Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-11-2024
Ran by janre (administrator) on JAN (ASUS System Product Name) (30-11-2024 17:46:22)
Running from C:\Users\janre\Downloads\FRST64.exe
Loaded Profiles: janre
Platform: Microsoft Windows 11 Home Version 23H2 22631.4541 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <5>
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <35>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24102.48.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2445.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\XboxGameBarSpotify.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <5>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2411.1001.6.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.200.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\Run: [MicrosoftEdgeAutoLaunch_9EF73F2FBAD8ACE29F54155595A3D524] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911232 2024-11-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2130704 2024-11-30] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36770792 2024-09-27] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4412512 2024-11-12] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\Run: [Discord] => C:\Users\janre\AppData\Local\Discord\Update.exe [1525016 2023-07-31] (Discord Inc. -> GitHub)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.86\Installer\chrmstp.exe [2024-11-22] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {876B1A9A-184F-4D50-A340-CB27ECE00D62} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {8C4CD4AF-15EC-4181-975E-EF92DB66C168} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [309608 2022-10-17] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {77223CFB-D8F0-4E20-B86E-0F8E7B3B7752} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1859944 2022-10-17] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {E5CEAB15-9AF8-4D99-A510-2C7A5CAA7F07} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d9071cea084a61 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-12-03] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {44A3756A-A815-43F2-A0FD-6A940A193CCF} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-12-03] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {82DC3092-A5B2-4843-BD66-148E513749CA} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [44888504 2022-11-04] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {FC40B708-BAB2-459D-AF68-9053138D853C} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1254760 2022-09-29] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {343F24E2-ED0A-4C38-9322-CFC9BB9ED52B} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {04F4F83D-E032-475B-9DDC-FC36D9F97D34} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{C400EFB7-4D58-4C85-986E-4CAB60E0D16F} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {21A01DB2-57A0-49DC-88AF-BE3CC4EBB349} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{73EB24F5-448E-4F27-A6A3-97EFC37CB72A} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {2E6FBAC3-EC19-4397-A022-CA75FFBB3548} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EF4EAB48-7F72-41C0-8864-1D62005CF824} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AD7ADC8F-3C43-43AF-82C1-44DA734A117D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6C148818-6329-4F97-9312-EBD253558508} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7335EDA5-F4B6-4EC3-8DEA-8F4FFC671A0D} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [677448 2024-11-05] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {FAB9C728-FDBA-42A1-B562-C82AEED3C8E1} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-759868717-416623263-2303856058-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [677448 2024-11-05] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {2754028B-B0AC-42C4-B0CC-6C439C0D1416} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-11-05] (Mozilla Corporation -> Mozilla Foundation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{587b0221-745c-4a47-9bad-8d2e34dac3f6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{587b0221-745c-4a47-9bad-8d2e34dac3f6}: [DhcpDomain] home
Edge:
=======
Edge Profile: C:\Users\janre\AppData\Local\Microsoft\Edge\User Data\Default [2024-11-06]
Edge Extension: (Dokumenty Google offline) - C:\Users\janre\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-06]
Edge Extension: (Edge relevant text changes) - C:\Users\janre\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-04]
FireFox:
========
FF DefaultProfile: klldm2a7.default
FF ProfilePath: C:\Users\janre\AppData\Roaming\Mozilla\Firefox\Profiles\klldm2a7.default [2022-12-05]
FF ProfilePath: C:\Users\janre\AppData\Roaming\Mozilla\Firefox\Profiles\vdrkzri3.default-release [2024-11-09]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-11-13] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\janre\AppData\Local\Google\Chrome\User Data\Default [2022-12-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-03]
CHR Profile: C:\Users\janre\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-11]
CHR Profile: C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-11-30]
CHR HomePage: Profile 1 -> hxxp://www.google.com/
CHR Extension: (Překladač Google) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-09-26]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-10-26]
CHR Extension: (D-Link Network Assistant) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eoenegoacckkpkijhfhijfechhhpkbmp [2022-12-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-06]
CHR Extension: (Vysor) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gidgenkbbabolejbgbpnhbimgjbffefm [2022-12-03]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-11-30]
CHR Extension: (Helium Backup) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl [2022-12-03]
CHR Extension: (Website Blocker (Beta)) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hclgegipaehbigmbhdpfapmjadbaldib [2022-12-03]
CHR Extension: (Pixlr Editor) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2022-12-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-03]
CHR Profile: C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-11-30]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-11-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-04]
CHR Profile: C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-11-30]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-11-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-06]
CHR Profile: C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 4 [2024-02-29]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-02-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janre\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-29]
CHR Profile: C:\Users\janre\AppData\Local\Google\Chrome\User Data\System Profile [2024-11-30]
CHR HKU\S-1-5-21-759868717-416623263-2303856058-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [394864 2022-09-27] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe [468504 2022-09-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-12-03] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [558104 2022-05-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-09-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-12-03] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [842128 2024-11-26] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18663720 2024-10-20] (BattlEye Innovations e.K. -> )
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-12-03] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2024-07-10] (EasyAntiCheat Oy -> Epic Games, Inc.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
S4 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4799336 2023-09-13] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [7499752 2024-10-27] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S4 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16971576 2023-03-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [49256 2022-08-15] (ASUSTeK COMPUTER INC. -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2022-09-25] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2022-09-25] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32320 2022-12-03] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [54752 2023-03-31] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18496 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22104 2024-11-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [606624 2024-11-01] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105888 2024-11-01] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz154; \??\C:\Windows\temp\cpuz154\cpuz154_x64.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-11-30 17:46 - 2024-11-30 17:46 - 002402816 _____ (Farbar) C:\Users\janre\Downloads\FRST64 (1).exe
2024-11-30 17:46 - 2024-11-30 17:46 - 000024046 _____ C:\Users\janre\Downloads\FRST.txt
2024-11-30 17:46 - 2024-11-30 17:46 - 000000000 ____D C:\FRST
2024-11-30 17:45 - 2024-11-30 17:45 - 002402816 _____ (Farbar) C:\Users\janre\Downloads\FRST64.exe
2024-11-30 16:08 - 2024-11-30 16:09 - 091418282 _____ (Aslain ) C:\Users\janre\Downloads\Aslains_WoT_Modpack_Installer_v.1.27.0.0_05.exe
2024-11-26 19:32 - 2024-11-26 19:32 - 000725758 _____ C:\Windows\system32\perfh005.dat
2024-11-26 19:32 - 2024-11-26 19:32 - 000151026 _____ C:\Windows\system32\perfc005.dat
2024-11-17 20:12 - 2024-11-17 20:12 - 000116025 _____ C:\Users\janre\Downloads\Potvrzení_o_době_vedení_v_evidenci.pdf
2024-11-16 16:57 - 2024-11-16 16:57 - 091702929 _____ (Aslain ) C:\Users\janre\Downloads\Aslains_WoT_Modpack_Installer_v.1.26.1.1_13.exe
2024-11-16 16:53 - 2024-11-16 16:53 - 010336128 _____ (Google LLC) C:\Users\janre\Downloads\ChromeSetup.exe
2024-11-06 19:27 - 2024-11-06 19:27 - 000026650 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-11-06 19:24 - 2024-11-06 19:24 - 000026650 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-11-06 19:10 - 2024-11-06 19:10 - 000164918 _____ C:\Users\janre\Downloads\Pracovní_smlouva_Relichová_Romana_Nemocnice_Milosrdných_sester.PDF
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-11-30 17:38 - 2022-11-30 20:04 - 000000000 ____D C:\World_of_Tanks_EU
2024-11-30 17:38 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-11-30 16:11 - 2023-12-02 15:42 - 000000990 _____ C:\Users\janre\Desktop\Aslain's WoT Modpack Installer.lnk
2024-11-30 16:11 - 2023-12-02 15:42 - 000000791 _____ C:\Users\janre\Desktop\Aslains WoT Logs Archiver.lnk
2024-11-30 16:09 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-11-30 16:09 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\AppReadiness
2024-11-30 14:04 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemTemp
2024-11-30 13:41 - 2023-01-17 21:34 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-11-30 13:41 - 2022-12-03 21:16 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-11-30 13:40 - 2022-12-03 14:41 - 000000000 ____D C:\Program Files\ASUS
2024-11-27 15:22 - 2022-12-03 14:34 - 000000000 ____D C:\ProgramData\NVIDIA
2024-11-27 14:55 - 2024-07-02 10:23 - 000000000 ____D C:\Users\janre\Documents\Euro Truck Simulator 2
2024-11-27 14:55 - 2022-12-05 06:09 - 000000000 ____D C:\Program Files (x86)\Steam
2024-11-27 12:19 - 2022-12-03 14:33 - 000000000 ____D C:\Users\janre\AppData\Local\D3DSCache
2024-11-27 00:36 - 2022-12-03 23:08 - 000000000 ____D C:\Users\janre\AppData\Roaming\discord
2024-11-26 23:47 - 2023-08-23 19:24 - 000000000 ____D C:\Users\janre\AppData\Local\Discord
2024-11-26 21:45 - 2023-08-23 19:24 - 000002243 _____ C:\Users\janre\Desktop\Discord.lnk
2024-11-26 20:33 - 2022-05-07 06:22 - 000000000 ____D C:\Windows\INF
2024-11-26 19:32 - 2022-12-03 14:25 - 001718036 _____ C:\Windows\system32\PerfStringBackup.INI
2024-11-26 19:28 - 2022-12-03 21:16 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-11-26 19:27 - 2022-12-03 21:16 - 000880672 _____ C:\Windows\system32\wpbbin.exe
2024-11-26 19:27 - 2022-12-03 21:16 - 000842128 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-11-26 19:27 - 2022-12-03 21:16 - 000012288 ___SH C:\DumpStack.log.tmp
2024-11-26 19:27 - 2022-12-03 21:16 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-11-26 15:17 - 2022-05-07 06:17 - 000524288 _____ C:\Windows\system32\config\BBI
2024-11-26 15:16 - 2022-12-03 21:16 - 000360000 _____ C:\Windows\system32\FNTCACHE.DAT
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\system32\UNP
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\PrintDialog
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemResources
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\setup
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\oobe
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\HealthAttestationClient
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Dism
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\appraiser
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellExperiences
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellComponents
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\bcastdvr
2024-11-26 15:13 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-11-26 13:06 - 2022-05-07 06:17 - 000000000 ____D C:\Windows\CbsTemp
2024-11-26 12:54 - 2022-12-03 14:21 - 003212800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-11-26 12:29 - 2022-12-03 14:34 - 000003584 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-759868717-416623263-2303856058-1001
2024-11-26 12:29 - 2022-12-03 14:34 - 000003352 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-759868717-416623263-2303856058-1001
2024-11-26 12:29 - 2022-12-03 14:34 - 000002377 _____ C:\Users\janre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-11-26 12:23 - 2022-12-03 21:16 - 000000000 ____D C:\ProgramData\ASUS
2024-11-24 17:56 - 2024-07-10 20:22 - 000000000 ____D C:\Users\janre\AppData\Local\Athena
2024-11-24 17:55 - 2022-12-03 22:33 - 000000000 ____D C:\Users\janre\AppData\Roaming\EasyAntiCheat
2024-11-24 17:55 - 2022-12-03 14:40 - 000000000 ____D C:\ProgramData\Package Cache
2024-11-24 16:46 - 2022-12-03 21:16 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-24 16:46 - 2022-12-03 21:16 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-11-23 19:42 - 2024-07-02 13:05 - 000000000 ____D C:\Users\janre\AppData\Roaming\paradox-launcher-v2
2024-11-22 22:21 - 2023-10-15 20:50 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-11-22 22:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-11-22 16:36 - 2022-12-03 18:31 - 000000000 ____D C:\Users\janre\AppData\Local\EpicGamesLauncher
2024-11-22 10:05 - 2022-12-03 14:51 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-11-21 17:44 - 2022-12-03 15:27 - 000000000 ____D C:\Windows\system32\MRT
2024-11-21 17:43 - 2022-12-03 15:27 - 202035632 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-11-16 16:58 - 2022-12-03 14:33 - 000000000 ____D C:\Users\janre\AppData\Local\Packages
2024-11-16 16:51 - 2023-11-06 18:59 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-11-16 16:51 - 2023-11-06 18:59 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-11-16 16:51 - 2023-11-06 18:59 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-11-12 18:33 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\LiveKernelReports
2024-11-09 15:53 - 2022-12-05 21:08 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-11-06 20:07 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\DiagTrack
2024-11-06 20:07 - 2022-05-07 06:17 - 000000000 ____D C:\Windows\servicing
2024-11-05 20:11 - 2022-12-03 18:42 - 000000000 ____D C:\Program Files\Epic Games
2024-11-05 19:03 - 2024-07-08 10:17 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-11-05 19:03 - 2022-12-05 21:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-11-05 12:53 - 2022-12-05 21:08 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-11-05 12:53 - 2022-12-05 21:08 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-11-05 10:13 - 2023-04-24 18:02 - 000000000 ____D C:\Program Files\TeamViewer
2024-11-01 23:40 - 2022-12-03 21:16 - 000000000 ____D C:\Windows\system32\Drivers\wd
==================== Files in the root of some directories ========
2023-03-28 05:57 - 2023-03-28 05:57 - 000000048 ____H () C:\Program Files (x86)\n5b2z7k4qy.dat
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Ran by janre (30-11-2024 17:47:25)
Running from C:\Users\janre\Downloads
Microsoft Windows 11 Home Version 23H2 22631.4541 (X64) (2022-12-03 13:21:26)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-759868717-416623263-2303856058-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-759868717-416623263-2303856058-503 - Limited - Disabled)
Guest (S-1-5-21-759868717-416623263-2303856058-501 - Limited - Disabled)
janre (S-1-5-21-759868717-416623263-2303856058-1001 - Administrator - Enabled) => C:\Users\janre
WDAGUtilityAccount (S-1-5-21-759868717-416623263-2303856058-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.004.20272 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AnyMP4 Video Converter Ultimate 8.5.68 (HKLM-x32\...\{B77ACAAE-53EE-43c3-86F1-4AEA52F6CDD5}_is1) (Version: 8.5.68 - AnyMP4 Studio)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.3.3 - ASUS)
Aslain's WoT Modpack verze 1.27.0.0.05 (HKLM-x32\...\Aslains_WoT_Modpack_Installer_is1) (Version: 1.27.0.0.05 - Aslain)
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.1.50.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{6aabd550-b97f-4b87-8c12-fb271d7c8047}) (Version: 1.1.50.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{4e2b05b0-eb08-41e5-9eb3-cdcc43d6bee0}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.3.7.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{98ff4518-0cc2-45ec-8152-eeba51c7881a}) (Version: 1.3.7.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.39 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{7a0d5159-cb5e-4f66-91f8-bab46f864f14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 3.1.2.4 - ASUSTeK Computer Inc.)
ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 3.03.04 - ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.117 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{6FB66775-BB93-4D0A-9871-4CC9B2E87BF3}) (Version: 1.1.23 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{179f415f-2ff3-4db1-bcc1-d5730f746db8}) (Version: 1.1.23 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.24 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.24 - ASUS)
AURA Service (HKLM-x32\...\{0fcadbd2-1a6a-4a4a-a56d-fc7163d9b3fa}) (Version: 3.07.25 - ASUSTeK Computer Inc.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.07.25 - ASUSTeK Computer Inc.) Hidden
Discord (HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\Discord) (Version: 1.0.9016 - Discord Inc.)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.40.3 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{7f329536-2468-4b20-88dc-5e2defcd5ff3}) (Version: 1.1.40.3 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.12 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{97f3a665-a91b-4def-91e2-97fec9f22bfa}) (Version: 1.0.9.12 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{20235E2B-1E9F-473D-A215-B2467F1F06E3}) (Version: 1.3.51.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.86 - Google LLC)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.3351.0 - Rockstar Games)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.16 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{39014df0-ccd5-4c61-8e9d-836af9ef56fd}) (Version: 1.1.16 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.70 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.70 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\OneDriveSetup.exe) (Version: 24.216.1027.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 128.0 (x64 cs)) (Version: 128.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 107.0.1 - Mozilla)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
OpenOffice 4.1.14 (HKLM-x32\...\{008F8E2D-711C-4922-8FCF-0C33BC081F7D}) (Version: 4.114.9811 - Apache Software Foundation)
Paradox Launcher v2 (HKLM\...\{E68BBC18-9E69-436B-B20F-E294DE62ECAB}) (Version: 2.3.0 - Paradox Interactive)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.5 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{31850f16-ce9f-4dec-81ca-222c617a9115}) (Version: 1.0.9.5 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.2 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{959e5696-0edd-4896-b1d8-54aaa725f770}) (Version: 1.1.0.2 - Patriot Memory) Hidden
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.97.2200 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.7.8 - Rockstar Games)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.1.5.0 - ASUSTek COMPUTER INC.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.40.8 - TeamViewer)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.50 - Ghisler Software GmbH)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.4 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{c8b4688a-f5d4-4236-aec4-df260a88ccc4}) (Version: 1.0.0.4 - PD) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Wargaming.net Game Center (HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\Wargaming.net Game Center) (Version: 24.7.0.7569 - Wargaming.net)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
World of Tanks EU (HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\454072828) (Version: - Wargaming.net)
World_of_Warplanes (HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\2660180175) (Version: - Wargaming.net)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-17] ()
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.9.9.0_x64__qmba6cd70vzyy [2024-09-28] (ASUSTeK COMPUTER INC.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2024.3.211.0_neutral__6rarf9sa4v8jt [2024-10-19] (Disney)
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-16] (Microsoft Corp.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-27] (NVIDIA Corp.)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0 [2024-11-21] (Spotify AB) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2445.7.0_x64__cv1g1gvanyjgm [2024-11-22] (WhatsApp Inc.) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.311.2039.0_x64__8wekyb3d8bbwe [2024-11-21] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.318.2304.0_x64__8wekyb3d8bbwe [2024-11-21] (Microsoft Corp.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-759868717-416623263-2303856058-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-759868717-416623263-2303856058-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvshext.dll [2024-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\janre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\D-Link Network Assistant.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=eoenegoacckkpkijhfhijfechhhpkbmp
ShortcutWithArgument: C:\Users\janre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Helium Backup.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=gpglbgbpeobllokpmeagpoagjbfknanl
ShortcutWithArgument: C:\Users\janre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Vysor.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=gidgenkbbabolejbgbpnhbimgjbffefm
ShortcutWithArgument: C:\Users\janre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Jan - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\janre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Jan - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\janre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Magic_ - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"
==================== Loaded Modules (Whitelisted) =============
2022-12-03 14:41 - 2022-09-01 09:47 - 000522240 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ac_node_addon\prebuilds\win32-ia32\node.napi.node
2022-12-03 14:41 - 2022-09-01 09:47 - 000520192 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2022-12-03 14:41 - 2022-09-01 09:47 - 000483328 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\node-system-fonts\build\Release\system-fonts.node
2022-12-03 14:41 - 2022-09-01 09:47 - 000510464 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2022-12-03 14:41 - 2022-09-27 14:56 - 000319488 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\sharp\prebuilds\win32-ia32\node.napi.node
2022-12-03 14:41 - 2022-09-01 09:47 - 000786432 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\usb-detection\prebuilds\win32-ia32\node.napi.node
2022-12-03 14:41 - 2022-06-08 10:33 - 000081920 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [3020]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2022-05-07 06:24 - 2022-05-07 06:22 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-759868717-416623263-2303856058-1001\Control Panel\Desktop\\Wallpaper -> G:\Dovolená 2021\Rumunsko\IMG_6201.JPG
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek Gaming 2.5GbE Family Controller -> rtcx21x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: asus => 2
MSCONFIG\Services: asusm => 3
MSCONFIG\Services: AsusUpdateCheck => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: EasyAntiCheat_EOS => 3
MSCONFIG\Services: EpicOnlineServices => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: GoogleUpdaterInternalService128.0.6597.0 => 2
MSCONFIG\Services: GoogleUpdaterService128.0.6597.0 => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: LightingService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2
MSCONFIG\Services: Rockstar Service => 3
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: TeamViewer => 2
HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_9EF73F2FBAD8ACE29F54155595A3D524"
HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-759868717-416623263-2303856058-1001\...\StartupApproved\Run: => "Discord"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{CF0EDF03-1329-4CB0-BE90-234B1F14944E}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{C57D8BB4-0A1C-420D-9BA3-0AE63E8B7FB7}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{F6392FCA-8F8B-49C4-B3F7-0C3E6EE51680}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{A3328840-C163-4424-B02C-4DA4939E4DB3}] => (Allow) C:\Users\janre\AppData\Local\Packages\B9ECED6F.ArmouryCrate_qmba6cd70vzyy\LocalState\GridUpdateFile\ASUSGCDriverUpdateClient.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [TCP Query User{8AAFA675-CAC3-46B8-8408-5124494CCEFC}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{386149E3-C332-4749-89D1-967B318C6524}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [TCP Query User{5FB73129-88A3-47D0-B8E1-11E588181CCB}C:\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [UDP Query User{E7D59ADA-47A9-49F6-AD15-CEF69C175AE7}C:\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [TCP Query User{EBE9B08B-7948-4777-B0FE-5FA889E43CC1}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{BB3A65DB-7945-4EE4-A598-CFFD75B7B585}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{1A0652B4-573D-4DE7-A772-0BC7FA98DA6D}C:\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{824EFCD7-AD2F-4A7B-8EB8-FF33010A66FD}C:\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [TCP Query User{DBA8DA11-3390-4759-903E-C8644CB46CAA}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [UDP Query User{4136EA80-F3CB-4D14-850F-F79F439E94D5}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [{F39A9CD2-7F96-4EA1-9619-80C4DAD78E6A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D4ECA71F-42FD-4C92-9A71-4B661BF78FC8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A158E9EC-8000-4E0D-B526-C8DFA0F04228}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1794F8AF-0D52-4A4B-9070-CD6C6C39A488}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1E1FA995-298F-4DB9-BD3D-AFFAFE9CA18E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{778DA6C5-6696-4B3F-A46F-86D079D5901A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [TCP Query User{612FB98B-D70F-42BA-A55D-AAE63A9D4DAF}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{6F15CF77-ACEC-4C69-80CD-54F60725A351}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{5C54CAF8-BFFB-4652-8124-0E4DA15B84FE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DEF980DD-0649-4425-B92A-F948BF5D9193}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{44A05E1D-F4BD-4D37-9DC0-DBF8031B7451}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{08181338-B5D7-4365-BC90-543BB4CB8452}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{926DF763-A168-489C-A0C0-A785804A9F64}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{0583C59D-8937-4F8E-A0B9-160212340FB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{071EE2D7-4846-454E-980B-957F0A6369E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe (Activision Publishing Inc -> )
FirewallRules: [{87A10D61-AF3F-4096-9024-790663AD15B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe (Activision Publishing Inc -> )
FirewallRules: [{E9375B0A-E0EC-4D7D-947D-E79291722862}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
FirewallRules: [{C2ECEA0F-5709-4E16-9B88-4B290071A9B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
FirewallRules: [{98747877-7438-46D3-A1B8-77F821E2CDBD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Return to Castle Wolfenstein\WolfSP.exe () [File not signed]
FirewallRules: [{68257A1C-3E48-4B49-ABCF-32323034897B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Return to Castle Wolfenstein\WolfSP.exe () [File not signed]
FirewallRules: [{9A6A0905-144D-4EBF-ADEF-36D91F95AC87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Return to Castle Wolfenstein\WolfMP.exe () [File not signed]
FirewallRules: [{2B6C0B2E-FDAD-4D03-869E-2EC8605F86C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Return to Castle Wolfenstein\WolfMP.exe () [File not signed]
FirewallRules: [{0C7AC200-A481-4683-BC7A-72D180E604C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Quake 2\quake2.exe () [File not signed]
FirewallRules: [{B07603A9-36D8-403F-B239-4F2FAB42EF39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Quake 2\quake2.exe () [File not signed]
FirewallRules: [{870DBD23-0C96-4A03-98A0-2717058F64E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crysis Remastered\Bin64\CrysisRemastered.exe (Crytek GmbH) [File not signed]
FirewallRules: [{047D3D5B-A94C-49EB-BBC7-A5D9292246E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crysis Remastered\Bin64\CrysisRemastered.exe (Crytek GmbH) [File not signed]
FirewallRules: [{34C1C1A0-0A09-4DED-BF5A-7B24AC1496CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crysis2Remastered\Bin64\Crysis2Remastered.exe (Crytek GmbH) [File not signed]
FirewallRules: [{66F6238A-3A33-4CFE-BF88-C7982EBC5954}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crysis2Remastered\Bin64\Crysis2Remastered.exe (Crytek GmbH) [File not signed]
FirewallRules: [{F8215F8B-8D51-4935-A77B-1F0EC896422A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crysis3Remastered\Bin64\Crysis3Remastered.exe (Crytek GmbH) [File not signed]
FirewallRules: [{9CFD040B-E149-4933-9025-2A0FF4E8AE05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crysis3Remastered\Bin64\Crysis3Remastered.exe (Crytek GmbH) [File not signed]
FirewallRules: [TCP Query User{6985A54E-73C9-4F04-8586-1A86D7F9543E}C:\gta v\grand theft auto v\gta5.exe] => (Allow) C:\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{6F5EA04C-81D8-4E3C-821C-B724FB875208}C:\gta v\grand theft auto v\gta5.exe] => (Allow) C:\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{36D1BABE-05D7-4A9B-B641-33AF1C871ECB}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A258E89A-3905-43F1-A54D-409EB6B4308D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BCC88EC2-C673-4861-9689-44E77731AD09}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{88186799-ED72-4AE7-BBEB-024B6B0255D5}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BB7FBBDA-8B04-4D92-802C-086ABA4261CB}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{B8643D5B-8E60-4FF1-9621-A85EEEBB8BDD}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{1E4A9FDA-3462-40CD-A16B-5CBB53DC8E8A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [File not signed]
FirewallRules: [{AA586518-7C9B-4101-BCE2-B7D1A4FEFD91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [File not signed]
FirewallRules: [{9A90A110-6E92-490D-B23D-A32F33123F89}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [File not signed]
FirewallRules: [{0D1F0611-6060-422B-B822-F06D7D0F6B64}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [File not signed]
FirewallRules: [{602F0028-BD9C-4EFD-BC42-2AD1416F88A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe () [File not signed]
FirewallRules: [{6F231F26-6CAC-44F1-9E2B-D9C60B573F67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe () [File not signed]
FirewallRules: [{B04BE8B3-0D3C-42F6-B3DF-128C930BD8E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SubnauticaZero\SubnauticaZero.exe () [File not signed]
FirewallRules: [{5F4F4B3F-5636-4410-A965-283F48876BE9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SubnauticaZero\SubnauticaZero.exe () [File not signed]
FirewallRules: [{E34E3324-851A-4F8A-8F79-818227467BE1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6F120D1C-F439-4357-B1F4-D7D58998C753}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6F92572F-A8CA-456E-A2F1-5E0E9041B86A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
FirewallRules: [{7F4F6CCA-B317-4944-963C-8479D6B375FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
FirewallRules: [{C994F5DE-9688-4E00-8634-0E2235DF8FA7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{51FA4667-5454-4375-A9AA-E33E51F55119}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Launcher\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{DA2CE8AA-1270-48CF-A025-61DAFFDEE3A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect64.exe () [File not signed]
FirewallRules: [{A0E1C45D-10D9-46B3-9895-CD0B62F45E49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect64.exe () [File not signed]
FirewallRules: [{4705198E-C6D7-4649-94B3-218E044710CB}] => (Allow) G:\SteamLibrary\steamapps\common\Sea of Thieves\SeaOfThieves.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{56B14AAA-5DD0-49CC-A4AE-A213AECC2F2F}] => (Allow) G:\SteamLibrary\steamapps\common\Sea of Thieves\SeaOfThieves.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{DC8298F0-3D5B-40C9-A114-A4B16CD9F180}] => (Allow) G:\SteamLibrary\steamapps\common\Sea of Thieves\Athena\Binaries\Win64\SoTGame.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6FAD754C-D0F9-441B-94C8-BB42D841AD49}] => (Allow) G:\SteamLibrary\steamapps\common\Sea of Thieves\Athena\Binaries\Win64\SoTGame.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1B4E7F9F-A84B-4704-8631-DA22ADE52901}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24306.1803.3254.798_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BB5EACBA-A5A5-4BF4-B6AD-EB46008541DE}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24306.1803.3254.798_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{36A9B6DB-DCFD-460E-AE59-B97603639628}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{AD671FE9-9162-4657-9320-0EE0DB93B66D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0FDB5D6B-98A5-4DFA-B3D2-FEFAD09516DC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{67A13D4C-06E8-4CD4-89BD-EFC3E72F18FA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BA21D4B3-745B-43EA-816B-F267B96726EA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BE7C2B10-9AF4-4885-99DE-550553A5C138}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F12FAE92-ABF8-4C7E-8DE4-FC8F29ECB052}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{AC8E2023-548F-4A48-996C-3F3B70F49F25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4BE954D2-442B-450E-9C4E-55AB0A631108}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1C35F7D1-92F5-4A7E-8F26-C87D2CF65809}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{46B9DE19-EC9B-4B54-870B-60A9E6A552B4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{8DF42AC1-1A77-4578-99BE-E39E4C2F8462}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
30-11-2024 15:25:56 Windows Update
30-11-2024 15:25:56 Windows Update
30-11-2024 15:25:56 Windows Update
30-11-2024 15:26:15 Windows Update
==================== Faulty Device Manager Devices ============
Name: Síťový adaptér
Description: Síťový adaptér
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Generic Bluetooth Adapter
Description: Generic Bluetooth Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: GenericAdapter
Service: BTHUSB
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Event log errors: ========================
Application errors:
==================
Error: (11/26/2024 07:28:01 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\JAN$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Nov 2024 18:27:58 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 3700f23a-efef-4d44-be91-90896f13079d
Metoda: GET(282ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/26/2024 07:28:01 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Nov 2024 18:27:57 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 9fa52578-3604-4846-81ce-088fbac5178b
Metoda: GET(313ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/26/2024 03:17:00 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\JAN$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Nov 2024 14:16:57 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 1db3dba5-02c9-45bf-be12-7c0041c0ebd0
Metoda: GET(281ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/26/2024 03:17:00 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Nov 2024 14:16:57 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 483f4de7-7bf6-4a29-8553-c4e55b749054
Metoda: GET(313ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/26/2024 12:24:05 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\JAN$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Nov 2024 11:24:02 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: f162beb0-a11b-4b48-9509-6fd15d1a6967
Metoda: GET(266ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/26/2024 12:24:04 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Nov 2024 11:24:01 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: df167aa7-d481-4285-abe3-2c45366d25d4
Metoda: GET(312ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/25/2024 10:30:13 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\JAN$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 25 Nov 2024 09:30:11 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 866135b7-6f1e-4b69-b17f-422b545c7840
Metoda: GET(266ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/25/2024 10:30:13 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 25 Nov 2024 09:30:10 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: fc1e4002-1d31-404c-8aef-c6a46f6548a9
Metoda: GET(313ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
System errors:
=============
Error: (11/30/2024 03:27:43 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9PC1H9VN18CM-Microsoft.StartExperiencesApp.
Error: (11/30/2024 02:12:46 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (11/27/2024 03:02:19 PM) (Source: nvlddmkm) (EventID: 153) (User: )
Description: Event-ID 153
Error: (11/27/2024 03:01:57 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ArmouryCrateService bylo dosaženo časového limitu (30000 ms).
Error: (11/27/2024 11:30:51 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (11/26/2024 07:34:42 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (11/26/2024 07:29:57 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (11/26/2024 07:27:59 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.
Windows Defender:
================
Date: 2024-11-30 14:04:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {96B7B7CC-C21C-403F-848B-E51F4A6FF94E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-11-22 14:12:33
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {09216CBE-CACA-460C-9BFC-327394F6B871}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-11-21 18:42:37
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4923E038-3F1B-4B7D-AC9B-3E9A96314FA3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-11-12 19:18:15
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {11C14DB0-29AF-44E6-865B-1A4C2B1CA24E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-11-09 16:40:34
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C320EE2D-4F81-4DA8-AD96-4DFA55F3AF9F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]
Date: 2024-10-26 13:53:21
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.419.605.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24080.9
Kód chyby: 0x80080005
Popis chyby: Provádění serveru selhalo
Date: 2023-08-11 21:14:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.395.192.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23070.1005
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===============
Date: 2023-04-19 18:41:57
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\fcon.dll because the set of per-page image hashes could not be found on the system.
Date: 2022-12-10 22:40:22
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume6\Program Files\Mozilla Firefox\mozavcodec.dll that did not meet the Microsoft signing level requirements.
Date: 2022-12-10 22:40:22
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume6\Program Files\Mozilla Firefox\mozavutil.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 0303 09/11/2021
Motherboard: ASUSTeK COMPUTER INC. TUF GAMING B550-PLUS WIFI II
Processor: AMD Ryzen 7 5700G with Radeon Graphics
Percentage of memory in use: 20%
Total physical RAM: 32552.65 MB
Available physical RAM: 25815.13 MB
Total Virtual: 34600.65 MB
Available Virtual: 26821.21 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.71 GB) (Free:47.16 GB) (Model: CT1000BX500SSD1) NTFS
Drive g: (SSD 1TB) (Fixed) (Total:931.51 GB) (Free:166.27 GB) (Model: WDC WDS100T2B0A) NTFS
Drive h: () (Fixed) (Total:111.78 GB) (Free:109.02 GB) (Model: KINGSTON SV300S37A120G) NTFS
\\?\Volume{1ba7ea1b-fb8f-47e4-91bd-8a32c7ff8933}\ () (Fixed) (Total:0.69 GB) (Free:0.1 GB) NTFS
\\?\Volume{db7c5989-7ecb-4941-8edd-8b326d045518}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0828AE57)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 8B447467)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalený PC prosím o kontrolu. Děkuji
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC prosím o kontrolu. Děkuji
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\janre\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
Task: {04F4F83D-E032-475B-9DDC-FC36D9F97D34} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{C400EFB7-4D58-4C85-986E-4CAB60E0D16F} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {21A01DB2-57A0-49DC-88AF-BE3CC4EBB349} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{73EB24F5-448E-4F27-A6A3-97EFC37CB72A} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
S3 cpuz154; \??\C:\Windows\temp\cpuz154\cpuz154_x64.sys [X] <==== ATTENTION
C:\DumpStack.log.tmp
C:\Program Files (x86)\n5b2z7k4qy.dat
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [3020]
FirewallRules: [TCP Query User{5FB73129-88A3-47D0-B8E1-11E588181CCB}C:\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [UDP Query User{E7D59ADA-47A9-49F6-AD15-CEF69C175AE7}C:\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [TCP Query User{DBA8DA11-3390-4759-903E-C8644CB46CAA}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [UDP Query User{4136EA80-F3CB-4D14-850F-F79F439E94D5}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [{E9375B0A-E0EC-4D7D-947D-E79291722862}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
FirewallRules: [{C2ECEA0F-5709-4E16-9B88-4B290071A9B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
FirewallRules: [{6F92572F-A8CA-456E-A2F1-5E0E9041B86A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
FirewallRules: [{7F4F6CCA-B317-4944-963C-8479D6B375FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený PC prosím o kontrolu. Děkuji
Děkuji,
při fixnutí naskočila hláška "asus_framework.exe error - Cant open AslO3.sys - chyba 5 přístup byl odepřen"
zde je log:
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Ran by janre (01-12-2024 15:30:17) Run:1
Running from C:\Users\janre\Downloads
Loaded Profiles: janre
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {04F4F83D-E032-475B-9DDC-FC36D9F97D34} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{C400EFB7-4D58-4C85-986E-4CAB60E0D16F} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {21A01DB2-57A0-49DC-88AF-BE3CC4EBB349} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{73EB24F5-448E-4F27-A6A3-97EFC37CB72A} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
S3 cpuz154; \??\C:\Windows\temp\cpuz154\cpuz154_x64.sys [X] <==== ATTENTION
C:\DumpStack.log.tmp
C:\Program Files (x86)\n5b2z7k4qy.dat
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [3020]
FirewallRules: [TCP Query User{5FB73129-88A3-47D0-B8E1-11E588181CCB}C:\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [UDP Query User{E7D59ADA-47A9-49F6-AD15-CEF69C175AE7}C:\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [TCP Query User{DBA8DA11-3390-4759-903E-C8644CB46CAA}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [UDP Query User{4136EA80-F3CB-4D14-850F-F79F439E94D5}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [{E9375B0A-E0EC-4D7D-947D-E79291722862}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
FirewallRules: [{C2ECEA0F-5709-4E16-9B88-4B290071A9B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
FirewallRules: [{6F92572F-A8CA-456E-A2F1-5E0E9041B86A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
FirewallRules: [{7F4F6CCA-B317-4944-963C-8479D6B375FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{04F4F83D-E032-475B-9DDC-FC36D9F97D34}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{04F4F83D-E032-475B-9DDC-FC36D9F97D34}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{C400EFB7-4D58-4C85-986E-4CAB60E0D16F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{C400EFB7-4D58-4C85-986E-4CAB60E0D16F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{21A01DB2-57A0-49DC-88AF-BE3CC4EBB349}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21A01DB2-57A0-49DC-88AF-BE3CC4EBB349}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{73EB24F5-448E-4F27-A6A3-97EFC37CB72A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{73EB24F5-448E-4F27-A6A3-97EFC37CB72A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
HKLM\System\CurrentControlSet\Services\cpuz154 => removed successfully
cpuz154 => service removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\Program Files (x86)\n5b2z7k4qy.dat => moved successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5FB73129-88A3-47D0-B8E1-11E588181CCB}C:\world_of_tanks_eu\win32\worldoftanks.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E7D59ADA-47A9-49F6-AD15-CEF69C175AE7}C:\world_of_tanks_eu\win32\worldoftanks.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DBA8DA11-3390-4759-903E-C8644CB46CAA}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4136EA80-F3CB-4D14-850F-F79F439E94D5}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E9375B0A-E0EC-4D7D-947D-E79291722862}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C2ECEA0F-5709-4E16-9B88-4B290071A9B0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F92572F-A8CA-456E-A2F1-5E0E9041B86A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7F4F6CCA-B317-4944-963C-8479D6B375FD}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 296596983 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1265465216 B
Windows/system/drivers => 1204755 B
Edge => 0 B
Chrome => 2961075830 B
Firefox => 1096849844 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 141 B
systemprofile32 => 141 B
LocalService => 646494 B
NetworkService => 1197796 B
janre => 100219868 B
RecycleBin => 18103973669 B
EmptyTemp: => 22.2 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 01-12-2024 15:31:43)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 15:31:43 ====
při fixnutí naskočila hláška "asus_framework.exe error - Cant open AslO3.sys - chyba 5 přístup byl odepřen"
zde je log:
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Ran by janre (01-12-2024 15:30:17) Run:1
Running from C:\Users\janre\Downloads
Loaded Profiles: janre
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {04F4F83D-E032-475B-9DDC-FC36D9F97D34} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{C400EFB7-4D58-4C85-986E-4CAB60E0D16F} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {21A01DB2-57A0-49DC-88AF-BE3CC4EBB349} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{73EB24F5-448E-4F27-A6A3-97EFC37CB72A} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
S3 cpuz154; \??\C:\Windows\temp\cpuz154\cpuz154_x64.sys [X] <==== ATTENTION
C:\DumpStack.log.tmp
C:\Program Files (x86)\n5b2z7k4qy.dat
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [3020]
FirewallRules: [TCP Query User{5FB73129-88A3-47D0-B8E1-11E588181CCB}C:\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [UDP Query User{E7D59ADA-47A9-49F6-AD15-CEF69C175AE7}C:\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [TCP Query User{DBA8DA11-3390-4759-903E-C8644CB46CAA}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [UDP Query User{4136EA80-F3CB-4D14-850F-F79F439E94D5}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [{E9375B0A-E0EC-4D7D-947D-E79291722862}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
FirewallRules: [{C2ECEA0F-5709-4E16-9B88-4B290071A9B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe => No File
FirewallRules: [{6F92572F-A8CA-456E-A2F1-5E0E9041B86A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
FirewallRules: [{7F4F6CCA-B317-4944-963C-8479D6B375FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{04F4F83D-E032-475B-9DDC-FC36D9F97D34}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{04F4F83D-E032-475B-9DDC-FC36D9F97D34}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{C400EFB7-4D58-4C85-986E-4CAB60E0D16F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{C400EFB7-4D58-4C85-986E-4CAB60E0D16F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{21A01DB2-57A0-49DC-88AF-BE3CC4EBB349}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21A01DB2-57A0-49DC-88AF-BE3CC4EBB349}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{73EB24F5-448E-4F27-A6A3-97EFC37CB72A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{73EB24F5-448E-4F27-A6A3-97EFC37CB72A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
HKLM\System\CurrentControlSet\Services\cpuz154 => removed successfully
cpuz154 => service removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\Program Files (x86)\n5b2z7k4qy.dat => moved successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5FB73129-88A3-47D0-B8E1-11E588181CCB}C:\world_of_tanks_eu\win32\worldoftanks.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E7D59ADA-47A9-49F6-AD15-CEF69C175AE7}C:\world_of_tanks_eu\win32\worldoftanks.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DBA8DA11-3390-4759-903E-C8644CB46CAA}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4136EA80-F3CB-4D14-850F-F79F439E94D5}C:\users\janre\appdata\local\discord\app-1.0.9007\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E9375B0A-E0EC-4D7D-947D-E79291722862}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C2ECEA0F-5709-4E16-9B88-4B290071A9B0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F92572F-A8CA-456E-A2F1-5E0E9041B86A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7F4F6CCA-B317-4944-963C-8479D6B375FD}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 296596983 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1265465216 B
Windows/system/drivers => 1204755 B
Edge => 0 B
Chrome => 2961075830 B
Firefox => 1096849844 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 141 B
systemprofile32 => 141 B
LocalService => 646494 B
NetworkService => 1197796 B
janre => 100219868 B
RecycleBin => 18103973669 B
EmptyTemp: => 22.2 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 01-12-2024 15:31:43)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 15:31:43 ====
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC prosím o kontrolu. Děkuji
Nicméně bylo vše smazáno. Zrychlil se chod?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený PC prosím o kontrolu. Děkuji
Ano je to lepší. Moc děkuji za Vaši pomoc a čas.
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC prosím o kontrolu. Děkuji
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?