Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivna kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Bruno39
Návštěvník
Návštěvník
Příspěvky: 35
Registrován: 01 led 2016 14:43

Preventivna kontrola

#1 Příspěvek od Bruno39 »

Dobrý deň, prosím o preventivnú kontrolu. Dakujem
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-04-2023
Ran by marti (administrator) on DESKTOP-0MCCIKE (29-04-2023 15:09:24)
Running from C:\Users\marti\Desktop\FRST64.exe
Loaded Profiles: marti
Platform: Microsoft Windows 10 Pro Version 22H2 19045.2846 (X64) Language: Slovenčina (Slovensko)
Default browser: Brave
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\MpCopyAccelerator.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.23\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_8156678a4c5d0913\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f8a05495a6e8bc10\RtkAudUService64.exe <2>
(services.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe <2>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <5>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe <2>
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f8a05495a6e8bc10\RtkAudUService64.exe [3496120 2022-06-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [13129552 2023-04-17] (SteelSeries ApS -> SteelSeries ApS)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-4245377277-2649400946-3968391194-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [253816 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\112.1.50.121\Installer\chrmstp.exe [2023-04-21] (Brave Software, Inc. -> Brave Software, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0DF4023F-1922-4197-8189-DC5DE7558E19} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F96C380-EFA5-453F-BA8F-7D7D9CA1EFF0} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d946931e111439 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-02-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {3BCA0292-EC8A-4436-925B-A722DCF4909A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\MpCmdRun.exe [1645864 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {46358452-7BA4-4AF1-B0CD-88F0FCF24190} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1860968 2023-02-01] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {4D0A7F39-42C2-46BF-ACA1-0B0087C83D8A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6154FF47-FB96-47F0-BDCD-EF559EB19E33} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [46631024 2023-03-06] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {6F74A967-5F65-4414-BF45-22348D69C0D8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7038324B-BC62-4EB6-A965-70CF1E7F6F86} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\MpCmdRun.exe [1645864 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7EFB0BFC-CB4B-4579-890E-70D335FCB816} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\MpCmdRun.exe [1645864 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7F07ECF2-23F3-4868-B9DE-2BA5FF8078FA} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-02-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {83C53D34-7C8C-4BFF-B16F-99E60F5FC6C1} - System32\Tasks\NahimicTask32 => C:\Windows\system32\..\SysWOW64\NahimicSvc32.exe [833688 ] (A-Volute SAS -> Nahimic)
Task: {8679A4FD-E643-4143-96FD-A750EAE0FA42} - System32\Tasks\ViGEmBus_Updater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBus_Updater.exe [1117096 2022-09-27] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
Task: {9E2C32D5-3188-430A-A35D-6303F01F0BF5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9F084F05-1C0B-4C0C-A1F8-721009F3C142} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{82E023B8-D0B8-40C2-BB9C-649314C96602} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-02-22] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {A6902853-42BF-478A-AD41-8DBC0EDED1A0} - System32\Tasks\CCleanerSkipUAC - marti => D:\CCleaner v6.03.10002 All Edition Multilingual Portable\CCleaner All Editions Portable\Professional\App\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {ACD325FA-F499-4894-B44B-1B7B6D6F88B4} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [308584 2023-02-01] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {C176D388-3412-495D-9680-E1A470655AE4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C32129DF-9A5D-4319-AA30-5E2BAC5517AC} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [833688 2021-11-01] (A-Volute SAS -> Nahimic)
Task: {CC2F69C0-342A-4DED-B240-282B5FC92C87} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1254760 2023-03-17] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {CCD24F7A-0EA4-4902-98C4-0ED0DC7F2F32} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE1C5CBF-D285-4A24-8523-E29B315BE9DE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\MpCmdRun.exe [1645864 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D3E9A1A3-23D0-4682-BA43-852C62B89D4E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D656A05A-2C77-4F7F-8502-7A827F33AFC4} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D78FADC7-3C3E-494E-B0BB-AB9E075B5285} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{D753DD67-2DD4-48C3-905F-86DB36A20018} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-02-22] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {D81C4530-8FAB-4F30-9CF7-640285245A54} - System32\Tasks\CCleanerCrashReporting => D:\CCleaner v6.03.10002 All Edition Multilingual Portable\CCleaner All Editions Portable\Professional\App\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "D:\CCleaner v6.03.10002 All Edition Multilingual Portable\CCleaner All Editions Portable\Professional\App\CCleaner\LOG" --programpath "D:\CCleaner v6.03.10002 All Edition Multilingual Portable\CCleaner All Editions Portable\Professional\App\CCleaner" --configpath "D:\CCleaner v6.03.10002 All Edition Multilingual Portable\CCleaner All Editions Portable\Professional\App\CCleaner\Setup" --guid "461c6ede-2902-4b5d-9733-a3b89ffc1996" --version "6.10.10347" --silent
Task: {DA1ED35D-3E0F-42EB-A7E6-5F9BF2EE41E9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DE13F3DE-202B-4E0E-A447-149BCD2B1383} - System32\Tasks\NahimicTask64 => C:\Windows\system32\.\NahimicSvc64.exe [1094808 ] (A-Volute SAS -> Nahimic)
Task: {DE96C165-4A28-4B56-969F-A9DC11371F3E} - System32\Tasks\CCleaner Update => D:\CCleaner v6.03.10002 All Edition Multilingual Portable\CCleaner All Editions Portable\Professional\App\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {F3CAB66F-1E49-401D-B3C2-2B1D6CCCA973} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {FA547BF9-4DC6-445E-8737-B2CF257F2BB9} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1094808 2021-11-01] (A-Volute SAS -> Nahimic)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => D:\CCleaner v6.03.10002 All Edition Multilingual Portable\CCleaner All Editions Portable\Professional\App\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{dfc5d99c-abe6-4ea6-8379-4fdfebbe201e}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default [2023-04-28]
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255141

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\dtplugin\npDeployJava1.dll [2023-04-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.351.2 -> C:\Program Files\Java\jre1.8.0_351\bin\plugin2\npjp2.dll [2023-04-05] (Oracle America, Inc. -> Oracle Corporation)

Brave:
=======
BRA Profile: C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-04-29]
BRA DefaultSearchURL: Default -> hxxps://search.brave.com/search?q={searchTerms}&source=desktop
BRA DefaultSearchKeyword: Default -> :br
BRA DefaultSuggestURL: Default -> hxxps://search.brave.com/api/suggest?q={searchTerms}
BRA Extension: (trigger-translation) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cofdbpoegempjloogbagkncekinflcnj [2023-04-19]
BRA Extension: (CSGO Trader - Steam Trading Enhancer) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\kaibcgikagnkfgjnibflebpldakfhfih [2023-04-29]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-04-29]
BRA Extension: (Brave NTP background images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-02-22]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications List (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-04-29]
BRA Extension: (Wallet Data Files Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-04-25]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-04-26]
BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-04-29]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-03-16]
BRA Extension: (Brave NTP sponsored images) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\mjgplcflbkgklplplbakkopkafojhbmk [2023-04-29]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak (plaintext))) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2023-03-26]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\marti\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-04-26]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [399984 2023-03-07] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.23\atkexComSvc.exe [896872 2023-03-27] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-02-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [558104 2022-05-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-09-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2023-02-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [845256 2023-04-19] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-11-07] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-02-22] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-02-22] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\112.1.50.121\brave_vpn_helper.exe [3015472 2023-04-19] (Brave Software, Inc. -> Brave Software, Inc.)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [935344 2023-04-06] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-02-10] (Epic Games Inc. -> Epic Games, Inc.)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4210536 2023-02-10] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1920152 2021-11-01] (A-Volute SAS -> Nahimic)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [310136 2021-06-11] (nordvpn s.a. -> TEFINCOM S.A.)
S2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2023-01-04] (nordvpn s.a. -> nordvpn S.A.)
S2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [254328 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1574512 2023-02-13] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [285088 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35152 2023-04-17] (SteelSeries ApS -> )
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [11060856 2023-03-10] (Riot Games, Inc. -> Riot Games, Inc.)
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [134752 2023-03-05] (Skutta, Kristjan -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\NisSrv.exe [3228400 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\MsMpEng.exe [133536 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService1d95377bddd8ed0; "C:\Program Files\BraveSoftware\Brave-Browser\Application\112.1.50.121\elevation_service.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_8156678a4c5d0913\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_8156678a4c5d0913\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [49256 2022-08-16] (ASUSTeK COMPUTER INC. -> )
S3 AVoluteSS3Vad; C:\Windows\System32\drivers\AVoluteSS3Vad.sys [93672 2021-10-14] (A-Volute -> Windows (R) Win 7 DDK provider)
S3 cpuz154; C:\Windows\temp\cpuz154\cpuz154_x64.sys [40976 2023-04-01] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32320 2023-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18496 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R0 MsSecCore; C:\Windows\System32\drivers\msseccore.sys [26480 2023-04-13] (Microsoft Windows -> Microsoft Corporation)
S3 MsSecWfp; C:\Windows\System32\drivers\mssecwfp.sys [29568 2023-04-13] (Microsoft Windows -> Microsoft Corporation)
R2 NDivert; C:\Program Files\NordVPN\7.7.4.0\Drivers\NDivert.sys [131472 2022-06-28] (nordvpn s.a. -> Nordvpn S.A.)
R4 NordDivert10; C:\Program Files\NordVPN\NordSec ThreatProtection\1.3.297.409\NordDivert1064.sys [101240 2022-04-19] (nordvpn s.a. -> NordVPN/Basil)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [44928 2023-01-17] (nordvpn s.a. -> TEFINCOM S.A.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [42912 2023-01-17] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 sshid; C:\Windows\System32\drivers\sshid.sys [44456 2023-03-13] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_da15ab44a6216a8e\SteelSeries-Sonar-VAD.sys [95440 2023-03-17] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [49744 2022-06-29] (nordvpn s.a. -> The OpenVPN Project)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22292248 2023-03-10] (Riot Games, Inc. -> Riot Games, Inc.)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [249400 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49600 2023-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [497920 2023-04-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99608 2023-04-13] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\Windows\System32\drivers\wintun.sys [29592 2023-03-02] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-02-22] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-04-29 15:09 - 2023-04-29 15:09 - 000027017 _____ C:\Users\marti\Desktop\FRST.txt
2023-04-29 15:09 - 2023-04-29 15:09 - 000000000 ____D C:\FRST
2023-04-29 15:08 - 2023-04-29 15:08 - 002382848 _____ (Farbar) C:\Users\marti\Desktop\FRST64.exe
2023-04-23 09:12 - 2023-04-23 09:12 - 000000223 _____ C:\Users\marti\Desktop\PGA TOUR 2K21.url
2023-04-20 22:19 - 2023-04-20 22:19 - 000000000 ____D C:\Users\marti\AppData\LocalLow\2K
2023-04-18 19:15 - 2023-04-18 19:15 - 000000000 ____D C:\Windows\LastGood.Tmp
2023-04-18 19:12 - 2023-04-14 10:39 - 001607760 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-04-18 19:12 - 2023-04-14 10:39 - 001607760 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2023-04-18 19:12 - 2023-04-14 10:38 - 002172496 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2023-04-18 19:12 - 2023-04-14 10:38 - 002172496 _____ C:\Windows\system32\vulkaninfo.exe
2023-04-18 19:12 - 2023-04-14 10:38 - 001487896 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2023-04-18 19:12 - 2023-04-14 10:38 - 001479248 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2023-04-18 19:12 - 2023-04-14 10:38 - 001479248 _____ C:\Windows\system32\vulkan-1.dll
2023-04-18 19:12 - 2023-04-14 10:38 - 001227288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2023-04-18 19:12 - 2023-04-14 10:38 - 001211472 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2023-04-18 19:12 - 2023-04-14 10:38 - 001211472 _____ C:\Windows\SysWOW64\vulkan-1.dll
2023-04-18 19:12 - 2023-04-14 10:35 - 000851464 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2023-04-18 19:12 - 2023-04-14 10:35 - 000671240 _____ C:\Windows\system32\nvofapi64.dll
2023-04-18 19:12 - 2023-04-14 10:35 - 000506904 _____ C:\Windows\SysWOW64\nvofapi.dll
2023-04-18 19:12 - 2023-04-14 10:34 - 002166808 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2023-04-18 19:12 - 2023-04-14 10:34 - 001621000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2023-04-18 19:12 - 2023-04-14 10:34 - 001535960 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2023-04-18 19:12 - 2023-04-14 10:34 - 001194992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2023-04-18 19:12 - 2023-04-14 10:34 - 000979480 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2023-04-18 19:12 - 2023-04-14 10:34 - 000758792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2023-04-18 19:12 - 2023-04-14 10:34 - 000741384 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2023-04-18 19:12 - 2023-04-14 10:33 - 013769240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2023-04-18 19:12 - 2023-04-14 10:33 - 011650032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2023-04-18 19:12 - 2023-04-14 10:33 - 006084120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2023-04-18 19:12 - 2023-04-14 10:33 - 005911576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2023-04-18 19:12 - 2023-04-14 10:33 - 003429896 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2023-04-18 19:12 - 2023-04-14 10:33 - 000457696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2023-04-18 19:12 - 2023-04-14 10:32 - 005835288 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2023-04-18 19:12 - 2023-04-14 10:32 - 000853488 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2023-04-18 19:12 - 2023-04-14 10:31 - 006798840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2023-04-18 19:12 - 2023-04-14 02:14 - 000104369 _____ C:\Windows\system32\nvinfo.pb
2023-04-15 07:43 - 2023-04-15 07:43 - 000000000 ____D C:\Users\marti\AppData\Local\SH3RE
2023-04-14 21:59 - 2023-04-14 21:59 - 000001095 _____ C:\Users\Public\Desktop\Play Sherlock Holmes The Awakened.lnk
2023-04-14 21:59 - 2023-04-14 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sherlock Holmes The Awakened
2023-04-14 15:18 - 2023-04-14 15:18 - 000000000 ____D C:\Windows\system32\Drivers\mde
2023-04-13 18:41 - 2023-04-13 18:41 - 000000000 ___HD C:\$WinREAgent
2023-04-11 23:44 - 2023-04-11 23:44 - 000004752 _____ C:\Users\marti\AppData\Local\recently-used.xbel
2023-04-08 08:33 - 2023-04-08 08:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games
2023-04-08 08:32 - 2023-04-08 08:32 - 000000000 ____D C:\Battlestate Games
2023-04-06 19:35 - 2023-04-06 19:35 - 000000000 ____D C:\Users\marti\AppData\Roaming\EasyAntiCheat
2023-04-06 19:35 - 2023-04-06 19:35 - 000000000 ____D C:\Users\marti\AppData\LocalLow\Landfall Games
2023-04-06 19:35 - 2023-04-06 19:35 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2023-04-06 11:19 - 2023-04-06 11:19 - 000000440 _____ C:\Users\marti\Desktop\Tento počítač.lnk
2023-04-06 00:01 - 2023-04-06 00:01 - 000000000 ____D C:\Users\marti\AppData\Roaming\java
2023-04-05 23:55 - 2023-04-05 23:55 - 000195232 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2023-04-05 23:55 - 2023-04-05 23:55 - 000000000 ____D C:\Users\marti\AppData\Roaming\Sun
2023-04-05 23:55 - 2023-04-05 23:55 - 000000000 ____D C:\Users\marti\AppData\LocalLow\Sun
2023-04-05 23:55 - 2023-04-05 23:55 - 000000000 ____D C:\ProgramData\Oracle
2023-04-05 23:55 - 2023-04-05 23:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2023-04-05 23:55 - 2023-04-05 23:55 - 000000000 ____D C:\Program Files\Java
2023-04-05 23:54 - 2023-04-08 18:04 - 000000000 ____D C:\Users\marti\AppData\Roaming\.tlauncher
2023-04-05 23:54 - 2023-04-08 18:04 - 000000000 ____D C:\Users\marti\AppData\Roaming\.minecraft
2023-04-05 23:54 - 2023-04-05 23:54 - 023671024 _____ (TLauncher Inc.) C:\Users\marti\Downloads\TLauncher-2.879-Installer-1.1.0.exe
2023-04-05 23:54 - 2023-04-05 23:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TLauncher
2023-04-05 23:05 - 2023-04-05 23:05 - 000000000 ____D C:\ProgramData\BraveSoftware
2023-04-03 18:28 - 2023-04-03 18:28 - 000000000 ____D C:\Users\Public\Documents\Steam
2023-04-03 18:28 - 2023-04-03 18:28 - 000000000 ____D C:\Users\marti\AppData\Local\SessionGame
2023-04-03 18:27 - 2023-04-03 18:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Session Skate Sim
2023-04-03 18:25 - 2023-04-03 18:25 - 000000000 ____D C:\Games
2023-04-03 17:47 - 2023-04-03 17:47 - 000000000 ____D C:\Users\marti\AppData\Local\IC001
2023-04-03 17:05 - 2023-04-03 17:05 - 000000000 ____D C:\Users\marti\AppData\Roaming\2K Sports
2023-04-03 17:05 - 2023-04-03 17:05 - 000000000 ____D C:\ProgramData\2K Sports

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-04-29 15:08 - 2023-02-22 10:41 - 000000000 ____D C:\Program Files (x86)\Steam
2023-04-29 14:55 - 2023-02-22 09:50 - 000000000 ____D C:\ProgramData\NVIDIA
2023-04-29 14:55 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-04-29 14:53 - 2023-02-22 11:45 - 000000000 ____D C:\Users\marti\AppData\Roaming\Telegram Desktop
2023-04-29 14:52 - 2023-02-22 09:44 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-04-29 14:52 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-04-29 14:52 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-04-29 03:24 - 2023-02-22 09:44 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-04-29 01:54 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2023-04-28 21:02 - 2023-02-22 09:56 - 000000000 ____D C:\Program Files\ASUS
2023-04-28 19:59 - 2023-02-22 09:56 - 000000000 ____D C:\Users\marti\AppData\Local\D3DSCache
2023-04-28 19:57 - 2023-02-22 10:57 - 000000000 ____D C:\Users\marti\AppData\Roaming\discordptb
2023-04-28 19:57 - 2023-02-22 10:57 - 000000000 ____D C:\Users\marti\AppData\Local\DiscordPTB
2023-04-28 19:34 - 2023-02-22 09:54 - 000000000 ____D C:\Users\marti\AppData\Local\PlaceholderTileLogoFolder
2023-04-28 19:34 - 2023-02-22 09:53 - 000000000 ____D C:\Users\marti\AppData\Local\Packages
2023-04-28 14:51 - 2023-03-06 12:50 - 000000000 ____D C:\Users\marti\AppData\Roaming\DS4Windows
2023-04-28 09:14 - 2023-02-22 10:18 - 000000000 ____D C:\Users\marti\AppData\Roaming\steelseries-gg-client
2023-04-27 22:34 - 2023-02-22 10:56 - 000000000 ____D C:\Users\marti\AppData\Roaming\discord
2023-04-27 22:00 - 2023-03-06 15:11 - 000000000 ____D C:\Users\marti\AppData\Local\Discord
2023-04-25 19:37 - 2023-03-01 21:51 - 000000000 ____D C:\Users\marti\AppData\Roaming\qBittorrent
2023-04-25 08:53 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-04-25 08:48 - 2023-02-22 12:08 - 000000000 ____D C:\Users\marti\AppData\Local\NordVPN
2023-04-23 09:12 - 2023-02-22 10:54 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-04-21 20:08 - 2023-02-22 10:59 - 000000000 ____D C:\Users\marti\AppData\Roaming\TS3Client
2023-04-21 07:46 - 2023-02-22 10:15 - 000002376 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-04-19 07:49 - 2023-03-06 12:49 - 000048950 _____ C:\Windows\system32\perfh01B.dat
2023-04-19 07:49 - 2023-03-06 12:49 - 000012092 _____ C:\Windows\system32\perfc01B.dat
2023-04-19 07:49 - 2023-02-22 09:51 - 000884720 _____ C:\Windows\system32\PerfStringBackup.INI
2023-04-19 07:45 - 2023-03-06 17:23 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2023-04-19 07:42 - 2023-02-22 10:15 - 000003112 _____ C:\Windows\system32\Tasks\NahimicTask32
2023-04-19 07:42 - 2023-02-22 10:15 - 000003092 _____ C:\Windows\system32\Tasks\NahimicTask64
2023-04-19 07:42 - 2023-02-22 09:44 - 000901328 _____ () C:\Windows\system32\wpbbin.exe
2023-04-19 07:42 - 2023-02-22 09:44 - 000845256 _____ C:\Windows\system32\AsusUpdateCheck.exe
2023-04-19 07:42 - 2023-02-22 09:44 - 000008192 ___SH C:\DumpStack.log.tmp
2023-04-19 07:42 - 2023-02-22 09:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-04-18 19:17 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-04-18 19:15 - 2023-02-22 09:53 - 000000000 ____D C:\Users\marti\AppData\Local\NVIDIA
2023-04-16 17:57 - 2023-02-22 09:56 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-04-16 17:56 - 2023-02-22 09:55 - 000000000 ____D C:\ProgramData\Package Cache
2023-04-16 17:30 - 2023-02-23 15:44 - 000000000 ____D C:\Users\marti\Downloads\Telegram Desktop
2023-04-14 15:20 - 2023-02-22 12:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2023-04-14 15:20 - 2023-02-22 12:08 - 000000000 ____D C:\Program Files\NordVPN
2023-04-14 15:18 - 2023-02-22 09:44 - 000266624 _____ C:\Windows\system32\FNTCACHE.DAT
2023-04-14 15:18 - 2019-12-07 16:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\es-MX
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-04-14 15:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-04-14 10:31 - 2023-02-22 09:49 - 007935608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2023-04-13 18:48 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-04-13 18:46 - 2023-02-22 09:45 - 003015680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-04-13 18:40 - 2023-02-22 10:02 - 000000000 ____D C:\Windows\system32\MRT
2023-04-13 18:39 - 2023-02-22 10:02 - 156112424 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-04-13 18:36 - 2023-02-22 09:44 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-04-11 23:44 - 2023-03-07 19:42 - 000000000 ____D C:\Users\marti\AppData\Local\babl-0.1
2023-04-06 19:42 - 2023-03-01 18:23 - 000000000 ____D C:\Users\marti\AppData\Local\CrashDumps
2023-04-06 00:00 - 2023-02-22 12:24 - 000000000 ____D C:\Users\marti\Desktop\Hry
2023-04-05 22:21 - 2023-02-25 16:34 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2023-04-04 15:40 - 2023-02-22 09:44 - 000003632 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-04-04 15:40 - 2023-02-22 09:44 - 000003508 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-04-03 17:33 - 2023-03-06 12:35 - 000000000 ____D C:\Program Files\Epic Games
2023-04-02 16:15 - 2023-03-29 15:47 - 000000000 ____D C:\Users\marti\Desktop\webd
2023-04-01 18:11 - 2023-03-15 17:36 - 000000000 ____D C:\Users\marti\AppData\Roaming\Goldberg SteamEmu Saves
2023-04-01 08:12 - 2023-03-06 17:26 - 000001472 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-04-01 08:09 - 2023-03-06 17:26 - 000004188 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-04-01 08:09 - 2023-03-06 17:26 - 000004114 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-04-01 07:58 - 2023-02-22 09:56 - 000000000 ____D C:\Windows\system32\Tasks\ASUS

==================== Files in the root of some directories ========

2023-04-11 23:44 - 2023-04-11 23:44 - 000004752 _____ () C:\Users\marti\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-04-2023
Ran by marti (29-04-2023 15:10:11)
Running from C:\Users\marti\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.2846 (X64) (2023-02-22 07:45:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4245377277-2649400946-3968391194-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4245377277-2649400946-3968391194-503 - Limited - Disabled)
Guest (S-1-5-21-4245377277-2649400946-3968391194-501 - Limited - Disabled)
marti (S-1-5-21-4245377277-2649400946-3968391194-1001 - Administrator - Enabled) => C:\Users\marti
WDAGUtilityAccount (S-1-5-21-4245377277-2649400946-3968391194-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.)
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.83 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.4.4 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{cf77cf6b-71ff-4a71-802d-43adb9b271b7}) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.) Hidden
AniMe Matrix MB EN (HKLM\...\{399B6DA7-B609-426E-95F8-B9A83FB7D06E}) (Version: 1.0.1 - ASUS)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.4.10 - ASUS)
Assassin's Creed Valhalla (HKLM-x32\...\Uplay Install 13504) (Version: - Ubisoft)
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.2.0.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{45ece30d-a966-424e-9bce-f740797c5348}) (Version: 1.2.0.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{4e2b05b0-eb08-41e5-9eb3-cdcc43d6bee0}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.3.9.4 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{39cdaa93-c446-4421-a337-1e52705dd2f8}) (Version: 1.3.9.4 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.20 - ASUSTek COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 3.2.1.2 - ASUSTeK Computer Inc.)
ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 4.00.01 - ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.93 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{6FB66775-BB93-4D0A-9871-4CC9B2E87BF3}) (Version: 1.1.23 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{179f415f-2ff3-4db1-bcc1-d5730f746db8}) (Version: 1.1.23 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.28 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.28 - ASUS)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.06.20 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{69f930f0-cd00-4a0c-b1b7-bfddf47f894d}) (Version: 3.06.20 - ASUSTeK Computer Inc.)
Battlestate Games Launcher 12.12.3.1981 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.12.3.1981 - Battlestate Games)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 112.1.50.121 - Autori prehliadača Brave)
Discord (HKU\S-1-5-21-4245377277-2649400946-3968391194-1001\...\Discord) (Version: 1.0.9011 - Discord Inc.)
Discord PTB (HKU\S-1-5-21-4245377277-2649400946-3968391194-1001\...\DiscordPTB) (Version: 1.0.1024 - Discord Inc.)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.40.3 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{7f329536-2468-4b20-88dc-5e2defcd5ff3}) (Version: 1.1.40.3 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{6b617af3-c8f4-45a8-bf47-b32ffb4da1cc}) (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{C027033D-F5BC-4556-B302-84E6EC6BD4D4}) (Version: 1.3.67.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{4757C19B-4CE3-418C-91D2-E15E938091FB}) (Version: 2.0.39.0 - Epic Games, Inc.)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.13.0.4.22617 - Battlestate Games)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
GIMP 2.10.34 (HKLM\...\GIMP-2_is1) (Version: 2.10.34 - The GIMP Team)
Java 8 Update 351 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180351F0}) (Version: 8.0.3510.10 - Oracle Corporation)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.18 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{a9913343-8463-4fd2-8a33-ae89cbbfe139}) (Version: 1.1.18 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-4245377277-2649400946-3968391194-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Microsoft .NET Host - 6.0.14 (x64) (HKLM\...\{40D4EC44-91F8-4EEE-869E-F4B3E90E6688}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.14 (x64) (HKLM\...\{D1726E78-81F3-40A2-A7AF-6286BAA49B1C}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.14 (x64) (HKLM\...\{61202CF9-3B84-4E5A-91A1-2984FAE38259}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 112.0.1722.64 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 112.0.1722.58 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{89581302-705F-42C5-99B0-E368A845DAD5}) (Version: 3.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (HKLM\...\{764384C5-BCA9-307C-9AAC-FD443662686A}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (HKLM\...\{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.30.30704 (HKLM-x32\...\{57a73df6-4ba9-4c1d-bbbb-517289ff6c13}) (Version: 14.30.30704.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.30.30704 (HKLM-x32\...\{4d8dcf8c-a72a-43e1-9833-c12724db736e}) (Version: 14.30.30704.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.30.30704 (HKLM\...\{6DB765A8-05AF-49A1-A71D-6F645EE3CE41}) (Version: 14.30.30704 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.30.30704 (HKLM\...\{662A0088-6FCD-45DD-9EA7-68674058AED5}) (Version: 14.30.30704 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.30.30704 (HKLM-x32\...\{BF08E976-B92E-4336-B56F-2171179476C4}) (Version: 14.30.30704 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.30.30704 (HKLM-x32\...\{F6080405-9FA8-4CAA-9982-14E95D1A3DAC}) (Version: 14.30.30704 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.14 (x64) (HKLM\...\{424D9E0C-14D9-4D4B-9562-845689D972F6}) (Version: 48.59.55235 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.14 (x64) (HKLM-x32\...\{c4558324-5b32-43fc-9ac2-423fee96dae0}) (Version: 6.0.14.32124 - Microsoft Corporation)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MPC-HC 1.7.9 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.9 - MPC-HC Team)
NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.3.0.277 - Nord Security)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 7.7.4.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation)
NVIDIA Grafický ovládač 531.68 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 531.68 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.5 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{31850f16-ce9f-4dec-81ca-222c617a9115}) (Version: 1.0.9.5 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.2 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{959e5696-0edd-4896-b1d8-54aaa725f770}) (Version: 1.1.0.2 - Patriot Memory) Hidden
PGA TOUR 2K21 (HKLM-x32\...\PGA TOUR 2K21_is1) (Version: - )
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.5.2 - The qBittorrent project)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9359.1 - Realtek Semiconductor Corp.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Roblox Player for marti (HKU\S-1-5-21-4245377277-2649400946-3968391194-1001\...\roblox-player) (Version: - Roblox Corporation)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.0.6.0 - ASUSTek COMPUTER INC.)
ROGFontInstaller (HKLM\...\{605108C1-153E-43D8-8A67-7CE326B00ECA}) (Version: 1.0.0 - ASUS)
Session Skate Sim MULTi12 - ElAmigos version 1.0.0.34 (HKLM-x32\...\{9E4B0D5F-3E4A-4E41-9A86-9F825BB06C8D}_is1) (Version: 1.0.0.34 - Nacon)
Sherlock Holmes The Awakened (HKLM-x32\...\Sherlock Holmes The Awakened_is1) (Version: 0.0.0 - DODI-Repacks)
Sons Of The Forest (HKLM-x32\...\Sons Of The Forest_is1) (Version: 0.0.0 - DODI-Repacks)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 36.0.0 (HKLM\...\SteelSeries GG) (Version: 36.0.0 - SteelSeries ApS)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
Telegram Desktop (HKU\S-1-5-21-4245377277-2649400946-3968391194-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.8.1 - Telegram FZ-LLC)
TLauncher (HKLM-x32\...\TLauncher) (Version: 2.879 - TLauncher Inc.)
Tom Clancy's Rainbow Six Siege RUS (HKLM-x32\...\Uplay Install 1842) (Version: - Ubisoft Montreal)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 139.2.10843 - Ubisoft)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.4 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{c8b4688a-f5d4-4236-aec4-df260a88ccc4}) (Version: 1.0.0.4 - PD) Hidden
VALORANT (HKU\S-1-5-21-4245377277-2649400946-3968391194-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
ViGEm Bus Driver (HKLM\...\{9C581C76-2D68-40F8-AA6F-94D3C5215C05}) (Version: 1.21.442 - Nefarius Software Solutions e.U.)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WinRAR 6.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.21.0 - win.rar GmbH)
ZAR App 1.25.7 (HKU\S-1-5-21-4245377277-2649400946-3968391194-1001\...\2fcfbe5b-94b2-560b-adbe-3ceec952e615) (Version: 1.25.7 - Zar)

Packages:
=========
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.4.10.0_x64__qmba6cd70vzyy [2023-03-03] (ASUSTeK COMPUTER INC.)
DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2023.2.0.0_x64__t5j2fzbtdg37r [2023-04-15] (DTS, Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_144.1.1068.0_x64__v10z8vjag6ke6 [2023-04-08] (HP Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-04-18] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.36.273.0_x64__dt26b99r8h8gj [2023-02-22] (Realtek Semiconductor Corp)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-19] (Microsoft Studios) [MS Ad]
Sonic Radar 3 -> C:\Program Files\WindowsApps\A-Volute.28054DF1F58B4_3.16.23.0_x64__w2gh52qy24etm [2023-02-22] (A-Volute)
Sonic Studio 3 -> C:\Program Files\WindowsApps\A-Volute.SonicStudio3_3.16.23.0_x64__w2gh52qy24etm [2023-02-22] (A-Volute)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0 [2023-04-28] (Spotify AB) [Startup Task]
TikTok -> C:\Program Files\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se [2023-04-28] (Bytedance Pte. Ltd.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4245377277-2649400946-3968391194-1001_Classes\CLSID\{4e6f7264-5650-4e00-0000-000000000000}\localserver32 -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn s.a. -> TEFINCOM S.A.)
CustomCLSID: HKU\S-1-5-21-4245377277-2649400946-3968391194-1001_Classes\CLSID\{5405618e-4c42-4fb9-a80a-d24d89911296}\localserver32 -> C:\Users\marti\AppData\Local\NhNotifSys\sonicstudio\asusns.exe (A-Volute SAS -> A-Volute)
CustomCLSID: HKU\S-1-5-21-4245377277-2649400946-3968391194-1001_Classes\CLSID\{e4dc77b9-8454-dbf8-09f4-ec6ea7428df1}\localserver32 -> D:\hry\old fn\Release-Multiplayer\FortniteLauncher.exe () [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_8156678a4c5d0913\nvshext.dll [2023-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2023-04-01 07:54 - 2023-02-03 17:10 - 000525312 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ac_node_addon\prebuilds\win32-ia32\node.napi.node
2023-04-01 07:54 - 2022-09-01 09:47 - 000520192 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2023-04-01 07:54 - 2022-09-01 09:47 - 000483328 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\node-system-fonts\build\Release\system-fonts.node
2023-04-01 07:54 - 2022-09-01 09:47 - 000510464 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2023-04-01 07:54 - 2022-09-27 14:56 - 000319488 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\sharp\prebuilds\win32-ia32\node.napi.node
2023-04-01 07:54 - 2022-09-01 09:47 - 000786432 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\usb-detection\prebuilds\win32-ia32\node.napi.node
2023-04-01 07:54 - 2022-06-08 10:33 - 000081920 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [470]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_351\bin\ssv.dll [2023-04-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_351\bin\jp2ssv.dll [2023-04-05] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\
HKU\S-1-5-21-4245377277-2649400946-3968391194-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\marti\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\sloensko.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RZSurroundHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-4245377277-2649400946-3968391194-1001\...\StartupApproved\Run: => "NordVPN"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{DCD347F0-C273-4622-B1E7-AAA1EE526574}] => (Allow) C:\Users\marti\AppData\Local\Packages\B9ECED6F.ArmouryCrate_qmba6cd70vzyy\LocalState\GridUpdateFile\ASUSGCDriverUpdateClient.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{5795FC71-C8C0-4B7B-A00F-27D280277281}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{835D6F31-8DB3-42CB-BD15-A5BF88A8011E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{10BEF829-ABD8-437C-8F88-AB5E569AD0EF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{DDA9313C-FD5B-4FCC-8711-C375A90C62A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{E2470979-E950-4C91-A85B-EDEEBC0A53DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{9DB474C2-A4E4-43CD-83B4-76BC29F3D447}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{855BA259-976B-46F4-898C-C19B8D4126F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{67656141-1CBE-4791-AE98-9FA559521020}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{C045B9B8-7886-4EAE-8429-B5C9729FAB11}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4B7A7920-C8B4-4AB7-B133-DEEEC19F8677}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DDD4BCFC-2355-45C1-8556-80D3B9986512}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{13244D23-57CE-4830-8EB4-8BB760740302}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{8F51612B-03E6-4497-9F00-11D15E8F6E47}D:\hry\hogwarts.legacy.build 10461750\phoenix\binaries\win64\hogwartslegacy.exe] => (Allow) D:\hry\hogwarts.legacy.build 10461750\phoenix\binaries\win64\hogwartslegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [UDP Query User{00EDB8D1-429E-43DF-B037-F11B49D283A9}D:\hry\hogwarts.legacy.build 10461750\phoenix\binaries\win64\hogwartslegacy.exe] => (Allow) D:\hry\hogwarts.legacy.build 10461750\phoenix\binaries\win64\hogwartslegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [{98DD4DFD-B83B-44B0-A20D-EA9BC51930DE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> )
FirewallRules: [{D92034F6-C418-46FF-A1C5-E30849A6ACF7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> )
FirewallRules: [{9253ECB0-DD29-4A91-BE63-28E3378E5D14}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> )
FirewallRules: [{5CDD55AF-A481-4001-87BE-CC1E63AF3741}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> )
FirewallRules: [{16DD8A4C-553D-4433-942E-F70531C21F0F}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{918DCF61-0E3B-4932-BCE1-25846B5F1050}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{38925616-81BC-4440-AFC0-984927776C8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{C49BA0D4-F880-4A20-AB72-794B29C65031}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [TCP Query User{0B254F5B-9116-4D7F-B916-B60CD121E9ED}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{070A01F8-7802-434C-8E4A-3C5350AAB208}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{E8C47E4D-A783-467B-B392-E6F28497786B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{5BBF6732-46DF-4A78-9296-9BDA919FFDD0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{E68DEEB7-410F-4041-BB15-D1CE1D6596A0}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege RUS\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{48BFF83C-3186-490C-8689-CC7A87AEDF14}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege RUS\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{B4065EC2-F1C4-49C5-AF23-ADBE5A1B91D2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege RUS\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A7F59678-E018-48D8-803D-21E9C7DDF4CB}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege RUS\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{0956F56A-9B74-4AFF-92A7-1867A329515A}C:\users\marti\appdata\local\ubisoft\r6siege\y7s4.2.0.1pc_c7361317_d1569606_s50031_50497889\3621043519\rainbowsix.exe] => (Allow) C:\users\marti\appdata\local\ubisoft\r6siege\y7s4.2.0.1pc_c7361317_d1569606_s50031_50497889\3621043519\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{3CEA0C72-1D69-4D91-B8DC-F95F4A60747B}C:\users\marti\appdata\local\ubisoft\r6siege\y7s4.2.0.1pc_c7361317_d1569606_s50031_50497889\3621043519\rainbowsix.exe] => (Allow) C:\users\marti\appdata\local\ubisoft\r6siege\y7s4.2.0.1pc_c7361317_d1569606_s50031_50497889\3621043519\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{16EA0CF8-1EE8-47F3-96B4-DC2A9CDB3551}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{3F2213DE-0B1B-4A16-A509-297EC27CDCF1}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{3BD66741-1596-4025-9EA0-8855D4CDF120}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{85C296AC-CC39-457E-B253-BC24054A9F4C}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [TCP Query User{8F2A4ADF-0F5D-4D36-A7E7-E9B42CBB8771}C:\users\marti\appdata\local\ubisoft\r6siege\y8s1.0.0_c7422506_d1584938_s50590_52218207\876668910\rainbowsix.exe] => (Allow) C:\users\marti\appdata\local\ubisoft\r6siege\y8s1.0.0_c7422506_d1584938_s50590_52218207\876668910\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{61CB84E5-9B0D-487A-BFAF-407393CEFA4D}C:\users\marti\appdata\local\ubisoft\r6siege\y8s1.0.0_c7422506_d1584938_s50590_52218207\876668910\rainbowsix.exe] => (Allow) C:\users\marti\appdata\local\ubisoft\r6siege\y8s1.0.0_c7422506_d1584938_s50590_52218207\876668910\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{62DC938B-7FD9-401B-98F1-1668B85D07B7}C:\program files (x86)\dodi-repacks\sons of the forest\sonsoftheforest.exe] => (Allow) C:\program files (x86)\dodi-repacks\sons of the forest\sonsoftheforest.exe () [File not signed]
FirewallRules: [UDP Query User{5C3AC63C-05BE-41BD-8265-9DB6726D59F0}C:\program files (x86)\dodi-repacks\sons of the forest\sonsoftheforest.exe] => (Allow) C:\program files (x86)\dodi-repacks\sons of the forest\sonsoftheforest.exe () [File not signed]
FirewallRules: [{CD3F4971-1F65-4B39-9E0B-A9E5F2BD3079}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [TCP Query User{0BB38CF5-339D-468F-A996-3722DB7085A0}C:\users\marti\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\marti\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [UDP Query User{5F6C2A66-716D-4760-AE8B-70788D1B3F34}C:\users\marti\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\marti\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [{1FB8633C-5FA8-414F-98E0-7A1E2FB84494}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TotallyAccurateBattlegrounds\TABG_Launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{0E9BC300-58CC-4510-96E9-3176EC23A93B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TotallyAccurateBattlegrounds\TABG_Launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{A6CF4349-35EA-4F44-A403-46F4C9F45343}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TotallyAccurateBattlegrounds\TotallyAccurateBattlegrounds.exe () [File not signed]
FirewallRules: [{FE255E52-0339-4C03-B0C1-5FEC2DD9C9E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TotallyAccurateBattlegrounds\TotallyAccurateBattlegrounds.exe () [File not signed]
FirewallRules: [{4B11C911-060C-4D56-A1C3-F269CA8DFB2C}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{7A31D1B2-420C-4197-9740-999632E02284}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{CC93B532-0875-4482-9E70-7201E2215036}] => (Allow) C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe (nordvpn s.a. -> TEFINCOM S.A.)
FirewallRules: [{477494E0-C078-4FE8-B5B1-2F9FFC12358C}] => (Allow) C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe (nordvpn s.a. -> TEFINCOM S.A.)
FirewallRules: [{F079A87F-051C-4B5C-B113-51AD4B67F454}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{AE3E8C27-23C4-4AE1-913F-B4FF1B5EEF5A}] => (Allow) D:\SteamLibrary\steamapps\common\PGA TOUR 2K21\golf.exe () [File not signed]
FirewallRules: [{60899D12-C38F-4D31-9F75-8736886FE29C}] => (Allow) D:\SteamLibrary\steamapps\common\PGA TOUR 2K21\golf.exe () [File not signed]
FirewallRules: [{41938541-AB02-4E34-87A3-6048F3F62E61}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\112.0.1722.58\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{25881353-0C76-4DF1-A860-F6C7DFF22C91}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> )
FirewallRules: [{9F162CFB-0A8D-4741-8C03-EFF9B4938BC0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> )
FirewallRules: [{8FB8F8BA-C43B-4180-A874-5757B88BE7F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> )
FirewallRules: [{8C836896-9DA0-48B0-B816-15AAA6925CE7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> )
FirewallRules: [{0379E27A-55FE-4974-9D05-03D31EBDCD4E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> )
FirewallRules: [{777B6EF3-D124-4517-B60C-F52ACFACA400}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> )
FirewallRules: [{F2DB98E6-E239-4E40-A58A-3F14EE72626B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> )
FirewallRules: [{223A50BF-27D8-4DD6-B806-D3706D83476F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> )
FirewallRules: [{BE17D056-2630-492A-BA6A-061B26FB309B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> )
FirewallRules: [{A3E1E9B3-784C-4BF7-A235-EA184B0BE4DF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> )

==================== Restore Points =========================

13-04-2023 18:42:34 Inštalátor modulov systému Windows
16-04-2023 17:56:58 Installed AIOFanSDK
23-04-2023 18:32:07 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============

Name: Sonic Studio Virtual Mixer
Description: Sonic Studio Virtual Mixer
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Nahimic
Service: AVoluteSS3Vad
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


==================== Event log errors: ========================

Application errors:
==================
Error: (04/27/2023 10:40:42 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v (F:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (04/27/2023 10:40:30 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v System Reserved (E:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (04/21/2023 10:29:00 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v ESD-USB (G:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (04/21/2023 10:28:58 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v (F:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (04/21/2023 10:28:47 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v System Reserved (E:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (04/13/2023 06:46:20 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v (F:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (04/13/2023 06:46:08 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v System Reserved (E:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (04/06/2023 08:13:01 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v (F:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)


System errors:
=============
Error: (04/29/2023 02:53:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Steam Client Service zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (04/29/2023 02:53:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Steam Client Service bol dosiahnutý časový limit (30000 ms).

Error: (04/29/2023 01:55:41 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby ArmouryCrateService bol dosiahnutý časový limit (30000 ms).

Error: (04/29/2023 01:55:11 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby ArmouryCrateService bol dosiahnutý časový limit (30000 ms).

Error: (04/29/2023 01:54:41 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby ArmouryCrateService bol dosiahnutý časový limit (30000 ms).

Error: (04/29/2023 01:54:11 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby ArmouryCrateService bol dosiahnutý časový limit (30000 ms).

Error: (04/28/2023 11:56:17 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {354FF91B-5E49-4BDC-A8E6-1CB6C6877182} did not register with DCOM within the required timeout.

Error: (04/28/2023 03:41:31 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0MCCIKE)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2023-04-27 22:40:30
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-04-25 18:53:51
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-04-25 08:53:41
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-04-23 18:57:13
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-04-23 18:31:09
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

CodeIntegrity:
===============
Date: 2023-03-18 17:50:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Microsoft\EdgeWebView\Application\110.0.1587.69\msedgewebview2.exe) attempted to load \Device\HarddiskVolume5\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\ScheduledModules\x64\AudioDevProps2.dll that did not meet the Microsoft signing level requirements.

Date: 2023-03-18 17:50:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Microsoft\EdgeWebView\Application\110.0.1587.69\msedgewebview2.exe) attempted to load \Device\HarddiskVolume5\ProgramData\A-Volute\A-Volute.SonicStudio3\Modules\ScheduledModules\x64\AudioDevProps2.dll that did not meet the Microsoft signing level requirements.

Date: 2023-03-18 17:50:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Microsoft\EdgeWebView\Application\110.0.1587.69\msedgewebview2.exe) attempted to load \Device\HarddiskVolume5\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\ScheduledModules\x64\NahimicOSD.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 4901 07/25/2022
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B450-F GAMING II
Processor: AMD Ryzen 5 5600 6-Core Processor
Percentage of memory in use: 24%
Total physical RAM: 16229.57 MB
Available physical RAM: 12200.14 MB
Total Virtual: 18661.57 MB
Available Virtual: 12411.2 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:446.35 GB) (Free:187.53 GB) (Model: KINGSTON SA400S37480G) NTFS
Drive d: (Nový zväzok) (Fixed) (Total:931.51 GB) (Free:106.24 GB) (Model: KINGSTON SNVS1000G) NTFS
Drive e: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.02 GB) (Model: WDC WD10EACS-00D6B0) NTFS ==>[system with boot components (obtained from drive)]
Drive f: () (Fixed) (Total:931.41 GB) (Free:666.26 GB) (Model: WDC WD10EACS-00D6B0) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{a2b405b1-35b7-4214-8b67-1faf384d149a}\ () (Fixed) (Total:0.66 GB) (Free:0.08 GB) NTFS
\\?\Volume{40fdc63e-da23-46bc-a168-2bf7af58f4d7}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 3FC5B496)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=931.4 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 447.1 GB) (Disk ID: BEB85BC2)

Partition: GPT.

==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15213
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivna kontrola

#2 Příspěvek od JaRon »

ahoj,
prescanuj PC s Adwcleanerom - log sem
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Bruno39
Návštěvník
Návštěvník
Příspěvky: 35
Registrován: 01 led 2016 14:43

Re: Preventivna kontrola

#3 Příspěvek od Bruno39 »

# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-03-2023
# Duration: 00:00:02
# OS: Windows 10 (Build 19045.2913)
# Scanned: 32100
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15213
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivna kontrola

#4 Příspěvek od JaRon »

malo by to byt OK
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Bruno39
Návštěvník
Návštěvník
Příspěvky: 35
Registrován: 01 led 2016 14:43

Re: Preventivna kontrola

#5 Příspěvek od Bruno39 »

Ďakujem pekne
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15213
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivna kontrola

#6 Příspěvek od JaRon »

za malo :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“