Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o preventivní kontrolu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Bruno39
Návštěvník
Návštěvník
Příspěvky: 35
Registrován: 01 led 2016 14:43

Prosím o preventivní kontrolu

#1 Příspěvek od Bruno39 »

Dobrý deň
Poprosím o preventívnu kontrolu. Ďakujem
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-02-2023 01
Ran by marti (administrator) on DESKTOP-HCTSPHQ (15-02-2023 15:43:05)
Running from C:\Users\marti\Desktop
Loaded Profiles: marti
Platform: Microsoft Windows 11 Pro Version 22H2 22621.1265 (X64) Language: Slovenčina (Slovensko)
Default browser: Brave
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(A-Volute SAS -> A-Volute) C:\Users\marti\AppData\Local\NhNotifSys\sonicstudio\asusns.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.22\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_36f8a434e9b7b9f2\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1c0a31316508effa\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe <2>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <5>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe <2>
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe <2>
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.1271.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.1271.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1c0a31316508effa\RtkAudUService64.exe [1596776 2022-12-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12903296 2023-01-30] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3089288 2022-11-10] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Run: [MicrosoftEdgeAutoLaunch_4A886EB596DDE810C696BFE47BAAC943] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243360 2023-02-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4253032 2023-02-14] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Run: [DiscordPTB] => C:\Users\marti\AppData\Local\DiscordPTB\Update.exe [1525016 2022-12-06] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [253816 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Run: [Discord] => C:\Users\marti\AppData\Local\Discord\Update.exe [1525016 2022-12-09] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Run: [ZAR App] => C:\Users\marti\AppData\Local\Programs\zar-app\ZAR App.exe [149180408 2023-01-11] (Wezzar -> Zar)
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32795600 2023-02-14] (Epic Games Inc. -> Epic Games, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\110.1.48.158\Installer\chrmstp.exe [2023-02-08] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00C374A4-0551-417B-BCD5-A9D5571F6F5C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {00F89FB4-7DC2-4F83-9AC7-22251580DAD1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {05628AE1-A97D-456B-BEAE-86499A8C486C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {15B528F0-AFA3-44AD-ABDA-6F728F531EDD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {17FCDD2C-A8C3-4978-9F15-B46D4C0CAE13} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1254760 2022-12-05] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {3238E9F8-B53D-4094-8042-3E7778737DB6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {38A56D31-C46D-4A0D-8A4B-46BE89813CD3} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3904E5D7-4718-4CBB-80BE-AB9814B3F0EF} - System32\Tasks\NahimicTask64 => C:\WINDOWS\system32\.\NahimicSvc64.exe [1094808 ] (A-Volute SAS -> Nahimic)
Task: {42BFAC3F-851F-45AD-9A4A-3E49C96E97C4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {47BA8E85-8CC3-4EE4-8DCC-8BBE9A0A6440} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {47E5C708-461A-49C7-87E0-39AD89CD7E29} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{2FA235A0-A33E-4696-AABE-B556F61D0428} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-13] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {49311BDA-7E71-4964-8680-DF784BB7F2F4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {4D006DAD-2463-489C-9DDE-998520FD4B94} - System32\Tasks\NahimicTask32 => C:\WINDOWS\system32\..\SysWOW64\NahimicSvc32.exe [833688 ] (A-Volute SAS -> Nahimic)
Task: {6ED1E115-C0BA-45BB-BA6A-70E8896563BF} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{2A04263B-DC3D-458C-A007-684EF67069AE} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-13] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {7C30913C-3A71-4DA7-A559-C001492CB2C4} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [308584 2022-12-24] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {840B3410-D61E-4893-B0E1-232D06DC8DE0} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d90ec927b3ee15 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-12-13] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {A1B794F1-3D79-43D1-A3E6-147EB9F40961} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [833688 2021-11-01] (A-Volute SAS -> Nahimic)
Task: {A60C4407-9A82-4A19-B2FD-A12DB00AA509} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A789E8EE-C362-42DC-BE2B-8CC5B624E382} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AD68D2B0-BB55-41B2-933D-B11A6EB01AC8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AFA0203C-02C5-4856-8063-5739829A18D2} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-12-13] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {BF6DE9E4-BB87-4969-8D9C-7AF1DCBB9839} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [46597976 2022-12-15] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {CAF66101-AD19-46BB-8F33-8ABE075B2573} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {D7C47577-0102-456C-A094-228FE2098CD9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {DB793911-825E-4D56-8FB7-676671E30630} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {DBD0B27F-A10E-4DB2-91DB-9B47764E37F6} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (No File)
Task: {E60088E2-C3CB-42BC-93EB-82E2B15A917C} - System32\Tasks\ViGEmBus_Updater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBus_Updater.exe [1117096 2022-09-27] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
Task: {F0FE24D7-EAE2-4D7B-BA02-1A8CCA41EC75} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1857384 2022-12-24] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {FA80D2EB-BFD6-4044-A6EB-D2996FEFB1CE} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1094808 2021-11-01] (A-Volute SAS -> Nahimic)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{10745c0b-a955-417c-b477-9be302335298}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{56ff2414-c8f0-4dd8-99e6-09c474fa3210}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c0ae10bc-04f2-4be1-b16d-19f10a3b6f9a}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Profile: C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-29]
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255141

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)

Brave:
=======
BRA Profile: C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-02-15]
BRA DefaultSearchURL: Default -> hxxps://search.brave.com/search?q={searchTerms}&source=desktop
BRA DefaultSearchKeyword: Default -> :br
BRA DefaultSuggestURL: Default -> hxxps://search.brave.com/api/suggest?q={searchTerms}
BRA Extension: (Steam Inventory Helper) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2023-02-13]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-02-14]
BRA Extension: (Brave NTP background images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-12-13]
BRA Extension: (Wallet Data Files Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-02-13]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-01-13]
BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-02-15]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2022-12-18]
BRA Extension: (Brave NTP sponsored images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\mjgplcflbkgklplplbakkopkafojhbmk [2023-02-15]
BRA Extension: (Brave Ads Resources) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\obponfmfefkaeehakbehbnnlcbebebhd [2023-02-10]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2023-02-09]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-02-14]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [399984 2023-02-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.22\atkexComSvc.exe [894824 2022-12-09] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-12-13] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [558104 2022-05-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-09-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-12-13] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [845256 2023-02-15] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-11-07] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-13] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2022-12-13] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [9981544 2022-12-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-12-20] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
S3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-12-13] (Microsoft Windows -> Microsoft Corporation)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4209512 2022-12-26] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1920152 2021-11-01] (A-Volute SAS -> Nahimic)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [310136 2021-06-11] (nordvpn s.a. -> TEFINCOM S.A.)
S2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2022-11-21] (nordvpn s.a. -> nordvpn S.A.)
S2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [254328 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2703192 2023-01-07] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1558128 2023-02-03] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S4 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [249328 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35200 2023-01-30] (SteelSeries ApS -> )
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10430256 2022-11-10] (Riot Games, Inc. -> Riot Games, Inc.)
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [134752 2022-12-14] (Skutta, Kristjan -> )
S4 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137600 2023-02-15] (Microsoft Windows -> Microsoft Corporation)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\110.1.48.158\elevation_service.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_36f8a434e9b7b9f2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_36f8a434e9b7b9f2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [49256 2022-08-15] (ASUSTeK COMPUTER INC. -> )
R3 AVoluteSS3Vad; C:\WINDOWS\System32\drivers\AVoluteSS3Vad.sys [93672 2021-10-14] (A-Volute -> Windows (R) Win 7 DDK provider)
R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz154; C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [40976 2023-02-12] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32320 2022-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 e1rexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1r.inf_amd64_b1aa3bced0090fcf\e1r.sys [600784 2022-12-15] (Intel Corporation -> Intel Corporation)
R1 EspoDriver; C:\WINDOWS\system32\drivers\EspoDriver.sys [6237640 2023-01-15] (Esportal AB -> )
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 mshield; C:\WINDOWS\System32\DRIVERS\mshield.sys [43112 2022-08-24] (nordvpn s.a. -> Nordvpn S.A.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18496 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 NDivert; C:\Program Files\NordVPN\7.4.7.0\Drivers\NDivert.sys [131472 2022-06-28] (nordvpn s.a. -> Nordvpn S.A.)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [44928 2022-02-22] (nordvpn s.a. -> TEFINCOM S.A.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-11-13] (Nvidia Corporation -> NVIDIA Corporation)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [42912 2022-11-22] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [43960 2022-11-22] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_6979b8a94c20d77f\SteelSeries-Sonar-VAD.sys [93872 2023-01-10] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2022-07-14] (nordvpn s.a. -> The OpenVPN Project)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22216888 2022-11-10] (Riot Games, Inc. -> Riot Games, Inc.)
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [249400 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S4 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S4 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-13] (Microsoft Windows -> Microsoft Corporation)
S4 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29592 2022-12-14] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-15 15:43 - 2023-02-15 15:43 - 000030308 _____ C:\Users\marti\Desktop\FRST.txt
2023-02-15 15:43 - 2023-02-15 15:43 - 000000000 ____D C:\FRST
2023-02-15 15:42 - 2023-02-15 15:42 - 002378240 _____ (Farbar) C:\Users\marti\Desktop\FRST64.exe
2023-02-15 13:02 - 2023-02-15 13:02 - 000048950 _____ C:\WINDOWS\system32\perfh01B.dat
2023-02-15 13:02 - 2023-02-15 13:02 - 000012092 _____ C:\WINDOWS\system32\perfc01B.dat
2023-02-15 12:55 - 2023-02-15 12:55 - 000004036 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-1819062965-147054822-3225315736-1001_1
2023-02-15 09:23 - 2023-02-15 09:23 - 000000000 ___HD C:\$WinREAgent
2023-02-14 16:33 - 2023-02-14 16:33 - 000000000 ____D C:\Users\marti\Documents\Lucius
2023-02-14 16:18 - 2023-02-14 16:18 - 000000000 ____D C:\ProgramData\Ubisoft
2023-02-12 17:13 - 2023-02-12 17:13 - 001907397 _____ C:\Users\marti\Downloads\Hogwarts_Legacy_CZ_V04.zip
2023-02-10 20:10 - 2023-02-04 00:00 - 002237024 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-02-10 20:10 - 2023-02-04 00:00 - 002237024 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-02-10 20:10 - 2023-02-04 00:00 - 001642568 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-02-10 20:10 - 2023-02-04 00:00 - 001642568 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-02-10 20:10 - 2023-02-04 00:00 - 001487376 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-02-10 20:10 - 2023-02-04 00:00 - 001444448 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-02-10 20:10 - 2023-02-04 00:00 - 001444448 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-02-10 20:10 - 2023-02-04 00:00 - 001227304 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-02-10 20:10 - 2023-02-04 00:00 - 001168968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-02-10 20:10 - 2023-02-04 00:00 - 001168968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-02-10 20:10 - 2023-02-03 23:54 - 000671736 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-02-10 20:10 - 2023-02-03 23:54 - 000507392 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-02-10 20:10 - 2023-02-03 23:53 - 001532936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-02-10 20:10 - 2023-02-03 23:53 - 001192440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-02-10 20:10 - 2023-02-03 23:53 - 000865296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-02-10 20:10 - 2023-02-03 23:52 - 002164264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-02-10 20:10 - 2023-02-03 23:52 - 001619960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-02-10 20:10 - 2023-02-03 23:52 - 000950264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-02-10 20:10 - 2023-02-03 23:52 - 000748048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-02-10 20:10 - 2023-02-03 23:52 - 000734720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-02-10 20:10 - 2023-02-03 23:51 - 012453368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-02-10 20:10 - 2023-02-03 23:51 - 010220552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-02-10 20:10 - 2023-02-03 23:51 - 005891080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-02-10 20:10 - 2023-02-03 23:51 - 005865976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-02-10 20:10 - 2023-02-03 23:51 - 003334696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-02-10 20:10 - 2023-02-03 23:51 - 000457720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-02-10 20:10 - 2023-02-03 23:50 - 005819880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-02-10 20:10 - 2023-02-03 23:49 - 000852984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-02-10 20:10 - 2023-02-03 00:10 - 000101010 _____ C:\WINDOWS\system32\nvinfo.pb
2023-02-10 19:24 - 2023-02-10 19:24 - 000046736 _____ C:\Users\marti\Downloads\chief.webp
2023-02-10 03:02 - 2023-02-10 03:02 - 000000000 ____D C:\Users\marti\AppData\LocalLow\CampfireStudio
2023-01-31 16:26 - 2023-01-31 16:26 - 000010971 _____ C:\Users\marti\Downloads\[Slovak] Training With Steven Seagal For 1 Day [DownSub.com].txt
2023-01-28 17:35 - 2023-01-28 17:35 - 000000000 ____D C:\AdwCleaner
2023-01-28 17:34 - 2023-01-28 17:34 - 008791352 _____ (Malwarebytes) C:\Users\marti\Desktop\AdwCleaner.exe
2023-01-27 08:27 - 2022-09-30 05:24 - 000174112 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2023-01-27 08:27 - 2022-09-30 05:23 - 000167440 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys
2023-01-27 07:51 - 2020-06-26 03:15 - 000136048 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys
2023-01-26 17:46 - 2023-01-27 07:50 - 000000000 ____D C:\ProgramData\Samsung
2023-01-26 17:46 - 2023-01-26 17:46 - 000000000 ____D C:\Program Files\Samsung
2023-01-26 08:16 - 2022-08-24 09:18 - 000043112 _____ (Nordvpn S.A.) C:\WINDOWS\system32\Drivers\mshield.sys
2023-01-25 19:26 - 2023-01-25 19:29 - 000000000 ____D C:\Users\marti\Downloads\černá zmije
2023-01-24 19:01 - 2023-01-24 19:01 - 000184633 _____ C:\Users\marti\Downloads\[SkT]2_$ocky___2_Broke_Girls_1.-_6._Serie_(2011_-_2017)(CZ)[TVRip]_=_CSFD_73%.torrent
2023-01-21 22:19 - 2023-01-29 10:48 - 000000000 ____D C:\Users\marti\AppData\Roaming\DS4Windows
2023-01-21 22:19 - 2023-01-21 22:19 - 000000000 ____D C:\Users\marti\Downloads\DS4Windows_3.2.7_x64
2023-01-21 09:34 - 2023-01-21 09:34 - 000000475 _____ C:\Users\Public\Desktop\God of War.lnk
2023-01-21 09:32 - 2023-01-21 09:32 - 000000000 ____D C:\Users\Public\Documents\Epic
2023-01-20 15:26 - 2023-01-20 15:26 - 000000000 ____D C:\Users\marti\Downloads\UE4-locres-Online-Editor-master
2023-01-20 10:24 - 2023-01-20 10:24 - 000000000 ____D C:\Users\marti\Downloads\FF7RPC_PAKLists-23-1-1639767322
2023-01-20 10:07 - 2023-01-20 10:07 - 000000693 _____ C:\Users\Public\Desktop\Final Fantasy VII - Remake Intergrade.lnk
2023-01-20 09:55 - 2023-01-20 09:55 - 000000432 _____ C:\Users\marti\Documents\Ja.txt
2023-01-20 07:34 - 2023-01-20 07:34 - 000000000 ____D C:\Users\marti\Documents\Square Enix
2023-01-20 07:24 - 2023-01-20 07:24 - 000000000 ____D C:\Users\marti\AppData\Local\IsolatedStorage
2023-01-19 22:28 - 2023-01-19 22:28 - 000000000 ____D C:\Users\marti\AppData\Roaming\MPC-HC
2023-01-19 22:27 - 2023-01-19 22:27 - 000001150 _____ C:\Users\marti\Desktop\MPC-HC.lnk
2023-01-19 22:27 - 2023-01-19 22:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC
2023-01-19 22:27 - 2023-01-19 22:27 - 000000000 ____D C:\Program Files (x86)\MPC-HC
2023-01-19 22:26 - 2023-01-19 22:26 - 012299240 _____ (MPC-HC Team ) C:\Users\marti\Desktop\MPC-HC.1.7.9.x86.exe
2023-01-19 20:37 - 2023-01-19 20:37 - 000000000 ____D C:\Users\marti\AppData\Roaming\NVIDIA
2023-01-17 11:25 - 2023-02-11 00:16 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-15 15:41 - 2022-12-13 09:58 - 000000000 ____D C:\Program Files (x86)\Steam
2023-02-15 15:39 - 2022-12-28 18:12 - 000000000 ____D C:\Users\marti\AppData\Local\D3DSCache
2023-02-15 15:38 - 2022-12-28 18:08 - 000000000 ____D C:\ProgramData\NVIDIA
2023-02-15 15:17 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-02-15 14:51 - 2022-12-13 17:38 - 000000000 ____D C:\Users\marti\AppData\Roaming\discordptb
2023-02-15 13:59 - 2022-12-13 17:38 - 000000000 ____D C:\Users\marti\AppData\Local\DiscordPTB
2023-02-15 13:02 - 2022-12-13 16:20 - 000894150 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-02-15 13:02 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-02-15 12:59 - 2022-12-13 21:22 - 000000000 ____D C:\Users\marti\AppData\Roaming\Telegram Desktop
2023-02-15 12:57 - 2022-12-13 14:37 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2023-02-15 12:57 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-02-15 12:56 - 2022-12-28 18:08 - 000000000 ____D C:\Users\marti\AppData\Local\NVIDIA
2023-02-15 12:55 - 2022-12-13 16:19 - 000003112 _____ C:\WINDOWS\system32\Tasks\NahimicTask32
2023-02-15 12:55 - 2022-12-13 16:19 - 000003092 _____ C:\WINDOWS\system32\Tasks\NahimicTask64
2023-02-15 12:55 - 2022-12-13 16:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-02-15 12:55 - 2022-12-13 16:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-02-15 12:55 - 2022-12-13 08:45 - 000901328 _____ () C:\WINDOWS\system32\wpbbin.exe
2023-02-15 12:55 - 2022-12-13 08:45 - 000845256 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2023-02-15 12:55 - 2022-12-13 08:45 - 000012288 ___SH C:\DumpStack.log.tmp
2023-02-15 12:55 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-02-15 12:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-02-15 09:50 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-02-15 09:49 - 2022-12-13 16:17 - 000302312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-02-15 09:49 - 2022-05-07 11:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-02-15 09:49 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-02-15 09:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-02-15 09:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-02-15 09:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-02-15 09:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-02-15 09:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-02-15 09:49 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-02-15 09:27 - 2022-12-13 09:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-02-15 09:26 - 2022-12-13 09:27 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-02-15 09:26 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-15 09:24 - 2022-12-13 16:19 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-02-14 22:07 - 2022-12-13 09:01 - 000000000 ____D C:\Program Files\ASUS
2023-02-14 20:20 - 2022-12-14 13:07 - 000000000 ____D C:\Users\marti\AppData\Roaming\discord
2023-02-14 19:59 - 2022-12-14 13:07 - 000000000 ____D C:\Users\marti\AppData\Local\Discord
2023-02-14 16:18 - 2022-12-14 13:12 - 000000000 ____D C:\Users\marti\AppData\Local\Ubisoft Game Launcher
2023-02-13 20:43 - 2022-12-13 09:53 - 000000000 ____D C:\Users\marti\AppData\Roaming\steelseries-gg-client
2023-02-12 15:11 - 2022-12-13 09:37 - 000000000 ____D C:\Users\marti\AppData\Local\CrashDumps
2023-02-11 19:21 - 2023-01-11 10:18 - 000000000 ____D C:\Users\marti\AppData\Local\NordVPN
2023-02-11 00:16 - 2022-12-13 08:45 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-02-10 20:22 - 2022-12-13 16:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2023-02-10 20:22 - 2022-12-13 09:02 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-02-10 20:22 - 2022-12-13 09:01 - 000000000 ____D C:\ProgramData\Package Cache
2023-02-10 20:17 - 2022-12-13 09:03 - 000000000 ____D C:\Program Files (x86)\LightingService
2023-02-10 20:17 - 2022-12-13 08:55 - 000000000 ____D C:\Program Files (x86)\ASUS
2023-02-10 20:16 - 2022-12-13 08:45 - 000000000 ____D C:\ProgramData\ASUS
2023-02-10 20:09 - 2022-12-13 17:38 - 000002274 _____ C:\Users\marti\Desktop\Discord PTB.lnk
2023-02-08 12:55 - 2022-12-13 09:17 - 000002376 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-02-08 12:55 - 2022-12-13 09:17 - 000002335 _____ C:\Users\Public\Desktop\Brave.lnk
2023-02-08 01:48 - 2022-12-14 13:11 - 000000000 ____D C:\Users\marti\AppData\Roaming\zar-app
2023-02-08 01:05 - 2022-12-13 14:22 - 000000000 ____D C:\ProgramData\Riot Games
2023-02-08 01:01 - 2022-12-26 22:13 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2023-02-07 21:10 - 2022-12-13 16:19 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-02-07 21:10 - 2022-12-13 16:19 - 000003508 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-02-04 19:21 - 2022-12-15 14:15 - 000000000 ____D C:\Users\marti\AppData\Roaming\qBittorrent
2023-02-04 14:41 - 2022-12-13 08:52 - 000000000 ____D C:\Users\marti\AppData\Local\Packages
2023-02-03 23:48 - 2022-12-30 09:53 - 006517032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-02-03 23:48 - 2022-12-28 18:05 - 007648048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-02-02 18:16 - 2022-12-13 16:19 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1819062965-147054822-3225315736-1001
2023-02-02 18:16 - 2022-12-13 08:50 - 000002367 _____ C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-02-01 09:46 - 2022-12-28 18:08 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-01 09:46 - 2022-12-28 18:08 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-01 09:46 - 2022-12-28 18:08 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-01 09:46 - 2022-12-28 18:08 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-01 09:46 - 2022-12-28 18:08 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-01 09:46 - 2022-12-28 18:08 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-01 09:46 - 2022-12-28 18:08 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-01 09:46 - 2022-12-28 18:08 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-01 09:46 - 2022-12-28 18:08 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-02-01 09:46 - 2022-12-28 18:08 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2023-02-01 09:46 - 2022-12-28 18:08 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-02-01 09:46 - 2022-12-28 18:08 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-02-01 09:46 - 2022-12-28 18:06 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-02-01 09:45 - 2022-12-13 09:46 - 000008765 _____ C:\GetDeviceCap.xml
2023-02-01 09:45 - 2022-12-13 09:46 - 000000908 _____ C:\QueryAllDevice.xml
2023-02-01 09:45 - 2022-12-13 09:46 - 000000228 _____ C:\SetMatrixLEDScript.xml
2023-02-01 09:45 - 2022-12-13 09:36 - 000015735 _____ C:\GetDeviceStatus.xml
2023-01-31 23:44 - 2022-12-28 11:33 - 000007609 _____ C:\Users\marti\AppData\Local\Resmon.ResmonCfg
2023-01-31 17:23 - 2022-12-20 18:06 - 000000000 ____D C:\Program Files\Epic Games
2023-01-31 14:51 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-01-31 11:01 - 2022-12-14 11:39 - 000000000 ____D C:\Users\marti\Downloads\Telegram Desktop
2023-01-26 08:16 - 2022-12-14 10:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2023-01-26 08:16 - 2022-12-14 10:07 - 000000000 ____D C:\Program Files\NordVPN
2023-01-25 19:15 - 2022-12-13 16:19 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1819062965-147054822-3225315736-1001
2023-01-25 08:30 - 2022-12-13 09:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-23 21:52 - 2022-12-14 13:07 - 000002227 _____ C:\Users\marti\Desktop\Discord.lnk
2023-01-21 09:42 - 2022-12-15 23:48 - 000000000 ____D C:\Users\marti\AppData\Roaming\.1911
2023-01-21 09:41 - 2022-12-13 20:10 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2023-01-21 09:32 - 2022-12-22 13:20 - 000000000 ____D C:\Users\marti\Documents\My Games
2023-01-20 17:45 - 2022-12-28 18:08 - 002904632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2023-01-20 17:45 - 2022-12-28 18:08 - 002234920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2023-01-20 17:45 - 2022-12-28 18:08 - 001297464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2023-01-20 14:40 - 2023-01-04 22:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2023-01-20 14:40 - 2023-01-04 22:54 - 000000000 ____D C:\Program Files\Java

==================== Files in the root of some directories ========

2022-12-13 10:56 - 2023-01-06 10:03 - 002128896 _____ () C:\Users\marti\AppData\Local\file__0.localstorage
2022-12-19 09:19 - 2022-12-19 09:19 - 000002338 _____ () C:\Users\marti\AppData\Local\recently-used.xbel
2022-12-28 11:33 - 2023-01-31 23:44 - 000007609 _____ () C:\Users\marti\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-02-2023 01
Ran by marti (15-02-2023 15:43:37)
Running from C:\Users\marti\Desktop
Microsoft Windows 11 Pro Version 22H2 22621.1265 (X64) (2022-12-13 15:20:08)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1819062965-147054822-3225315736-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1819062965-147054822-3225315736-503 - Limited - Disabled)
Guest (S-1-5-21-1819062965-147054822-3225315736-501 - Limited - Disabled)
marti (S-1-5-21-1819062965-147054822-3225315736-1001 - Administrator - Enabled) => C:\Users\marti
WDAGUtilityAccount (S-1-5-21-1819062965-147054822-3225315736-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.)
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.83 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.4.4 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{cf77cf6b-71ff-4a71-802d-43adb9b271b7}) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.) Hidden
AniMe Matrix MB EN (HKLM\...\{399B6DA7-B609-426E-95F8-B9A83FB7D06E}) (Version: 1.0.1 - ASUS)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.4.8 - ASUS)
Asistent inštalácie Windowsu 11 (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.2063 - Microsoft Corporation)
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.1.50.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{6aabd550-b97f-4b87-8c12-fb271d7c8047}) (Version: 1.1.50.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{4e2b05b0-eb08-41e5-9eb3-cdcc43d6bee0}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.3.9.1 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{2fc4816b-566a-4170-9b4d-1dc8bad8a164}) (Version: 1.3.9.1 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.20 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{7a0d5159-cb5e-4f66-91f8-bab46f864f14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 3.1.3.2 - ASUSTeK Computer Inc.)
ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 3.03.09 - ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.93 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{6FB66775-BB93-4D0A-9871-4CC9B2E87BF3}) (Version: 1.1.23 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{179f415f-2ff3-4db1-bcc1-d5730f746db8}) (Version: 1.1.23 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.28 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.28 - ASUS)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.06.14 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{7818852d-4182-406d-946b-7b54067ff419}) (Version: 3.06.14 - ASUSTeK Computer Inc.)
Battlestate Games Launcher 12.12.3.1964 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.12.3.1964 - Battlestate Games)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 110.1.48.158 - Autori prehliadača Brave)
Discord (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Discord) (Version: 1.0.9008 - Discord Inc.)
Discord PTB (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\DiscordPTB) (Version: 1.0.1022 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.67.0.5324 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{46247aa2-a7cf-4664-85f9-8f7e9f6a6cd6}) (Version: 12.67.0.5324 - Electronic Arts)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.40.3 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{7f329536-2468-4b20-88dc-5e2defcd5ff3}) (Version: 1.1.40.3 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{6b617af3-c8f4-45a8-bf47-b32ffb4da1cc}) (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{20235E2B-1E9F-473D-A215-B2467F1F06E3}) (Version: 1.3.51.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.13.0.2.21734 - Battlestate Games)
Esportal Client (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Esportal Client Installer) (Version: - Esportal)
Final Fantasy VII: Remake (HKLM-x32\...\Final Fantasy VII: Remake_is1) (Version: - )
FiveM (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\CitizenFX_FiveM) (Version: - Cfx.re)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
GIMP 2.10.32-1 (HKLM\...\GIMP-2_is1) (Version: 2.10.32 - The GIMP Team)
God of War (HKLM-x32\...\God of War_is1) (Version: - )
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Java 8 Update 361 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180361F0}) (Version: 8.0.3610.9 - Oracle Corporation)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.18 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{a9913343-8463-4fd2-8a33-ae89cbbfe139}) (Version: 1.1.18 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Microsoft .NET Host - 6.0.12 (x64) (HKLM\...\{E215AA9E-5DF2-44BC-9D6F-E1A1B0C348FB}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.12 (x64) (HKLM\...\{0712F23C-FBAC-436C-9DDB-125F32D15033}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.12 (x64) (HKLM\...\{1BF67DC1-8BB5-4AF5-BE20-3B53D9532D01}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 110.0.1587.41 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.78 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\OneDriveSetup.exe) (Version: 23.007.0109.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{EF9EBC42-6969-45CE-A8D2-B9249B00C838}) (Version: 5.69.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.34.31931 (HKLM-x32\...\{d4cecf3b-b68f-4995-8840-52ea0fab646e}) (Version: 14.34.31931.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.34.31931 (HKLM\...\{EAE242B1-0A26-485A-BFEB-0292EE9F03CB}) (Version: 14.34.31931 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.34.31931 (HKLM\...\{CF4C347D-954E-4543-88D2-EC17F07F466F}) (Version: 14.34.31931 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.12 (x64) (HKLM\...\{3E726676-B5F4-48DA-B9F9-78A15B7F8A70}) (Version: 48.51.52100 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.12 (x64) (HKLM-x32\...\{24b99d74-a81e-4765-aefe-be853ac47482}) (Version: 6.0.12.31928 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MPC-HC 1.7.9 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.9 - MPC-HC Team)
NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.3.0.160 - Nord Security)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 7.4.7.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation)
NVIDIA Grafický ovládač 528.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 528.49 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.5 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{31850f16-ce9f-4dec-81ca-222c617a9115}) (Version: 1.0.9.5 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.2 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{959e5696-0edd-4896-b1d8-54aaa725f770}) (Version: 1.1.0.2 - Patriot Memory) Hidden
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.5.0 - The qBittorrent project)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9359.1 - Realtek Semiconductor Corp.)
Riot Client (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Riot Game Riot_Client.) (Version: - Riot Games, Inc)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Roblox Player for marti (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.67.1178 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.1.6.5 - Rockstar Games)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.0.4.0 - ASUSTek COMPUTER INC.)
ROGFontInstaller (HKLM\...\{605108C1-153E-43D8-8A67-7CE326B00ECA}) (Version: 1.0.0 - ASUS)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 31.0.0 (HKLM\...\SteelSeries GG) (Version: 31.0.0 - SteelSeries ApS)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: 2.51.0 - TechPowerUp)
Telegram Desktop (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.6.2 - Telegram FZ-LLC)
TLauncher (HKLM-x32\...\TLauncher) (Version: 2.86 - TLauncher Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 137.0.10799 - Ubisoft)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.4 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{c8b4688a-f5d4-4236-aec4-df260a88ccc4}) (Version: 1.0.0.4 - PD) Hidden
VALORANT (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
ViGEm Bus Driver (HKLM\...\{9C581C76-2D68-40F8-AA6F-94D3C5215C05}) (Version: 1.21.442 - Nefarius Software Solutions e.U.)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
Windows Kontrola stavu počítača (HKLM\...\{995C446A-850D-44EA-BB71-156C271D9428}) (Version: 3.7.2204.15001 - Microsoft Corporation)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
ZAR App 1.25.5 (HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\2fcfbe5b-94b2-560b-adbe-3ceec952e615) (Version: 1.25.5 - Zar)

Packages:
=========
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.4.8.0_x64__qmba6cd70vzyy [2023-01-31] (ASUSTeK COMPUTER INC.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.19.0_neutral__8xx8rvfyw5nnt [2023-02-11] (Instagram)
ms-resource://MicrosoftCorporationII.QuickAssist/resources/APP_WINDOW_NAME -> C:\Program Files\WindowsApps\MicrosoftCorporationII.QuickAssist_2.0.16.0_x64__8wekyb3d8bbwe [2023-02-04] (Microsoft Corp.)
ms-resource:AppStoreName -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_2.1.40041.0_x64__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
ms-resource:AppxManifest_DisplayName -> C:\Windows\SystemApps\Microsoft.Windows.PrintQueueActionCenter_cw5n1h2txyewy [2022-12-13] (Microsoft Corporation)
ms-resource:PackageName -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.115.9637.2_x64__8wekyb3d8bbwe [2023-01-20] (ms-resource:PublisherDisplayName)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2023-02-10] (NVIDIA Corp.)
Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.125.0_x64__pwbj9vvecjh7j [2023-02-08] (Amazon Development Centre (London) Ltd)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.39.279.0_x64__dt26b99r8h8gj [2022-12-18] (Realtek Semiconductor Corp)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-15] (Microsoft Studios) [MS Ad]
Sonic Radar 3 -> C:\Program Files\WindowsApps\A-Volute.28054DF1F58B4_3.16.23.0_x64__w2gh52qy24etm [2022-12-13] (A-Volute)
Sonic Studio 3 -> C:\Program Files\WindowsApps\A-Volute.SonicStudio3_3.16.23.0_x64__w2gh52qy24etm [2022-12-13] (A-Volute)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0 [2023-02-04] (Spotify AB) [Startup Task]
Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.Core_cw5n1h2txyewy [2023-01-11] (Microsoft Windows)
WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.747.1945.0_x64__8wekyb3d8bbwe [2023-02-04] (Microsoft Corporation)
WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.747.1945.0_x86__8wekyb3d8bbwe [2023-02-04] (Microsoft Corporation)
WinRAR -> C:\Program Files\WinRAR [2022-12-15] (0)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1819062965-147054822-3225315736-1001_Classes\CLSID\{5405618e-4c42-4fb9-a80a-d24d89911296}\localserver32 -> C:\Users\marti\AppData\Local\NhNotifSys\sonicstudio\asusns.exe (A-Volute SAS -> A-Volute)
CustomCLSID: HKU\S-1-5-21-1819062965-147054822-3225315736-1001_Classes\CLSID\{D3E34B21-9D75-101A-8C3D-00AA001A1652}\localserver32 -> C:\Program Files\WindowsApps\Microsoft.Paint_11.2210.4.0_x64__8wekyb3d8bbwe\PaintApp\mspaint.exe () [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_36f8a434e9b7b9f2\nvshext.dll [2023-02-03] (NVIDIA Corporation -> NVIDIA Corporation)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2023-01-30 10:19 - 2022-09-01 09:47 - 000522240 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ac_node_addon\prebuilds\win32-ia32\node.napi.node
2023-01-30 10:19 - 2022-09-01 09:47 - 000520192 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2023-01-30 10:19 - 2022-09-01 09:47 - 000483328 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\node-system-fonts\build\Release\system-fonts.node
2023-01-30 10:19 - 2022-09-01 09:47 - 000510464 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2023-01-30 10:19 - 2022-09-27 14:56 - 000319488 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\sharp\prebuilds\win32-ia32\node.napi.node
2023-01-30 10:19 - 2022-09-01 09:47 - 000786432 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\usb-detection\prebuilds\win32-ia32\node.napi.node
2023-01-30 10:19 - 2022-06-08 10:33 - 000081920 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll
2022-08-17 23:06 - 2022-08-17 23:06 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\GG\apps\engine\HIDDLL.dll
2022-08-17 23:06 - 2022-08-17 23:06 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\GG\apps\engine\ISPDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.32.lnk:BFDD4D0564 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk:F208FC6732 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z.lnk:718E15FDE8 [5154]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5090]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TextInputManagementService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => ""="Memory"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TextInputManagementService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_361\bin\ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_361\bin\jp2ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\windows\system32\openssh\;c:\program files\nvidia corporation\nvidia nvdlisr;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\windows\system32\openssh\;c:\program files\dotnet\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\marti\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\slovensko.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 4: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_4A886EB596DDE810C696BFE47BAAC943"
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\StartupApproved\Run: => "DiscordPTB"
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\StartupApproved\Run: => "NordVPN"
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\StartupApproved\Run: => "ZAR App"
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1819062965-147054822-3225315736-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_1AAD4B1DA029AE4BE916877E447AA8CE"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{8A78C984-D36F-4DA8-850C-4D8922E3E8B1}C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe] => (Block) C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [UDP Query User{80167B59-CAED-4689-961E-5CC91F4DBEFF}C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe] => (Block) C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armourysocketserver.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [TCP Query User{2FE9258B-C27E-4D57-960A-F9F3502B210B}C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armouryhtmldebugserver.exe] => (Block) C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armouryhtmldebugserver.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [UDP Query User{A7DEA469-0415-4380-8453-07248DC7F089}C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armouryhtmldebugserver.exe] => (Block) C:\program files (x86)\asus\armourydevice\dll\armourysocketserver\armouryhtmldebugserver.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [TCP Query User{E9709559-B76A-4103-8A89-F53E5A7D09CB}C:\program files (x86)\asus\armourydevice\asus_framework.exe] => (Block) C:\program files (x86)\asus\armourydevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [UDP Query User{9D6190B6-1E85-4E92-8694-B5185D27FFBE}C:\program files (x86)\asus\armourydevice\asus_framework.exe] => (Block) C:\program files (x86)\asus\armourydevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{6D9340BD-E06C-4568-BBA9-79FCF71058DB}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8F7E4C7B-1C30-4258-BB66-70614C360D89}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6172356B-E684-4C1B-B8FD-6794F6255A7E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9C190BBD-0194-4070-A284-836C323CB576}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{412DC321-3597-4486-A205-21D8F07B31AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{CE1FADC7-34C4-45C9-84D6-BD9666DD1838}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{A88AAB25-46BF-4F9E-835D-9038117C7C35}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Block) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [UDP Query User{0BDAF80E-6A43-4A35-BB52-97FDF969CCDC}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Block) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{813498B8-7B1F-4F1A-AC08-FC916DEAE278}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D2A62558-9265-4335-824B-C7DD58DB887C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5513DF1F-A9D0-41E0-A6C7-F3482225DF31}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DFFCE40A-5DCB-4BBC-BCE3-0CEA8BECAC86}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7EEF6FC2-5005-44DE-BF07-74985EF8D50F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{197A1418-5C46-444F-93AF-37A540FFBFC1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3888166D-6736-4608-99BA-BD1E42E4FAE2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6FC66304-A158-4340-8CD4-C17899BE446B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{362EB6C7-29FB-4FAB-B232-FF81C2D5F79A}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [UDP Query User{2F6C00A7-C630-4ED6-B5DE-117013C1A4CE}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{1F86CF01-7AAB-43DA-A221-AF0CB42DED89}] => (Block) C:\program files\qbittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{0424B92C-C0E3-4AA5-9EF1-C893EEBFD0E6}] => (Block) C:\program files\qbittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{77631613-9E34-447B-B3DA-9CF355D95338}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.78\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{CAFE7AC0-072F-4FC9-ACF1-60AA2922B28F}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{8FBBFB40-16B1-45FD-B94D-636FADB89198}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{E6EE8829-C923-486D-BB44-57AE117B0EAE}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{435BB9D3-5CA9-4661-AC5C-8A1EFCFF4D78}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{7232C548-3F0C-4392-9CA0-A7831E6315BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{1EDBB33A-DE59-4DF4-A865-341A2884051C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{BC166864-1E60-4800-99CA-8B2B4165F4DF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{D6FE2F03-07A4-4B24-84E2-E59D0F71203E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My dream setup Demo\MDS_DEMO_WIN\MDS_DEMO.exe () [File not signed]
FirewallRules: [{5F14A88D-0EC0-4C93-BB1F-C5DA0B148E8E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My dream setup Demo\MDS_DEMO_WIN\MDS_DEMO.exe () [File not signed]
FirewallRules: [{E7FFAF22-23AC-430F-B057-E68695A492A9}] => (Allow) C:\Users\marti\AppData\Local\Packages\B9ECED6F.ArmouryCrate_qmba6cd70vzyy\LocalState\GridUpdateFile\ASUSGCDriverUpdateClient.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [TCP Query User{11476FA9-6C7D-4D35-9687-692E0A61BFD7}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{5764F3F1-C071-4367-AF03-11B362F11ECE}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{CD2F7035-B425-4714-B188-D114C0DBDB82}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lucius\Lucius.exe (Esenthel) [File not signed]
FirewallRules: [{2552A320-872E-4269-BEDE-61D3F4501963}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lucius\Lucius.exe (Esenthel) [File not signed]

==================== Restore Points =========================

06-02-2023 22:10:43 Scheduled Checkpoint
10-02-2023 20:22:40 Installed MBLedSDK
15-02-2023 09:22:56 Inštalátor modulov systému Windows

==================== Faulty Device Manager Devices ============

Name: TAP-NordVPN Windows Adapter V9
Description: TAP-NordVPN Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-NordVPN Windows Provider V9
Service: tapnordvpn
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: ========================

Application errors:
==================
Error: (02/12/2023 03:14:03 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: The program SonicStudio3.exe version 3.16.230.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Error: (02/12/2023 03:13:45 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: The program SonicStudio3.exe version 3.16.230.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Error: (02/12/2023 03:11:24 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-HCTSPHQ)
Description: Názov chybujúcej aplikácie: SonicRadar3.exe, verzia: 3.16.230.0, časová značka: 0x620b3470
Názov chybujúceho modulu: Windows.UI.Xaml.dll, verzia: 10.0.22621.963, časová značka: 0x89a1dc34
Kód výnimky: 0xc000027b
Odstup chyby: 0x0000000000870210
Identifikácia chybujúceho procesu: 0x0xac0
Čas spustenia chybujúcej aplikácie: 0x0x1d93eeb9a5247a4
Cesta chybujúcej aplikácie: C:\Program Files\WindowsApps\A-Volute.28054DF1F58B4_3.16.23.0_x64__w2gh52qy24etm\SonicRadar3.exe
Cesta chybujúceho modulu: C:\Windows\System32\Windows.UI.Xaml.dll
Identifikácia hlásenia: bad28374-1eb1-4289-a61f-f9d31c7e2419
Celé meno chybujúceho balíka: A-Volute.28054DF1F58B4_3.16.23.0_x64__w2gh52qy24etm
Identifikácia chybujúcej aplikácie vzhľadom na balík: App

Error: (02/12/2023 03:10:48 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: The program SonicStudio3.exe version 3.16.230.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Error: (02/12/2023 03:08:38 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: The program SonicStudio3.exe version 3.16.230.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Error: (02/12/2023 03:07:57 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: The program SonicStudio3.exe version 3.16.230.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Error: (02/12/2023 03:07:18 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: The program SonicStudio3.exe version 3.16.230.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Error: (02/12/2023 09:45:25 AM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: The program NordVPN.exe version 1.0.2.27 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.


System errors:
=============
Error: (02/15/2023 09:23:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80073d02: 9MSSGKG348SP-MicrosoftWindows.Client.WebExperience.

Error: (02/14/2023 10:30:02 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Steam Client Service zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (02/14/2023 10:30:02 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Steam Client Service bol dosiahnutý časový limit (30000 ms).

Error: (02/13/2023 03:47:11 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HCTSPHQ)
Description: The server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} did not register with DCOM within the required timeout.

Error: (02/13/2023 01:58:56 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HCTSPHQ)
Description: The server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} did not register with DCOM within the required timeout.

Error: (02/13/2023 11:00:07 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NordSec Update Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (02/12/2023 04:23:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HCTSPHQ)
Description: The server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} did not register with DCOM within the required timeout.

Error: (02/12/2023 04:21:18 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 15:14:35 on ‎12. ‎2. ‎2023 was unexpected.


Windows Defender:
================
Date: 2022-12-15 12:26:41
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]

Date: 2022-12-16 10:00:02
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

CodeIntegrity:
===============
Date: 2023-02-12 15:09:39
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.78\msedgewebview2.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\ScheduledModules\x64\AudioDevProps2.dll that did not meet the Microsoft signing level requirements.

Date: 2023-02-12 15:09:39
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.78\msedgewebview2.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\ScheduledModules\x64\NahimicOSD.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 4901 07/25/2022
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B450-F GAMING II
Processor: AMD Ryzen 5 5600 6-Core Processor
Percentage of memory in use: 22%
Total physical RAM: 16229.57 MB
Available physical RAM: 12618.67 MB
Total Virtual: 32229.57 MB
Available Virtual: 27135.53 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:446.35 GB) (Free:93.06 GB) (Model: KINGSTON SA400S37480G) NTFS
Drive d: (Nový zväzok) (Fixed) (Total:931.51 GB) (Free:438.9 GB) (Model: KINGSTON SNVS1000G) NTFS

\\?\Volume{a2b405b1-35b7-4214-8b67-1faf384d149a}\ () (Fixed) (Total:0.66 GB) (Free:0.08 GB) NTFS
\\?\Volume{40fdc63e-da23-46bc-a168-2bf7af58f4d7}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 447.1 GB) (Disk ID: BEB85BC2)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118196
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivní kontrolu

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Task: {00F89FB4-7DC2-4F83-9AC7-22251580DAD1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {D7C47577-0102-456C-A094-228FE2098CD9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {DB793911-825E-4D56-8FB7-676671E30630} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (No File)
C:\DumpStack.log.tmp
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.32.lnk:BFDD4D0564 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk:F208FC6732 [5154]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z.lnk:718E15FDE8 [5154]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5090]

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět