:29 - 2023-04-01 22:17 - 000000000 ____D C:\ProgramData\ASUS
2023-12-26 10:26 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-26 10:26 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2023-12-25 21:26 - 2023-04-01 22:35 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\ASUS
2023-12-25 21:23 - 2023-04-01 21:52 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\Packages
2023-12-25 21:23 - 2023-04-01 21:52 - 000000000 ____D C:\ProgramData\Packages
2023-12-25 20:46 - 2023-04-01 22:59 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2023-12-25 20:42 - 2023-04-01 22:27 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\PlaceholderTileLogoFolder
2023-12-25 18:22 - 2023-08-03 08:59 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\The Real World
2023-12-23 17:45 - 2023-04-01 21:44 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-22 21:33 - 2023-04-01 21:52 - 000000000 ___SD C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Credentials
2023-12-21 17:37 - 2023-04-01 22:32 - 000002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-12-21 17:37 - 2023-04-01 22:32 - 000002323 _____ C:\Users\Public\Desktop\Brave.lnk
2023-12-18 20:27 - 2023-04-01 23:04 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-12-17 17:32 - 2023-06-08 20:21 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-12-17 17:32 - 2023-04-01 21:44 - 000561696 _____ C:\Windows\system32\FNTCACHE.DAT
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-12-17 17:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2023-12-17 17:31 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2023-12-17 10:30 - 2023-11-24 07:43 - 000000000 ____D C:\Users\Public\Documents\Steam
2023-12-16 21:51 - 2023-07-31 10:27 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Local\BitTorrentHelper
2023-12-16 20:45 - 2023-07-31 10:27 - 000001925 _____ C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2023-12-15 20:16 - 2023-06-07 17:05 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-12-15 20:16 - 2023-06-07 17:05 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-15 20:16 - 2023-04-01 22:30 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3288555297-1109179779-228674543-1001
2023-12-15 19:16 - 2023-11-09 18:54 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\EasyAntiCheat
2023-12-15 19:16 - 2023-05-05 14:31 - 000000000 ____D C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-12-15 18:14 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-12-15 18:10 - 2023-06-07 16:57 - 000000000 ____D C:\Program Files\Microsoft Office
2023-12-13 16:42 - 2019-12-07 15:44 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2023-12-13 16:42 - 2019-12-07 15:44 - 000020827 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2023-12-13 16:42 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2023-12-13 16:41 - 2023-04-01 21:47 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-12-09 21:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2023-12-08 23:01 - 2023-11-11 14:46 - 000000000 ____D C:\Program Files\Epic Games
2023-12-07 17:20 - 2023-04-01 23:04 - 000003768 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-12-07 17:20 - 2023-04-01 23:04 - 000003644 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-12-07 17:20 - 2023-04-01 22:31 - 000003572 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{52B199C0-D3B7-4594-8BE7-069B1B97154C}
2023-12-07 17:20 - 2023-04-01 22:31 - 000003448 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{7FBE6E65-6C64-4407-A0F9-FC7BC4865B1C}
2023-12-06 19:38 - 2023-04-01 21:44 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-11-29 19:44 - 2023-05-18 19:03 - 000001288 _____ C:\Users\Giovanny Gerberos\Desktop\CapCut.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-12-2023
Ran by Giovanny Gerberos (27-12-2023 08:36:30)
Running from C:\Users\Giovanny Gerberos\Downloads
Microsoft Windows 10 Home Version 22H2 19045.3803 (X64) (2023-04-01 20:48:16)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3288555297-1109179779-228674543-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3288555297-1109179779-228674543-503 - Limited - Disabled)
Giovanny Gerberos (S-1-5-21-3288555297-1109179779-228674543-1001 - Administrator - Enabled) => C:\Users\Giovanny Gerberos
Guest (S-1-5-21-3288555297-1109179779-228674543-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3288555297-1109179779-228674543-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Allplan 2024 (HKLM-x32\...\{16ee956c-0326-409a-9db6-c72a420cc108}) (Version: 24.46.50202 - ALLPLAN GmbH)
Allplan-2024-aow-Tch (HKLM\...\{092E0F8F-4886-A02D-2A55-0B080A4BB0E4}) (Version: 24.46.50202 - ALLPLAN GmbH) Hidden
Allplan-2024-etc-Tch (HKLM\...\{2157204E-8721-41BB-2B51-4B2EF6458F0E}) (Version: 24.46.50202 - ALLPLAN GmbH) Hidden
Allplan-2024-lib-Tch (HKLM\...\{673C9168-3535-2402-2917-0A212959F152}) (Version: 24.46.50202 - ALLPLAN GmbH) Hidden
Allplan-2024-pcc (HKLM\...\{D43BAD49-4D45-A07B-7B3D-3CE4F1A91F0D}) (Version: 24.46.50202 - ALLPLAN GmbH) Hidden
Allplan-2024-pea (HKLM\...\{9549C9F6-3913-A9DF-932E-ED0B7121B683}) (Version: 24.46.10343 - ALLPLAN GmbH) Hidden
Allplan-2024-prg (HKLM\...\{494235BB-D495-FDE2-C28E-FD7B23D6D803}) (Version: 24.46.50202 - ALLPLAN GmbH) Hidden
Allplan-2024-std-Tch (HKLM\...\{1EE26219-6724-D3EA-9B27-4BB04113DA06}) (Version: 24.45.55458 - ALLPLAN GmbH) Hidden
Allplan-2024-tex-Tch (HKLM\...\{69051D51-1E96-4B74-47E4-5784A38178C1}) (Version: 24.43.54328 - ALLPLAN GmbH) Hidden
ARMOURY CRATE Service (HKLM\...\{01378DC3-088F-4F55-AAFA-DC6A9CCA292A}) (Version: 5.7.9 - ASUS)
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.39 - ASUSTek COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.0.0.9 - ASUSTeK Computer Inc.)
ASUS Hotplug Controller (HKLM\...\{167A9DAC-ED7E-42CC-9A58-9E7A0C24B91F}) (Version: 2.0.0 - ASUS)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.107 - ASUSTeK Computer Inc.) Hidden
Audacity 3.3.0 (HKLM\...\Audacity_is1) (Version: 3.3.0 - Audacity Team)
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.42 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.42 - ASUS)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.07.33 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{8c7eaca7-3c49-433c-b087-eaf0abb806d9}) (Version: 3.07.33 - ASUSTeK Computer Inc.)
AutoCAD Open in Desktop (HKLM\...\{E03EC70C-079C-4B5D-86D1-75759A46ED71}) (Version: 1.0.27.0 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{8ECA94E8-BB0D-4E0C-AD18-817EA930E700}) (Version: 3.4.1 - Autodesk)
Autodesk AutoCAD 2024 - English (HKLM\...\{CC46AD7F-5075-3702-B2BF-CFCC5AB8468B}) (Version: 24.3.61.0 - Autodesk, Inc.)
Autodesk Genuine Service (HKLM\...\{E5AB199F-1837-453E-8A48-DC6366310F15}) (Version: 7.3.0.222 - Autodesk)
Autodesk Identity Manager (HKLM\...\Autodesk Identity Manager) (Version: 1.9.18.0 - Autodesk)
Autodesk Interoperability Engine Manager (HKLM\...\{412B8C29-F1BC-3791-A0BA-490A502077FA}) (Version: 1.1.0.28 - Autodesk.com) Hidden
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 120.1.61.109 - Autoři prohlížeče Brave)
CapCut (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\CapCut) (Version: 2.9.0.966 - Bytedance Pte. Ltd.)
Cities Skylines II (HKLM-x32\...\Cities Skylines II_is1) (Version: - )
CodeMeter Runtime Kit v7.50 (HKLM\...\{63B002D2-7785-4039-8B88-3C06C27747F0}) (Version: 7.50.5271.500 - WIBU-SYSTEMS AG)
CZC Halfling GK750 (HKLM-x32\...\CZC Halfling GK750) (Version: V1.02n - CZC.cz s.r.o.)
Descript 66.1.1-release.20230612.18761 (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\47d4069d-eba1-5137-bc5f-9c138f7a3859) (Version: 66.1.1-release.20230612.18761 - Descript, Inc.)
Discord (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Discord) (Version: 1.0.9012 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{B85FAA6E-A9AA-4655-9029-E1A4EDC05E1A}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{4757C19B-4CE3-418C-91D2-E15E938091FB}) (Version: 2.0.39.0 - Epic Games, Inc.)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 120.0.6099.130 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 85.0.26.0 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
House Flipper 2 (HKLM-x32\...\House Flipper 2_is1) (Version: - )
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{3DAC4F8C-80E6-4204-8A58-747FA4CBAA03}) (Version: 16.0.246 - Intel Corporation)
Java 8 Update 351 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180351F0}) (Version: 8.0.3510.10 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft .NET Host - 6.0.8 (x64) (HKLM\...\{6950FA03-8B88-4675-B685-FB21CA1762CC}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.8 (x64) (HKLM\...\{3C3CA326-3F1D-43B7-B0AD-CBC06B2DED5A}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.8 (x64) (HKLM\...\{7CEA3ABF-FE24-42AF-ADE6-B4A3EE346743}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.17029.20108 - Microsoft Corporation)
Microsoft ASP.NET Core 6.0.8 - Shared Framework (x64) (HKLM-x32\...\{1182f806-658a-4241-9202-d43e13bf2719}) (Version: 6.0.8.22363 - Microsoft Corporation)
Microsoft ASP.NET Core 6.0.8 Shared Framework (x64) (HKLM\...\{FA97D589-B37E-3B49-A8D2-4764029773FE}) (Version: 6.0.8.22363 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.91 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.91 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Teams) (Version: 1.5.00.30767 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM\...\{EB3983F9-3D60-456D-A11A-C1366C79AD3E}) (Version: 48.35.45540 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM-x32\...\{ca35acb3-b442-44fb-924c-4448120bf689}) (Version: 6.0.8.31518 - Microsoft Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Graphics Driver 496.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.49 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.92 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.1.3 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17029.20000 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17029.20068 - Microsoft Corporation) Hidden
Python 3.10.10 (64-bit) (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\{d792a453-39b9-418b-b84a-a3c081f4a96c}) (Version: 3.10.10150.0 - Python Software Foundation)
Python 3.10.10 Add to Path (64-bit) (HKLM\...\{8537571F-1A2B-4D99-8042-55ABFAA1CB75}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Core Interpreter (64-bit) (HKLM\...\{8D186605-9E75-4786-926B-A6434419C86D}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Development Libraries (64-bit) (HKLM\...\{BE74226F-199B-4DCE-AB22-4269DC9A83FC}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Documentation (64-bit) (HKLM\...\{BA63FB24-50D4-4D04-A1DD-BDB3A3098C0E}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Executables (64-bit) (HKLM\...\{81F82011-7F71-4D82-A213-9D4C704959EA}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 pip Bootstrap (64-bit) (HKLM\...\{861EF849-90A5-4F4A-BAD4-479141466551}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Standard Library (64-bit) (HKLM\...\{DCFC24EF-C987-4F08-A807-C562D5546446}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Tcl/Tk Support (64-bit) (HKLM\...\{254DC21E-9E4E-48BC-943D-6DB473D6356A}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Test Suite (64-bit) (HKLM\...\{C5A7DCFD-705B-41AC-8615-4A33DBFC5272}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python 3.10.10 Utility Scripts (64-bit) (HKLM\...\{D8E25ACB-4E67-4402-8A53-5B5DAB83FD2C}) (Version: 3.10.10150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{41E422A9-9003-495A-84C4-FFD3DC55925E}) (Version: 3.10.10150.0 - Python Software Foundation)
Roblox Player for Giovanny Gerberos (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\roblox-player) (Version: - Roblox Corporation)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.3.6.0 - ASUSTek COMPUTER INC.)
Speciální aplikace Autodesk (HKLM-x32\...\{00A2237F-C1A4-4498-8B21-24CA66D8C756}) (Version: 3.4.1 - Autodesk)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.5.0.30767 - Microsoft Corporation)
Telegram Desktop (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.8.3 - Telegram FZ-LLC)
The Real World (HKLM\...\{27698707-7A36-4FF2-BDDD-D7A1E7013819}) (Version: 2.1.104 - matrix)
The Real World (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\the_real_world) (Version: 1.9.80 - TRW)
TikTok (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\f4596a59a31356969472018d605011d3) (Version: 1.0 - BraveSoftware\Brave-Browser)
TLauncher (HKLM-x32\...\TLauncher) (Version: 2.885 - TLauncher Inc.)
Uložit do služby Autodesk Web and Mobile (HKLM\...\{AC9D2EAD-0DA0-4E0B-8672-546F5B1E6E73}) (Version: 3.0.31 - Autodesk)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
uTorrent Web (HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\utweb) (Version: 1.4.0 - Rainberry, Inc.)
WinRAR 6.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.21.0 - win.rar GmbH)

Packages:
=========
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.7.9.0_x64__qmba6cd70vzyy [2023-12-26] (ASUSTeK COMPUTER INC.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2023.11.13.0_neutral__6rarf9sa4v8jt [2023-11-21] (Disney)
HEVC Video Extensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_2.0.61933.0_x64__8wekyb3d8bbwe [2023-08-08] (Microsoft Corporation)
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5287.0_x64__8j3eq9eme6ctt [2023-12-15] (INTEL CORP) [Startup Task]
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa [2023-12-15] (Apple Inc.) [Startup Task]
Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe [2023-12-13] (Microsoft) [Startup Task]
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy [2023-11-28] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-11-23] (NVIDIA Corp.)
Photos Add-on -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2023-08-15] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-05-15] (Microsoft Corporation)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.29.256.0_x64__dt26b99r8h8gj [2023-04-01] (Realtek Semiconductor Corp)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-07] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0 [2023-12-08] (Spotify AB) [Startup Task]
Thunderbolt™ Control Center -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.37.0_x64__8j3eq9eme6ctt [2023-12-25] (INTEL CORP)
TradingView -> C:\Program Files\WindowsApps\TradingView.Desktop_2.7.1.5365_x64__n534cwy3pjxzj [2023-12-19] (TradingView, Inc.) [Startup Task]
TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2023.2.0.0_x64__v826wp6bftszj [2023-11-28] (Charles Milette) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{169B5B8E-E315-41C7-9574-66FC7E530D10}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Giovanny Gerberos\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.22272.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{8B4929F8-076F-4AEC-AFEE-8928747B7AE3}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{AA46BA8A-9825-40FD-8493-0BA3C4D5CEB5}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{AF18D91C-A699-4578-ADC6-972F3BA007F0}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3288555297-1109179779-228674543-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2024\en-US\acadficn.dll (Autodesk, Inc. -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2023-04-28] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2023-04-28] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_2792f9c5c14276e4\nvshext.dll [2021-10-30] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Giovanny Gerberos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Brave\TikTok.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\chrome_proxy.exe (Brave Software, Inc.) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc

==================== Loaded Modules (Whitelisted) =============

2023-12-25 21:20 - 2023-04-14 14:18 - 000186368 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\ac_node_addon\build\Release\ac_node_addon.node
2023-12-25 21:20 - 2023-04-14 14:18 - 000175104 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\ffi-napi\build\Release\ffi_bindings.node
2023-12-25 21:20 - 2023-04-14 14:18 - 000159744 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\ref-napi\prebuilds\win32-ia32\electron.napi.node
2023-12-25 21:20 - 2023-04-14 14:18 - 000319488 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\sharp\build\Release\sharp-win32-ia32.node
2023-12-25 21:20 - 2023-04-26 16:06 - 000541696 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\usb\prebuilds\win32-ia32\node.napi.node

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:CM_7453407cdd697230a89db0149d7eada88fef00b3fdac100c38e1de8fa2fabdca [74]
AlternateDataStreams: C:\Windows:CM_ac741491a2b5f1c13fdeabe3f5a76e4e388202d79e832f22f1ffc1310b0735dc [74]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9890]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-3288555297-1109179779-228674543-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_351\bin\ssv.dll [2023-09-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_351\bin\jp2ssv.dll [2023-09-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-04] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\sharepoint.com -> hxxps://stavlib-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Python310\Scripts\;C:\Program Files\Python310\;%INTEL_DEV_REDIST%redist\intel64_win\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\dotnet\
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\Control Panel\Desktop\\Wallpaper -> c:\users\giovanny gerberos\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\chess-real-world-tate-brothers-2249620-wallhere.com.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Autodesk Access"
HKLM\...\StartupApproved\Run: => "BraveVpnWireguardService"
HKLM\...\StartupApproved\Run32: => "Autodesk Genuine Service "
HKLM\...\StartupApproved\Run32: => "CZC Halfling GK750"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "GoogleDriveFS"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_DB9C30AC44DC92780F993C9E33BC6499"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\StartupApproved\Run: => "utweb"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2F336593-9618-42FB-BFA8-EA6395069385}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{63E4714C-479E-4BE0-9238-A0892DFFFDC4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{14F056A2-AB07-49D2-8CCC-58B705E93EED}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{230DB162-BDF6-47F2-98B2-D7FF21A121D0}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{FE6DDE71-24E1-43E9-A9B5-0864B7D2B4A3}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [UDP Query User{36EBA426-D1C7-4A82-A88C-B46E9B69BF93}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [TCP Query User{47D0BCD4-FCE0-4036-A189-40CF61C88D3A}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => No File
FirewallRules: [UDP Query User{9A560A51-5C0B-47EC-95AC-51A36188FAAF}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => No File
FirewallRules: [TCP Query User{29B680D4-ABE4-43D7-94E7-D6853F764EDC}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [UDP Query User{8AE5CA91-9706-482E-AD1B-2C6D0137CA8C}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [TCP Query User{62970A16-48DA-4207-84F7-6B97D5F73B0D}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe => No File
FirewallRules: [UDP Query User{66D36F28-9F25-4D96-B7AE-0E3362F42766}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe => No File
FirewallRules: [TCP Query User{CBBFE42C-9AA6-4C49-9A97-BEA959302B13}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe => No File
FirewallRules: [UDP Query User{E38A7B8A-482A-4CF0-AC40-B23B9229372A}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe => No File
FirewallRules: [TCP Query User{9D0BEC1D-FA2B-4BA4-A3D6-9E62D8679B87}C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe] => (Allow) C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe => No File
FirewallRules: [UDP Query User{501A8A6D-E416-4B5A-8E43-46D07F5EE20F}C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe] => (Allow) C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe => No File
FirewallRules: [{BBF78A76-5990-4A41-8046-F1C5AA310FA8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{F53C562C-EEAC-458E-865F-707DAE38DD3D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{7298B49D-EB51-45F6-A3D3-BEB748EAB906}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{13366204-14B6-4BB7-AE00-B37A53657BCC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{DE39E393-FFC7-45BE-B7ED-9C473C936A84}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{7865A4F3-2A53-4E57-95E1-3F184A4F9A02}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{B7E85F4E-8D47-47F9-9376-6F55B37CA443}] => (Block) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{35E34998-8EB8-4B3B-98ED-3054E7CB4C44}] => (Block) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{09383E32-F58E-4570-BF6C-C9EE3DDDA99F}] => (Allow) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{75C3C12E-5FEE-4E77-8690-5D1713B40598}] => (Allow) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{463BA660-A8D3-4D4B-9FD5-5A4E9758FB00}] => (Block) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{7DF80189-A620-43BD-BBB2-A2CAE127A85A}] => (Block) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{83B28621-F5FB-4C8B-8C97-F1C4ADF0A512}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.33\OverwolfBrowser.exe => No File
FirewallRules: [{64245585-879F-4038-B2BA-546F458E5A49}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.33\OverwolfBrowser.exe => No File
FirewallRules: [TCP Query User{13536A41-DB91-4A59-B563-8BD17C32D5CE}C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe] => (Allow) C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe => No File
FirewallRules: [UDP Query User{606F12C9-BEC2-4757-8497-16B1DB4E4CE5}C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe] => (Allow) C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe => No File
FirewallRules: [{D52E29E9-D234-46B6-B6C1-E217D5461F5F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F16F3BB4-ABBC-4ACA-AD19-44CC26A72F77}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D45AA7EA-7556-4479-AA15-C83AFF988AC8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{487E8796-728C-412B-9E9D-D3C082F67342}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{82A51363-C0E8-4E30-8E8F-E9C691D14CDC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DF57DE3-75D8-4BD9-9F9C-E4E302176839}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\100.0.4815.30\opera.exe => No File
FirewallRules: [TCP Query User{3138F897-8A9E-4649-8827-0C08F62D95AF}C:\users\giovanny gerberos\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [UDP Query User{9F8E58E4-5D74-4092-829C-744D449091A9}C:\users\giovanny gerberos\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [TCP Query User{76C69344-9BD8-4AFD-B9A9-BE9CBE1C62FC}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8DD47D54-78F1-4482-8364-9A3644E77389}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [TCP Query User{AC794F59-6CB1-4A8B-B1E8-DF8964D01950}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{79738054-8E9B-403F-94EE-B40EAB003F15}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{6E76D057-95E8-4A34-A049-E91F317FA5A8}C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe] => (Allow) C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe => No File
FirewallRules: [UDP Query User{107D5E9D-D146-41DB-902C-DA0D6B73061C}C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe] => (Allow) C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe => No File
FirewallRules: [{F8B0AC3F-951C-4B47-ADCF-9ED1F49F6A81}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio-gui.exe => No File
FirewallRules: [{72A77FA8-D0DC-41D5-AABC-E9BAA6A05BF1}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio-gui.exe => No File
FirewallRules: [{EC0FFAC2-FF1B-4D6E-AEBE-A58585C5C650}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio.exe => No File
FirewallRules: [{B21AB863-A5F6-4A74-B1A4-AC9FC1DE3FA1}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio.exe => No File
FirewallRules: [{DF69439F-4877-46DB-9D9B-5186993FBAA6}] => (Allow) C:\Program Files (x86)\Download Studio\QtWebEngineProcess.exe => No File
FirewallRules: [{BA3D80D0-6FED-437B-B2A9-1D38FD0B47A5}] => (Allow) C:\Program Files (x86)\Download Studio\QtWebEngineProcess.exe => No File
FirewallRules: [TCP Query User{E1B3CC87-30CF-42E9-BAB3-1AEB716693CF}C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe] => (Allow) C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe => No File
FirewallRules: [UDP Query User{5BAEC9CA-CE56-4216-B66A-1B11C9C97878}C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe] => (Allow) C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe => No File
FirewallRules: [TCP Query User{362A5FFB-1E0B-4139-BC8D-6C3BC56319B7}C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe => No File
FirewallRules: [UDP Query User{539DE22D-50E8-4D13-B709-6F8C7FBC141B}C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe => No File
FirewallRules: [TCP Query User{527507F7-6411-4FE8-963D-07C927B8FC04}C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe] => (Allow) C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe => No File
FirewallRules: [UDP Query User{D67E867D-3483-400E-8B9E-F564BF356CE1}C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe] => (Allow) C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe => No File
FirewallRules: [TCP Query User{E945A3B3-4C40-47B0-90B3-A0C1AC73FD95}C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe] => (Allow) C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe => No File
FirewallRules: [UDP Query User{CE38E2E2-1F94-4A9A-9CE9-E343D6E9B779}C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe] => (Allow) C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe => No File
FirewallRules: [{DA65403B-DB2F-40E6-A243-CF69A01EF32C}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\102.0.4880.56\opera.exe => No File
FirewallRules: [TCP Query User{D27DA708-9890-4317-BF37-3020DD181A15}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [UDP Query User{4136E35B-2EE9-43B9-80B6-0D7A78E3E115}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [{4D87ED97-DFE0-434E-BC9F-DB5EFD0EE4E6}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\104.0.4944.33\opera.exe => No File
FirewallRules: [TCP Query User{4F848C61-989A-47EE-8319-F545AF421749}C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe] => (Allow) C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe => No File
FirewallRules: [UDP Query User{C7060A75-67CF-4815-A8A2-1301393E7B33}C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe] => (Allow) C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe => No File
FirewallRules: [TCP Query User{B0B23E7E-3E40-4006-868F-3FE0394D9313}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{FC5E7201-1EF7-45CB-80D5-EE5F5F013B21}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [{AC7254A7-F539-4DAA-B9FA-E4CA7F8E11DB}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
FirewallRules: [{F9E6E5CF-4478-4E95-AD9E-D71B652CA5B6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{55A22C92-6FDD-435F-AD42-88CEF9524E7F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{26C616B9-B149-4A7E-8A14-A8BD56595531}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B982B9A9-E0A9-4F3B-94D2-B35DF0386DFB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2A2C4657-5EC0-4FB4-821A-3BDE1B4568D5}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{BD1BC434-3037-49F6-868E-599E5F3115CD}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{CCE91F63-B8D1-4A24-AC82-FF7033F916E0}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{BE44C198-2A9C-47E6-87A1-541B4F0899C6}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.32.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{AFB1020C-31AC-45E1-A1D1-EE3F81D440C6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7D891FD2-07D5-4C62-89B3-5A847DEA225A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5C65A794-68EF-4729-9AF3-73E12A5DA3E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{895FEAF6-438B-4BC5-95A9-2388F25F3D0E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F6C93931-BE2D-4BFA-BF5B-AC8846EEEAF8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F66B591C-B504-419E-9AC7-B0190E89C819}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{64095614-1639-41A8-847F-1E22D5FA51FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F589FA66-63DE-44BB-A934-A74EAE2EBDCF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EC297051-ADF8-4987-B519-46561C526AEE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A3592ACC-E070-41A0-A34C-8DD98206DCCD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{07053B02-F8F4-46E2-8531-D83CA5D9712F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe => No File
FirewallRules: [{6D1DF960-87D1-497F-8455-DF56D7755E6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe => No File
FirewallRules: [{CAF223EA-BFE7-4644-B8F9-CDBF7FE0FD59}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{72DACA7C-7FCD-43E6-B434-C26DF1347F07}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23306.3315.2560.6525_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5B11D308-35CC-4F3B-BC6D-EF8216705334}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E6C136E6-0841-45C2-A2A5-86DE8B10A513}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CEDBF682-F98C-49A2-B60C-12BC64030D6C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{22C99629-722F-47BA-B319-661CB6EB95DB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{3820FB53-CC6D-4941-BFBD-F4ADB5228A6B}C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [UDP Query User{40631006-957A-4684-8206-D7674055B3D7}C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [{A11512D5-839C-4F6C-843F-394E96589772}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{3612EA65-AB4F-4F38-93B5-DFD242BAF409}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{A3A89C32-2F9B-4313-96D8-E4BEFBAE200D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{6D645568-C9C5-4B5E-ABBB-E808575CE9FE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{EEC8B1FE-C5CC-4063-B097-8659A2ADC48E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{540BD5C4-A8E8-4010-B5E2-7AA23BAC6CA6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{65DDE1DD-7342-4090-9320-FDF226F2594A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{F862C4EC-37B2-450C-82CA-194F48899FB4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{40D71752-0DC2-4722-B125-055D2396D80C}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Roaming\uTorrent Web\utweb.exe (Rainberry Inc -> Rainberry Inc.)
FirewallRules: [{B043B882-0C20-4D3A-AFBB-3AA4703A3822}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Roaming\uTorrent Web\utweb.exe (Rainberry Inc -> Rainberry Inc.)
FirewallRules: [TCP Query User{ADD6E514-834B-4BA5-9326-3E3D1B2CD2F1}C:\program files (x86)\house flipper 2\houseflipper2.exe] => (Allow) C:\program files (x86)\house flipper 2\houseflipper2.exe () [File not signed]
FirewallRules: [UDP Query User{01B85457-8DE7-4191-BD52-D0FA0C6CCEE1}C:\program files (x86)\house flipper 2\houseflipper2.exe] => (Allow) C:\program files (x86)\house flipper 2\houseflipper2.exe () [File not signed]
FirewallRules: [{F85BAED1-0BA5-4CD1-9056-E77F486D6FFE}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{69D758A4-3956-4897-8892-62EFB7FCC5FE}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.91\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{4873E57E-20A0-4983-BCFF-661F942942FE}C:\users\giovanny gerberos\desktop\game\sonsoftheforest.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\sonsoftheforest.exe () [File not signed]
FirewallRules: [UDP Query User{00D69A3C-82BB-45F4-8429-93E91C07EF4A}C:\users\giovanny gerberos\desktop\game\sonsoftheforest.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\sonsoftheforest.exe () [File not signed]
FirewallRules: [{B48BF6B5-4A9B-4CE5-BAD4-1768C9FDBCCC}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{AB4D9204-C8A0-472D-AEB4-CCB03586C52C}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{0763C66F-0F64-4604-93B9-B6536BC867F2}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{688D357B-17D8-4208-A81E-1F85861A1D10}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [{68A45988-0894-4EC7-AE4B-0292644C88CA}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{EC327678-F3DC-4127-BE6F-A173B963055B}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{6AD715F0-4EFE-4798-A24C-06C12EB95731}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkNear\AsusLinkNear.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{059D8B75-C1FB-4B63-A253-2E7E09A501C6}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{E10A77EB-F546-4CD7-A313-85D796B3A724}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{6B1C7837-F076-493C-8376-F24523CBAE41}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
FirewallRules: [{251ECB37-0D5B-4B16-98C6-6E928B8BDBD9}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4fc38a913e0f2ea5\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​)
FirewallRules: [{B8683899-8E83-428C-AFD3-CDEF015E3EF8}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5EA0FCB6-2F25-4BA4-92B2-DCEAAF78127D}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [{CC83F5F8-5F7C-45A5-BC68-7DA66AEE0C03}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe (ASUSTeK COMPUTER INC. -> )
DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:476.33 GB) (Free:220.67 GB) (46%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/27/2023 07:55:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ArmourySocketServer.exe, version: 0.0.15.19, time stamp: 0x647ef2da
Faulting module name: ArmourySocketServer.exe, version: 0.0.15.19, time stamp: 0x647ef2da
Exception code: 0xc0000005
Fault offset: 0x00000000000d9cae
Faulting process id: 0x3478
Faulting application start time: 0x01da3891a7c4b069
Faulting application path: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Faulting module path: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Report Id: 61768880-7504-429e-a60f-bde6e8c8efd4
Faulting package full name:
Faulting package-relative application ID:

Error: (12/26/2023 06:30:29 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\Giovanny Gerberos\AppData\Local\CapCut\Apps\CapCut.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_a863d714867441db.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_60b6a03d71f818d5.manifest.

Error: (12/26/2023 06:30:02 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Users\Giovanny Gerberos\AppData\Local\CapCut\Apps\CapCut.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_a863d714867441db.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_60b6a03d71f818d5.manifest.

Error: (12/26/2023 03:31:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ArmourySocketServer.exe, version: 0.0.15.19, time stamp: 0x647ef2da
Faulting module name: ArmourySocketServer.exe, version: 0.0.15.19, time stamp: 0x647ef2da
Exception code: 0xc0000005
Fault offset: 0x00000000000d9cae
Faulting process id: 0x1314
Faulting application start time: 0x01da38082786b019
Faulting application path: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Faulting module path: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Report Id: 08721dcd-2c19-4287-8aae-c031a2a3dbcb
Faulting package full name:
Faulting package-relative application ID:

Error: (12/26/2023 03:20:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: dwm.exe, version: 10.0.19041.3636, time stamp: 0x6e55ef4a
Faulting module name: KERNELBASE.dll, version: 10.0.19041.3758, time stamp: 0xd80f8f12
Exception code: 0xc00001ad
Fault offset: 0x000000000012db22
Faulting process id: 0x3494
Faulting application start time: 0x01da3806a8c556c0
Faulting application path: C:\Windows\system32\dwm.exe
Faulting module path: C:\Windows\System32\KERNELBASE.dll
Report Id: 3d83f56e-481f-4059-8392-bdb82592f8a1
Faulting package full name:
Faulting package-relative application ID:

Error: (12/26/2023 03:20:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: dwm.exe, version: 10.0.19041.3636, time stamp: 0x6e55ef4a
Faulting module name: KERNELBASE.dll, version: 10.0.19041.3758, time stamp: 0xd80f8f12
Exception code: 0xc00001ad
Fault offset: 0x000000000012db22
Faulting process id: 0x2778
Faulting application start time: 0x01da3806a71946b9
Faulting application path: C:\Windows\system32\dwm.exe
Faulting module path: C:\Windows\System32\KERNELBASE.dll
Report Id: 96a758d1-f457-4150-a989-103b7d817f85
Faulting package full name:
Faulting package-relative application ID:

Error: (12/26/2023 03:20:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: ArmouryCrate.UserSessionHelper.exe, version: 5.7.0.0, time stamp: 0x65653d07
Faulting module name: KERNELBASE.dll, version: 10.0.19041.3758, time stamp: 0xd80f8f12
Exception code: 0xe0434352
Fault offset: 0x000000000002cf19
Faulting process id: 0x2e74
Faulting application start time: 0x01da3806a3ba46d3
Faulting application path: C:\Program Files\ASUS\ARMOURY CRATE Service\ArmouryCrate.UserSessionHelper.exe
Faulting module path: C:\Windows\System32\KERNELBASE.dll
Report Id: 776c1cd7-81c5-4679-b3b0-d386803ab67a
Faulting package full name:
Faulting package-relative application ID:

Error: (12/26/2023 03:20:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SystemSettings.exe, version: 10.0.19041.3758, time stamp: 0xbdd5eb20
Faulting module name: igd10um64xe.DLL, version: 31.0.101.3413, time stamp: 0x63000ea2
Exception code: 0xc0000005
Fault offset: 0x000000000007974c
Faulting process id: 0x2b90
Faulting application start time: 0x01da3806a6b8b0b3
Faulting application path: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Faulting module path: C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a4e86d7e8f40267a\igd10um64xe.DLL
Report Id: 0e331ea9-9f59-4682-b66d-1ff83e2e1304
Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel


System errors:
=============
Error: (12/27/2023 07:55:12 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Miniport Microsoft Wi-Fi Direct Virtual Adapter #2, {b06f3ddc-9228-4266-89c8-14b3c5053782}, had event 74

Error: (12/26/2023 06:30:44 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1UR8901)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.

Error: (12/26/2023 03:32:54 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1UR8901)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.

Error: (12/26/2023 03:31:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1UR8901)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.

Error: (12/26/2023 03:30:58 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 15:14:02 on ‎26.‎12.‎2023 was unexpected.

Error: (12/26/2023 03:29:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1UR8901)
Description: The server {5F7F3F7B-1177-4D4B-B1DB-BC6F671B8F25} did not register with DCOM within the required timeout.

Error: (12/26/2023 03:22:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Služba DPS (Diagnostic Policy Service) service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 300000 milliseconds: Restartovat službu.

Error: (12/26/2023 03:21:23 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1UR8901)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2023-12-26 22:18:10
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2023-12-25 19:59:16
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2023-12-24 19:57:14
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2023-12-23 20:59:14
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2023-12-22 19:54:28
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
Event[0]:

Date: 2023-07-28 11:22:22
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.393.1596.0
Update Source: Server Microsoft Update
Security intelligence Type: Antivirový program
Update Type: Úplné
Current Engine Version:
Previous Engine Version: 1.1.23060.1005
Error code: 0x80240438
Error description: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2023-04-02 09:23:32
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to upload a suspicious file for further analysis.
Filename: C:\Windows\System32\spool\drivers\x64\3\New\FXSUI.DLL
Sha256: 1bda96cffd3ea46ffb97e1a6b3156bd2628781c29a1530a9cfa9e67c51fee2f3
Current security intelligence Version: AV: 1.385.1815.0, AS: 1.385.1815.0
Current Engine Version: 1.1.20100.6
Error code: 0x80508016

CodeIntegrity:
===============
Date: 2023-12-27 08:36:58
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a4e86d7e8f40267a\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends International, LLC. FX506HCB.313 03/03/2023
Motherboard: ASUSTeK COMPUTER INC. FX506HCB
Processor: 11th Gen Intel(R) Core(TM) i5-11400H @ 2.70GHz
Percentage of memory in use: 69%
Total physical RAM: 7914.84 MB
Available physical RAM: 2391.81 MB
Total Virtual: 27370.84 MB
Available Virtual: 19382.06 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.33 GB) (Free:220.67 GB) (Model: NVMe INTEL SSDPEKNU512GZ) (Protected) NTFS

\\?\Volume{44178dde-df9d-4c33-84fe-737925dba6b0}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{f8c8b421-6383-4c01-9ac2-fc29033ea11a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: F312E1E9)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent (No File)
HKU\S-1-5-21-3288555297-1109179779-228674543-1001\...\Policies\Explorer: []
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {94E474FE-89FD-4C35-9307-E199A3E76FB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2023-04-01] (Google LLC -> Google LLC)
Task: {1217F40C-66E7-4028-BD7A-F6A871CA567A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2023-04-01] (Google LLC -> Google LLC)
Task: {F2F26790-9E02-4B6F-9AC1-3F0F3AD0C177} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {9960EB72-C119-426E-AC55-6D27B58223F0} - System32\Tasks\Opera scheduled Autoupdate 1688631835 => C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {04CB3B6A-9409-4A40-8B31-5FBF338A1186} - System32\Tasks\Opera scheduled Autoupdate 1695031924 => C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {79B294C9-BAE6-4911-B77E-02E67945C2CD} - System32\Tasks\Opera scheduled Autoupdate 1698410484 => C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Giovanny Gerberos\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
AlternateDataStreams: C:\Windows:CM_7453407cdd697230a89db0149d7eada88fef00b3fdac100c38e1de8fa2fabdca [74]
AlternateDataStreams: C:\Windows:CM_ac741491a2b5f1c13fdeabe3f5a76e4e388202d79e832f22f1ffc1310b0735dc [74]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9890]
FirewallRules: [TCP Query User{FE6DDE71-24E1-43E9-A9B5-0864B7D2B4A3}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [UDP Query User{36EBA426-D1C7-4A82-A88C-B46E9B69BF93}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [TCP Query User{47D0BCD4-FCE0-4036-A189-40CF61C88D3A}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => No File
FirewallRules: [UDP Query User{9A560A51-5C0B-47EC-95AC-51A36188FAAF}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => No File
FirewallRules: [TCP Query User{29B680D4-ABE4-43D7-94E7-D6853F764EDC}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [UDP Query User{8AE5CA91-9706-482E-AD1B-2C6D0137CA8C}C:\users\giovanny gerberos\desktop\game\mysummercar.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\mysummercar.exe => No File
FirewallRules: [TCP Query User{62970A16-48DA-4207-84F7-6B97D5F73B0D}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe => No File
FirewallRules: [UDP Query User{66D36F28-9F25-4D96-B7AE-0E3362F42766}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyclient.exe => No File
FirewallRules: [TCP Query User{CBBFE42C-9AA6-4C49-9A97-BEA959302B13}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe => No File
FirewallRules: [UDP Query User{E38A7B8A-482A-4CF0-AC40-B23B9229372A}C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe] => (Allow) C:\users\giovanny gerberos\desktop\colony.survival.v0.9.1.0\colonyserver.exe => No File
FirewallRules: [TCP Query User{9D0BEC1D-FA2B-4BA4-A3D6-9E62D8679B87}C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe] => (Allow) C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe => No File
FirewallRules: [UDP Query User{501A8A6D-E416-4B5A-8E43-46D07F5EE20F}C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe] => (Allow) C:\users\giovanny gerberos\desktop\turmoil.v3.0.70c.incl.all.dlc\turmoil.v3.0.70c.incl.all.dlc\turmoil.exe => No File
FirewallRules: [{BBF78A76-5990-4A41-8046-F1C5AA310FA8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{F53C562C-EEAC-458E-865F-707DAE38DD3D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{7298B49D-EB51-45F6-A3D3-BEB748EAB906}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{13366204-14B6-4BB7-AE00-B37A53657BCC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{DE39E393-FFC7-45BE-B7ED-9C473C936A84}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{7865A4F3-2A53-4E57-95E1-3F184A4F9A02}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{B7E85F4E-8D47-47F9-9376-6F55B37CA443}] => (Block) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{35E34998-8EB8-4B3B-98ED-3054E7CB4C44}] => (Block) C:\Program Files (x86)\Overwolf\0.223.0.30\OverwolfBrowser.exe => No File
FirewallRules: [{09383E32-F58E-4570-BF6C-C9EE3DDDA99F}] => (Allow) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{75C3C12E-5FEE-4E77-8690-5D1713B40598}] => (Allow) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{463BA660-A8D3-4D4B-9FD5-5A4E9758FB00}] => (Block) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{7DF80189-A620-43BD-BBB2-A2CAE127A85A}] => (Block) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe => No File
FirewallRules: [{83B28621-F5FB-4C8B-8C97-F1C4ADF0A512}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.33\OverwolfBrowser.exe => No File
FirewallRules: [{64245585-879F-4038-B2BA-546F458E5A49}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.33\OverwolfBrowser.exe => No File
FirewallRules: [TCP Query User{13536A41-DB91-4A59-B563-8BD17C32D5CE}C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe] => (Allow) C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe => No File
FirewallRules: [UDP Query User{606F12C9-BEC2-4757-8497-16B1DB4E4CE5}C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe] => (Allow) C:\users\giovanny gerberos\desktop\gold.rush.the.game.v1.5.8.15125.incl.all.dlc\goldrushthegame.exe => No File
FirewallRules: [{5DF57DE3-75D8-4BD9-9F9C-E4E302176839}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\100.0.4815.30\opera.exe => No File
FirewallRules: [TCP Query User{76C69344-9BD8-4AFD-B9A9-BE9CBE1C62FC}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8DD47D54-78F1-4482-8364-9A3644E77389}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [TCP Query User{6E76D057-95E8-4A34-A049-E91F317FA5A8}C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe] => (Allow) C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe => No File
FirewallRules: [UDP Query User{107D5E9D-D146-41DB-902C-DA0D6B73061C}C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe] => (Allow) C:\program files\epic games\bussimulator18\engine\binaries\win64\ue4editor.exe => No File
FirewallRules: [{F8B0AC3F-951C-4B47-ADCF-9ED1F49F6A81}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio-gui.exe => No File
FirewallRules: [{72A77FA8-D0DC-41D5-AABC-E9BAA6A05BF1}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio-gui.exe => No File
FirewallRules: [{EC0FFAC2-FF1B-4D6E-AEBE-A58585C5C650}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio.exe => No File
FirewallRules: [{B21AB863-A5F6-4A74-B1A4-AC9FC1DE3FA1}] => (Allow) C:\Program Files (x86)\Download Studio\dstudio.exe => No File
FirewallRules: [{DF69439F-4877-46DB-9D9B-5186993FBAA6}] => (Allow) C:\Program Files (x86)\Download Studio\QtWebEngineProcess.exe => No File
FirewallRules: [{BA3D80D0-6FED-437B-B2A9-1D38FD0B47A5}] => (Allow) C:\Program Files (x86)\Download Studio\QtWebEngineProcess.exe => No File
FirewallRules: [TCP Query User{E1B3CC87-30CF-42E9-BAB3-1AEB716693CF}C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe] => (Allow) C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe => No File
FirewallRules: [UDP Query User{5BAEC9CA-CE56-4216-B66A-1B11C9C97878}C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe] => (Allow) C:\users\giovanny gerberos\desktop\nová složka (2)\collegekings2.exe => No File
FirewallRules: [TCP Query User{362A5FFB-1E0B-4139-BC8D-6C3BC56319B7}C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe => No File
FirewallRules: [UDP Query User{539DE22D-50E8-4D13-B709-6F8C7FBC141B}C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe] => (Allow) C:\users\giovanny gerberos\desktop\game\cat goes fishing.exe => No File
FirewallRules: [TCP Query User{527507F7-6411-4FE8-963D-07C927B8FC04}C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe] => (Allow) C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe => No File
FirewallRules: [UDP Query User{D67E867D-3483-400E-8B9E-F564BF356CE1}C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe] => (Allow) C:\users\giovanny gerberos\desktop\carx.drift.racing.online.v01.02.2023\drift racing online.exe => No File
FirewallRules: [TCP Query User{E945A3B3-4C40-47B0-90B3-A0C1AC73FD95}C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe] => (Allow) C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe => No File
FirewallRules: [UDP Query User{CE38E2E2-1F94-4A9A-9CE9-E343D6E9B779}C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe] => (Allow) C:\users\giovanny gerberos\desktop\city.car.driving.v1.5.9.2\bin\win32\starter.exe => No File
FirewallRules: [{DA65403B-DB2F-40E6-A243-CF69A01EF32C}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\102.0.4880.56\opera.exe => No File
FirewallRules: [TCP Query User{D27DA708-9890-4317-BF37-3020DD181A15}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [UDP Query User{4136E35B-2EE9-43B9-80B6-0D7A78E3E115}C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\giovanny gerberos\appdata\roaming\.minecraft\runtime\java-runtime-beta\windows\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [{4D87ED97-DFE0-434E-BC9F-DB5EFD0EE4E6}] => (Allow) C:\Users\Giovanny Gerberos\AppData\Local\Programs\Opera\104.0.4944.33\opera.exe => No File
FirewallRules: [TCP Query User{4F848C61-989A-47EE-8319-F545AF421749}C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe] => (Allow) C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe => No File
FirewallRules: [UDP Query User{C7060A75-67CF-4815-A8A2-1301393E7B33}C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe] => (Allow) C:\users\giovanny gerberos\desktop\mods\streamer.life.simulator.v1.2.5\streamer life simulator.exe => No File
FirewallRules: [TCP Query User{B0B23E7E-3E40-4006-868F-3FE0394D9313}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{FC5E7201-1EF7-45CB-80D5-EE5F5F013B21}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [{07053B02-F8F4-46E2-8531-D83CA5D9712F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe => No File
FirewallRules: [{6D1DF960-87D1-497F-8455-DF56D7755E6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe => No File
FirewallRules: [TCP Query User{3820FB53-CC6D-4941-BFBD-F4ADB5228A6B}C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [UDP Query User{40631006-957A-4684-8206-D7674055B3D7}C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\7 days to die\7daystodie.exe => No File

EmptyTemp:
End

Uložte do C:\Users\Giovanny Gerberos\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.