Page_Fault_In_Nonpaged_Area
Napsal: 09 úno 2021 22:19
Dobrý den, prosím o kontrolu logů kvůli chybě, která se občas objeví: Page_Fault_In_Nonpaged_Area. Děkuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-02-2021 01
Ran by Jaroslak W10 (administrator) on DESKTOP-14SLUCN (Gigabyte Technology Co., Ltd. Z490 AORUS ELITE AC) (09-02-2021 22:03:16)
Running from C:\Users\Jaroslak W10\OneDrive\Plocha
Loaded Profiles: Jaroslak W10
Platform: Windows 10 Pro Version 1703 15063.1387 (X64) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atiesrxx.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\ArmouryLiveUpdate.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\Mouse\ROG STRIX CARRY\P508PowerAgent.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <2>
(ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\LiveUpdateSyncCheck.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\AudioLEDControl\ledcontrolservice3.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files (x86)\ASUS\ROG Armoury\Tools\Mutually Exclusive AURA Agent.exe
(ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe
(A-Volute -> NahimicAPI) C:\Program Files\NahimicAPI\NahimicAPISvc64.exe
(A-Volute -> NahimicAPI) C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\RGBFusion\RGBFusion.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c98d5e0dfc88ac2f\RstMwService.exe
(KYE) [File not signed] C:\Program Files (x86)\Genius\Manticore\MTHid.exe
(Logitech Inc -> ) C:\Program Files\LGHUB\logi_analytics_client.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <4>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Jaroslak W10\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(Outbyte Computing Pty Ltd -> Outbyte) C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.1000_x64__kzf8qxf38zg5c\SkypeHost.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1082160 2020-05-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [Asus Headset Svc64] => C:\Program Files\NahimicAPI\NahimicAPISvc64.exe [744320 2020-03-23] (A-Volute -> NahimicAPI)
HKLM\...\Run: [Asus Headset Svc32] => C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe [583552 2020-03-23] (A-Volute -> NahimicAPI)
HKLM-x32\...\Run: [Manticore] => C:\Program Files (x86)\Genius\Manticore\MThid.exe [293376 2013-10-29] (KYE) [File not signed]
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (Canon Inc. -> CANON INC.)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM-x32\...\RunOnce: [SelLed] => C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe [50096 2019-04-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-08] (Valve -> Valve Corporation)
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792272 2021-02-07] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\MountPoints2: {9326ab22-6686-11eb-885c-806e6f6e6963} - "G:\Run.exe"
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\Windows\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-03-28] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [225792 2017-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{9650FDBC-053A-4715-AD14-FC2DC65E8330}] -> C:\Windows\system32\hvsigpext.dll [2017-03-20] (Microsoft Windows -> )
Startup: C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AORUS ENGINE.lnk [2021-02-06]
ShortcutTarget: AORUS ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\autorun.exe () [File not signed]
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {033CDDB0-403C-4BA2-99B9-17FE2B41021D} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426208 2020-05-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {0478EB03-9556-4875-AD43-9E5CEEA6D574} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993288 2021-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {10EF239B-532C-497E-A09C-6F1DA7D1D7A6} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {2880FEF6-CA9A-47B9-9D01-ADE758E1D3FA} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [254176 2020-05-04] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {291A819F-D933-4E9C-986B-AC02444D2693} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2936EF95-78FF-44E5-9891-C9FB2365E4B6} - System32\Tasks\ASUS\ArmouryLiveUpdate => C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\ArmouryLiveUpdate.exe [1462760 2020-03-31] (ASUSTeK Computer Inc. -> )
Task: {423F4481-04FD-45CB-960E-B112E6C75282} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [245760 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
Task: {4626E870-29BF-469D-8DCB-B22F12CD0E28} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115048 2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {4C5EBED7-C80E-4ED2-8286-56544189F036} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [45540760 2021-01-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {59C955A0-BEDF-49A3-AF47-C063ABF9C69F} - System32\Tasks\Outbyte\PC Repair\DailyTip => C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe [8638784 2021-01-13] (Outbyte Computing Pty Ltd -> Outbyte) <==== ATTENTION
Task: {5BB06A8F-5CD4-4E19-B6E6-57DF709E4F73} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {63B7E24E-B7A0-4850-8A9A-31E535ABB7C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {66F263C7-7554-458A-9B64-C16B32562DAB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115048 2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {7DD37AE2-1E59-40EF-93B6-373764482E51} - System32\Tasks\ASUS\ledcontrolservice3 => C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\AudioLEDControl\ledcontrolservice3.exe [2557744 2020-01-08] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {873B03F5-B2F4-488D-9FB0-F2D89C992B5E} - System32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE => C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe [33937464 2021-02-03] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.)
Task: {87E1D74C-5D66-4D89-8721-237EF65A1AC6} - System32\Tasks\Outbyte\PC Repair\NewDeceptors => C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe [8638784 2021-01-13] (Outbyte Computing Pty Ltd -> Outbyte) <==== ATTENTION
Task: {99BBC9C9-EC16-4EEE-A267-59DD144953C9} - System32\Tasks\ASUS\P508PowerAgent => C:\Program Files (x86)\ASUS\ROG Armoury\Mouse\ROG STRIX CARRY\P508PowerAgent.exe [51120 2019-11-01] (ASUSTeK Computer Inc. -> )
Task: {9C87A908-FFC0-454E-A828-894034129187} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe
Task: {A2D4FAD7-2380-4D14-AA72-2CBBE4AF811D} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [2025488 2021-01-22] (ASUSTeK Computer Inc. -> ASUS)
Task: {A356CDA2-1DA9-48DB-A712-FF5D6011D37B} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
Task: {A9FF7A8C-DFC1-44E1-A5C4-5E0591BE8938} - System32\Tasks\ASUS\MacroAgent => C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe [77960 2020-03-31] (ASUSTeK Computer Inc. -> )
Task: {ABCB7F0C-DB0A-4694-BB9D-AF78311AA42D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {AF66C1F2-9DAF-41DC-8FDB-4365608B9640} - System32\Tasks\Outbyte\PC Repair\Start PC Repair оn logon => C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe [8638784 2021-01-13] (Outbyte Computing Pty Ltd -> Outbyte) <==== ATTENTION
Task: {B4165120-A24B-46B4-BFDA-91586DBB998C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {BC9AECFA-C872-4376-81B6-0C1AFE79F558} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993288 2021-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD1F4ED5-CC1D-4BDC-BEC3-4C15EE2E7A93} - System32\Tasks\NahimicAPISvc32Run => C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe [583552 2020-03-23] (A-Volute -> NahimicAPI)
Task: {D7349301-5EB0-43E3-8C9D-A75A04052776} - System32\Tasks\NahimicAPISvc64Run => C:\Program Files\NahimicAPI\NahimicAPISvc64.exe [744320 2020-03-23] (A-Volute -> NahimicAPI)
Task: {E24828DF-21B6-4E49-B48A-321CB3FDC031} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [1124744 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {E45ACE2F-646E-4E8F-970C-A10E7B9C12F1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E92CA5D2-627C-47BE-A21E-28CD625BE38A} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {EB2C0ACB-C151-4484-ABEA-8323188099BC} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d6fe77fb115b98 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {EFA4B7F2-6629-41A6-B10A-4CFFB3AAB966} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {F0EFCA96-CA34-48D8-ABA3-2701567BB73A} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {F29FB4EA-59F3-4E67-9273-F49A09F4E4D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F5817A20-27A1-457E-82FA-E21C8FE57CC5} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [227328 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{cefab0fe-28e1-47aa-808f-0c9c7aa5e46c}: [DhcpNameServer] 192.168.1.1
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.1.14,1]
FireFox:
========
FF DefaultProfile: yjp2rqwn.default
FF ProfilePath: C:\Users\Jaroslak W10\AppData\Roaming\Mozilla\Firefox\Profiles\yjp2rqwn.default [2021-02-03]
FF ProfilePath: C:\Users\Jaroslak W10\AppData\Roaming\Mozilla\Firefox\Profiles\2fdrg39k.default-release [2021-02-09]
FF Session Restore: Mozilla\Firefox\Profiles\2fdrg39k.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\2fdrg39k.default-release -> hxxps://geek.wish.com
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [344184 2021-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [313008 2020-12-17] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8902024 2021-01-22] (Microsoft Corporation -> Microsoft Corporation)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [143072 2020-07-01] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128736 2020-05-04] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] (Canon Inc. -> )
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10897296 2021-02-07] (Logitech Inc -> Logitech, Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [3053656 2021-01-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [119808 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
R2 RapiMgr; C:\Windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R2 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [5463128 2021-01-18] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2018-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WcesComm; C:\Windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-05-02] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43920 2020-12-17] (ASUSTeK Computer Inc. -> )
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2021-02-04] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\73248\driver_cpu_temperature\logi_core_temp.sys [25448 2021-02-07] (Logitech Inc. -> Logitech)
R3 logi_audio_surround; C:\Windows\system32\drivers\logi_audio_surround.sys [44096 2021-02-08] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [38136 2021-02-07] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [26672 2021-02-07] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [66808 2021-02-07] (Logitech Inc -> Logitech)
R3 MpKsl8d5c88b7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3AAC292D-F154-479E-9057-DB4F01816084}\MpKslDrv.sys [47344 2021-02-09] (Microsoft Windows -> Microsoft Corporation)
U1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 ObDrvMonPCRSrv; C:\Program Files (x86)\Outbyte\PC Repair\DrvMonX64.sys [187688 2020-12-15] (Outbyte Computing Pty Ltd -> Outbyte)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-02-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [429296 2021-02-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2021-02-06] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsl9fd8d18d; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{49AFEA13-8A22-44AF-A48D-47234DCE4C9B}\MpKslDrv.sys [X]
S3 MpKsle13d7e68; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{49AFEA13-8A22-44AF-A48D-47234DCE4C9B}\MpKslDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-09 22:03 - 2021-02-09 22:03 - 000000000 ____D C:\FRST
2021-02-09 21:45 - 2021-02-09 21:45 - 020604704 _____ (Outbyte) C:\Users\Jaroslak W10\Downloads\Page_Fault_In_Nonpaged_Area_repair-setup.exe
2021-02-09 21:45 - 2021-02-09 21:45 - 000000000 ____D C:\Windows\system32\Tasks\Outbyte
2021-02-09 21:45 - 2021-02-09 21:45 - 000000000 ____D C:\Program Files (x86)\Outbyte
2021-02-09 21:37 - 2021-02-09 21:37 - 001054668 _____ C:\Windows\Minidump\020921-14656-01.dmp
2021-02-09 02:28 - 2021-02-09 02:28 - 001474440 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\Risen.odt
2021-02-09 02:22 - 2021-02-09 02:22 - 001067780 _____ C:\Windows\Minidump\020921-10453-01.dmp
2021-02-09 01:29 - 2021-02-09 01:29 - 001037700 _____ C:\Windows\Minidump\020921-15281-01.dmp
2021-02-09 01:11 - 2021-02-09 01:33 - 000000000 ____D C:\Program Files\ASUS
2021-02-09 01:11 - 2021-02-09 01:11 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\ASUS
2021-02-09 01:11 - 2021-02-09 01:11 - 000000000 ____D C:\Program Files\PHISON
2021-02-09 01:11 - 2021-02-09 01:11 - 000000000 ____D C:\Program Files\PD
2021-02-09 01:11 - 2021-02-09 01:11 - 000000000 ____D C:\Program Files (x86)\LightingService
2021-02-09 01:11 - 2020-12-17 17:13 - 000152368 _____ (©ASUSTeK Computer Inc.) C:\Windows\system32\AsIO3.dll
2021-02-09 01:11 - 2020-12-17 17:13 - 000124504 _____ (©ASUSTeK Computer Inc.) C:\Windows\SysWOW64\AsIO3.dll
2021-02-09 01:11 - 2020-12-17 17:13 - 000043920 _____ C:\Windows\system32\Drivers\AsIO3.sys
2021-02-09 01:11 - 2019-04-24 11:25 - 000029368 _____ C:\Windows\system32\Drivers\GLCKIO2.sys
2021-02-09 01:10 - 2021-02-09 21:38 - 000000000 ____D C:\Program Files\NahimicAPI
2021-02-09 01:10 - 2021-02-09 01:11 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2021-02-09 01:10 - 2021-02-09 01:10 - 000003188 _____ C:\Windows\system32\Tasks\NahimicAPISvc32Run
2021-02-09 01:10 - 2021-02-09 01:10 - 000003180 _____ C:\Windows\system32\Tasks\NahimicAPISvc64Run
2021-02-09 01:10 - 2021-02-09 01:10 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\AcSdkInsLog
2021-02-09 01:10 - 2019-05-02 15:48 - 000120880 _____ C:\Windows\system32\AsIO2.dll
2021-02-09 01:10 - 2019-05-02 15:48 - 000095280 _____ C:\Windows\SysWOW64\AsIO2.dll
2021-02-09 01:10 - 2019-05-02 15:48 - 000033832 _____ C:\Windows\system32\Drivers\AsIO2.sys
2021-02-09 01:09 - 2021-02-09 01:33 - 000000000 ____D C:\Program Files (x86)\ASUS
2021-02-09 00:53 - 2021-02-09 00:53 - 001090780 _____ C:\Windows\Minidump\020921-10937-01.dmp
2021-02-09 00:14 - 2021-02-09 00:15 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Fallout3
2021-02-09 00:14 - 2021-02-09 00:14 - 000000000 ____D C:\Windows\SysWOW64\xlive
2021-02-09 00:14 - 2021-02-09 00:14 - 000000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2021-02-09 00:13 - 2021-02-09 00:13 - 000000000 ____D C:\Users\Jaroslak W10\OneDrive\Dokumenty\My Games
2021-02-08 22:40 - 2021-02-08 22:40 - 001049412 _____ C:\Windows\Minidump\020821-14828-01.dmp
2021-02-08 22:22 - 2021-02-09 21:37 - 1726176848 _____ C:\Windows\MEMORY.DMP
2021-02-08 22:22 - 2021-02-09 21:37 - 000000000 ____D C:\Windows\Minidump
2021-02-08 12:09 - 2021-02-08 12:09 - 000531030 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\IMG_20210208_0002.pdf
2021-02-08 12:07 - 2021-02-08 12:07 - 000532283 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\IMG_20210208_0001.pdf
2021-02-08 00:53 - 2021-02-08 00:53 - 002512896 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\Narozeni(2).xls
2021-02-08 00:52 - 2021-02-08 00:52 - 000000000 ____D C:\Users\Jaroslak W10\OneDrive\Dokumenty\Vlastní šablony Office
2021-02-08 00:48 - 2021-02-08 00:48 - 004451384 _____ (Logitech) C:\Windows\system32\logi_audio_headset_render_apo.dll
2021-02-08 00:48 - 2021-02-08 00:48 - 002174656 _____ (Logitech) C:\Windows\system32\logi_audio_headset_capture_apo.dll
2021-02-08 00:48 - 2021-02-08 00:48 - 000044096 _____ (Logitech) C:\Windows\system32\Drivers\logi_audio_surround.sys
2021-02-08 00:46 - 2021-02-08 00:47 - 041317512 _____ (Logitech, Inc.) C:\Users\Jaroslak W10\Downloads\lghub_installer(1).exe
2021-02-08 00:30 - 2021-02-08 00:30 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Risen2
2021-02-07 22:24 - 2021-02-07 22:24 - 000000000 ___RD C:\Users\Jaroslak W10\3D Objects
2021-02-07 21:42 - 2021-02-07 21:42 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Microsoft_Corporation
2021-02-07 18:46 - 2021-02-07 18:46 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Program Files\MSBuild
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-02-07 18:39 - 2021-02-09 21:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-02-07 02:00 - 2021-02-07 02:00 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Logishrd
2021-02-07 01:59 - 2021-02-09 21:54 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\LGHUB
2021-02-07 01:59 - 2021-02-09 21:17 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\LGHUB
2021-02-07 01:59 - 2021-02-07 01:59 - 000000000 ____D C:\Program Files\LGHUB
2021-02-07 01:58 - 2021-02-07 01:58 - 000066808 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_xlcore.sys
2021-02-07 01:58 - 2021-02-07 01:58 - 000038136 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_bus_enum.sys
2021-02-07 01:58 - 2021-02-07 01:58 - 000026672 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_vir_hid.sys
2021-02-07 01:57 - 2021-02-07 01:57 - 041317512 _____ (Logitech, Inc.) C:\Users\Jaroslak W10\Downloads\lghub_installer.exe
2021-02-07 01:46 - 2021-02-07 01:46 - 000030780 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\IMG_20210207_0001.pdf
2021-02-07 01:43 - 2012-07-05 08:58 - 000320000 _____ (CANON INC.) C:\Windows\SysWOW64\CNQ9604L.dll
2021-02-07 01:43 - 2012-07-04 15:18 - 000081664 _____ C:\Windows\SysWOW64\CNQ190DD.TBL
2021-02-07 01:43 - 2012-04-06 16:40 - 000103424 _____ (CANON INC.) C:\Windows\SysWOW64\CNQ9604U.dll
2021-02-07 01:43 - 2012-04-06 13:27 - 000786504 _____ C:\Windows\SysWOW64\CNQ_412N.DAT
2021-02-07 01:43 - 2012-04-04 10:07 - 000296064 _____ C:\Windows\SysWOW64\CNQ_412W.DAT
2021-02-07 01:43 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\Windows\SysWOW64\CNHMCA.dll
2021-02-07 01:40 - 2012-07-05 09:00 - 000363520 _____ (CANON INC.) C:\Windows\system32\CNQ9604L.dll
2021-02-07 01:40 - 2012-07-04 15:18 - 000081664 _____ C:\Windows\system32\CNQ190DD.TBL
2021-02-07 01:40 - 2012-05-09 16:27 - 000062464 _____ (Canon Inc.) C:\Windows\system32\CNQ9604O.dll
2021-02-07 01:40 - 2012-04-06 16:40 - 000287744 _____ (CANON INC.) C:\Windows\system32\CNQ9604C.dll
2021-02-07 01:40 - 2012-04-06 16:39 - 000106496 _____ (CANON INC.) C:\Windows\system32\CNQ9604I.dll
2021-02-07 01:40 - 2012-04-06 13:27 - 000786504 _____ C:\Windows\system32\CNQ_412N.DAT
2021-02-07 01:40 - 2012-04-04 10:07 - 000296064 _____ C:\Windows\system32\CNQ_412W.DAT
2021-02-07 01:40 - 2008-08-25 18:02 - 000017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.dll
2021-02-07 01:37 - 2021-02-07 01:46 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Canon
2021-02-07 01:30 - 2021-02-07 01:30 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Logitech
2021-02-07 01:21 - 2021-02-07 01:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\Canon Easy-WebPrint EX2
2021-02-07 01:21 - 2021-02-07 01:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\Canon Easy-WebPrint EX
2021-02-07 01:20 - 2021-02-07 01:20 - 000000000 ____D C:\Program Files\Common Files\CANON
2021-02-07 01:18 - 2021-02-07 01:21 - 000000000 ____D C:\Program Files\Canon
2021-02-07 01:17 - 2021-02-07 01:40 - 000000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information
2021-02-07 01:17 - 2021-02-07 01:39 - 000000000 ___HD C:\Program Files\CanonBJ
2021-02-07 01:17 - 2021-02-07 01:17 - 000000000 ____D C:\Windows\system32\STRING
2021-02-07 01:17 - 2012-03-28 18:01 - 000039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL
2021-02-07 01:17 - 2012-03-28 18:00 - 000366592 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL
2021-02-07 01:17 - 2012-03-28 18:00 - 000359936 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL
2021-02-07 01:16 - 2021-02-07 01:43 - 000000000 ____D C:\Program Files (x86)\Canon
2021-02-07 00:21 - 2021-02-07 00:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\KYE Manticore
2021-02-06 23:59 - 2021-02-06 23:59 - 000039106 _____ C:\Windows\unins000.dat
2021-02-06 23:59 - 2021-02-06 23:59 - 000000000 ____D C:\Program Files (x86)\Genius
2021-02-06 23:59 - 2021-02-06 23:56 - 001219543 _____ C:\Windows\unins000.exe
2021-02-06 23:51 - 2021-02-06 23:51 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Skype
2021-02-06 23:49 - 2021-02-07 19:04 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-02-06 23:49 - 2021-02-06 23:49 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-02-06 23:36 - 2021-02-06 23:46 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-02-06 23:36 - 2021-02-06 23:36 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\cache
2021-02-06 23:32 - 2020-01-19 19:49 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2021-02-06 23:32 - 2020-01-19 19:49 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.old
2021-02-06 23:28 - 2021-02-06 23:28 - 000000000 ___SD C:\Windows\UpdateAssistantV2
2021-02-06 23:25 - 2020-11-17 22:49 - 000107048 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys
2021-02-06 23:23 - 2021-02-09 21:38 - 000003124 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-02-06 23:23 - 2021-02-06 23:23 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2021-02-06 23:23 - 2021-02-06 23:23 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR
2021-02-06 23:23 - 2021-02-06 23:23 - 000000000 ____D C:\Windows\system32\AMD
2021-02-06 23:22 - 2020-11-17 22:52 - 001753912 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-02-06 23:22 - 2020-11-17 22:52 - 001753912 _____ C:\Windows\system32\vulkaninfo.exe
2021-02-06 23:22 - 2020-11-17 22:52 - 001359680 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-02-06 23:22 - 2020-11-17 22:52 - 001359680 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-02-06 23:22 - 2020-11-17 22:52 - 001047992 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-02-06 23:22 - 2020-11-17 22:52 - 001047992 _____ C:\Windows\system32\vulkan-1.dll
2021-02-06 23:22 - 2020-11-17 22:52 - 000910456 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-02-06 23:22 - 2020-11-17 22:52 - 000910456 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-02-06 23:22 - 2020-11-17 22:51 - 001593664 _____ (AMD) C:\Windows\system32\coinst_20.45.dll
2021-02-06 23:22 - 2020-11-17 22:50 - 079762240 _____ C:\Windows\system32\amd_comgr.dll
2021-02-06 23:22 - 2020-11-17 22:50 - 065448248 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2021-02-06 23:22 - 2020-11-17 22:50 - 001490752 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiacm64.dll
2021-02-06 23:22 - 2020-11-17 22:50 - 000150336 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-02-06 23:22 - 2020-11-17 22:50 - 000130880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-02-06 23:22 - 2020-11-17 22:48 - 000202640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll
2021-02-06 23:22 - 2020-11-17 22:48 - 000170192 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll
2021-02-06 23:22 - 2020-11-17 21:15 - 000125488 _____ C:\Windows\system32\kapp_ci.sbin
2021-02-06 23:22 - 2020-11-17 21:15 - 000121168 _____ C:\Windows\system32\kapp_si.sbin
2021-02-06 23:22 - 2020-11-17 21:15 - 000076237 _____ C:\Windows\system32\AMDKernelEvents.man
2021-02-06 23:22 - 2020-11-17 21:15 - 000012344 _____ C:\Windows\system32\brandingWS_RSX.bmp
2021-02-06 23:22 - 2020-11-17 21:15 - 000012344 _____ C:\Windows\system32\brandingRSX.bmp
2021-02-06 23:22 - 2020-11-17 21:15 - 000011014 _____ C:\Windows\system32\atiacmLocalisation.ini
2021-02-06 23:22 - 2020-11-17 21:15 - 000000822 _____ C:\Windows\system32\branding.bmp
2021-02-06 23:22 - 2020-10-26 15:14 - 000511920 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdfendrsr.exe
2021-02-06 23:22 - 2020-10-26 15:14 - 000089008 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdfendr.sys
2021-02-06 23:22 - 2020-07-27 08:41 - 000062056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdxe.sys
2021-02-06 23:21 - 2021-02-06 23:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\RadeonInstaller
2021-02-06 23:12 - 2021-02-06 23:12 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-02-06 23:10 - 2018-07-31 22:24 - 000804272 _____ C:\Windows\SysWOW64\locale.nls
2021-02-06 23:10 - 2018-07-31 22:24 - 000804272 _____ C:\Windows\system32\locale.nls
2021-02-06 23:10 - 2018-07-18 00:50 - 000432128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-02-06 23:10 - 2018-06-08 06:19 - 000753664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2021-02-06 23:10 - 2018-05-21 11:52 - 001859584 _____ C:\Windows\SysWOW64\Windows.Mirage.dll
2021-02-06 23:10 - 2018-04-26 20:33 - 000526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2021-02-06 23:10 - 2018-03-18 22:02 - 000229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2021-02-06 23:10 - 2018-03-02 07:43 - 000494080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2021-02-06 23:10 - 2018-03-02 07:36 - 000411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2021-02-06 23:10 - 2018-01-01 03:03 - 000311704 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2021-02-06 23:10 - 2018-01-01 02:37 - 000038912 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2021-02-06 23:10 - 2018-01-01 02:32 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2021-02-06 23:10 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscript.ocx
2021-02-06 23:10 - 2017-09-29 08:38 - 001135616 ____R (The ICU Project) C:\Windows\SysWOW64\icuuc.dll
2021-02-06 23:10 - 2017-07-31 23:45 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
2021-02-06 23:10 - 2017-06-20 05:39 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2021-02-06 23:10 - 2017-06-20 05:30 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdmaud.drv
2021-02-06 23:10 - 2017-05-20 09:26 - 000059904 _____ C:\Windows\SysWOW64\xboxgipsynthetic.dll
2021-02-06 23:09 - 2018-08-30 06:03 - 001397712 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-02-06 23:09 - 2018-08-30 06:03 - 001066128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-02-06 23:09 - 2018-08-10 00:49 - 004876800 _____ (Gracenote, Inc.) C:\Windows\system32\gnsdk_fp.dll
2021-02-06 23:09 - 2018-08-09 01:24 - 004171264 _____ (Gracenote, Inc.) C:\Windows\SysWOW64\gnsdk_fp.dll
2021-02-06 23:09 - 2018-07-18 00:49 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-02-06 23:09 - 2018-06-08 06:31 - 002079744 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2021-02-06 23:09 - 2018-06-08 06:30 - 000571392 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2021-02-06 23:09 - 2018-06-08 06:19 - 002011648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2021-02-06 23:09 - 2018-06-08 06:19 - 000508416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2021-02-06 23:09 - 2018-05-24 22:28 - 002447360 _____ C:\Windows\system32\Windows.Mirage.dll
2021-02-06 23:09 - 2018-04-26 20:33 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2021-02-06 23:09 - 2018-03-02 10:46 - 000037376 _____ C:\Windows\system32\SpectrumSyncClient.dll
2021-02-06 23:09 - 2018-03-02 07:49 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2021-02-06 23:09 - 2018-01-01 02:40 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2021-02-06 23:09 - 2018-01-01 02:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2021-02-06 23:09 - 2018-01-01 02:38 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2021-02-06 23:09 - 2018-01-01 02:34 - 000072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2021-02-06 23:09 - 2018-01-01 02:32 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2021-02-06 23:09 - 2017-09-01 06:55 - 000031932 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
2021-02-06 23:08 - 2018-09-27 15:54 - 000125015 ____R C:\Windows\system32\CaptureCountdown.hcp
2021-02-06 23:08 - 2018-09-27 15:54 - 000119017 ____R C:\Windows\system32\CaptureBrackets.hcp
2021-02-06 23:08 - 2018-09-27 15:54 - 000017806 ____R C:\Windows\system32\CaptureToast.hcp
2021-02-06 23:08 - 2018-09-27 06:13 - 000967168 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2021-02-06 23:08 - 2018-08-30 06:01 - 001018784 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-06 23:08 - 2018-08-30 05:56 - 000035296 _____ C:\Windows\system32\SyncAppvPublishingServer.exe
2021-02-06 23:08 - 2018-06-08 06:36 - 000778240 _____ C:\Windows\system32\MBR2GPT.EXE
2021-02-06 23:08 - 2018-06-08 06:32 - 000819712 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2021-02-06 23:08 - 2018-06-08 06:32 - 000540160 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2021-02-06 23:08 - 2018-03-18 22:07 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2021-02-06 23:08 - 2018-03-02 14:37 - 000459776 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2021-02-06 23:08 - 2018-01-01 03:27 - 000382864 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2021-02-06 23:08 - 2018-01-01 02:42 - 000047104 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2021-02-06 23:08 - 2017-09-29 08:27 - 001321984 ____R (The ICU Project) C:\Windows\system32\icuuc.dll
2021-02-06 23:08 - 2017-06-20 06:05 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2021-02-06 23:08 - 2017-06-20 05:56 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2021-02-06 23:08 - 2017-05-20 07:08 - 000086016 _____ C:\Windows\system32\xboxgipsynthetic.dll
2021-02-05 00:00 - 2021-02-05 00:00 - 000000000 ____D C:\Windows\WindowsMobile
2021-02-04 22:41 - 2021-02-04 22:41 - 184727696 _____ (Macrovision Corporation) C:\Users\Jaroslak W10\Downloads\Risen_Patch_1.10(1).exe
2021-02-04 22:22 - 2021-02-09 21:41 - 000000000 ____D C:\Windows\system32\MRT
2021-02-04 22:22 - 2021-02-06 23:06 - 000000000 ____D C:\Program Files\CUAssistant
2021-02-04 22:22 - 2021-02-04 22:22 - 000000000 ____D C:\Program Files\rempl
2021-02-04 02:33 - 2021-02-04 02:33 - 000000000 ____D C:\Program Files (x86)\Intel
2021-02-04 02:33 - 2020-04-19 18:43 - 001162840 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2021-02-04 02:32 - 2021-02-09 01:10 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-02-04 02:32 - 2021-02-04 02:33 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-02-04 02:32 - 2021-02-04 02:33 - 000000000 ____D C:\Program Files (x86)\Realtek
2021-02-04 02:32 - 2021-02-03 19:31 - 000000000 ____D C:\Program Files\Intel
2021-02-04 02:32 - 2020-05-03 15:31 - 001082160 _____ (Realtek Semiconductor) C:\Windows\system32\RtkAudUService64.exe
2021-02-04 02:32 - 2020-05-03 15:31 - 000844896 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64U.dll
2021-02-04 02:32 - 2020-05-03 15:31 - 000224280 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2021-02-04 02:32 - 2020-05-03 15:30 - 001145480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtCOM64.dll
2021-02-04 02:32 - 2020-05-03 15:30 - 000468792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2021-02-04 02:32 - 2020-05-03 14:30 - 007339104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2021-02-04 02:32 - 2020-05-03 14:20 - 039656533 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2021-02-04 02:32 - 2019-12-19 08:07 - 002877104 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2021-02-04 02:31 - 2021-02-04 02:31 - 000000000 ____D C:\Users\Jaroslak W10\Intel
2021-02-04 02:30 - 2021-02-04 02:30 - 000032600 ____N (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\gdrv2.sys
2021-02-04 02:30 - 2021-02-03 20:11 - 000000010 _____ C:\Windows\GSetup.ini
2021-02-04 02:30 - 2018-04-10 23:45 - 000081408 ____R (Microsoft Corporation) C:\Windows\devcon.exe
2021-02-04 02:30 - 2009-08-27 08:04 - 000207400 ____R () C:\Windows\GSetup.exe
2021-02-04 02:29 - 2021-02-04 02:29 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\MicrosoftEdge
2021-02-04 02:25 - 2021-02-09 21:38 - 000000000 ___RD C:\Users\Jaroslak W10\OneDrive
2021-02-04 02:25 - 2021-02-04 22:15 - 000002427 _____ C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-04 02:24 - 2021-02-07 18:52 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Packages
2021-02-04 02:24 - 2021-02-07 00:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\ConnectedDevicesPlatform
2021-02-04 02:24 - 2021-02-04 02:24 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\VirtualStore
2021-02-04 02:24 - 2021-02-04 02:24 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\TileDataLayer
2021-02-04 02:24 - 2021-02-03 20:37 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Publishers
2021-02-04 02:24 - 2021-02-03 20:32 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Adobe
2021-02-04 02:23 - 2021-02-09 21:38 - 000000000 ____D C:\Users\Jaroslak W10
2021-02-04 02:23 - 2021-02-04 02:23 - 000000020 ___SH C:\Users\Jaroslak W10\ntuser.ini
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Šablony
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Soubory cookie
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Poslední
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Okolní tiskárny
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Okolní síť
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Nabídka Start
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Dokumenty
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Data aplikací
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\AppData\Local\Data aplikací
2021-02-04 02:21 - 2021-02-09 21:43 - 002668944 _____ C:\Windows\system32\PerfStringBackup.INI
2021-02-04 02:19 - 2021-02-04 02:19 - 000000000 ____D C:\Windows\CSC
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Šablony
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Poslední
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Okolní síť
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Dokumenty
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Data aplikací
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Šablony
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Soubory cookie
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Poslední
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Okolní tiskárny
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Okolní síť
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Nabídka Start
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Dokumenty
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Data aplikací
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Documents and Settings
2021-02-04 02:16 - 2021-02-09 21:37 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-02-04 02:16 - 2021-02-08 12:05 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-02-04 02:16 - 2021-02-07 00:00 - 000265032 _____ C:\Windows\system32\FNTCACHE.DAT
2021-02-04 02:16 - 2021-02-04 02:16 - 000000000 ____D C:\Windows\ServiceProfiles
2021-02-04 02:16 - 2021-02-04 02:16 - 000000000 ____D C:\Windows\Panther
2021-02-03 21:29 - 2021-02-03 21:29 - 058178001 _____ C:\Users\Jaroslak W10\Downloads\risen_czfm_110.zip
2021-02-03 21:28 - 2021-02-03 21:34 - 184727696 _____ (Macrovision Corporation) C:\Users\Jaroslak W10\Downloads\Risen_Patch_1.10.exe
2021-02-03 20:53 - 2021-02-06 23:17 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-02-03 20:50 - 2021-02-03 20:50 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\AMD
2021-02-03 20:45 - 2021-02-03 20:45 - 000003430 _____ C:\Windows\system32\Tasks\AMD ThankingURL
2021-02-03 20:43 - 2021-02-03 20:43 - 000003160 _____ C:\Windows\system32\Tasks\StartCN
2021-02-03 20:43 - 2021-02-03 20:43 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\ATI
2021-02-03 20:43 - 2021-02-03 20:43 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\ATI
2021-02-03 20:43 - 2021-02-03 20:43 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2021-02-03 20:37 - 2021-02-06 23:17 - 000003492 _____ C:\Windows\system32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE
2021-02-03 20:32 - 2021-02-06 23:17 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Adobe
2021-02-03 20:32 - 2021-02-03 20:32 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\Adobe
2021-02-03 20:32 - 2021-02-03 20:32 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\DBG
2021-02-03 20:32 - 2021-02-03 20:32 - 000000000 ____D C:\Program Files (x86)\MonitorDriver
2021-02-03 20:31 - 2021-02-03 20:31 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-02-03 20:30 - 2021-02-03 20:30 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Macromedia
2021-02-03 20:24 - 2021-02-03 20:24 - 000000000 ____D C:\Users\Jaroslak W10\OneDrive\Dokumenty\temp
2021-02-03 20:16 - 2021-02-09 01:11 - 000000000 ____D C:\Program Files\Patriot
2021-02-03 20:16 - 2021-02-09 01:11 - 000000000 ____D C:\Program Files\ENE
2021-02-03 20:16 - 2021-02-03 20:16 - 000000000 ____D C:\Program Files (x86)\ENE
2021-02-03 20:16 - 2020-05-12 01:28 - 000020992 _____ C:\Windows\system32\Drivers\ene.sys
2021-02-03 20:15 - 2021-02-03 20:15 - 000003412 _____ C:\Windows\system32\Tasks\SIV-VGA
2021-02-03 20:15 - 2021-02-03 20:15 - 000003406 _____ C:\Windows\system32\Tasks\SIV
2021-02-03 20:15 - 2021-02-03 20:15 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\PeerDistRepub
2021-02-03 20:14 - 2021-02-06 23:32 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Downloaded Installations
2021-02-03 20:14 - 2021-02-03 20:37 - 000000000 ____D C:\Program Files (x86)\GIGABYTE
2021-02-03 20:14 - 2021-02-03 20:14 - 000003506 _____ C:\Windows\system32\Tasks\GraphicsCardEngine
2021-02-03 20:14 - 2021-02-03 20:14 - 000003470 _____ C:\Windows\system32\Tasks\LiquidSensord
2021-02-03 20:14 - 2015-06-02 10:50 - 000005120 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\acpimof_ocpanel.dll
2021-02-03 20:09 - 2021-02-03 20:09 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Risen
2021-02-03 20:07 - 2021-02-08 01:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-02-03 20:00 - 2021-02-03 20:00 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Steam
2021-02-03 20:00 - 2021-02-03 20:00 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\CEF
2021-02-03 19:59 - 2021-02-09 21:38 - 000000000 ____D C:\Program Files (x86)\Steam
2021-02-03 19:56 - 2021-02-03 19:56 - 001573568 _____ C:\Users\Jaroslak W10\Downloads\SteamSetup.exe
2021-02-03 19:56 - 2017-12-11 00:10 - 000045610 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\Su01.xlsx
2021-02-03 19:55 - 2021-02-03 19:55 - 000000000 ___HD C:\OneDriveTemp
2021-02-03 19:55 - 2020-04-12 00:26 - 000009041 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\COVID19.xlsx
2021-02-03 19:52 - 2021-02-03 19:52 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\OneDrive
2021-02-03 19:51 - 2021-02-09 21:41 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\Mozilla
2021-02-03 19:51 - 2021-02-08 10:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-03 19:51 - 2021-02-03 19:51 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Mozilla
2021-02-03 19:51 - 2021-02-03 19:51 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Mozilla
2021-02-03 19:33 - 2021-02-09 01:12 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2021-02-03 19:33 - 2021-02-07 18:54 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Comms
2021-02-03 19:33 - 2021-02-06 23:36 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\AMD
2021-02-03 19:33 - 2021-02-06 23:25 - 000000000 ____D C:\Program Files\AMD
2021-02-03 19:33 - 2021-02-06 23:21 - 000000000 ____D C:\AMD
2021-02-03 19:33 - 2021-02-04 22:15 - 000003392 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2775533619-830361710-3132715996-1001
2021-02-03 19:33 - 2021-02-03 19:33 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2021-02-03 19:33 - 2012-04-16 05:00 - 000389120 _____ (CANON INC.) C:\Windows\system32\CNMLMBA.DLL
2021-02-03 19:31 - 2020-04-30 09:35 - 001346528 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAC.sys
2021-02-03 19:31 - 2020-04-30 09:35 - 000027624 _____ (Intel Corporation) C:\Windows\system32\RstMwEventLogMsg.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-09 21:43 - 2017-03-20 05:39 - 001203680 _____ C:\Windows\system32\perfh005.dat
2021-02-09 21:43 - 2017-03-20 05:39 - 000290030 _____ C:\Windows\system32\perfc005.dat
2021-02-09 21:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\AppReadiness
2021-02-09 01:12 - 2017-03-18 12:40 - 000524288 _____ C:\Windows\system32\config\BBI
2021-02-09 01:11 - 2017-03-18 22:01 - 000000000 ____D C:\Windows\INF
2021-02-07 19:10 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\rescache
2021-02-07 18:42 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\MUI
2021-02-07 18:42 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\MUI
2021-02-07 18:42 - 2017-03-18 21:51 - 000000000 ____D C:\Windows\CbsTemp
2021-02-07 01:43 - 2017-03-18 22:03 - 000000000 __RSD C:\Windows\Media
2021-02-06 23:49 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-02-06 23:38 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-06 23:36 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Defender
2021-02-06 23:28 - 2017-03-20 05:41 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2021-02-06 23:28 - 2017-03-20 05:41 - 000000000 ____D C:\Windows\HoloShell
2021-02-06 23:28 - 2017-03-20 05:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-02-06 23:28 - 2017-03-20 05:39 - 000000000 ____D C:\Windows\system32\cs
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\F12
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\PrintDialog
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinMetadata
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\setup
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\oobe
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\migwiz
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\appraiser
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\ShellExperiences
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\Provisioning
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\PerfLogs
2021-02-06 23:28 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\system32\Dism
2021-02-06 23:28 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\servicing
2021-02-06 23:27 - 2017-03-18 22:03 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2021-02-06 23:27 - 2017-03-18 22:03 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2021-02-04 22:16 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\appcompat
2021-02-04 02:23 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2021-02-04 02:19 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\spool
2021-02-04 02:17 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows NT
2021-02-04 02:16 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\MiracastView
2021-02-04 02:16 - 2017-03-18 12:40 - 000032768 _____ C:\Windows\system32\config\ELAM
2021-02-04 02:16 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\system32\Sysprep
2021-02-04 02:15 - 2017-03-18 22:03 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2021-02-03 20:46 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\LiveKernelReports
2021-02-03 19:34 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\FxsTmp
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2021-02-03 21:34
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-02-2021 01
Ran by Jaroslak W10 (09-02-2021 22:04:21)
Running from C:\Users\Jaroslak W10\OneDrive\Plocha
Windows 10 Pro Version 1703 15063.1387 (X64) (2021-02-04 01:17:24)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2775533619-830361710-3132715996-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2775533619-830361710-3132715996-503 - Limited - Disabled)
Guest (S-1-5-21-2775533619-830361710-3132715996-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2775533619-830361710-3132715996-1003 - Limited - Enabled)
Jaroslak W10 (S-1-5-21-2775533619-830361710-3132715996-1001 - Administrator - Enabled) => C:\Users\Jaroslak W10
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI (11.0.23) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.11.2 - Advanced Micro Devices, Inc.)
AORUS ENGINE (HKLM-x32\...\AORUS ENGINE_is1) (Version: 1.9.7.0 - GIGABYTE Technology Co.,Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.20.00803.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.20.00803.1 - GIGABYTE)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 3.3.7 - ASUS)
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.24 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{a75323e1-f1a4-4aff-a7ce-3858cbc1c0d2}) (Version: 1.0.24 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.03 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.3.1 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{2357cd84-6c2b-4174-87c7-4f9f9db8746b}) (Version: 0.0.3.1 - ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32\...\{659ff51d-6e35-42de-83ec-aa394eabe9eb}) (Version: 2.0.2.2 - ASUSTek COMPUTER INC.)
ASUS Framework Service (HKLM-x32\...\{EA6A87BE-8AD3-40D2-944C-9DF5FBFF4332}) (Version: 2.0.2.2 - ASUSTek COMPUTER INC.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.39 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{9AFE5429-866B-457D-A864-80BCF7672EE8}) (Version: 1.1.06 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{684f7887-cc5b-469a-81e9-36d38142cc46}) (Version: 1.1.06 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.14 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.14 - ASUS)
AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.04.32 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{1dd27167-f40c-47db-9e8f-b2f5d210f173}) (Version: 3.04.32 - ASUSTeK Computer Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.0.0 - Canon Inc.)
Canon iP7200 series On-screen Manual (HKLM-x32\...\Canon iP7200 series On-screen Manual) (Version: 7.5.0 - Canon Inc.)
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.1.2 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.0.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.0.0 - Canon Inc.)
CanoScan 9000F Mark II Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ9604) (Version: - Canon Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{D6823E97-B396-927D-D651-AFB82BE03523}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{BF26ACAF-6D09-023B-5FB7-8A848874A724}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{9DB37D05-F855-5D7D-08C2-25E00E2CCDBC}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{87250370-0A99-4ED9-DCE4-970DAC325FA5}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{1F815C78-D31E-53FD-C8BF-3215E4F022A3}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{79F58747-D616-4CDB-7D8B-4BC580D99153}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{02E80355-64BF-6C1E-B0B7-76857D62A86D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{77158555-E271-A561-ECDA-611639388B5C}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{97673BD1-8CA0-53EF-C4E7-282CD8748F1C}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{4B01C6D5-4693-6CA8-ECF7-A0F9E7FEC6DB}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{50DBC6DD-C2A2-2C38-FE37-A48208474155}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{F1AD64B3-4114-8EF7-407C-F9F9122EDA68}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED28D75F-557C-39C9-5004-F8F17C8BC279}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{41268A73-D680-48C5-DE5E-CF67C05CBBBB}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9655DE76-0987-9159-5A7E-FCE18409D004}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{CD73EC8B-9F04-5EA1-8FD4-AEE4DAC51267}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{397C2EE5-B514-0CC5-53C3-2FBE46CE6EDF}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{45FA39D2-8AEB-AFF8-2FA6-96891732CB80}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{B3EA6CCB-F44C-DC35-94F5-1B9CC18FE598}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{AEE4C0AE-CDAF-5D37-2DA3-A2B3FDFE6E81}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{BE064737-1F2C-ECDD-916C-798E3D18C263}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.20.0701.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.20.0701.1 - GIGABYTE)
ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.28.0 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{d22b5310-9f1e-43a8-8547-58fa44742994}) (Version: 1.1.28.0 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.7.11 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{fd812556-e0bb-4961-ac2b-cf5643484519}) (Version: 1.0.7.11 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM-x32\...\{9eeadf99-713b-4ab5-9ccd-bf9c1c4d9daf}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Fast Boot (HKLM-x32\...\{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.19.0926.1 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.19.0926.1 - GIGABYTE)
Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Hidden
Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.16.1202.1 - GIGABYTE)
Intel(R) Chipset Device Software (HKLM-x32\...\{afad3740-3061-4b48-a9ab-6f1435cb3dd6}) (Version: 10.1.18383.8213 - Intel(R) Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2020.14.0.1600 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00002090-0210-1029-84C8-B8D95FA3C8C3}) (Version: 21.90.2.1 - Intel Corporation)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.28 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{511a62a9-1ff0-4cc5-adfe-4a5bd044a3c0}) (Version: 1.0.28 - KINGSTON COMPONENTS INC.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: - Logitech)
Manticore Gaming Keyboard (HKLM-x32\...\{0DAEFA4F-E394-4D1F-8F1A-6A2180561290}}_is1) (Version: - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Office 2016 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 16.0.13628.20274 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\OneDriveSetup.exe) (Version: 21.002.0104.0005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Mozilla Firefox 85.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 85.0.1 (x64 cs)) (Version: 85.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 85.0 - Mozilla)
NahimicAPI 64-bit (HKLM\...\{AEC7880F-673E-458E-B3E0-A64BA9CE88D3}) (Version: 1.0.15.0 - Nahimic)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Outbyte PC Repair (HKLM-x32\...\{D5C6DB0C-BC43-4A77-9121-D1A07591F855}_is1) (Version: 1.1.6.62247 - Outbyte Computing Pty Ltd)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.1 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{e38442c0-a433-48c2-84e2-51ac0b30c3ab}) (Version: 1.0.9.1 - Patriot Memory)
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.0.6.3 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{8839fbd5-69f9-41c5-a1cf-cdfbec966d66}) (Version: 1.0.6.3 - Patriot Memory)
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.6.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{c8f7044c-7f48-404a-9a5d-9f038f28a789}) (Version: 1.0.6.0 - PHISON Electronics Corp.) Hidden
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8945.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.39.212.2020 - Realtek)
Registrace uživatele zařízení Canon iP7200 series (HKLM-x32\...\Registrace uživatele zařízení Canon iP7200 series) (Version: - Canon Inc.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.21.0203.1 - GIGABYTE)
ROG Armoury (HKLM-x32\...\{FE703E21-A9E0-4DB3-9115-404175C8222F}) (Version: 3.00.44 - ASUSTeK Computer Inc.)
ROG Live Service (HKLM-x32\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.1.16.0 - ASUSTek COMPUTER INC.)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.20.0701.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.20.0701.1 - GIGABYTE)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.1 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{68fb2ff9-0618-4948-b68f-9f95e5687067}) (Version: 1.0.0.1 - PD)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{6753CC12-A884-47B2-9270-F5CD31B6F256}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2021-02-03] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.1.17.0_x86__kgqvnymyfvs32 [2021-02-03] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.186.200.0_x86__kgqvnymyfvs32 [2021-02-03] (king.com)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2021-02-03] (Canon Inc.)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.39.3903.0_x86__ytsefhwckbdv6 [2021-02-03] (G5 Entertainment AB)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Studios) [MS Ad]
Microsoft Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.12124.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_17.30.3.0_x64__8wekyb3d8bbwe [2021-02-06] (Microsoft Corporation)
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11001.20116.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.1000_x64__kzf8qxf38zg5c [2021-02-03] (Skype)
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.5.13516.0_x64__3ykzqggjzj4z0 [2021-02-03] (WinZip Computing)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2020-11-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-07-08 17:42 - 2020-07-08 17:42 - 000477696 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2020-07-08 17:42 - 2020-07-08 17:42 - 000471040 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2020-07-14 17:16 - 2020-07-14 17:16 - 000454656 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\registry-js\prebuilds\win32-ia32\node.napi.node
2021-02-09 01:10 - 2019-12-23 18:51 - 000093184 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\zlibwapi.dll
2020-04-22 15:35 - 2020-04-22 15:35 - 000081920 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll
2021-02-09 01:10 - 2019-05-02 15:48 - 002183680 _____ () [File not signed] C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\EzULIB_UFB.dll
2021-02-06 23:59 - 2013-01-15 17:06 - 000061952 _____ () [File not signed] C:\Program Files (x86)\Genius\Manticore\HidDevice.dll
2021-02-06 23:59 - 2011-10-11 17:32 - 000054784 _____ () [File not signed] C:\Program Files (x86)\Genius\Manticore\KBHook1.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000025088 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\BSL430.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000225792 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvFireware.dll
2021-02-03 20:37 - 2021-01-05 19:40 - 000184832 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\ITEDriver.dll
2020-04-30 15:28 - 2020-04-30 15:28 - 001866752 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2019-08-05 19:50 - 2019-08-05 19:50 - 000009216 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\Phison.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2019-11-06 14:09 - 2019-11-06 14:09 - 000190976 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\AacHal_x86.dll
2020-11-13 14:48 - 2020-11-13 14:48 - 001470976 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2020-05-26 17:08 - 2020-05-26 17:08 - 002831360 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\LightingService\log4cxx.dll
2021-02-09 01:10 - 2020-12-31 17:26 - 002676224 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\AURAChecker.dll
2021-02-09 01:09 - 2019-05-02 15:48 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\AsMultiLang.dll
2021-02-07 01:20 - 2012-04-03 12:34 - 000513024 _____ (CANON INC.) [File not signed] [File is in use] C:\Program Files (x86)\Canon\Quick Menu\CNQMMWRP.dll
2021-02-07 01:20 - 2012-02-23 19:29 - 000561152 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\Quick Menu\CCL.dll
2021-02-07 01:17 - 2012-03-28 18:00 - 000359936 _____ (CANON INC.) [File not signed] C:\Windows\System32\CNMN6PPM.DLL
2021-02-03 20:37 - 2020-11-09 15:55 - 001970176 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GbtCpuLib.dll
2021-02-03 20:37 - 2019-02-15 23:07 - 000152576 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\yccV2.DLL
2021-02-03 20:37 - 2020-12-25 11:21 - 000295936 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GVBIOSLib.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000628736 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvComW.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000013312 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvCrypt.dll
2021-02-03 20:37 - 2021-01-19 13:35 - 000475136 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GVDisplay.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000240640 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvIllumLib.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000218112 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvOrderLib.dll
2020-11-24 14:00 - 2020-11-24 14:00 - 000475648 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GVDisplay.dll
2020-11-05 14:16 - 2020-11-05 14:16 - 000268800 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvIllumLib.dll
2021-01-22 08:10 - 2021-01-22 08:10 - 002059776 _____ (GIGABYTE) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACPCIeSSD_Lib.dll
2021-01-22 08:08 - 2021-01-22 08:08 - 002057728 _____ (GIGABYTE) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACSSD_Lib.dll
2021-02-06 23:59 - 2011-09-05 09:42 - 000143360 _____ (Holtek) [File not signed] C:\Program Files (x86)\Genius\Manticore\HIDApi.dll
2021-02-03 20:09 - 2021-02-03 20:09 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL
2018-08-30 16:26 - 2018-08-30 16:26 - 000053760 _____ (MS) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\MsIo32_Galax.dll
2021-02-09 01:10 - 2019-06-26 16:07 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libcrypto-1_1-x64.dll
2021-02-09 01:10 - 2019-06-26 16:07 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libssl-1_1-x64.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-11-13 15:00 - 2020-11-13 15:00 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
2021-02-09 01:10 - 2019-05-02 15:48 - 000072704 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\Interrupt\InterruptTransfer.dll
2021-02-03 20:37 - 2019-08-27 13:22 - 000224256 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvAutoUpdate.dll
2015-10-14 01:15 - 2015-10-14 01:15 - 002042368 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll
2019-07-04 18:06 - 2019-07-04 18:06 - 001988608 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll
2017-10-05 15:26 - 2017-10-05 15:26 - 002247168 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\CRtive.dll
2018-12-08 08:22 - 2018-12-08 08:22 - 002059264 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GHidApi.dll
2021-01-26 09:39 - 2021-01-26 09:39 - 000469504 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvLedLib.dll
2020-12-24 15:00 - 2020-12-24 15:00 - 002109952 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\SMBCtrl.dll
2021-02-09 01:09 - 2020-02-10 10:27 - 000129024 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\ASUS\ROG Armoury\InstallShield\FilterDriver\AsFilterDriver.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 22:03 - 2017-03-18 22:01 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img3.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{83F03C1A-5D0E-4036-9EEE-FC753E2F4BEF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{84311E47-744B-442D-81C0-1666CFA6246E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5E7B06A0-D095-4A2F-92EF-1FE400F9D646}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F934A0A1-FBAF-40AE-B457-16D6B76CC094}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{06E63DB7-912A-43D9-BC08-E45DF57E9AB8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7700DD0F-8E9B-4001-8000-A616880B1543}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{71EFF742-E1F1-4E4B-AEAB-F7CB9BB92710}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{0FB6BA72-44BC-4B23-A87C-24D943A81681}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{6D105DDA-D332-4CEC-B205-97356D69EEC0}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{1786C407-5B7F-4DCB-8375-14FE3919BDCF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{583119B2-5A98-495F-A5EF-EDC0E9F154EE}] => (Allow) LPort=9009
FirewallRules: [{02E12EA7-3F4C-4B51-AD9D-C6A072766B17}] => (Allow) LPort=9009
FirewallRules: [{407CDB67-8930-447A-B235-6C48D5A8E620}] => (Allow) LPort=9009
FirewallRules: [{CE12C9B1-45E1-4E4E-ADC5-6C8CE5E78B18}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DC461F48-AC21-426B-84DE-B593CE0FFB06}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{21645FEF-BEB9-447F-B48D-DE42DEB80611}] => (Allow) LPort=26675
FirewallRules: [{2A9DCF2C-5DBC-452E-9DAF-5E78B81C8242}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B1FB752C-C92E-4939-9A31-2D20713409DB}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0A4695F-2EBE-4294-8485-DBB32237891C}] => (Allow) LPort=26675
FirewallRules: [{DF21095E-16F9-4995-AD00-D59E4209C377}] => (Allow) LPort=9009
FirewallRules: [{2AF62347-6893-4214-9D60-12AF08026C06}] => (Allow) LPort=9009
FirewallRules: [{49918954-242D-46A6-8711-9DFD0224A260}] => (Allow) LPort=9009
FirewallRules: [{87617C34-DAEA-4FB0-9B46-FBD5B0985EF0}] => (Allow) LPort=9009
FirewallRules: [{C81A3372-96AF-4067-8ED9-1FE6855CF51A}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3AF95DA6-61C3-44A0-B5FA-1F137382EFFD}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{381714AD-0E56-4929-B11B-EA5CCCECA50C}] => (Allow) LPort=26675
FirewallRules: [{CB795AEE-2271-4969-906C-DD1EA4C0E8FF}] => (Allow) LPort=9009
FirewallRules: [{CC8ADAAA-5FC6-498D-9D20-783571697B55}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{81587D7D-EEC5-4EE8-998D-8B285A5BE58E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{3E311256-10F8-4E1A-90B7-467E15ADA27C}E:\program files\logitech gaming software\lcore.exe] => (Block) E:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{9AD2DD6E-CFEB-471C-B47D-12C388F543F2}E:\program files\logitech gaming software\lcore.exe] => (Block) E:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{A55010CE-BEA4-4DC1-9544-DC86A6031F55}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{42FE2335-D34E-45DA-AF71-AA44D349DE4B}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{6CEADA41-C1A5-4A90-9D4C-D1268807A109}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{C409B67B-1DAB-47F3-95FA-B782DBD3DE57}] => (Allow) LPort=9009
FirewallRules: [{0E4AE570-4346-47C5-B483-6CF363B41559}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{013B4109-BE26-46BA-8D26-10E242722F20}] => (Allow) E:\SteamLibrary\steamapps\common\Fallout 3\FalloutLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{C8370DAE-D088-40B3-9B12-B73D23EB735E}] => (Allow) E:\SteamLibrary\steamapps\common\Fallout 3\FalloutLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{9DAF4977-9320-41DF-A821-101B0C232C64}] => (Allow) LPort=9009
FirewallRules: [{2D520DBE-BF6F-41FB-BD33-0B1E9CF77D5B}] => (Allow) LPort=9009
FirewallRules: [{0DCB9ADF-D30D-4398-95A9-21DF6B281791}] => (Allow) LPort=9009
FirewallRules: [{30FB1335-02BA-4ABE-9446-CFB02853C001}] => (Allow) LPort=9009
FirewallRules: [{21918CA4-4334-4141-8B1B-06464D3E8771}] => (Allow) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
FirewallRules: [{C583951D-514E-4736-A383-214B97D9ADE6}] => (Allow) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
FirewallRules: [{EB17D878-4BD4-42B3-8077-4691FA55EF42}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{5AE70BBA-A2B3-49DE-B933-F92DB271D88F}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{74D45213-F496-4902-8B0A-B774E9C71DC4}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{78584BB9-A68B-46CF-8478-C41C76E14EA1}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{FC77FB24-5D67-42AF-9644-39928C53E1E0}] => (Allow) LPort=9009
FirewallRules: [{3AA7B150-1E37-4C08-A159-0AA19BE9F908}] => (Allow) LPort=9009
FirewallRules: [{F06FA5D8-55EE-4534-B3CB-6A7F4FEA551F}] => (Allow) LPort=9009
FirewallRules: [{6813AD4A-4849-4E4E-9C0C-314C143B313A}] => (Allow) LPort=9009
==================== Restore Points =========================
25-01-2021 02:00:01 Automatic creation
27-01-2021 22:18:30 Automatic creation
31-01-2021 20:29:02 Automatic creation
03-02-2021 19:31:38 IIF_MSI
04-02-2021 02:32:40 Instalováno Realtek Audio Driver
06-02-2021 23:17:11 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
09-02-2021 00:13:32 Nainstalováno rozhraní DirectX
==================== Faulty Device Manager Devices ============
Name: Řadič jednoduché komunikace pro sběrnici PCI
Description: Řadič jednoduché komunikace pro sběrnici PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (02/09/2021 09:39:35 PM) (Source: WcesComm) (EventID: 2) (User: )
Description: Spuštění služby pro připojení zařízení se systémem Windows Mobile 2003 se nepodařilo z důvodu chyby CreateSemaphore(0x80070005) (viz data pro kód chyby).
Error: (02/09/2021 09:38:15 PM) (Source: WcesComm) (EventID: 2) (User: )
Description: Spuštění služby pro připojení zařízení se systémem Windows Mobile 2003 se nepodařilo z důvodu chyby CreateSemaphore(0x80070005) (viz data pro kód chyby).
Error: (02/09/2021 09:17:32 PM) (Source: WcesComm) (EventID: 2) (User: )
Description: Spuštění služby pro připojení zařízení se systémem Windows Mobile 2003 se nepodařilo z důvodu chyby CreateSemaphore(0x80070005) (viz data pro kód chyby).
Error: (02/09/2021 02:32:34 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-14SLUCN)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (02/09/2021 02:32:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LiveUpdateSyncCheck.exe, verze: 1.0.4.0, časové razítko: 0x5cd254c5
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.15063.1266, časové razítko: 0x51a816a7
Kód výjimky: 0xc000041d
Posun chyby: 0x000f0372
ID chybujícího procesu: 0x560
Čas spuštění chybující aplikace: 0x01d6fe823314505b
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\LiveUpdateSyncCheck.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 6bf13682-2f53-4634-b8de-68454fdc82d6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/09/2021 02:32:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LiveUpdateSyncCheck.exe, verze: 1.0.4.0, časové razítko: 0x5cd254c5
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.15063.1266, časové razítko: 0x51a816a7
Kód výjimky: 0xc0020001
Posun chyby: 0x000f0372
ID chybujícího procesu: 0x560
Čas spuštění chybující aplikace: 0x01d6fe823314505b
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\LiveUpdateSyncCheck.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 67f74824-32d4-4cfc-b91b-748c060ee916
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/09/2021 02:24:34 AM) (Source: WcesComm) (EventID: 2) (User: )
Description: Spuštění služby pro připojení zařízení se systémem Windows Mobile 2003 se nepodařilo z důvodu chyby CreateSemaphore(0x80070005) (viz data pro kód chyby).
Error: (02/09/2021 02:23:43 AM) (Source: WcesComm) (EventID: 2) (User: )
Description: Spuštění služby pro připojení zařízení se systémem Windows Mobile 2003 se nepodařilo z důvodu chyby CreateSemaphore(0x80070005) (viz data pro kód chyby).
System errors:
=============
Error: (02/09/2021 10:03:31 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: Nelze vytvořit vazbu k základnímu přenosu pro 169.254.243.242:9009. Seznam protokolu IP jen pro naslouchání (Listen-Only) pravděpodobně obsahuje odkaz na rozhraní, které v tomto počítači nemusí existovat. Číslo chyby se nachází v poli s daty.
Error: (02/09/2021 09:40:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-14SLUCN)
Description: Server {373E19B5-76AA-46D5-93A9-2E39A99B39B2} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/09/2021 09:38:03 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (02/09/2021 09:38:03 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (02/09/2021 09:37:34 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba HomeGroupListener skončila s následující chybou specifickou pro službu:
%%2147944153 = Pro mapovač koncových bodů nejsou k dispozici další koncové body.
Error: (02/09/2021 09:37:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CldFlt neuspěla při spuštění v důsledku následující chyby:
Požadavek není podporován.
Error: (02/09/2021 09:37:34 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Počítač byl restartován z procesu kontroly chyb. Kontrola chyb: 0x00000050 (0xffff9a8d5e3eb000, 0x0000000000000000, 0xfffff803be16f2e6, 0x0000000000000000). Výpis byl uložen do: C:\Windows\MEMORY.DMP. ID hlášení: 23702569-4dbc-485e-b799-e1139637eb33
Error: (02/09/2021 09:37:20 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2
CodeIntegrity:
===================================
Date: 2021-02-09 00:52:18.934
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume9\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-02-08 10:53:36.073
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume9\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-02-04 22:38:46.646
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. F4 06/17/2020
Motherboard: Gigabyte Technology Co., Ltd. Z490 AORUS ELITE AC
Processor: Intel(R) Core(TM) i7-10700 CPU @ 2.90GHz
Percentage of memory in use: 18%
Total physical RAM: 32688.32 MB
Available physical RAM: 26667.38 MB
Total Virtual: 37808.32 MB
Available Virtual: 29383.37 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.21 GB) (Free:399.81 GB) NTFS
Drive e: (2TB) (Fixed) (Total:944.98 GB) (Free:787.59 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (2TB_Downloads) (Fixed) (Total:917.52 GB) (Free:846.8 GB) NTFS
Drive h: (1T-20190215) (Fixed) (Total:931.51 GB) (Free:920.86 GB) NTFS
Drive i: (VERBATIM HD) (Fixed) (Total:931.28 GB) (Free:872.39 GB) FAT32
\\?\Volume{9c059fba-0ea4-488c-88f3-e54dc05f2138}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.1 GB) NTFS
\\?\Volume{04fa6739-0000-0000-0000-f03eec000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: C63DC730)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 54585798)
Partition 1: (Active) - (Size=223.6 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 04FA6739)
Partition 1: (Active) - (Size=945 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=522 MB) - (Type=27)
Partition 3: (Not Active) - (Size=917.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 4 (Size: 931.5 GB) (Disk ID: 2028593E)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=0C)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-02-2021 01
Ran by Jaroslak W10 (administrator) on DESKTOP-14SLUCN (Gigabyte Technology Co., Ltd. Z490 AORUS ELITE AC) (09-02-2021 22:03:16)
Running from C:\Users\Jaroslak W10\OneDrive\Plocha
Loaded Profiles: Jaroslak W10
Platform: Windows 10 Pro Version 1703 15063.1387 (X64) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atiesrxx.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\ArmouryLiveUpdate.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\Mouse\ROG STRIX CARRY\P508PowerAgent.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <2>
(ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\LiveUpdateSyncCheck.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\AudioLEDControl\ledcontrolservice3.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files (x86)\ASUS\ROG Armoury\Tools\Mutually Exclusive AURA Agent.exe
(ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe
(A-Volute -> NahimicAPI) C:\Program Files\NahimicAPI\NahimicAPISvc64.exe
(A-Volute -> NahimicAPI) C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\RGBFusion\RGBFusion.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c98d5e0dfc88ac2f\RstMwService.exe
(KYE) [File not signed] C:\Program Files (x86)\Genius\Manticore\MTHid.exe
(Logitech Inc -> ) C:\Program Files\LGHUB\logi_analytics_client.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <4>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Jaroslak W10\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(Outbyte Computing Pty Ltd -> Outbyte) C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.1000_x64__kzf8qxf38zg5c\SkypeHost.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1082160 2020-05-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [Asus Headset Svc64] => C:\Program Files\NahimicAPI\NahimicAPISvc64.exe [744320 2020-03-23] (A-Volute -> NahimicAPI)
HKLM\...\Run: [Asus Headset Svc32] => C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe [583552 2020-03-23] (A-Volute -> NahimicAPI)
HKLM-x32\...\Run: [Manticore] => C:\Program Files (x86)\Genius\Manticore\MThid.exe [293376 2013-10-29] (KYE) [File not signed]
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (Canon Inc. -> CANON INC.)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM-x32\...\RunOnce: [SelLed] => C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe [50096 2019-04-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-08] (Valve -> Valve Corporation)
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792272 2021-02-07] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\MountPoints2: {9326ab22-6686-11eb-885c-806e6f6e6963} - "G:\Run.exe"
HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\Windows\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-03-28] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [225792 2017-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{9650FDBC-053A-4715-AD14-FC2DC65E8330}] -> C:\Windows\system32\hvsigpext.dll [2017-03-20] (Microsoft Windows -> )
Startup: C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AORUS ENGINE.lnk [2021-02-06]
ShortcutTarget: AORUS ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\autorun.exe () [File not signed]
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {033CDDB0-403C-4BA2-99B9-17FE2B41021D} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426208 2020-05-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {0478EB03-9556-4875-AD43-9E5CEEA6D574} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993288 2021-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {10EF239B-532C-497E-A09C-6F1DA7D1D7A6} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {2880FEF6-CA9A-47B9-9D01-ADE758E1D3FA} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [254176 2020-05-04] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {291A819F-D933-4E9C-986B-AC02444D2693} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2936EF95-78FF-44E5-9891-C9FB2365E4B6} - System32\Tasks\ASUS\ArmouryLiveUpdate => C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\ArmouryLiveUpdate.exe [1462760 2020-03-31] (ASUSTeK Computer Inc. -> )
Task: {423F4481-04FD-45CB-960E-B112E6C75282} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [245760 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
Task: {4626E870-29BF-469D-8DCB-B22F12CD0E28} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115048 2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {4C5EBED7-C80E-4ED2-8286-56544189F036} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [45540760 2021-01-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {59C955A0-BEDF-49A3-AF47-C063ABF9C69F} - System32\Tasks\Outbyte\PC Repair\DailyTip => C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe [8638784 2021-01-13] (Outbyte Computing Pty Ltd -> Outbyte) <==== ATTENTION
Task: {5BB06A8F-5CD4-4E19-B6E6-57DF709E4F73} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {63B7E24E-B7A0-4850-8A9A-31E535ABB7C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {66F263C7-7554-458A-9B64-C16B32562DAB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115048 2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {7DD37AE2-1E59-40EF-93B6-373764482E51} - System32\Tasks\ASUS\ledcontrolservice3 => C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\AudioLEDControl\ledcontrolservice3.exe [2557744 2020-01-08] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {873B03F5-B2F4-488D-9FB0-F2D89C992B5E} - System32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE => C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe [33937464 2021-02-03] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.)
Task: {87E1D74C-5D66-4D89-8721-237EF65A1AC6} - System32\Tasks\Outbyte\PC Repair\NewDeceptors => C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe [8638784 2021-01-13] (Outbyte Computing Pty Ltd -> Outbyte) <==== ATTENTION
Task: {99BBC9C9-EC16-4EEE-A267-59DD144953C9} - System32\Tasks\ASUS\P508PowerAgent => C:\Program Files (x86)\ASUS\ROG Armoury\Mouse\ROG STRIX CARRY\P508PowerAgent.exe [51120 2019-11-01] (ASUSTeK Computer Inc. -> )
Task: {9C87A908-FFC0-454E-A828-894034129187} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe
Task: {A2D4FAD7-2380-4D14-AA72-2CBBE4AF811D} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [2025488 2021-01-22] (ASUSTeK Computer Inc. -> ASUS)
Task: {A356CDA2-1DA9-48DB-A712-FF5D6011D37B} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
Task: {A9FF7A8C-DFC1-44E1-A5C4-5E0591BE8938} - System32\Tasks\ASUS\MacroAgent => C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe [77960 2020-03-31] (ASUSTeK Computer Inc. -> )
Task: {ABCB7F0C-DB0A-4694-BB9D-AF78311AA42D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {AF66C1F2-9DAF-41DC-8FDB-4365608B9640} - System32\Tasks\Outbyte\PC Repair\Start PC Repair оn logon => C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe [8638784 2021-01-13] (Outbyte Computing Pty Ltd -> Outbyte) <==== ATTENTION
Task: {B4165120-A24B-46B4-BFDA-91586DBB998C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {BC9AECFA-C872-4376-81B6-0C1AFE79F558} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993288 2021-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD1F4ED5-CC1D-4BDC-BEC3-4C15EE2E7A93} - System32\Tasks\NahimicAPISvc32Run => C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe [583552 2020-03-23] (A-Volute -> NahimicAPI)
Task: {D7349301-5EB0-43E3-8C9D-A75A04052776} - System32\Tasks\NahimicAPISvc64Run => C:\Program Files\NahimicAPI\NahimicAPISvc64.exe [744320 2020-03-23] (A-Volute -> NahimicAPI)
Task: {E24828DF-21B6-4E49-B48A-321CB3FDC031} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [1124744 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {E45ACE2F-646E-4E8F-970C-A10E7B9C12F1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E92CA5D2-627C-47BE-A21E-28CD625BE38A} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {EB2C0ACB-C151-4484-ABEA-8323188099BC} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d6fe77fb115b98 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {EFA4B7F2-6629-41A6-B10A-4CFFB3AAB966} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {F0EFCA96-CA34-48D8-ABA3-2701567BB73A} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {F29FB4EA-59F3-4E67-9273-F49A09F4E4D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F5817A20-27A1-457E-82FA-E21C8FE57CC5} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [227328 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{cefab0fe-28e1-47aa-808f-0c9c7aa5e46c}: [DhcpNameServer] 192.168.1.1
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.1.14,1]
FireFox:
========
FF DefaultProfile: yjp2rqwn.default
FF ProfilePath: C:\Users\Jaroslak W10\AppData\Roaming\Mozilla\Firefox\Profiles\yjp2rqwn.default [2021-02-03]
FF ProfilePath: C:\Users\Jaroslak W10\AppData\Roaming\Mozilla\Firefox\Profiles\2fdrg39k.default-release [2021-02-09]
FF Session Restore: Mozilla\Firefox\Profiles\2fdrg39k.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\2fdrg39k.default-release -> hxxps://geek.wish.com
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [344184 2021-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [313008 2020-12-17] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [163176 2021-02-09] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8902024 2021-01-22] (Microsoft Corporation -> Microsoft Corporation)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [143072 2020-07-01] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128736 2020-05-04] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] (Canon Inc. -> )
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10897296 2021-02-07] (Logitech Inc -> Logitech, Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [3053656 2021-01-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [119808 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
R2 RapiMgr; C:\Windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R2 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [5463128 2021-01-18] (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2018-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WcesComm; C:\Windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-02-06] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-05-02] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43920 2020-12-17] (ASUSTeK Computer Inc. -> )
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2021-02-04] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\73248\driver_cpu_temperature\logi_core_temp.sys [25448 2021-02-07] (Logitech Inc. -> Logitech)
R3 logi_audio_surround; C:\Windows\system32\drivers\logi_audio_surround.sys [44096 2021-02-08] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [38136 2021-02-07] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [26672 2021-02-07] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [66808 2021-02-07] (Logitech Inc -> Logitech)
R3 MpKsl8d5c88b7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3AAC292D-F154-479E-9057-DB4F01816084}\MpKslDrv.sys [47344 2021-02-09] (Microsoft Windows -> Microsoft Corporation)
U1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 ObDrvMonPCRSrv; C:\Program Files (x86)\Outbyte\PC Repair\DrvMonX64.sys [187688 2020-12-15] (Outbyte Computing Pty Ltd -> Outbyte)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-02-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [429296 2021-02-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2021-02-06] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsl9fd8d18d; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{49AFEA13-8A22-44AF-A48D-47234DCE4C9B}\MpKslDrv.sys [X]
S3 MpKsle13d7e68; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{49AFEA13-8A22-44AF-A48D-47234DCE4C9B}\MpKslDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-09 22:03 - 2021-02-09 22:03 - 000000000 ____D C:\FRST
2021-02-09 21:45 - 2021-02-09 21:45 - 020604704 _____ (Outbyte) C:\Users\Jaroslak W10\Downloads\Page_Fault_In_Nonpaged_Area_repair-setup.exe
2021-02-09 21:45 - 2021-02-09 21:45 - 000000000 ____D C:\Windows\system32\Tasks\Outbyte
2021-02-09 21:45 - 2021-02-09 21:45 - 000000000 ____D C:\Program Files (x86)\Outbyte
2021-02-09 21:37 - 2021-02-09 21:37 - 001054668 _____ C:\Windows\Minidump\020921-14656-01.dmp
2021-02-09 02:28 - 2021-02-09 02:28 - 001474440 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\Risen.odt
2021-02-09 02:22 - 2021-02-09 02:22 - 001067780 _____ C:\Windows\Minidump\020921-10453-01.dmp
2021-02-09 01:29 - 2021-02-09 01:29 - 001037700 _____ C:\Windows\Minidump\020921-15281-01.dmp
2021-02-09 01:11 - 2021-02-09 01:33 - 000000000 ____D C:\Program Files\ASUS
2021-02-09 01:11 - 2021-02-09 01:11 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\ASUS
2021-02-09 01:11 - 2021-02-09 01:11 - 000000000 ____D C:\Program Files\PHISON
2021-02-09 01:11 - 2021-02-09 01:11 - 000000000 ____D C:\Program Files\PD
2021-02-09 01:11 - 2021-02-09 01:11 - 000000000 ____D C:\Program Files (x86)\LightingService
2021-02-09 01:11 - 2020-12-17 17:13 - 000152368 _____ (©ASUSTeK Computer Inc.) C:\Windows\system32\AsIO3.dll
2021-02-09 01:11 - 2020-12-17 17:13 - 000124504 _____ (©ASUSTeK Computer Inc.) C:\Windows\SysWOW64\AsIO3.dll
2021-02-09 01:11 - 2020-12-17 17:13 - 000043920 _____ C:\Windows\system32\Drivers\AsIO3.sys
2021-02-09 01:11 - 2019-04-24 11:25 - 000029368 _____ C:\Windows\system32\Drivers\GLCKIO2.sys
2021-02-09 01:10 - 2021-02-09 21:38 - 000000000 ____D C:\Program Files\NahimicAPI
2021-02-09 01:10 - 2021-02-09 01:11 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2021-02-09 01:10 - 2021-02-09 01:10 - 000003188 _____ C:\Windows\system32\Tasks\NahimicAPISvc32Run
2021-02-09 01:10 - 2021-02-09 01:10 - 000003180 _____ C:\Windows\system32\Tasks\NahimicAPISvc64Run
2021-02-09 01:10 - 2021-02-09 01:10 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\AcSdkInsLog
2021-02-09 01:10 - 2019-05-02 15:48 - 000120880 _____ C:\Windows\system32\AsIO2.dll
2021-02-09 01:10 - 2019-05-02 15:48 - 000095280 _____ C:\Windows\SysWOW64\AsIO2.dll
2021-02-09 01:10 - 2019-05-02 15:48 - 000033832 _____ C:\Windows\system32\Drivers\AsIO2.sys
2021-02-09 01:09 - 2021-02-09 01:33 - 000000000 ____D C:\Program Files (x86)\ASUS
2021-02-09 00:53 - 2021-02-09 00:53 - 001090780 _____ C:\Windows\Minidump\020921-10937-01.dmp
2021-02-09 00:14 - 2021-02-09 00:15 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Fallout3
2021-02-09 00:14 - 2021-02-09 00:14 - 000000000 ____D C:\Windows\SysWOW64\xlive
2021-02-09 00:14 - 2021-02-09 00:14 - 000000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2021-02-09 00:13 - 2021-02-09 00:13 - 000000000 ____D C:\Users\Jaroslak W10\OneDrive\Dokumenty\My Games
2021-02-08 22:40 - 2021-02-08 22:40 - 001049412 _____ C:\Windows\Minidump\020821-14828-01.dmp
2021-02-08 22:22 - 2021-02-09 21:37 - 1726176848 _____ C:\Windows\MEMORY.DMP
2021-02-08 22:22 - 2021-02-09 21:37 - 000000000 ____D C:\Windows\Minidump
2021-02-08 12:09 - 2021-02-08 12:09 - 000531030 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\IMG_20210208_0002.pdf
2021-02-08 12:07 - 2021-02-08 12:07 - 000532283 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\IMG_20210208_0001.pdf
2021-02-08 00:53 - 2021-02-08 00:53 - 002512896 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\Narozeni(2).xls
2021-02-08 00:52 - 2021-02-08 00:52 - 000000000 ____D C:\Users\Jaroslak W10\OneDrive\Dokumenty\Vlastní šablony Office
2021-02-08 00:48 - 2021-02-08 00:48 - 004451384 _____ (Logitech) C:\Windows\system32\logi_audio_headset_render_apo.dll
2021-02-08 00:48 - 2021-02-08 00:48 - 002174656 _____ (Logitech) C:\Windows\system32\logi_audio_headset_capture_apo.dll
2021-02-08 00:48 - 2021-02-08 00:48 - 000044096 _____ (Logitech) C:\Windows\system32\Drivers\logi_audio_surround.sys
2021-02-08 00:46 - 2021-02-08 00:47 - 041317512 _____ (Logitech, Inc.) C:\Users\Jaroslak W10\Downloads\lghub_installer(1).exe
2021-02-08 00:30 - 2021-02-08 00:30 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Risen2
2021-02-07 22:24 - 2021-02-07 22:24 - 000000000 ___RD C:\Users\Jaroslak W10\3D Objects
2021-02-07 21:42 - 2021-02-07 21:42 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Microsoft_Corporation
2021-02-07 18:46 - 2021-02-07 18:46 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Program Files\MSBuild
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-02-07 18:42 - 2021-02-07 18:42 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-02-07 18:39 - 2021-02-09 21:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-02-07 02:00 - 2021-02-07 02:00 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Logishrd
2021-02-07 01:59 - 2021-02-09 21:54 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\LGHUB
2021-02-07 01:59 - 2021-02-09 21:17 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\LGHUB
2021-02-07 01:59 - 2021-02-07 01:59 - 000000000 ____D C:\Program Files\LGHUB
2021-02-07 01:58 - 2021-02-07 01:58 - 000066808 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_xlcore.sys
2021-02-07 01:58 - 2021-02-07 01:58 - 000038136 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_bus_enum.sys
2021-02-07 01:58 - 2021-02-07 01:58 - 000026672 _____ (Logitech) C:\Windows\system32\Drivers\logi_joy_vir_hid.sys
2021-02-07 01:57 - 2021-02-07 01:57 - 041317512 _____ (Logitech, Inc.) C:\Users\Jaroslak W10\Downloads\lghub_installer.exe
2021-02-07 01:46 - 2021-02-07 01:46 - 000030780 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\IMG_20210207_0001.pdf
2021-02-07 01:43 - 2012-07-05 08:58 - 000320000 _____ (CANON INC.) C:\Windows\SysWOW64\CNQ9604L.dll
2021-02-07 01:43 - 2012-07-04 15:18 - 000081664 _____ C:\Windows\SysWOW64\CNQ190DD.TBL
2021-02-07 01:43 - 2012-04-06 16:40 - 000103424 _____ (CANON INC.) C:\Windows\SysWOW64\CNQ9604U.dll
2021-02-07 01:43 - 2012-04-06 13:27 - 000786504 _____ C:\Windows\SysWOW64\CNQ_412N.DAT
2021-02-07 01:43 - 2012-04-04 10:07 - 000296064 _____ C:\Windows\SysWOW64\CNQ_412W.DAT
2021-02-07 01:43 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\Windows\SysWOW64\CNHMCA.dll
2021-02-07 01:40 - 2012-07-05 09:00 - 000363520 _____ (CANON INC.) C:\Windows\system32\CNQ9604L.dll
2021-02-07 01:40 - 2012-07-04 15:18 - 000081664 _____ C:\Windows\system32\CNQ190DD.TBL
2021-02-07 01:40 - 2012-05-09 16:27 - 000062464 _____ (Canon Inc.) C:\Windows\system32\CNQ9604O.dll
2021-02-07 01:40 - 2012-04-06 16:40 - 000287744 _____ (CANON INC.) C:\Windows\system32\CNQ9604C.dll
2021-02-07 01:40 - 2012-04-06 16:39 - 000106496 _____ (CANON INC.) C:\Windows\system32\CNQ9604I.dll
2021-02-07 01:40 - 2012-04-06 13:27 - 000786504 _____ C:\Windows\system32\CNQ_412N.DAT
2021-02-07 01:40 - 2012-04-04 10:07 - 000296064 _____ C:\Windows\system32\CNQ_412W.DAT
2021-02-07 01:40 - 2008-08-25 18:02 - 000017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.dll
2021-02-07 01:37 - 2021-02-07 01:46 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Canon
2021-02-07 01:30 - 2021-02-07 01:30 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Logitech
2021-02-07 01:21 - 2021-02-07 01:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\Canon Easy-WebPrint EX2
2021-02-07 01:21 - 2021-02-07 01:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\Canon Easy-WebPrint EX
2021-02-07 01:20 - 2021-02-07 01:20 - 000000000 ____D C:\Program Files\Common Files\CANON
2021-02-07 01:18 - 2021-02-07 01:21 - 000000000 ____D C:\Program Files\Canon
2021-02-07 01:17 - 2021-02-07 01:40 - 000000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information
2021-02-07 01:17 - 2021-02-07 01:39 - 000000000 ___HD C:\Program Files\CanonBJ
2021-02-07 01:17 - 2021-02-07 01:17 - 000000000 ____D C:\Windows\system32\STRING
2021-02-07 01:17 - 2012-03-28 18:01 - 000039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL
2021-02-07 01:17 - 2012-03-28 18:00 - 000366592 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL
2021-02-07 01:17 - 2012-03-28 18:00 - 000359936 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL
2021-02-07 01:16 - 2021-02-07 01:43 - 000000000 ____D C:\Program Files (x86)\Canon
2021-02-07 00:21 - 2021-02-07 00:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\KYE Manticore
2021-02-06 23:59 - 2021-02-06 23:59 - 000039106 _____ C:\Windows\unins000.dat
2021-02-06 23:59 - 2021-02-06 23:59 - 000000000 ____D C:\Program Files (x86)\Genius
2021-02-06 23:59 - 2021-02-06 23:56 - 001219543 _____ C:\Windows\unins000.exe
2021-02-06 23:51 - 2021-02-06 23:51 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Skype
2021-02-06 23:49 - 2021-02-07 19:04 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-02-06 23:49 - 2021-02-06 23:49 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-02-06 23:36 - 2021-02-06 23:46 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-02-06 23:36 - 2021-02-06 23:36 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\cache
2021-02-06 23:32 - 2020-01-19 19:49 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2021-02-06 23:32 - 2020-01-19 19:49 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.old
2021-02-06 23:28 - 2021-02-06 23:28 - 000000000 ___SD C:\Windows\UpdateAssistantV2
2021-02-06 23:25 - 2020-11-17 22:49 - 000107048 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys
2021-02-06 23:23 - 2021-02-09 21:38 - 000003124 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-02-06 23:23 - 2021-02-06 23:23 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2021-02-06 23:23 - 2021-02-06 23:23 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR
2021-02-06 23:23 - 2021-02-06 23:23 - 000000000 ____D C:\Windows\system32\AMD
2021-02-06 23:22 - 2020-11-17 22:52 - 001753912 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-02-06 23:22 - 2020-11-17 22:52 - 001753912 _____ C:\Windows\system32\vulkaninfo.exe
2021-02-06 23:22 - 2020-11-17 22:52 - 001359680 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-02-06 23:22 - 2020-11-17 22:52 - 001359680 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-02-06 23:22 - 2020-11-17 22:52 - 001047992 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-02-06 23:22 - 2020-11-17 22:52 - 001047992 _____ C:\Windows\system32\vulkan-1.dll
2021-02-06 23:22 - 2020-11-17 22:52 - 000910456 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-02-06 23:22 - 2020-11-17 22:52 - 000910456 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-02-06 23:22 - 2020-11-17 22:51 - 001593664 _____ (AMD) C:\Windows\system32\coinst_20.45.dll
2021-02-06 23:22 - 2020-11-17 22:50 - 079762240 _____ C:\Windows\system32\amd_comgr.dll
2021-02-06 23:22 - 2020-11-17 22:50 - 065448248 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2021-02-06 23:22 - 2020-11-17 22:50 - 001490752 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiacm64.dll
2021-02-06 23:22 - 2020-11-17 22:50 - 000150336 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-02-06 23:22 - 2020-11-17 22:50 - 000130880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-02-06 23:22 - 2020-11-17 22:48 - 000202640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll
2021-02-06 23:22 - 2020-11-17 22:48 - 000170192 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll
2021-02-06 23:22 - 2020-11-17 21:15 - 000125488 _____ C:\Windows\system32\kapp_ci.sbin
2021-02-06 23:22 - 2020-11-17 21:15 - 000121168 _____ C:\Windows\system32\kapp_si.sbin
2021-02-06 23:22 - 2020-11-17 21:15 - 000076237 _____ C:\Windows\system32\AMDKernelEvents.man
2021-02-06 23:22 - 2020-11-17 21:15 - 000012344 _____ C:\Windows\system32\brandingWS_RSX.bmp
2021-02-06 23:22 - 2020-11-17 21:15 - 000012344 _____ C:\Windows\system32\brandingRSX.bmp
2021-02-06 23:22 - 2020-11-17 21:15 - 000011014 _____ C:\Windows\system32\atiacmLocalisation.ini
2021-02-06 23:22 - 2020-11-17 21:15 - 000000822 _____ C:\Windows\system32\branding.bmp
2021-02-06 23:22 - 2020-10-26 15:14 - 000511920 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdfendrsr.exe
2021-02-06 23:22 - 2020-10-26 15:14 - 000089008 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdfendr.sys
2021-02-06 23:22 - 2020-07-27 08:41 - 000062056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdxe.sys
2021-02-06 23:21 - 2021-02-06 23:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\RadeonInstaller
2021-02-06 23:12 - 2021-02-06 23:12 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-02-06 23:10 - 2018-07-31 22:24 - 000804272 _____ C:\Windows\SysWOW64\locale.nls
2021-02-06 23:10 - 2018-07-31 22:24 - 000804272 _____ C:\Windows\system32\locale.nls
2021-02-06 23:10 - 2018-07-18 00:50 - 000432128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-02-06 23:10 - 2018-06-08 06:19 - 000753664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2021-02-06 23:10 - 2018-05-21 11:52 - 001859584 _____ C:\Windows\SysWOW64\Windows.Mirage.dll
2021-02-06 23:10 - 2018-04-26 20:33 - 000526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2021-02-06 23:10 - 2018-03-18 22:02 - 000229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2021-02-06 23:10 - 2018-03-02 07:43 - 000494080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2021-02-06 23:10 - 2018-03-02 07:36 - 000411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2021-02-06 23:10 - 2018-01-01 03:03 - 000311704 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2021-02-06 23:10 - 2018-01-01 02:37 - 000038912 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2021-02-06 23:10 - 2018-01-01 02:32 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2021-02-06 23:10 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscript.ocx
2021-02-06 23:10 - 2017-09-29 08:38 - 001135616 ____R (The ICU Project) C:\Windows\SysWOW64\icuuc.dll
2021-02-06 23:10 - 2017-07-31 23:45 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
2021-02-06 23:10 - 2017-06-20 05:39 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2021-02-06 23:10 - 2017-06-20 05:30 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdmaud.drv
2021-02-06 23:10 - 2017-05-20 09:26 - 000059904 _____ C:\Windows\SysWOW64\xboxgipsynthetic.dll
2021-02-06 23:09 - 2018-08-30 06:03 - 001397712 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-02-06 23:09 - 2018-08-30 06:03 - 001066128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-02-06 23:09 - 2018-08-10 00:49 - 004876800 _____ (Gracenote, Inc.) C:\Windows\system32\gnsdk_fp.dll
2021-02-06 23:09 - 2018-08-09 01:24 - 004171264 _____ (Gracenote, Inc.) C:\Windows\SysWOW64\gnsdk_fp.dll
2021-02-06 23:09 - 2018-07-18 00:49 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-02-06 23:09 - 2018-06-08 06:31 - 002079744 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2021-02-06 23:09 - 2018-06-08 06:30 - 000571392 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2021-02-06 23:09 - 2018-06-08 06:19 - 002011648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2021-02-06 23:09 - 2018-06-08 06:19 - 000508416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2021-02-06 23:09 - 2018-05-24 22:28 - 002447360 _____ C:\Windows\system32\Windows.Mirage.dll
2021-02-06 23:09 - 2018-04-26 20:33 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2021-02-06 23:09 - 2018-03-02 10:46 - 000037376 _____ C:\Windows\system32\SpectrumSyncClient.dll
2021-02-06 23:09 - 2018-03-02 07:49 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2021-02-06 23:09 - 2018-01-01 02:40 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2021-02-06 23:09 - 2018-01-01 02:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2021-02-06 23:09 - 2018-01-01 02:38 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2021-02-06 23:09 - 2018-01-01 02:34 - 000072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2021-02-06 23:09 - 2018-01-01 02:32 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2021-02-06 23:09 - 2017-09-01 06:55 - 000031932 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
2021-02-06 23:08 - 2018-09-27 15:54 - 000125015 ____R C:\Windows\system32\CaptureCountdown.hcp
2021-02-06 23:08 - 2018-09-27 15:54 - 000119017 ____R C:\Windows\system32\CaptureBrackets.hcp
2021-02-06 23:08 - 2018-09-27 15:54 - 000017806 ____R C:\Windows\system32\CaptureToast.hcp
2021-02-06 23:08 - 2018-09-27 06:13 - 000967168 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2021-02-06 23:08 - 2018-08-30 06:01 - 001018784 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-06 23:08 - 2018-08-30 05:56 - 000035296 _____ C:\Windows\system32\SyncAppvPublishingServer.exe
2021-02-06 23:08 - 2018-06-08 06:36 - 000778240 _____ C:\Windows\system32\MBR2GPT.EXE
2021-02-06 23:08 - 2018-06-08 06:32 - 000819712 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2021-02-06 23:08 - 2018-06-08 06:32 - 000540160 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2021-02-06 23:08 - 2018-03-18 22:07 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2021-02-06 23:08 - 2018-03-02 14:37 - 000459776 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2021-02-06 23:08 - 2018-01-01 03:27 - 000382864 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2021-02-06 23:08 - 2018-01-01 02:42 - 000047104 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2021-02-06 23:08 - 2017-09-29 08:27 - 001321984 ____R (The ICU Project) C:\Windows\system32\icuuc.dll
2021-02-06 23:08 - 2017-06-20 06:05 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2021-02-06 23:08 - 2017-06-20 05:56 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2021-02-06 23:08 - 2017-05-20 07:08 - 000086016 _____ C:\Windows\system32\xboxgipsynthetic.dll
2021-02-05 00:00 - 2021-02-05 00:00 - 000000000 ____D C:\Windows\WindowsMobile
2021-02-04 22:41 - 2021-02-04 22:41 - 184727696 _____ (Macrovision Corporation) C:\Users\Jaroslak W10\Downloads\Risen_Patch_1.10(1).exe
2021-02-04 22:22 - 2021-02-09 21:41 - 000000000 ____D C:\Windows\system32\MRT
2021-02-04 22:22 - 2021-02-06 23:06 - 000000000 ____D C:\Program Files\CUAssistant
2021-02-04 22:22 - 2021-02-04 22:22 - 000000000 ____D C:\Program Files\rempl
2021-02-04 02:33 - 2021-02-04 02:33 - 000000000 ____D C:\Program Files (x86)\Intel
2021-02-04 02:33 - 2020-04-19 18:43 - 001162840 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2021-02-04 02:32 - 2021-02-09 01:10 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-02-04 02:32 - 2021-02-04 02:33 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-02-04 02:32 - 2021-02-04 02:33 - 000000000 ____D C:\Program Files (x86)\Realtek
2021-02-04 02:32 - 2021-02-03 19:31 - 000000000 ____D C:\Program Files\Intel
2021-02-04 02:32 - 2020-05-03 15:31 - 001082160 _____ (Realtek Semiconductor) C:\Windows\system32\RtkAudUService64.exe
2021-02-04 02:32 - 2020-05-03 15:31 - 000844896 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64U.dll
2021-02-04 02:32 - 2020-05-03 15:31 - 000224280 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2021-02-04 02:32 - 2020-05-03 15:30 - 001145480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtCOM64.dll
2021-02-04 02:32 - 2020-05-03 15:30 - 000468792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2021-02-04 02:32 - 2020-05-03 14:30 - 007339104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2021-02-04 02:32 - 2020-05-03 14:20 - 039656533 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2021-02-04 02:32 - 2019-12-19 08:07 - 002877104 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2021-02-04 02:31 - 2021-02-04 02:31 - 000000000 ____D C:\Users\Jaroslak W10\Intel
2021-02-04 02:30 - 2021-02-04 02:30 - 000032600 ____N (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\gdrv2.sys
2021-02-04 02:30 - 2021-02-03 20:11 - 000000010 _____ C:\Windows\GSetup.ini
2021-02-04 02:30 - 2018-04-10 23:45 - 000081408 ____R (Microsoft Corporation) C:\Windows\devcon.exe
2021-02-04 02:30 - 2009-08-27 08:04 - 000207400 ____R () C:\Windows\GSetup.exe
2021-02-04 02:29 - 2021-02-04 02:29 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\MicrosoftEdge
2021-02-04 02:25 - 2021-02-09 21:38 - 000000000 ___RD C:\Users\Jaroslak W10\OneDrive
2021-02-04 02:25 - 2021-02-04 22:15 - 000002427 _____ C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-04 02:24 - 2021-02-07 18:52 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Packages
2021-02-04 02:24 - 2021-02-07 00:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\ConnectedDevicesPlatform
2021-02-04 02:24 - 2021-02-04 02:24 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\VirtualStore
2021-02-04 02:24 - 2021-02-04 02:24 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\TileDataLayer
2021-02-04 02:24 - 2021-02-03 20:37 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Publishers
2021-02-04 02:24 - 2021-02-03 20:32 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Adobe
2021-02-04 02:23 - 2021-02-09 21:38 - 000000000 ____D C:\Users\Jaroslak W10
2021-02-04 02:23 - 2021-02-04 02:23 - 000000020 ___SH C:\Users\Jaroslak W10\ntuser.ini
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Šablony
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Soubory cookie
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Poslední
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Okolní tiskárny
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Okolní síť
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Nabídka Start
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Dokumenty
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\Data aplikací
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-02-04 02:23 - 2021-02-04 02:23 - 000000000 _SHDL C:\Users\Jaroslak W10\AppData\Local\Data aplikací
2021-02-04 02:21 - 2021-02-09 21:43 - 002668944 _____ C:\Windows\system32\PerfStringBackup.INI
2021-02-04 02:19 - 2021-02-04 02:19 - 000000000 ____D C:\Windows\CSC
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Šablony
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Poslední
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Okolní síť
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Dokumenty
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\Data aplikací
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Šablony
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Soubory cookie
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Poslední
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Okolní tiskárny
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Okolní síť
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Nabídka Start
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Dokumenty
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\Data aplikací
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2021-02-04 02:17 - 2021-02-04 02:17 - 000000000 _SHDL C:\Documents and Settings
2021-02-04 02:16 - 2021-02-09 21:37 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-02-04 02:16 - 2021-02-08 12:05 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-02-04 02:16 - 2021-02-07 00:00 - 000265032 _____ C:\Windows\system32\FNTCACHE.DAT
2021-02-04 02:16 - 2021-02-04 02:16 - 000000000 ____D C:\Windows\ServiceProfiles
2021-02-04 02:16 - 2021-02-04 02:16 - 000000000 ____D C:\Windows\Panther
2021-02-03 21:29 - 2021-02-03 21:29 - 058178001 _____ C:\Users\Jaroslak W10\Downloads\risen_czfm_110.zip
2021-02-03 21:28 - 2021-02-03 21:34 - 184727696 _____ (Macrovision Corporation) C:\Users\Jaroslak W10\Downloads\Risen_Patch_1.10.exe
2021-02-03 20:53 - 2021-02-06 23:17 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-02-03 20:50 - 2021-02-03 20:50 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\AMD
2021-02-03 20:45 - 2021-02-03 20:45 - 000003430 _____ C:\Windows\system32\Tasks\AMD ThankingURL
2021-02-03 20:43 - 2021-02-03 20:43 - 000003160 _____ C:\Windows\system32\Tasks\StartCN
2021-02-03 20:43 - 2021-02-03 20:43 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\ATI
2021-02-03 20:43 - 2021-02-03 20:43 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\ATI
2021-02-03 20:43 - 2021-02-03 20:43 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2021-02-03 20:37 - 2021-02-06 23:17 - 000003492 _____ C:\Windows\system32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE
2021-02-03 20:32 - 2021-02-06 23:17 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Adobe
2021-02-03 20:32 - 2021-02-03 20:32 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\Adobe
2021-02-03 20:32 - 2021-02-03 20:32 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\DBG
2021-02-03 20:32 - 2021-02-03 20:32 - 000000000 ____D C:\Program Files (x86)\MonitorDriver
2021-02-03 20:31 - 2021-02-03 20:31 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-02-03 20:30 - 2021-02-03 20:30 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Macromedia
2021-02-03 20:24 - 2021-02-03 20:24 - 000000000 ____D C:\Users\Jaroslak W10\OneDrive\Dokumenty\temp
2021-02-03 20:16 - 2021-02-09 01:11 - 000000000 ____D C:\Program Files\Patriot
2021-02-03 20:16 - 2021-02-09 01:11 - 000000000 ____D C:\Program Files\ENE
2021-02-03 20:16 - 2021-02-03 20:16 - 000000000 ____D C:\Program Files (x86)\ENE
2021-02-03 20:16 - 2020-05-12 01:28 - 000020992 _____ C:\Windows\system32\Drivers\ene.sys
2021-02-03 20:15 - 2021-02-03 20:15 - 000003412 _____ C:\Windows\system32\Tasks\SIV-VGA
2021-02-03 20:15 - 2021-02-03 20:15 - 000003406 _____ C:\Windows\system32\Tasks\SIV
2021-02-03 20:15 - 2021-02-03 20:15 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\PeerDistRepub
2021-02-03 20:14 - 2021-02-06 23:32 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Downloaded Installations
2021-02-03 20:14 - 2021-02-03 20:37 - 000000000 ____D C:\Program Files (x86)\GIGABYTE
2021-02-03 20:14 - 2021-02-03 20:14 - 000003506 _____ C:\Windows\system32\Tasks\GraphicsCardEngine
2021-02-03 20:14 - 2021-02-03 20:14 - 000003470 _____ C:\Windows\system32\Tasks\LiquidSensord
2021-02-03 20:14 - 2015-06-02 10:50 - 000005120 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\acpimof_ocpanel.dll
2021-02-03 20:09 - 2021-02-03 20:09 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Risen
2021-02-03 20:07 - 2021-02-08 01:21 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-02-03 20:00 - 2021-02-03 20:00 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Steam
2021-02-03 20:00 - 2021-02-03 20:00 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\CEF
2021-02-03 19:59 - 2021-02-09 21:38 - 000000000 ____D C:\Program Files (x86)\Steam
2021-02-03 19:56 - 2021-02-03 19:56 - 001573568 _____ C:\Users\Jaroslak W10\Downloads\SteamSetup.exe
2021-02-03 19:56 - 2017-12-11 00:10 - 000045610 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\Su01.xlsx
2021-02-03 19:55 - 2021-02-03 19:55 - 000000000 ___HD C:\OneDriveTemp
2021-02-03 19:55 - 2020-04-12 00:26 - 000009041 _____ C:\Users\Jaroslak W10\OneDrive\Dokumenty\COVID19.xlsx
2021-02-03 19:52 - 2021-02-03 19:52 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\OneDrive
2021-02-03 19:51 - 2021-02-09 21:41 - 000000000 ____D C:\Users\Jaroslak W10\AppData\LocalLow\Mozilla
2021-02-03 19:51 - 2021-02-08 10:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-03 19:51 - 2021-02-03 19:51 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Roaming\Mozilla
2021-02-03 19:51 - 2021-02-03 19:51 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Mozilla
2021-02-03 19:33 - 2021-02-09 01:12 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2021-02-03 19:33 - 2021-02-07 18:54 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\Comms
2021-02-03 19:33 - 2021-02-06 23:36 - 000000000 ____D C:\Users\Jaroslak W10\AppData\Local\AMD
2021-02-03 19:33 - 2021-02-06 23:25 - 000000000 ____D C:\Program Files\AMD
2021-02-03 19:33 - 2021-02-06 23:21 - 000000000 ____D C:\AMD
2021-02-03 19:33 - 2021-02-04 22:15 - 000003392 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2775533619-830361710-3132715996-1001
2021-02-03 19:33 - 2021-02-03 19:33 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2021-02-03 19:33 - 2012-04-16 05:00 - 000389120 _____ (CANON INC.) C:\Windows\system32\CNMLMBA.DLL
2021-02-03 19:31 - 2020-04-30 09:35 - 001346528 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorAC.sys
2021-02-03 19:31 - 2020-04-30 09:35 - 000027624 _____ (Intel Corporation) C:\Windows\system32\RstMwEventLogMsg.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-09 21:43 - 2017-03-20 05:39 - 001203680 _____ C:\Windows\system32\perfh005.dat
2021-02-09 21:43 - 2017-03-20 05:39 - 000290030 _____ C:\Windows\system32\perfc005.dat
2021-02-09 21:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\AppReadiness
2021-02-09 01:12 - 2017-03-18 12:40 - 000524288 _____ C:\Windows\system32\config\BBI
2021-02-09 01:11 - 2017-03-18 22:01 - 000000000 ____D C:\Windows\INF
2021-02-07 19:10 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\rescache
2021-02-07 18:42 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\MUI
2021-02-07 18:42 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\MUI
2021-02-07 18:42 - 2017-03-18 21:51 - 000000000 ____D C:\Windows\CbsTemp
2021-02-07 01:43 - 2017-03-18 22:03 - 000000000 __RSD C:\Windows\Media
2021-02-06 23:49 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-02-06 23:38 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-06 23:36 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Defender
2021-02-06 23:28 - 2017-03-20 05:41 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2021-02-06 23:28 - 2017-03-20 05:41 - 000000000 ____D C:\Windows\HoloShell
2021-02-06 23:28 - 2017-03-20 05:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-02-06 23:28 - 2017-03-20 05:39 - 000000000 ____D C:\Windows\system32\cs
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\F12
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\PrintDialog
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinMetadata
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\setup
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\oobe
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\migwiz
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\appraiser
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\ShellExperiences
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\Provisioning
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-02-06 23:28 - 2017-03-18 22:03 - 000000000 ____D C:\PerfLogs
2021-02-06 23:28 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\system32\Dism
2021-02-06 23:28 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\servicing
2021-02-06 23:27 - 2017-03-18 22:03 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2021-02-06 23:27 - 2017-03-18 22:03 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2021-02-04 22:16 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\appcompat
2021-02-04 02:23 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2021-02-04 02:19 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\spool
2021-02-04 02:17 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows NT
2021-02-04 02:16 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\MiracastView
2021-02-04 02:16 - 2017-03-18 12:40 - 000032768 _____ C:\Windows\system32\config\ELAM
2021-02-04 02:16 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\system32\Sysprep
2021-02-04 02:15 - 2017-03-18 22:03 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2021-02-03 20:46 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\LiveKernelReports
2021-02-03 19:34 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\FxsTmp
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2021-02-03 21:34
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-02-2021 01
Ran by Jaroslak W10 (09-02-2021 22:04:21)
Running from C:\Users\Jaroslak W10\OneDrive\Plocha
Windows 10 Pro Version 1703 15063.1387 (X64) (2021-02-04 01:17:24)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2775533619-830361710-3132715996-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2775533619-830361710-3132715996-503 - Limited - Disabled)
Guest (S-1-5-21-2775533619-830361710-3132715996-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2775533619-830361710-3132715996-1003 - Limited - Enabled)
Jaroslak W10 (S-1-5-21-2775533619-830361710-3132715996-1001 - Administrator - Enabled) => C:\Users\Jaroslak W10
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI (11.0.23) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.11.2 - Advanced Micro Devices, Inc.)
AORUS ENGINE (HKLM-x32\...\AORUS ENGINE_is1) (Version: 1.9.7.0 - GIGABYTE Technology Co.,Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.20.00803.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.20.00803.1 - GIGABYTE)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 3.3.7 - ASUS)
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.24 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{a75323e1-f1a4-4aff-a7ce-3858cbc1c0d2}) (Version: 1.0.24 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.03 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.3.1 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{2357cd84-6c2b-4174-87c7-4f9f9db8746b}) (Version: 0.0.3.1 - ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32\...\{659ff51d-6e35-42de-83ec-aa394eabe9eb}) (Version: 2.0.2.2 - ASUSTek COMPUTER INC.)
ASUS Framework Service (HKLM-x32\...\{EA6A87BE-8AD3-40D2-944C-9DF5FBFF4332}) (Version: 2.0.2.2 - ASUSTek COMPUTER INC.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.39 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{9AFE5429-866B-457D-A864-80BCF7672EE8}) (Version: 1.1.06 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{684f7887-cc5b-469a-81e9-36d38142cc46}) (Version: 1.1.06 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.14 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.14 - ASUS)
AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.04.32 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{1dd27167-f40c-47db-9e8f-b2f5d210f173}) (Version: 3.04.32 - ASUSTeK Computer Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.0.0 - Canon Inc.)
Canon iP7200 series On-screen Manual (HKLM-x32\...\Canon iP7200 series On-screen Manual) (Version: 7.5.0 - Canon Inc.)
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.1.2 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.0.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.0.0 - Canon Inc.)
CanoScan 9000F Mark II Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ9604) (Version: - Canon Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{D6823E97-B396-927D-D651-AFB82BE03523}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{BF26ACAF-6D09-023B-5FB7-8A848874A724}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{9DB37D05-F855-5D7D-08C2-25E00E2CCDBC}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{87250370-0A99-4ED9-DCE4-970DAC325FA5}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{1F815C78-D31E-53FD-C8BF-3215E4F022A3}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{79F58747-D616-4CDB-7D8B-4BC580D99153}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{02E80355-64BF-6C1E-B0B7-76857D62A86D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{77158555-E271-A561-ECDA-611639388B5C}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{97673BD1-8CA0-53EF-C4E7-282CD8748F1C}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{4B01C6D5-4693-6CA8-ECF7-A0F9E7FEC6DB}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{50DBC6DD-C2A2-2C38-FE37-A48208474155}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{F1AD64B3-4114-8EF7-407C-F9F9122EDA68}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED28D75F-557C-39C9-5004-F8F17C8BC279}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{41268A73-D680-48C5-DE5E-CF67C05CBBBB}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9655DE76-0987-9159-5A7E-FCE18409D004}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{CD73EC8B-9F04-5EA1-8FD4-AEE4DAC51267}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{397C2EE5-B514-0CC5-53C3-2FBE46CE6EDF}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{45FA39D2-8AEB-AFF8-2FA6-96891732CB80}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{B3EA6CCB-F44C-DC35-94F5-1B9CC18FE598}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{AEE4C0AE-CDAF-5D37-2DA3-A2B3FDFE6E81}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{BE064737-1F2C-ECDD-916C-798E3D18C263}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.20.0701.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.20.0701.1 - GIGABYTE)
ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.28.0 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{d22b5310-9f1e-43a8-8547-58fa44742994}) (Version: 1.1.28.0 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.7.11 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{fd812556-e0bb-4961-ac2b-cf5643484519}) (Version: 1.0.7.11 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM-x32\...\{9eeadf99-713b-4ab5-9ccd-bf9c1c4d9daf}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Fast Boot (HKLM-x32\...\{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.19.0926.1 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.19.0926.1 - GIGABYTE)
Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte) Hidden
Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0007 - Gigabyte)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.16.1202.1 - GIGABYTE)
Intel(R) Chipset Device Software (HKLM-x32\...\{afad3740-3061-4b48-a9ab-6f1435cb3dd6}) (Version: 10.1.18383.8213 - Intel(R) Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2020.14.0.1600 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00002090-0210-1029-84C8-B8D95FA3C8C3}) (Version: 21.90.2.1 - Intel Corporation)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.28 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{511a62a9-1ff0-4cc5-adfe-4a5bd044a3c0}) (Version: 1.0.28 - KINGSTON COMPONENTS INC.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: - Logitech)
Manticore Gaming Keyboard (HKLM-x32\...\{0DAEFA4F-E394-4D1F-8F1A-6A2180561290}}_is1) (Version: - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Office 2016 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 16.0.13628.20274 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2775533619-830361710-3132715996-1001\...\OneDriveSetup.exe) (Version: 21.002.0104.0005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Mozilla Firefox 85.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 85.0.1 (x64 cs)) (Version: 85.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 85.0 - Mozilla)
NahimicAPI 64-bit (HKLM\...\{AEC7880F-673E-458E-B3E0-A64BA9CE88D3}) (Version: 1.0.15.0 - Nahimic)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Outbyte PC Repair (HKLM-x32\...\{D5C6DB0C-BC43-4A77-9121-D1A07591F855}_is1) (Version: 1.1.6.62247 - Outbyte Computing Pty Ltd)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.1 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{e38442c0-a433-48c2-84e2-51ac0b30c3ab}) (Version: 1.0.9.1 - Patriot Memory)
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.0.6.3 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{8839fbd5-69f9-41c5-a1cf-cdfbec966d66}) (Version: 1.0.6.3 - Patriot Memory)
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.6.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{c8f7044c-7f48-404a-9a5d-9f038f28a789}) (Version: 1.0.6.0 - PHISON Electronics Corp.) Hidden
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8945.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.39.212.2020 - Realtek)
Registrace uživatele zařízení Canon iP7200 series (HKLM-x32\...\Registrace uživatele zařízení Canon iP7200 series) (Version: - Canon Inc.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.21.0203.1 - GIGABYTE)
ROG Armoury (HKLM-x32\...\{FE703E21-A9E0-4DB3-9115-404175C8222F}) (Version: 3.00.44 - ASUSTeK Computer Inc.)
ROG Live Service (HKLM-x32\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.1.16.0 - ASUSTek COMPUTER INC.)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.20.0701.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.20.0701.1 - GIGABYTE)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.1 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{68fb2ff9-0618-4948-b68f-9f95e5687067}) (Version: 1.0.0.1 - PD)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{6753CC12-A884-47B2-9270-F5CD31B6F256}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2021-02-03] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.1.17.0_x86__kgqvnymyfvs32 [2021-02-03] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.186.200.0_x86__kgqvnymyfvs32 [2021-02-03] (king.com)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2021-02-03] (Canon Inc.)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.39.3903.0_x86__ytsefhwckbdv6 [2021-02-03] (G5 Entertainment AB)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Studios) [MS Ad]
Microsoft Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.12124.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_17.30.3.0_x64__8wekyb3d8bbwe [2021-02-06] (Microsoft Corporation)
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11001.20116.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.1000_x64__kzf8qxf38zg5c [2021-02-03] (Skype)
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.5.13516.0_x64__3ykzqggjzj4z0 [2021-02-03] (WinZip Computing)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2020-11-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-07-08 17:42 - 2020-07-08 17:42 - 000477696 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2020-07-08 17:42 - 2020-07-08 17:42 - 000471040 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2020-07-14 17:16 - 2020-07-14 17:16 - 000454656 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\registry-js\prebuilds\win32-ia32\node.napi.node
2021-02-09 01:10 - 2019-12-23 18:51 - 000093184 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\zlibwapi.dll
2020-04-22 15:35 - 2020-04-22 15:35 - 000081920 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll
2021-02-09 01:10 - 2019-05-02 15:48 - 002183680 _____ () [File not signed] C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\EzULIB_UFB.dll
2021-02-06 23:59 - 2013-01-15 17:06 - 000061952 _____ () [File not signed] C:\Program Files (x86)\Genius\Manticore\HidDevice.dll
2021-02-06 23:59 - 2011-10-11 17:32 - 000054784 _____ () [File not signed] C:\Program Files (x86)\Genius\Manticore\KBHook1.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000025088 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\BSL430.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000225792 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvFireware.dll
2021-02-03 20:37 - 2021-01-05 19:40 - 000184832 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\ITEDriver.dll
2020-04-30 15:28 - 2020-04-30 15:28 - 001866752 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2019-08-05 19:50 - 2019-08-05 19:50 - 000009216 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\Phison.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2019-11-06 14:09 - 2019-11-06 14:09 - 000190976 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\AacHal_x86.dll
2020-11-13 14:48 - 2020-11-13 14:48 - 001470976 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2020-05-26 17:08 - 2020-05-26 17:08 - 002831360 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\LightingService\log4cxx.dll
2021-02-09 01:10 - 2020-12-31 17:26 - 002676224 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\AURAChecker.dll
2021-02-09 01:09 - 2019-05-02 15:48 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\AsMultiLang.dll
2021-02-07 01:20 - 2012-04-03 12:34 - 000513024 _____ (CANON INC.) [File not signed] [File is in use] C:\Program Files (x86)\Canon\Quick Menu\CNQMMWRP.dll
2021-02-07 01:20 - 2012-02-23 19:29 - 000561152 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\Quick Menu\CCL.dll
2021-02-07 01:17 - 2012-03-28 18:00 - 000359936 _____ (CANON INC.) [File not signed] C:\Windows\System32\CNMN6PPM.DLL
2021-02-03 20:37 - 2020-11-09 15:55 - 001970176 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GbtCpuLib.dll
2021-02-03 20:37 - 2019-02-15 23:07 - 000152576 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\yccV2.DLL
2021-02-03 20:37 - 2020-12-25 11:21 - 000295936 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GVBIOSLib.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000628736 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvComW.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000013312 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvCrypt.dll
2021-02-03 20:37 - 2021-01-19 13:35 - 000475136 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GVDisplay.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000240640 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvIllumLib.dll
2021-02-03 20:37 - 2019-08-05 13:26 - 000218112 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvOrderLib.dll
2020-11-24 14:00 - 2020-11-24 14:00 - 000475648 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GVDisplay.dll
2020-11-05 14:16 - 2020-11-05 14:16 - 000268800 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvIllumLib.dll
2021-01-22 08:10 - 2021-01-22 08:10 - 002059776 _____ (GIGABYTE) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACPCIeSSD_Lib.dll
2021-01-22 08:08 - 2021-01-22 08:08 - 002057728 _____ (GIGABYTE) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACSSD_Lib.dll
2021-02-06 23:59 - 2011-09-05 09:42 - 000143360 _____ (Holtek) [File not signed] C:\Program Files (x86)\Genius\Manticore\HIDApi.dll
2021-02-03 20:09 - 2021-02-03 20:09 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL
2018-08-30 16:26 - 2018-08-30 16:26 - 000053760 _____ (MS) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\MsIo32_Galax.dll
2021-02-09 01:10 - 2019-06-26 16:07 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libcrypto-1_1-x64.dll
2021-02-09 01:10 - 2019-06-26 16:07 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libssl-1_1-x64.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-11-13 15:00 - 2020-11-13 15:00 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
2021-02-09 01:10 - 2019-05-02 15:48 - 000072704 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\Interrupt\InterruptTransfer.dll
2021-02-03 20:37 - 2019-08-27 13:22 - 000224256 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvAutoUpdate.dll
2015-10-14 01:15 - 2015-10-14 01:15 - 002042368 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll
2019-07-04 18:06 - 2019-07-04 18:06 - 001988608 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll
2017-10-05 15:26 - 2017-10-05 15:26 - 002247168 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\CRtive.dll
2018-12-08 08:22 - 2018-12-08 08:22 - 002059264 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GHidApi.dll
2021-01-26 09:39 - 2021-01-26 09:39 - 000469504 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvLedLib.dll
2020-12-24 15:00 - 2020-12-24 15:00 - 002109952 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\SMBCtrl.dll
2021-02-09 01:09 - 2020-02-10 10:27 - 000129024 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\ASUS\ROG Armoury\InstallShield\FilterDriver\AsFilterDriver.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-07] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 22:03 - 2017-03-18 22:01 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-2775533619-830361710-3132715996-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img3.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{83F03C1A-5D0E-4036-9EEE-FC753E2F4BEF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{84311E47-744B-442D-81C0-1666CFA6246E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5E7B06A0-D095-4A2F-92EF-1FE400F9D646}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F934A0A1-FBAF-40AE-B457-16D6B76CC094}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{06E63DB7-912A-43D9-BC08-E45DF57E9AB8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7700DD0F-8E9B-4001-8000-A616880B1543}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{71EFF742-E1F1-4E4B-AEAB-F7CB9BB92710}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{0FB6BA72-44BC-4B23-A87C-24D943A81681}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{6D105DDA-D332-4CEC-B205-97356D69EEC0}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{1786C407-5B7F-4DCB-8375-14FE3919BDCF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{583119B2-5A98-495F-A5EF-EDC0E9F154EE}] => (Allow) LPort=9009
FirewallRules: [{02E12EA7-3F4C-4B51-AD9D-C6A072766B17}] => (Allow) LPort=9009
FirewallRules: [{407CDB67-8930-447A-B235-6C48D5A8E620}] => (Allow) LPort=9009
FirewallRules: [{CE12C9B1-45E1-4E4E-ADC5-6C8CE5E78B18}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DC461F48-AC21-426B-84DE-B593CE0FFB06}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{21645FEF-BEB9-447F-B48D-DE42DEB80611}] => (Allow) LPort=26675
FirewallRules: [{2A9DCF2C-5DBC-452E-9DAF-5E78B81C8242}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B1FB752C-C92E-4939-9A31-2D20713409DB}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0A4695F-2EBE-4294-8485-DBB32237891C}] => (Allow) LPort=26675
FirewallRules: [{DF21095E-16F9-4995-AD00-D59E4209C377}] => (Allow) LPort=9009
FirewallRules: [{2AF62347-6893-4214-9D60-12AF08026C06}] => (Allow) LPort=9009
FirewallRules: [{49918954-242D-46A6-8711-9DFD0224A260}] => (Allow) LPort=9009
FirewallRules: [{87617C34-DAEA-4FB0-9B46-FBD5B0985EF0}] => (Allow) LPort=9009
FirewallRules: [{C81A3372-96AF-4067-8ED9-1FE6855CF51A}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3AF95DA6-61C3-44A0-B5FA-1F137382EFFD}] => (Allow) C:\Windows\WindowsMobile\wmdHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{381714AD-0E56-4929-B11B-EA5CCCECA50C}] => (Allow) LPort=26675
FirewallRules: [{CB795AEE-2271-4969-906C-DD1EA4C0E8FF}] => (Allow) LPort=9009
FirewallRules: [{CC8ADAAA-5FC6-498D-9D20-783571697B55}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{81587D7D-EEC5-4EE8-998D-8B285A5BE58E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{3E311256-10F8-4E1A-90B7-467E15ADA27C}E:\program files\logitech gaming software\lcore.exe] => (Block) E:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{9AD2DD6E-CFEB-471C-B47D-12C388F543F2}E:\program files\logitech gaming software\lcore.exe] => (Block) E:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{A55010CE-BEA4-4DC1-9544-DC86A6031F55}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{42FE2335-D34E-45DA-AF71-AA44D349DE4B}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{6CEADA41-C1A5-4A90-9D4C-D1268807A109}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{C409B67B-1DAB-47F3-95FA-B782DBD3DE57}] => (Allow) LPort=9009
FirewallRules: [{0E4AE570-4346-47C5-B483-6CF363B41559}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{013B4109-BE26-46BA-8D26-10E242722F20}] => (Allow) E:\SteamLibrary\steamapps\common\Fallout 3\FalloutLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{C8370DAE-D088-40B3-9B12-B73D23EB735E}] => (Allow) E:\SteamLibrary\steamapps\common\Fallout 3\FalloutLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{9DAF4977-9320-41DF-A821-101B0C232C64}] => (Allow) LPort=9009
FirewallRules: [{2D520DBE-BF6F-41FB-BD33-0B1E9CF77D5B}] => (Allow) LPort=9009
FirewallRules: [{0DCB9ADF-D30D-4398-95A9-21DF6B281791}] => (Allow) LPort=9009
FirewallRules: [{30FB1335-02BA-4ABE-9446-CFB02853C001}] => (Allow) LPort=9009
FirewallRules: [{21918CA4-4334-4141-8B1B-06464D3E8771}] => (Allow) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
FirewallRules: [{C583951D-514E-4736-A383-214B97D9ADE6}] => (Allow) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTEK COMPUTER INCORPORATION -> ASUSTek COMPUTER INC.)
FirewallRules: [{EB17D878-4BD4-42B3-8077-4691FA55EF42}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{5AE70BBA-A2B3-49DE-B933-F92DB271D88F}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{74D45213-F496-4902-8B0A-B774E9C71DC4}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{78584BB9-A68B-46CF-8478-C41C76E14EA1}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{FC77FB24-5D67-42AF-9644-39928C53E1E0}] => (Allow) LPort=9009
FirewallRules: [{3AA7B150-1E37-4C08-A159-0AA19BE9F908}] => (Allow) LPort=9009
FirewallRules: [{F06FA5D8-55EE-4534-B3CB-6A7F4FEA551F}] => (Allow) LPort=9009
FirewallRules: [{6813AD4A-4849-4E4E-9C0C-314C143B313A}] => (Allow) LPort=9009
==================== Restore Points =========================
25-01-2021 02:00:01 Automatic creation
27-01-2021 22:18:30 Automatic creation
31-01-2021 20:29:02 Automatic creation
03-02-2021 19:31:38 IIF_MSI
04-02-2021 02:32:40 Instalováno Realtek Audio Driver
06-02-2021 23:17:11 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
09-02-2021 00:13:32 Nainstalováno rozhraní DirectX
==================== Faulty Device Manager Devices ============
Name: Řadič jednoduché komunikace pro sběrnici PCI
Description: Řadič jednoduché komunikace pro sběrnici PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (02/09/2021 09:39:35 PM) (Source: WcesComm) (EventID: 2) (User: )
Description: Spuštění služby pro připojení zařízení se systémem Windows Mobile 2003 se nepodařilo z důvodu chyby CreateSemaphore(0x80070005) (viz data pro kód chyby).
Error: (02/09/2021 09:38:15 PM) (Source: WcesComm) (EventID: 2) (User: )
Description: Spuštění služby pro připojení zařízení se systémem Windows Mobile 2003 se nepodařilo z důvodu chyby CreateSemaphore(0x80070005) (viz data pro kód chyby).
Error: (02/09/2021 09:17:32 PM) (Source: WcesComm) (EventID: 2) (User: )
Description: Spuštění služby pro připojení zařízení se systémem Windows Mobile 2003 se nepodařilo z důvodu chyby CreateSemaphore(0x80070005) (viz data pro kód chyby).
Error: (02/09/2021 02:32:34 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-14SLUCN)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (02/09/2021 02:32:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LiveUpdateSyncCheck.exe, verze: 1.0.4.0, časové razítko: 0x5cd254c5
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.15063.1266, časové razítko: 0x51a816a7
Kód výjimky: 0xc000041d
Posun chyby: 0x000f0372
ID chybujícího procesu: 0x560
Čas spuštění chybující aplikace: 0x01d6fe823314505b
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\LiveUpdateSyncCheck.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 6bf13682-2f53-4634-b8de-68454fdc82d6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/09/2021 02:32:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LiveUpdateSyncCheck.exe, verze: 1.0.4.0, časové razítko: 0x5cd254c5
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.15063.1266, časové razítko: 0x51a816a7
Kód výjimky: 0xc0020001
Posun chyby: 0x000f0372
ID chybujícího procesu: 0x560
Čas spuštění chybující aplikace: 0x01d6fe823314505b
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\LiveUpdateSyncCheck.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 67f74824-32d4-4cfc-b91b-748c060ee916
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/09/2021 02:24:34 AM) (Source: WcesComm) (EventID: 2) (User: )
Description: Spuštění služby pro připojení zařízení se systémem Windows Mobile 2003 se nepodařilo z důvodu chyby CreateSemaphore(0x80070005) (viz data pro kód chyby).
Error: (02/09/2021 02:23:43 AM) (Source: WcesComm) (EventID: 2) (User: )
Description: Spuštění služby pro připojení zařízení se systémem Windows Mobile 2003 se nepodařilo z důvodu chyby CreateSemaphore(0x80070005) (viz data pro kód chyby).
System errors:
=============
Error: (02/09/2021 10:03:31 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: Nelze vytvořit vazbu k základnímu přenosu pro 169.254.243.242:9009. Seznam protokolu IP jen pro naslouchání (Listen-Only) pravděpodobně obsahuje odkaz na rozhraní, které v tomto počítači nemusí existovat. Číslo chyby se nachází v poli s daty.
Error: (02/09/2021 09:40:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-14SLUCN)
Description: Server {373E19B5-76AA-46D5-93A9-2E39A99B39B2} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/09/2021 09:38:03 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (02/09/2021 09:38:03 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (02/09/2021 09:37:34 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba HomeGroupListener skončila s následující chybou specifickou pro službu:
%%2147944153 = Pro mapovač koncových bodů nejsou k dispozici další koncové body.
Error: (02/09/2021 09:37:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CldFlt neuspěla při spuštění v důsledku následující chyby:
Požadavek není podporován.
Error: (02/09/2021 09:37:34 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Počítač byl restartován z procesu kontroly chyb. Kontrola chyb: 0x00000050 (0xffff9a8d5e3eb000, 0x0000000000000000, 0xfffff803be16f2e6, 0x0000000000000000). Výpis byl uložen do: C:\Windows\MEMORY.DMP. ID hlášení: 23702569-4dbc-485e-b799-e1139637eb33
Error: (02/09/2021 09:37:20 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI2
CodeIntegrity:
===================================
Date: 2021-02-09 00:52:18.934
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume9\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-02-08 10:53:36.073
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume9\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-02-04 22:38:46.646
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume9\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. F4 06/17/2020
Motherboard: Gigabyte Technology Co., Ltd. Z490 AORUS ELITE AC
Processor: Intel(R) Core(TM) i7-10700 CPU @ 2.90GHz
Percentage of memory in use: 18%
Total physical RAM: 32688.32 MB
Available physical RAM: 26667.38 MB
Total Virtual: 37808.32 MB
Available Virtual: 29383.37 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.21 GB) (Free:399.81 GB) NTFS
Drive e: (2TB) (Fixed) (Total:944.98 GB) (Free:787.59 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (2TB_Downloads) (Fixed) (Total:917.52 GB) (Free:846.8 GB) NTFS
Drive h: (1T-20190215) (Fixed) (Total:931.51 GB) (Free:920.86 GB) NTFS
Drive i: (VERBATIM HD) (Fixed) (Total:931.28 GB) (Free:872.39 GB) FAT32
\\?\Volume{9c059fba-0ea4-488c-88f3-e54dc05f2138}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.1 GB) NTFS
\\?\Volume{04fa6739-0000-0000-0000-f03eec000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: C63DC730)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 54585798)
Partition 1: (Active) - (Size=223.6 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 04FA6739)
Partition 1: (Active) - (Size=945 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=522 MB) - (Type=27)
Partition 3: (Not Active) - (Size=917.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 4 (Size: 931.5 GB) (Disk ID: 2028593E)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=0C)
==================== End of Addition.txt =======================