Ahoj,za poslední měsíc se mi náhodně stane při hraní hry že mi hra blikne,(zahlédnu spodní listu startu ve win)a jsem ve hře,jenže to pro mě znamená crash(hraju Richard Burns Rally). Zkoušel jsem mít zaplý log na usb a ten nic pri bliknuti nezazmenal.Prosím o kontrolu lagu,Děkuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Ran by Ferda (administrator) on DESKTOP-KR54MFR (07-05-2024 08:04:22)
Running from C:\Users\Ferda\Downloads\FRST64.exe
Loaded Profiles: Ferda
Platform: Microsoft Windows 10 Home Version 22H2 19045.4291 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(A-Volute SAS -> A-Volute) C:\Users\Ferda\AppData\Local\NhNotifSys\sonicstudio\asusns.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.80\msedgewebview2.exe <6>
(C:\Program Files (x86)\SimHub\SimHubWPF.exe ->) () [File not signed] [File is in use] C:\Program Files (x86)\SimHub\SimHub.BitmapDisplay.Subprocess.X86.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(D:\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(Discord Inc. -> Discord Inc.) C:\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe <6>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <28>
(explorer.exe ->) (Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\steam.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_dc86c13caa1b5d99\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) () [File not signed] [File is in use] C:\Program Files (x86)\SimHub\SimHubWPF.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <4>
(svchost.exe ->) (ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Ferda\AppData\Local\Microsoft\OneDrive\24.081.0421.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [838648 2019-03-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [Discord] => C:\Users\Ferda\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [Steam] => D:\Steam\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [MicrosoftEdgeAutoLaunch_D0309FC2206AAAC2C703AF932281C6DD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4081192 2024-05-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [SimHub] => C:\Program Files (x86)\SimHub\SimHubWPF.exe [2816000 2024-01-09] () [File not signed] [File is in use] <==== ATTENTION
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45380000 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\MountPoints2: {f2d671b4-4f21-11ed-abf7-d45d641e14dd} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-06] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {D399601E-9B2B-41B0-96F5-F8453DE4001E} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [111328 2021-10-06] (ASUSTeK Computer Inc. -> ASUS)
Task: {F182965E-F184-43D0-A938-AACB56A46907} - System32\Tasks\ASUS\ArmouryAIOFanServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe [764152 2021-06-10] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {ABAB4A33-AA69-4791-8679-5AB7EC91A8C1} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [2196456 2021-10-06] (ASUSTeK Computer Inc. -> ASUS)
Task: {C7C0E547-F9F1-4F0D-8654-9C0D5A7045A0} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d7de23b09647ba => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {69D67917-A95C-41E8-A71F-FB50785EF1EB} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {70F89C0C-89C8-4DC8-9DDC-8FC4C066C21A} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [44588888 2021-08-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {EA48E9EF-9EC7-4384-9CE9-272B074EF91C} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1241448 2021-10-13] (ASUSTeK Computer Inc. -> ASUS)
Task: {7DFBAEC1-F9A5-4B89-AA86-2D050A3A1D67} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {2CA922FC-7733-4AD3-9E15-61CBF45DF14D} - System32\Tasks\AVG\Overseer => C:\Windows\OEM\CustomizationFiles\Overseer.exe [2181560 2023-09-11] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {C14CF219-B53B-4FAA-B7DA-F9C0B141E455} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {504468EC-8418-4164-AC15-337ECCF09EF3} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "e71e5f4d-ea47-4449-9a59-82f76d61e5e6" --version "6.23.11010" --silent
Task: {CCCEAA9C-F3C4-4971-9109-CD413BA0E186} - System32\Tasks\CCleanerSkipUAC - Ferda => C:\Program Files\CCleaner\CCleaner.exe [39118752 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {27354B89-8037-4E4F-9D1C-760006020F69} - System32\Tasks\elevator_b58b0b144169daf1a5b3ae13ea6f5142 => C:\Program Files (x86)\SimHub\SimHubWPF.exe [2816000 2024-01-09] () [File not signed] [File is in use]
Task: {205E10C2-79C7-4436-B5CF-27A0DB8C902F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{607CEDEC-D131-4A63-9A3E-1CD97606CAD2} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {27E40DF4-EB43-48FE-B1C2-907EC2D33C33} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {A500B4D0-56C9-4347-9170-7B700D549D40} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E2BE72BC-285F-4FAD-9E42-6D99BCFCF79C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {28197D2C-1733-49B2-8372-D95DF0564E66} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8B24CA68-B59F-4AEE-B8FA-969CD34015A3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8FB040B8-AE45-4618-9372-8A68F6431115} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {15A6107E-2B5A-47DE-975C-8C684AD1D871} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BFA2C7B0-9824-460C-8CCD-1B93814CCD25} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {049C6BE5-5931-4F3E-AFA0-CF91F805B89A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D5B360B1-6BE3-4AD1-916A-57BEA16F6FDD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1A1F5560-C414-4F09-AD02-48F7AD7CAD5A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {890270D3-0326-4EBB-988C-0048B634BF23} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1B00F0CA-1B94-4BEA-B90B-62B1B8F180B3} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B1F6E0A6-9C98-47A6-8657-B0E0887973D5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{546e6ce5-9f67-4c1c-997d-0510bea67e06}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{546e6ce5-9f67-4c1c-997d-0510bea67e06}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Ferda\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-07]
Edge Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07]
Edge Extension: (Edge relevant text changes) - C:\Users\Ferda\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Default [2024-04-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-20]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-04-25]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-05-07]
CHR Notifications: Profile 1 -> hxxps://drive.google.com
CHR Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-23]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-04-29]
CHR Notifications: Profile 2 -> hxxps://drive.google.com
CHR Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-31]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\System Profile [2024-05-07]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [382112 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe [468504 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2022-08-18] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [1097624 2024-04-30] (ASUSTeK Computer Inc. -> )
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1920152 2021-11-01] (A-Volute SAS -> Nahimic)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_dc86c13caa1b5d99\Display.NvContainer\NVDisplay.Container.exe [1275424 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [142856 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [337112 2022-01-07] (Twitch Interactive, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [34384 2021-10-21] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [43168 2022-08-18] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 HWiNFO_163; C:\WINDOWS\system32\drivers\HWiNFO64A_163.SYS [55824 2021-12-01] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm))
R1 HWiNFO_187; C:\WINDOWS\system32\drivers\HWiNFO64A_187.SYS [56912 2024-04-09] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm))
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52832 2022-12-19] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47928 2022-12-19] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R3 MpKsla4b26dff; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9708ECC8-5ED0-4377-8EF3-169DC68A1BBB}\MpKslDrv.sys [301336 2024-05-06] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tmhidusb; C:\WINDOWS\system32\DRIVERS\tmhidusb.sys [432136 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster)
S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; C:\Program Files (x86)\SimHub\OpenHardwareMonitorLib.sys [14544 2024-01-09] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X] <==== ATTENTION
S3 dg_ssudbus; \SystemRoot\System32\drivers\ssudbus2.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-05-07 08:04 - 2024-05-07 08:04 - 000026455 _____ C:\Users\Ferda\Downloads\FRST.txt
2024-05-07 08:04 - 2024-05-07 08:04 - 000000000 ____D C:\FRST
2024-05-07 08:03 - 2024-05-07 08:03 - 002394112 _____ (Farbar) C:\Users\Ferda\Downloads\FRST64.exe
2024-05-07 08:02 - 2024-05-07 08:02 - 000000000 ___HD C:\OneDriveTemp
2024-05-06 23:33 - 2024-05-06 23:33 - 000388608 _____ (Trend Micro Inc.) C:\Users\Ferda\Downloads\hijackthis.exe
2024-05-06 23:25 - 2024-05-06 23:31 - 000000000 ____D C:\Users\Ferda\AppData\Local\Malwarebytes
2024-05-06 23:24 - 2024-05-06 23:24 - 000038416 _____ C:\WINDOWS\system32\lc.dat
2024-05-06 23:23 - 2024-05-06 23:24 - 002589624 _____ (Malwarebytes) C:\Users\Ferda\Downloads\MBSetup.exe
2024-05-02 22:51 - 2024-05-02 22:51 - 013282831 _____ C:\Users\Ferda\Downloads\Video bez názvu_ Vytvořeno pomocí aplikace Clipchamp (2).mp4
2024-05-02 11:04 - 2024-05-02 11:04 - 000000000 ____D C:\Users\Ferda\Downloads\usbdeview_czech
2024-05-02 11:03 - 2024-05-02 11:26 - 000000000 ____D C:\Users\Ferda\Downloads\usbdeview-x64
2024-05-02 11:03 - 2024-05-02 11:03 - 000127001 _____ C:\Users\Ferda\Downloads\usbdeview-x64.zip
2024-05-02 11:03 - 2024-05-02 11:03 - 000003800 _____ C:\Users\Ferda\Downloads\usbdeview_czech.zip
2024-05-02 08:43 - 2024-05-02 08:43 - 000001586 _____ C:\Users\Ferda\Downloads\usblogview_czech.zip
2024-05-02 08:43 - 2024-05-02 08:43 - 000000000 ____D C:\Users\Ferda\Downloads\usblogview_czech
2024-05-02 08:39 - 2024-05-02 08:43 - 000000000 ____D C:\Users\Ferda\Downloads\usblogview
2024-05-02 08:39 - 2024-05-02 08:39 - 000213445 _____ C:\Users\Ferda\Downloads\usblogview.zip
2024-04-29 21:19 - 2024-04-29 21:19 - 000000000 ___HD C:\$WinREAgent
2024-04-25 22:40 - 2024-04-25 22:40 - 000369654 _____ C:\Users\Ferda\Documents\cc_20240425_224049.reg
2024-04-25 22:38 - 2024-05-07 08:02 - 000000000 ____D C:\Program Files\CCleaner
2024-04-25 22:38 - 2024-04-29 23:09 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-04-25 22:38 - 2024-04-25 22:38 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-04-25 22:38 - 2024-04-25 22:38 - 000003378 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-04-25 22:38 - 2024-04-25 22:38 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Ferda
2024-04-25 22:38 - 2024-04-25 22:38 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-04-25 22:38 - 2024-04-25 22:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-04-25 22:37 - 2024-04-25 22:37 - 083658872 _____ (Piriform Software Ltd) C:\Users\Ferda\Downloads\ccsetup623.exe
2024-04-16 22:41 - 2024-04-16 22:41 - 000000000 ____D C:\Users\Ferda\Documents\Nová složka
2024-04-14 21:14 - 2024-04-14 21:14 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-14 21:14 - 2024-04-14 21:14 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-09 21:19 - 2024-04-09 21:19 - 083395680 _____ (Piriform Software Ltd) C:\Users\Ferda\Downloads\ccsetup622.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 001578752 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 001578752 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 001487904 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001445224 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001445224 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001295104 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001295104 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001226864 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 001543712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 001199624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 001046040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 000841736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-04-09 12:14 - 2024-04-03 15:50 - 000670240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 000505352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 012929568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 002174496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 001626120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 001024544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 000787464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 000459272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-04-09 12:14 - 2024-04-03 15:48 - 016034848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 006780960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 005913200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 005773344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 003721224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 000853008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-04-09 12:14 - 2024-04-03 03:54 - 000119466 _____ C:\WINDOWS\system32\nvinfo.pb
2024-04-09 11:56 - 2024-04-09 11:56 - 000001107 _____ C:\Users\Public\Desktop\FPS Monitor.lnk
2024-04-09 11:56 - 2024-04-09 11:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FPS Monitor
2024-04-09 11:56 - 2024-04-09 11:56 - 000000000 ____D C:\Program Files (x86)\FPS Monitor
2024-04-09 11:47 - 2024-04-09 11:47 - 013564608 _____ (Eduard Kozadaev ) C:\Users\Ferda\Downloads\fpsmon-5472.exe
2024-04-08 22:00 - 2023-06-28 21:30 - 000006548 _____ C:\Users\Ferda\Desktop\track-5032_N.dls
2024-04-08 22:00 - 2023-06-24 20:16 - 000006500 _____ C:\Users\Ferda\Desktop\track-5032_O.dls
2024-04-08 22:00 - 2023-05-17 20:31 - 000006708 _____ C:\Users\Ferda\Desktop\track-136_O.dls
2024-04-08 21:57 - 2024-04-07 22:44 - 000006984 _____ C:\Users\Ferda\Desktop\track-136_N.dls
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-05-07 08:03 - 2021-11-22 11:39 - 000000000 ____D C:\Users\Ferda\AppData\Roaming\discord
2024-05-07 08:02 - 2023-01-25 23:40 - 000000000 ____D C:\Users\Ferda\Documents\SimHub
2024-05-07 08:02 - 2021-11-22 11:39 - 000002243 _____ C:\Users\Ferda\Desktop\Discord.lnk
2024-05-07 08:02 - 2021-11-22 11:39 - 000000000 ____D C:\Users\Ferda\AppData\Local\Discord
2024-05-07 08:02 - 2021-11-20 16:22 - 000000000 ___RD C:\Users\Ferda\OneDrive
2024-05-07 08:02 - 2021-11-20 14:44 - 000000000 ____D C:\ProgramData\NVIDIA
2024-05-07 08:02 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-06 23:31 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-05-06 23:31 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-05-06 23:11 - 2021-12-11 17:22 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1016078844-47908565-2139151003-1001
2024-05-06 23:11 - 2021-11-20 17:28 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1016078844-47908565-2139151003-1001
2024-05-06 23:11 - 2021-11-20 17:25 - 000002377 _____ C:\Users\Ferda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-05-06 21:32 - 2021-12-04 19:08 - 000000000 ____D C:\Users\Ferda\AppData\Local\CrashDumps
2024-05-06 20:59 - 2021-11-20 17:34 - 000000000 ____D C:\Program Files\ASUS
2024-05-06 20:21 - 2021-12-09 13:39 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A85919F0-98E5-40FF-95E0-E9A6598CD741}
2024-05-06 20:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-06 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-05-06 20:19 - 2021-12-17 00:39 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-05-06 20:19 - 2021-11-20 16:23 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-06 20:19 - 2021-11-20 16:23 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-05-06 20:18 - 2023-01-17 12:47 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-05-06 20:18 - 2021-11-20 14:39 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-02 22:48 - 2021-11-20 16:25 - 000000000 ____D C:\Users\Ferda\AppData\Local\D3DSCache
2024-05-02 22:38 - 2021-11-24 00:11 - 000000000 ____D C:\Users\Ferda\AppData\Roaming\obs-studio
2024-05-02 19:50 - 2021-11-20 17:33 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-02 19:50 - 2019-12-07 16:41 - 000716602 _____ C:\WINDOWS\system32\perfh005.dat
2024-05-02 19:50 - 2019-12-07 16:41 - 000144780 _____ C:\WINDOWS\system32\perfc005.dat
2024-05-02 12:12 - 2021-11-20 17:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-30 20:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-30 20:21 - 2021-11-22 11:10 - 000000000 ____D C:\Users\Ferda\AppData\Local\Steam
2024-04-30 20:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-30 20:20 - 2021-11-20 17:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-30 20:20 - 2021-11-20 17:24 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-30 20:20 - 2021-11-20 14:37 - 001136496 _____ C:\WINDOWS\system32\wpbbin.exe
2024-04-30 20:20 - 2021-11-20 14:37 - 001097624 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2024-04-29 23:11 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-29 23:09 - 2024-01-08 00:37 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-29 23:09 - 2022-10-26 09:16 - 000000000 ____D C:\WINDOWS\en-GB
2024-04-29 23:09 - 2021-11-20 17:24 - 000350488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-25 22:39 - 2022-05-12 23:30 - 000000000 ____D C:\WINDOWS\Minidump
2024-04-25 22:39 - 2021-11-20 16:28 - 000000000 ___DC C:\WINDOWS\Panther
2024-04-25 22:38 - 2022-05-16 10:46 - 000000000 ____D C:\ProgramData\Piriform
2024-04-14 21:16 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-14 21:14 - 2021-11-20 17:28 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-14 21:09 - 2021-11-20 17:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-14 21:07 - 2021-11-20 17:04 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 21:14 - 2021-11-20 14:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-09 12:18 - 2021-11-20 16:31 - 000000000 ____D C:\Users\Ferda\AppData\Local\NVIDIA Corporation
2024-04-09 12:17 - 2021-11-20 16:31 - 000000000 ____D C:\Users\Ferda\AppData\Local\NVIDIA
2024-04-09 12:10 - 2021-12-01 00:04 - 000114268 _____ C:\Users\Ferda\Documents\FPSMonitor.txt
2024-04-09 11:55 - 2021-11-20 14:46 - 000000000 ____D C:\Users\Ferda\AppData\Local\Packages
2024-04-07 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-04-07 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-04-07 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-04-07 23:09 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2024-04-07 21:46 - 2021-11-20 17:28 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-07 21:46 - 2021-11-20 17:28 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by Ferda (07-05-2024 08:06:16)
Running from C:\Users\Ferda\Downloads
Microsoft Windows 10 Home Version 22H2 19045.4291 (X64) (2021-11-20 15:28:31)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1016078844-47908565-2139151003-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1016078844-47908565-2139151003-503 - Limited - Disabled)
Ferda (S-1-5-21-1016078844-47908565-2139151003-1001 - Administrator - Enabled) => C:\Users\Ferda
Guest (S-1-5-21-1016078844-47908565-2139151003-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1016078844-47908565-2139151003-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3D Ripper DX v1.8.2 (HKLM-x32\...\3D Ripper DX_is1) (Version: - Roman Lut)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_2) (Version: 20.0.2 - Adobe Systems Incorporated)
advanced-scene-switcher version 1.24.2 (HKLM-x32\...\{A4ADDF26-4426-4D2E-B26A-C7C878DA8FC9}_is1) (Version: 1.24.2 - WarmUpTill)
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.19 - Arduino LLC)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.2.10 - ASUS)
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.1.40.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{10f6ee35-55c3-46eb-91a6-816ce9af34c7}) (Version: 1.1.40.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.13 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{c398adfb-d090-4897-8845-baca53f7ecde}) (Version: 1.1.0.13 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.2.6.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{84e91062-91cd-4caf-ab18-1805169f546d}) (Version: 1.2.6.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{7a0d5159-cb5e-4f66-91f8-bab46f864f14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32\...\{8bf47d14-406b-49e8-8759-966757033aa0}) (Version: 2.1.1.3 - ASUSTek COMPUTER INC.)
ASUS Framework Service (HKLM-x32\...\{EA6A87BE-8AD3-40D2-944C-9DF5FBFF4332}) (Version: 2.1.1.3 - ASUSTek COMPUTER INC.) Hidden
ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 2.01.06 - ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.113 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{9AFE5429-866B-457D-A864-80BCF7672EE8}) (Version: 1.1.16 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{41a78792-5489-400c-a567-b78d40b8c878}) (Version: 1.1.16 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.18 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.18 - ASUS)
AX206 Screen driver 1.0.0.0 (HKLM-x32\...\AX206 Screen driver_is1) (Version: 0.1.10.1 - AX206 Screen driver)
Balíček ovladače systému Windows - Adafruit Industries LLC (usbser) Ports (02/25/2016 6.2.2600.0) (HKLM\...\1245A5961AC9D2C18ADF9EEC931D77E059B7F74E) (Version: 02/25/2016 6.2.2600.0 - Adafruit Industries LLC)
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (01/04/2013 1.0.0.0) (HKLM\...\1E3EA5624DD04BEFECF3FFF6D3A21CCE9CD70A91) (Version: 01/04/2013 1.0.0.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (11/24/2015 1.2.3.0) (HKLM\...\8B585560B248755A6C5A24D5C0F50FA998310883) (Version: 11/24/2015 1.2.3.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Genuino USB Driver (01/07/2016 1.0.3.0) (HKLM\...\EC414D98E2986DCA1628FAED2163CD1C9A4ED7EC) (Version: 01/07/2016 1.0.3.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino Srl (www.arduino.org) Arduino USB Driver (02/27/2014 1.1.0.0) (HKLM\...\D98AC5103994615BD84394E441ADFA35EB61C8A6) (Version: 02/27/2014 1.1.0.0 - Arduino Srl (www.arduino.org))
Balíček ovladače systému Windows - Arduino Srl (www.arduino.org) Arduino USB Driver (03/19/2015 1.1.1.0) (HKLM\...\69E507459B453D69A453EFC9E461FAE1E073408A) (Version: 03/19/2015 1.1.1.0 - Arduino Srl (www.arduino.org))
Balíček ovladače systému Windows - libusb-win32 (libusb0) libusb-win32 devices (04/21/2015 1.0.0.0) (HKLM\...\28E91B69CA377EB48D6E1B92C37F897036E8A818) (Version: 04/21/2015 1.0.0.0 - libusb-win32)
Balíček ovladače systému Windows - Linino (usbser) Ports (01/13/2014 1.0.0.0) (HKLM\...\A2C084AD4515675961A87E71B10E80E4FDCF7FAA) (Version: 01/13/2014 1.0.0.0 - Linino)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
blender (HKLM\...\{8E411BEA-E05E-4E73-B9D3-A89A3084D67D}) (Version: 3.0.0 - Blender Foundation)
CCleaner (HKLM\...\CCleaner) (Version: 6.23 - Piriform)
CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.)
CrewChiefV4 (HKLM-x32\...\{45F49DB1-86B5-4D2A-9365-725A59609C65}) (Version: 4.16.2.2 - Britton IT Ltd)
DaVinci Resolve (HKLM\...\{E9983894-990A-4A5A-8DBF-8E4E0D3A058A}) (Version: 17.4.30010 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{7667C543-084F-47F7-BC60-175FC25E9D6F}) (Version: 2.0.1.0 - Blackmagic Design)
Discord (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.5.2 - DEV47APPS)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.37.0 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{413fe4b8-1352-4234-a775-ff2f04ad9042}) (Version: 1.1.37.0 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.1 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{bf1d7028-d935-477f-b5b2-053062f9b527}) (Version: 1.0.9.1 - ENE TECHNOLOGY INC.) Hidden
Fairlight Audio Accelerator Utility (HKLM\...\FairlightAudioAccelerator_is1) (Version: 1.0.13 - Blackmagic Design)
FFB Racing Wheel drivers (HKLM-x32\...\{28B758EA-5C83-48B1-B352-C70F12C73F5A}) (Version: 4.TTRS.2021 - Thrustmaster)
FPS Monitor (HKLM-x32\...\FPS Monitor_is1) (Version: 1 - )
FreeTrack v2.1.2 (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\FreeTrack v2.1.2) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 124.0.6367.119 - Google LLC)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{2237a879-7fa4-4e21-ae3b-00f6a649b9d9}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 124.0.2478.80 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 124.0.2478.80 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\OneDriveSetup.exe) (Version: 24.081.0421.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.34.31938 (HKLM-x32\...\{4f84f2dc-3f70-433a-8f50-8293e0089b0f}) (Version: 14.34.31938.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.34.31938 (HKLM-x32\...\{080D8397-60F4-44B3-BB95-FBB950CB0B4E}) (Version: 14.34.31938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.34.31938 (HKLM-x32\...\{8DE5B0D4-A6D8-4F72-B8EF-28776A2EE5D5}) (Version: 14.34.31938 - Microsoft Corporation) Hidden
MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 552.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 552.12 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.1.2 - OBS Project)
opentrack version opentrack-2022.3.2 (HKLM-x32\...\{63F53541-A29E-4B53-825A-9B6F876A2BD6}_is1) (Version: opentrack-2022.3.2 - opentrack)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.2 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{fdc098ce-d76c-4e2e-a0a6-01a24e9a1f7d}) (Version: 1.0.9.2 - Patriot Memory)
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.0.6.4 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{3c403389-0bc5-4298-bebf-09de0c0b745d}) (Version: 1.0.6.4 - Patriot Memory)
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
RaceRoom Racing Experience Launcher (HKLM-x32\...\{1FD9F07F-7BBF-4C91-B3F0-A23714A3A913}_is1) (Version: 1.0 - Sector3 Studios)
RBR Alpes Rally (remove only) (HKLM-x32\...\RBRTrack434) (Version: - )
RBR Aragona (remove only) (HKLM-x32\...\RBRTrack471) (Version: - )
RBR Banov v1.2 (remove only) (HKLM-x32\...\RBRTrack126) (Version: - )
RBR Biskupice 1.2 free (remove only) (HKLM-x32\...\RBRTrack1000) (Version: - )
RBR Dolina - polookruh (remove only) (HKLM-x32\...\RBRTrack137) (Version: - )
RBR Era del Cardon (remove only) (HKLM-x32\...\RBRTrack2000) (Version: - )
RBR Era del Cardon I + II (remove only) (HKLM-x32\...\RBRTrack429) (Version: - )
RBR Halenkovice 2018 (remove only) (HKLM-x32\...\RBRTrack170) (Version: - )
RBR Horazdovice - Komusin 1.25 (remove only) (HKLM-x32\...\RBRTrack1106) (Version: - )
RBR Kamen 1.01 (remove only) (HKLM-x32\...\RBRTrack166) (Version: - )
RBR Komusin - Horazdovice 1.25 (remove only) (HKLM-x32\...\RBRTrack1107) (Version: - )
RBR Koprivnice 1-4 v1.3 (remove only) (HKLM-x32\...\RBRTrack116) (Version: - )
RBR Koprivnice 3 + 4 (remove only) (HKLM-x32\...\RBRTrack118) (Version: - )
RBR Koudelky - Psinky (remove only) (HKLM-x32\...\RBRTrack138) (Version: - )
RBR La Atalaya I + II (remove only) (HKLM-x32\...\RBRTrack451) (Version: - )
RBR Legazpi-Gabiria 2004 (remove only) (HKLM-x32\...\RBRTrack9876) (Version: - )
RBR Mitterbach Tarmac v1.1 (remove only) (HKLM-x32\...\RBRTrack1916) (Version: - )
RBR Muxarello (remove only) (HKLM-x32\...\RBRTrack472) (Version: - )
RBR Nove Hory - Dolina (remove only) (HKLM-x32\...\RBRTrack136) (Version: - )
RBR Odry 1.2 (remove only) (HKLM-x32\...\RBRTrack160) (Version: - )
RBR Odry Snow Night v1.1 (remove only) (HKLM-x32\...\RBRTrack162) (Version: - )
RBR Peyre Winter (remove only) (HKLM-x32\...\RBRTrack576) (Version: - )
RBR Rallysprint Hondarribia 2011 v1.1 (remove only) (HKLM-x32\...\RBRTrack478) (Version: - )
RBR Reversed Tracks (remove only) (HKLM-x32\...\RBRReversedTracks) (Version: - )
RBR Rozmital 96 v1.1 (remove only) (HKLM-x32\...\RBRTrack415) (Version: - )
RBR RX-Kart Ring 1 + 2 (remove only) (HKLM-x32\...\RBRTrack133) (Version: - )
RBR RZ Barak 1.1 (remove only) (HKLM-x32\...\RBRTrack129) (Version: - )
RBR RZ Barak Snow 1.1 (remove only) (HKLM-x32\...\RBRTrack130) (Version: - )
RBR SS Helfstyn (remove only) (HKLM-x32\...\RBRTrack426) (Version: - )
RBR SSS Valasske Mezirici v1.2 (remove only) (HKLM-x32\...\RBRTrack449) (Version: - )
RBR Torsby 2018 + Sprint v1.1 (remove only) (HKLM-x32\...\RBRTrack725) (Version: - )
RBR Ul. Rajdowa (remove only) (HKLM-x32\...\RBRTrack468) (Version: - )
RBR Valstagna Reverse (remove only) (HKLM-x32\...\RBRTrack1301) (Version: - )
RBR Valstagna v1.1 (remove only) (HKLM-x32\...\RBRTrack1302) (Version: - )
RBR Zaton I + II (remove only) (HKLM-x32\...\RBRTrack411) (Version: - )
RBR Zelezniki (remove only) (HKLM-x32\...\RBRTrack575) (Version: - )
RBR Zlin SS1 (remove only) (HKLM-x32\...\RBRTrack3001) (Version: - )
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Richard Burns Rally (HKLM-x32\...\InstallShield_{72CE541B-52BD-4FA1-8CD6-19341939AB21}) (Version: 1.00.000 - Název společnosti:)
RivaTuner Statistics Server 7.3.3 (HKLM-x32\...\RTSS) (Version: 7.3.3 - Unwinder)
ROG FAN XPERT 4 (HKLM-x32\...\{2dfe216d-3481-4684-ad4d-2566bd7cfe4f}) (Version: 1.00.10 - ASUSTek Computer Inc.)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.1.5.0 - ASUSTek COMPUTER INC.)
SimHub version 9.1.20 (HKLM-x32\...\{019253FE-5A17-42BE-A6B8-D71A729FA5DE}_is1) (Version: 9.1.20 - Wotever)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TMM All-in-one extensions pack verzia 1.5 (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\{9688D712-6BB0-4B20-B3A5-67C29D0371A2}_is1) (Version: 1.5 - TM-Modding)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Twitch Studio (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.2 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{6870588f-9f28-488b-a169-cf548ad6b393}) (Version: 1.0.0.2 - PD)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B9A7A138-BFD5-4C73-A269-F78CCA28150E}) (Version: 8.94.0.0 - Microsoft Corporation)
USBD480 (HKLM-x32\...\USBD480) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
VOCORE USB2.0 Screen driver 1.0.0.0 (HKLM-x32\...\VOCORE USB2.0 Screen driver_is1) (Version: 0.1.10.1 - USB2.0 Screen driver)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Youtube Downloader HD v. 5.4.3 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
Packages:
=========
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.8.9.0_x64__qmba6cd70vzyy [2024-04-14] (ASUSTeK COMPUTER INC.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-05-16] (Microsoft Corporation)
HEVC Video Codec Pack -> C:\Program Files\WindowsApps\VirtualPulse.HEVCVideoCodecPack_1.254.77.0_x64__nh7p8cqfc4t04 [2023-10-31] (Virtual Pulse)
Microsoft Copilot -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-04-07] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-25] (NVIDIA Corp.)
Player for Media -> C:\Program Files\WindowsApps\VirtualPulse.26207BFC73B72_1.298.138.0_x64__nh7p8cqfc4t04 [2023-11-13] (Virtual Pulse)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2022-05-16] (Realtek Semiconductor Corp)
Rozšíření pro video HEVC -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_2.0.61933.0_x64__8wekyb3d8bbwe [2023-10-31] (Microsoft Corporation)
Vyhledávání na webu z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-04-14] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1016078844-47908565-2139151003-1001_Classes\CLSID\{5405618e-4c42-4fb9-a80a-d24d89911296}\localserver32 -> C:\Users\Ferda\AppData\Local\NhNotifSys\sonicstudio\asusns.exe (A-Volute SAS -> A-Volute)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-04-06] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_dc86c13caa1b5d99\nvshext.dll [2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-04-06] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Ferda\Desktop\Osoba 1 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Ferda\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Pavel - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2021-08-18 15:27 - 2021-08-18 15:27 - 000477696 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2021-08-18 15:27 - 2021-08-18 15:27 - 000471040 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2021-08-18 15:27 - 2021-08-18 15:27 - 000454656 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\registry-js\prebuilds\win32-ia32\node.napi.node
2021-11-20 17:36 - 2021-02-18 13:07 - 000085504 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\zlib1.dll
2021-11-20 17:34 - 2019-12-23 19:51 - 000093184 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\zlibwapi.dll
2021-08-18 15:27 - 2021-08-18 15:27 - 000081920 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000945664 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ACSharedMemory\d3f2206eaad1cf1d6ae705ec2ca48622\ACSharedMemory.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000358912 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ACToolsUtilities\2a5a52d5afa05a36200c6847c005a55c\ACToolsUtilities.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000090624 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ArqSerialLib\4a61004e5358196774dbba355fa10500\ArqSerialLib.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000431104 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BA63Driver\bcb9bf6417e79b8128e4b825506458c0\BA63Driver.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 001931776 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CodemastersReader\34149a109452c1483b357f96811d5ea1\CodemastersReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000300544 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ETS2Reader\814a57eded81f21efe7221dcfb3dcdfe\ETS2Reader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 001174016 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GameReaderCommon\058d96354aa02f90f3191adf2623a966\GameReaderCommon.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000310272 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GRallyReader\0dccdaee06b91f4ba8f15eb0bb507a36\GRallyReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002272256 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GSIReader\5253923def60edf966c0f8aafcc43c87\GSIReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000318464 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GTReader\24f078b7789472ed80290e69c133b392\GTReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000203776 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ICarsReader\7fadcb48e11f1067cf49f839047e4bb7\ICarsReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000093184 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\INIFileParser\55da67c8422baa7860c1944f508894c3\INIFileParser.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000652800 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\LFSReader\868315d5100d86d004549593d48ceced\LFSReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000309760 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NoLimits2Reader\236e329f5b23f645e4a9c67cae712be5\NoLimits2Reader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000933376 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PCarsSharedMemory\56b0f436e3687aee7c8cbc9d8e0d8589\PCarsSharedMemory.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000623616 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PibosoReader\f7ed1c10e83495f58825ae09d7da0968\PibosoReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000724992 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\RfactorReader\6576ee3f0660c3a8b4c5af0e2ba241e4\RfactorReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000522240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\RREReader\30664b0cb1fc63809cf4253a434a87fe\RREReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000482816 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SerialDash\984b29f6677b584a7ffc17147f8d78a1\SerialDash.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000104448 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SerialDashWPF\7b07cb01308ecc63729cde53c64ba23d\SerialDashWPF.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000565760 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimBin\dd621c2ea5205cae80f67733401dce13\SimBin.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000147968 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Bitm348e3f8f#\c08aad5f8fd3cabddd2e8b7bbfb58b76\SimHub.BitmapDisplay.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000056832 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Bitm57d0b616#\de69255d1e8b952b71cc70b52cb6d632\SimHub.BitmapDisplay.Vocore.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000048640 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.LibUsbNative\36c414da9adb9e427e0b64d745de90d1\SimHub.LibUsbNative.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000009216 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Logging\60b42b5645041c860587aac18fbaddef\SimHub.Logging.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000074240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Plug20f24dbd#\00b44346dabfca386e9c9c5c454e1ad7\SimHub.Plugins.Dashstudio.Behaviors.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 021037056 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Plugins\3c78a124868424e6f4e95bfc7e3bfa19\SimHub.Plugins.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000019968 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.SHSerialPort\d4919171cedbb8b5bf1b5928e42012cc\SimHub.SHSerialPort.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000267264 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SteamHelper\060997bd3d3b4a32c12d019f25606aa6\SteamHelper.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000294912 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\TrackmaniaReader\b9986ec24db599733ae6b9967c9a925b\TrackmaniaReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000090624 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WoteverLocalization\929acad38062c883f25752233e5fc597\WoteverLocalization.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000515072 _____ (Alexandre Mutel) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SharpDX.DirectInput\59179969c11019342687a13328822aed\SharpDX.DirectInput.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000631808 _____ (Alexandre Mutel) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SharpDX\25d3fdd9fb571a644dcbc0844a52dbd3\SharpDX.ni.dll
2022-08-18 22:14 - 2024-04-30 20:20 - 000036096 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.02.15\PEbiosinterface32.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000360960 _____ (DevCrew.pl Rafał Łopatka) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ToastNotifications\830a7ece96626324e364ad8c56336224\ToastNotifications.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000412672 _____ (GongSolutions.WPF.DragDrop) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GongSolutio459c0a76#\37dd61a7eea7348da1ed02b1bc023ac4\GongSolutions.WPF.DragDrop.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000186368 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.N259f2aea#\443722f7fbb70002414f682912fb7de0\Hardcodet.NotifyIcon.Wpf.ni.dll
2022-12-19 11:40 - 2022-12-19 11:39 - 000100352 _____ (hxxp://libusb-win32.sourceforge.net) [File not signed] C:\WINDOWS\system32\libusbK.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000398336 _____ (hxxps://github.com/ncalc) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NCalc\cfdfe5df7b23ac2cfa8e726d35d37bed\NCalc.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002041344 _____ (ic#code) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ICSharpCode6e2121f3#\781fbae5f227fc05da77145c5418e1c6\ICSharpCode.AvalonEdit.ni.dll
2021-11-22 11:47 - 2023-07-21 14:59 - 000130048 _____ (libusb.info) [File not signed] C:\Program Files (x86)\SimHub\libusb-1.0.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 003913728 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Met20c382b6#\e0651547160301ff51ef4fa86aebdc54\MahApps.Metro.IconPacks.Material.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000058880 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Metc5ddd046#\15ae7a12290422f9c803dcb05c631e5b\MahApps.Metro.IconPacks.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000135168 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Mete28bbf5a#\849f069fcde444e37c9309aab220de32\MahApps.Metro.SimpleChildWindow.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002990592 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Metro\aeef5c954fbcac258f51b53a313dbf98\MahApps.Metro.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000084480 _____ (Marc Gravell) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\FastMember\d68d8d8432d2b4b43f1ab2e6f76ed04e\FastMember.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000654336 _____ (Mark Heath) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio.Core\66c4242634dac89b82e5c5b9e91ef0e0\NAudio.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000685056 _____ (Mark Heath) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio.Wasapi\e8c5a6147e4f962f81fb195da6f06b0a\NAudio.Wasapi.ni.dll
2021-11-22 11:05 - 2021-11-22 11:05 - 001655296 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_8444db7d32915e4c\MFC80U.DLL
2024-05-02 11:13 - 2024-05-02 11:13 - 003109888 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\cac5561f8fac6180ba47e9e7502e7cf4\Newtonsoft.Json.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000153088 _____ (Nick Connors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MSIAfterburner.NET\eab0b334b027ab6ec1048c36cf51177d\MSIAfterburner.NET.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000148992 _____ (Open Source) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AvalonDock.b8ea423a#\6d8377e09d10c834a90db1c706091e0b\AvalonDock.Themes.VS2013.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 001958912 _____ (Open Source) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AvalonDock\d288d6b5173baa9a6f2181981f796d39\AvalonDock.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002272256 _____ (OxyPlot) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\OxyPlot\1824abc97b62f8ab71f57bbf2841c8ec\OxyPlot.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002012672 _____ (Sebastien Ros) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Esprima\2ed3d633d4f6d44c6dc1c96614d056ee\Esprima.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000783872 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\8d36aa2cea93c5ec007fe7ba202fc94e\log4net.ni.dll
2024-05-02 11:13 - 2024-05-02 11:13 - 000834560 _____ (The CefSharp Authors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CefSharp\98c439828f708ee68a2c63e80f006172\CefSharp.ni.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 000287232 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\libcurl.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\libcrypto-1_1-x64.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 002281984 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\LIBEAY32.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\libssl-1_1-x64.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 000361472 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\SSLEAY32.dll
2021-11-20 17:34 - 2019-06-26 17:07 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libcrypto-1_1-x64.dll
2021-11-20 17:34 - 2019-06-26 17:07 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libssl-1_1-x64.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000367104 _____ (Tunnel Vision Laboratories, LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Antlr3.Runtime\6dea2fb14cd6e1156b56b9b64af243c3\Antlr3.Runtime.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002475008 _____ (Wotever) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WoteverCommon\98ba3872c57e99192e70179fa92169c3\WoteverCommon.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 003827712 _____ (Xceed Software Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Xceed.Wpf.Toolkit\7d1d8905f55563cd18a248f786dd4f78\Xceed.Wpf.Toolkit.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2021-11-20 14:32 - 2021-11-20 14:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ferda\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0C40A3C7-56AE-489D-AC4B-FC62D2AFB6CE}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{C87B0E30-81EB-478B-8136-91EDD7C103EE}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{2E03B08D-B516-413C-BC9B-59A8E89F2A0E}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{E76CD7A4-0EDE-4F3B-A4E3-563F5C535409}] => (Allow) D:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4B8FC499-4AD6-4704-A024-DB32E53117D7}] => (Allow) D:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BE57A870-3237-424C-B21B-6430909B771F}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{890A8B8E-B07B-4D2E-84C5-F43A6B0DD6A9}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{08195790-4C9E-4D86-9C0D-E066DA72F715}] => (Allow) D:\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (AcClub -> AcClub) [File not signed]
FirewallRules: [{02FE054E-530D-4192-A4EF-93F2EE00DC3A}] => (Allow) D:\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (AcClub -> AcClub) [File not signed]
FirewallRules: [TCP Query User{8FBBC83F-A89A-42A6-B7E4-9163D0758A6D}D:\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs.exe () [File not signed]
FirewallRules: [UDP Query User{1CF824B0-7FD3-4063-8EE9-966C69C23FB8}D:\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs.exe () [File not signed]
FirewallRules: [{D92D0D93-7905-46EA-9417-6E2618A584F1}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Launcher\Launch rFactor.exe () [File not signed]
FirewallRules: [{7F0E42EE-A257-4E7B-BF10-771DD4AEA43D}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Launcher\Launch rFactor.exe () [File not signed]
FirewallRules: [TCP Query User{CE8083E1-ECE1-4229-9A8E-2E61714AD9BD}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe (Studio 397) [File not signed]
FirewallRules: [UDP Query User{4A91BB68-EF28-4D22-B885-7830E812D74C}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe (Studio 397) [File not signed]
FirewallRules: [TCP Query User{06647E1E-F5EC-49EB-9B14-5EFEBE86D539}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe (Studio 397) [File not signed]
FirewallRules: [UDP Query User{B86E200A-D441-4339-8133-689DD8494C6D}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe (Studio 397) [File not signed]
FirewallRules: [{5F267163-31B1-4D9E-90B8-DB05E56B18A8}] => (Allow) D:\Steam\steamapps\common\Assetto Corsa Competizione\acc.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{A3D98044-BE44-4EC0-BFDD-D886F4E101FD}] => (Allow) D:\Steam\steamapps\common\Assetto Corsa Competizione\acc.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{46486963-F833-4BF0-ACCF-E324E4FB8516}D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [UDP Query User{648C484D-C2A9-422D-BEAE-58B4B23480E5}D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [{3DE1E4A9-4522-4606-8D63-CE9CEB293B9B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{15D562E7-E483-49B7-B879-9863FC93E3D2}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{4234868F-2A1F-4FB5-AE5C-85A389F37339}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{2576DD25-EC1A-4EF8-9245-0298B8E7777F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{15B19FB7-D847-4A6C-9AA4-18B2FB6A5D02}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{EEE17BDE-D6DB-4C2A-ACE7-43C4D128F0FB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{DB6ED5C9-EEAB-4CCE-B34F-7D27E32DFAAE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{79832737-5E59-49F6-B62A-599B00FEF5CA}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [UDP Query User{059D24A8-9766-454A-8AFF-0479B4271548}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [TCP Query User{7BD4379D-469E-4527-BDB4-E4B782771E8E}C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [UDP Query User{8817BD8C-7E59-4D30-AA6D-C6FE79DEC33F}C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [TCP Query User{05079502-C603-4177-A35D-2DA7BDBC4A37}C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe] => (Allow) C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe
FirewallRules: [UDP Query User{937DAE30-A1F1-41F3-9A11-1943E311864F}C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe] => (Allow) C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe
FirewallRules: [TCP Query User{CCD5AB69-8F3B-4211-9789-D94858219BD8}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{DEEC067B-93EF-49BB-866A-8466F008228E}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{A1067982-3F5C-4519-9C92-65BBF74F3A46}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BA1C9ABE-0EDD-449E-9D29-3948D0ED5A17}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FD4871D3-F8CC-4ECB-A3DD-2CAE4E4E227E}] => (Allow) D:\Steam\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{CA37EC49-21AF-4451-931E-316FA669D9F7}] => (Allow) D:\Steam\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{6D12474E-B2F0-40FD-9B18-6946C81B86C6}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Bin64\rF Config.exe (Studio 397) [File not signed]
FirewallRules: [{963126B9-5CE4-4E6F-A3C4-FFFE0F201496}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Bin64\rF Config.exe (Studio 397) [File not signed]
FirewallRules: [TCP Query User{96E67B63-AE3D-498B-B501-F9CACD90EBC9}C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe] => (Block) C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe
FirewallRules: [UDP Query User{82E58669-AF96-4E47-A74B-F02315DD888F}C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe] => (Block) C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe
FirewallRules: [{6EAC959B-9BA5-4DE6-BDB9-6534DFE56B4D}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{A4DD3B03-1442-45FC-8282-7DE7159324F4}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{F1EA310B-D235-44A8-BEEB-94F81BF35E64}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\RRRE.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{8758CB41-D06C-424C-9566-EEEBE8481CBE}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\RRRE.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{AF37DA2A-657F-4773-A847-2C7F3F1229D2}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{E60B0625-AA22-456C-885A-E3AAA0B66B6E}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{7936E424-0337-4BFB-B0DC-E126C4A64169}] => (Allow) D:\Steam\steamapps\common\EA SPORTS WRC\WRC\Binaries\Win64\WRC.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{4B9310DD-F11E-4EDE-9364-ECEF16E7CCB7}] => (Allow) D:\Steam\steamapps\common\EA SPORTS WRC\WRC\Binaries\Win64\WRC.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{4EE18184-C89C-4BF0-B8BE-CD77D98EBAE1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4720FAA3-CD81-4F57-B62C-1E7D1B4BE853}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F9151CB1-E192-4FFD-A6B4-C8FDA916FDB7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{25911C65-DBF9-4083-B9F2-665FB4CFDD14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0CFC9589-928C-4BB1-A77A-84121C2933AC}] => (Allow) C:\Program Files (x86)\SimHub\SimHubWPF.exe () [File not signed] [File is in use]
FirewallRules: [{60A23713-1370-4029-B24C-FE709DC5A5E2}] => (Allow) C:\Program Files (x86)\SimHub\SimHub.PackageManager.Standalone.exe () [File not signed]
FirewallRules: [{A738F2C0-2D1F-4B6F-B2B8-C00DAD89350F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BE76CF6A-A816-4CE0-8D42-309F86A91DB5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C04BC6CD-8795-466D-84F8-203AAAD633EF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0D6312BB-E749-4CE9-A293-64FFC2B15218}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FFA2DF2D-5315-4FD3-9239-3A5ECA843718}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7D6C9FA3-3C20-464C-B71C-91EF006B9053}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.80\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
14-04-2024 21:09:05 Instalační služba modulů systému Windows
02-05-2024 11:19:43 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/06/2024 11:31:18 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.
Error: (05/06/2024 09:32:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x3648
Čas spuštění chybující aplikace: 0x01da9fe276d5ff82
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 301e0d1f-2f60-4f83-9d2b-8c12b173d8e4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/02/2024 10:38:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x3480
Čas spuštění chybující aplikace: 0x01da9cc619dab113
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: dfcd7d40-0fba-499b-854c-5496db8c0711
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/02/2024 08:40:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x159c
Čas spuštění chybující aplikace: 0x01da9cb98783945c
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 5e79847f-c692-4b4e-9f45-5a5da2536715
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/02/2024 12:40:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x3c8
Čas spuštění chybující aplikace: 0x01da9c7c0f02dcc7
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 501dcf1e-60f3-424a-bb95-1c00c24698e8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/30/2024 08:21:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ArmouryWebBrowserEdge.exe, verze: 1.0.0.14, časové razítko: 0x615d1361
Název chybujícího modulu: ArmouryWebBrowserEdge.exe, verze: 1.0.0.14, časové razítko: 0x615d1361
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000009d43
ID chybujícího procesu: 0x2bbc
Čas spuštění chybující aplikace: 0x01da9b2b2c48c0ea
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
ID zprávy: abcee60c-ef88-4f7d-907a-d8c85f1ddbf9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/11/2024 08:15:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x104c
Čas spuštění chybující aplikace: 0x01da8c3bcb9f180e
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 3289218d-5448-46d3-a0af-b52345054592
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/09/2024 11:50:00 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: DESKTOP-KR54MFR)
Description: Aplikaci nebo službu CefSharp.BrowserSubprocess nelze ukončit.
System errors:
=============
Error: (05/02/2024 11:01:32 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-KR54MFR)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/30/2024 08:22:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (04/30/2024 08:22:35 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (04/30/2024 08:20:35 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (04/29/2024 09:19:29 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): 2024-01, aktualizace zabezpečení pro Windows 10 Version 22H2 pro systémy typu x64 (KB5034441).
Error: (04/17/2024 09:58:02 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY)
Description: E:\Device\HarddiskVolume173
Error: (04/17/2024 09:48:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (04/17/2024 09:44:35 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku E: bylo zjištěno poškození.
Přesná povaha poškození není známa. Je potřeba zkontrolovat a opravit struktury systému souborů v online režimu.
Windows Defender:
================
Date: 2024-05-02 11:13:56
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {3ED46DF1-9C84-4E19-A0CF-3FB9693A5BC0}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-17 21:48:30
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8A71C25D-EF4A-47CC-83B2-36D736AE03BA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-02-13 18:47:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {72A5342E-623C-46BA-A0F0-FD34D60A22CD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-01-17 19:42:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7CEE692E-6F41-4817-9D12-6F956378226A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-11-13 21:08:53
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Adware:Win32/Stapcore
Závažnost: Vysoké
Kategorie: Software placený zobrazováním reklamy
Cesta: file:_C:\Users\Ferda\Downloads\Setup.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-KR54MFR\Ferda
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.401.566.0, AS: 1.401.566.0, NIS: 1.401.566.0
Verze modulu: AM: 1.1.23100.2009, NIS: 1.1.23100.2009
CodeIntegrity:
===============
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\ProgramData\obs-studio-hook\graphics-hook64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\Twitch\Studio\Versions\0.107.8163.2311\TwitchNativeOverlay64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\RivaTuner Statistics Server\Vulkan\RTSSVkLayer64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\FPS Monitor\tools\fpsmonvk64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\ProgramData\obs-studio-hook\graphics-hook32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\Twitch\Studio\Versions\0.107.8163.2311\TwitchNativeOverlay32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\RivaTuner Statistics Server\Vulkan\RTSSVkLayer32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\FPS Monitor\tools\fpsmonvk32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-06 23:31:19
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 0803 07/25/2019
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B365-G GAMING
Processor: Intel(R) Core(TM) i7-9700KF CPU @ 3.60GHz
Percentage of memory in use: 42%
Total physical RAM: 16313.96 MB
Available physical RAM: 9449.03 MB
Total Virtual: 18745.96 MB
Available Virtual: 8620.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:953.24 GB) (Free:530.37 GB) (Model: INTEL SSDPEKNW010T8) NTFS
Drive d: (D) (Fixed) (Total:931.51 GB) (Free:424.59 GB) (Model: Samsung SSD 870 QVO 1TB) NTFS
\\?\Volume{090ab0df-3efd-4399-8d5c-13e977619f80}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{d5e15e15-5ca7-4c83-b829-d7a1a3fcc500}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8ACBAA22)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pád hry do win a zpet,Prosím o kontrolu lagu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118313
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pád hry do win a zpet,Prosím o kontrolu lagu
Zdravím!
Fórum viry. cz se nezabývá počítačovými hramy, tekže v tomto směru od nás neočekávejte žádnou odpověď, od toho jsou jiná fóra. PC vám ale můžeme vyčistit.
Otevřte poznámkový blok a zkopírujte do něj:
Fórum viry. cz se nezabývá počítačovými hramy, tekže v tomto směru od nás neočekávejte žádnou odpověď, od toho jsou jiná fóra. PC vám ale můžeme vyčistit.
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\Ferda\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [SimHub] => C:\Program Files (x86)\SimHub\SimHubWPF.exe [2816000 2024-01-09] () [File not signed] [File is in use] <==== ATTENTION
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\MountPoints2: {f2d671b4-4f21-11ed-abf7-d45d641e14dd} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {205E10C2-79C7-4436-B5CF-27A0DB8C902F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{607CEDEC-D131-4A63-9A3E-1CD97606CAD2} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X] <==== ATTENTION
C:\Users\Ferda\Downloads\Setup.exe
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pád hry do win a zpet,Prosím o kontrolu lagu
Ono mi to nezpůsobuje hra ale něco v pc..ještě než se dokončil log,tak mi to hodilo asus_framework.exe error...Can´t open Asi03.sys...zde log,díky
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Ran by Ferda (administrator) on DESKTOP-KR54MFR (07-05-2024 09:40:06)
Running from C:\Users\Ferda\Downloads\FRST64.exe
Loaded Profiles: Ferda
Platform: Microsoft Windows 10 Home Version 22H2 19045.4291 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(A-Volute SAS -> A-Volute) C:\Users\Ferda\AppData\Local\NhNotifSys\sonicstudio\asusns.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.80\msedgewebview2.exe <6>
(C:\Program Files (x86)\SimHub\SimHubWPF.exe ->) () [File not signed] [File is in use] C:\Program Files (x86)\SimHub\SimHub.BitmapDisplay.Subprocess.X86.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(D:\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(Discord Inc. -> Discord Inc.) C:\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe <6>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <31>
(explorer.exe ->) (Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_dc86c13caa1b5d99\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) () [File not signed] [File is in use] C:\Program Files (x86)\SimHub\SimHubWPF.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <4>
(svchost.exe ->) (ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Ferda\AppData\Local\Microsoft\OneDrive\24.081.0421.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2403.5.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [838648 2019-03-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [Discord] => C:\Users\Ferda\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [Steam] => D:\Steam\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [MicrosoftEdgeAutoLaunch_D0309FC2206AAAC2C703AF932281C6DD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4081192 2024-05-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [SimHub] => C:\Program Files (x86)\SimHub\SimHubWPF.exe [2816000 2024-01-09] () [File not signed] [File is in use] <==== ATTENTION
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45380000 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\MountPoints2: {f2d671b4-4f21-11ed-abf7-d45d641e14dd} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-06] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {D399601E-9B2B-41B0-96F5-F8453DE4001E} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [111328 2021-10-06] (ASUSTeK Computer Inc. -> ASUS)
Task: {F182965E-F184-43D0-A938-AACB56A46907} - System32\Tasks\ASUS\ArmouryAIOFanServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe [764152 2021-06-10] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {ABAB4A33-AA69-4791-8679-5AB7EC91A8C1} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [2196456 2021-10-06] (ASUSTeK Computer Inc. -> ASUS)
Task: {C7C0E547-F9F1-4F0D-8654-9C0D5A7045A0} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d7de23b09647ba => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {69D67917-A95C-41E8-A71F-FB50785EF1EB} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {70F89C0C-89C8-4DC8-9DDC-8FC4C066C21A} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [44588888 2021-08-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {EA48E9EF-9EC7-4384-9CE9-272B074EF91C} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1241448 2021-10-13] (ASUSTeK Computer Inc. -> ASUS)
Task: {7DFBAEC1-F9A5-4B89-AA86-2D050A3A1D67} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {2CA922FC-7733-4AD3-9E15-61CBF45DF14D} - System32\Tasks\AVG\Overseer => C:\Windows\OEM\CustomizationFiles\Overseer.exe [2181560 2023-09-11] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {C14CF219-B53B-4FAA-B7DA-F9C0B141E455} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {504468EC-8418-4164-AC15-337ECCF09EF3} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "e71e5f4d-ea47-4449-9a59-82f76d61e5e6" --version "6.23.11010" --silent
Task: {CCCEAA9C-F3C4-4971-9109-CD413BA0E186} - System32\Tasks\CCleanerSkipUAC - Ferda => C:\Program Files\CCleaner\CCleaner.exe [39118752 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {27354B89-8037-4E4F-9D1C-760006020F69} - System32\Tasks\elevator_b58b0b144169daf1a5b3ae13ea6f5142 => C:\Program Files (x86)\SimHub\SimHubWPF.exe [2816000 2024-01-09] () [File not signed] [File is in use]
Task: {205E10C2-79C7-4436-B5CF-27A0DB8C902F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{607CEDEC-D131-4A63-9A3E-1CD97606CAD2} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {27E40DF4-EB43-48FE-B1C2-907EC2D33C33} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {A500B4D0-56C9-4347-9170-7B700D549D40} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E2BE72BC-285F-4FAD-9E42-6D99BCFCF79C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {28197D2C-1733-49B2-8372-D95DF0564E66} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8B24CA68-B59F-4AEE-B8FA-969CD34015A3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8FB040B8-AE45-4618-9372-8A68F6431115} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {15A6107E-2B5A-47DE-975C-8C684AD1D871} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BFA2C7B0-9824-460C-8CCD-1B93814CCD25} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {049C6BE5-5931-4F3E-AFA0-CF91F805B89A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D5B360B1-6BE3-4AD1-916A-57BEA16F6FDD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1A1F5560-C414-4F09-AD02-48F7AD7CAD5A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {890270D3-0326-4EBB-988C-0048B634BF23} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1B00F0CA-1B94-4BEA-B90B-62B1B8F180B3} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B1F6E0A6-9C98-47A6-8657-B0E0887973D5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{546e6ce5-9f67-4c1c-997d-0510bea67e06}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{546e6ce5-9f67-4c1c-997d-0510bea67e06}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Ferda\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-07]
Edge Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07]
Edge Extension: (Edge relevant text changes) - C:\Users\Ferda\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Default [2024-04-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-20]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-04-25]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-05-07]
CHR Notifications: Profile 1 -> hxxps://drive.google.com
CHR Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-23]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-04-29]
CHR Notifications: Profile 2 -> hxxps://drive.google.com
CHR Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-31]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\System Profile [2024-05-07]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [382112 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe [468504 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2022-08-18] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [1097624 2024-04-30] (ASUSTeK Computer Inc. -> )
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1920152 2021-11-01] (A-Volute SAS -> Nahimic)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_dc86c13caa1b5d99\Display.NvContainer\NVDisplay.Container.exe [1275424 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [142856 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [337112 2022-01-07] (Twitch Interactive, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [34384 2021-10-21] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [43168 2022-08-18] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 HWiNFO_163; C:\WINDOWS\system32\drivers\HWiNFO64A_163.SYS [55824 2021-12-01] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm))
R1 HWiNFO_187; C:\WINDOWS\system32\drivers\HWiNFO64A_187.SYS [56912 2024-04-09] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm))
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52832 2022-12-19] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47928 2022-12-19] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R3 MpKsl65c075a7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{03EF5073-A627-4E9A-843E-B082C3F49894}\MpKslDrv.sys [271648 2024-05-07] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tmhidusb; C:\WINDOWS\system32\DRIVERS\tmhidusb.sys [432136 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster)
S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; C:\Program Files (x86)\SimHub\OpenHardwareMonitorLib.sys [14544 2024-01-09] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X] <==== ATTENTION
S3 dg_ssudbus; \SystemRoot\System32\drivers\ssudbus2.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-05-07 09:39 - 2024-05-07 09:39 - 000000876 _____ C:\Users\Ferda\Downloads\fixlist.txt
2024-05-07 08:06 - 2024-05-07 08:07 - 000066333 _____ C:\Users\Ferda\Downloads\Addition.txt
2024-05-07 08:04 - 2024-05-07 09:40 - 000026539 _____ C:\Users\Ferda\Downloads\FRST.txt
2024-05-07 08:04 - 2024-05-07 09:40 - 000000000 ____D C:\FRST
2024-05-07 08:03 - 2024-05-07 08:03 - 002394112 _____ (Farbar) C:\Users\Ferda\Downloads\FRST64.exe
2024-05-07 08:02 - 2024-05-07 08:02 - 000000000 ___HD C:\OneDriveTemp
2024-05-06 23:33 - 2024-05-06 23:33 - 000388608 _____ (Trend Micro Inc.) C:\Users\Ferda\Downloads\hijackthis.exe
2024-05-06 23:25 - 2024-05-06 23:31 - 000000000 ____D C:\Users\Ferda\AppData\Local\Malwarebytes
2024-05-06 23:24 - 2024-05-06 23:24 - 000038416 _____ C:\WINDOWS\system32\lc.dat
2024-05-06 23:23 - 2024-05-06 23:24 - 002589624 _____ (Malwarebytes) C:\Users\Ferda\Downloads\MBSetup.exe
2024-05-02 22:51 - 2024-05-02 22:51 - 013282831 _____ C:\Users\Ferda\Downloads\Video bez názvu_ Vytvořeno pomocí aplikace Clipchamp (2).mp4
2024-05-02 11:04 - 2024-05-02 11:04 - 000000000 ____D C:\Users\Ferda\Downloads\usbdeview_czech
2024-05-02 11:03 - 2024-05-02 11:26 - 000000000 ____D C:\Users\Ferda\Downloads\usbdeview-x64
2024-05-02 11:03 - 2024-05-02 11:03 - 000127001 _____ C:\Users\Ferda\Downloads\usbdeview-x64.zip
2024-05-02 11:03 - 2024-05-02 11:03 - 000003800 _____ C:\Users\Ferda\Downloads\usbdeview_czech.zip
2024-05-02 08:43 - 2024-05-02 08:43 - 000001586 _____ C:\Users\Ferda\Downloads\usblogview_czech.zip
2024-05-02 08:43 - 2024-05-02 08:43 - 000000000 ____D C:\Users\Ferda\Downloads\usblogview_czech
2024-05-02 08:39 - 2024-05-02 08:43 - 000000000 ____D C:\Users\Ferda\Downloads\usblogview
2024-05-02 08:39 - 2024-05-02 08:39 - 000213445 _____ C:\Users\Ferda\Downloads\usblogview.zip
2024-04-29 21:19 - 2024-04-29 21:19 - 000000000 ___HD C:\$WinREAgent
2024-04-25 22:40 - 2024-04-25 22:40 - 000369654 _____ C:\Users\Ferda\Documents\cc_20240425_224049.reg
2024-04-25 22:38 - 2024-05-07 08:02 - 000000000 ____D C:\Program Files\CCleaner
2024-04-25 22:38 - 2024-04-29 23:09 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-04-25 22:38 - 2024-04-25 22:38 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-04-25 22:38 - 2024-04-25 22:38 - 000003378 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-04-25 22:38 - 2024-04-25 22:38 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Ferda
2024-04-25 22:38 - 2024-04-25 22:38 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-04-25 22:38 - 2024-04-25 22:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-04-25 22:37 - 2024-04-25 22:37 - 083658872 _____ (Piriform Software Ltd) C:\Users\Ferda\Downloads\ccsetup623.exe
2024-04-16 22:41 - 2024-04-16 22:41 - 000000000 ____D C:\Users\Ferda\Documents\Nová složka
2024-04-14 21:14 - 2024-04-14 21:14 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-14 21:14 - 2024-04-14 21:14 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-09 21:19 - 2024-04-09 21:19 - 083395680 _____ (Piriform Software Ltd) C:\Users\Ferda\Downloads\ccsetup622.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 001578752 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 001578752 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 001487904 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001445224 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001445224 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001295104 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001295104 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001226864 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 001543712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 001199624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 001046040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 000841736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-04-09 12:14 - 2024-04-03 15:50 - 000670240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 000505352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 012929568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 002174496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 001626120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 001024544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 000787464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 000459272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-04-09 12:14 - 2024-04-03 15:48 - 016034848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 006780960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 005913200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 005773344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 003721224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 000853008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-04-09 12:14 - 2024-04-03 03:54 - 000119466 _____ C:\WINDOWS\system32\nvinfo.pb
2024-04-09 11:56 - 2024-04-09 11:56 - 000001107 _____ C:\Users\Public\Desktop\FPS Monitor.lnk
2024-04-09 11:56 - 2024-04-09 11:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FPS Monitor
2024-04-09 11:56 - 2024-04-09 11:56 - 000000000 ____D C:\Program Files (x86)\FPS Monitor
2024-04-09 11:47 - 2024-04-09 11:47 - 013564608 _____ (Eduard Kozadaev ) C:\Users\Ferda\Downloads\fpsmon-5472.exe
2024-04-08 22:00 - 2023-06-28 21:30 - 000006548 _____ C:\Users\Ferda\Desktop\track-5032_N.dls
2024-04-08 22:00 - 2023-06-24 20:16 - 000006500 _____ C:\Users\Ferda\Desktop\track-5032_O.dls
2024-04-08 22:00 - 2023-05-17 20:31 - 000006708 _____ C:\Users\Ferda\Desktop\track-136_O.dls
2024-04-08 21:57 - 2024-04-07 22:44 - 000006984 _____ C:\Users\Ferda\Desktop\track-136_N.dls
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-05-07 09:35 - 2021-11-20 17:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-05-07 09:35 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-07 09:02 - 2021-11-22 11:39 - 000000000 ____D C:\Users\Ferda\AppData\Local\Discord
2024-05-07 08:18 - 2021-11-20 16:25 - 000000000 ____D C:\Users\Ferda\AppData\Local\D3DSCache
2024-05-07 08:05 - 2021-12-09 13:39 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A85919F0-98E5-40FF-95E0-E9A6598CD741}
2024-05-07 08:03 - 2021-11-22 11:39 - 000000000 ____D C:\Users\Ferda\AppData\Roaming\discord
2024-05-07 08:02 - 2023-01-25 23:40 - 000000000 ____D C:\Users\Ferda\Documents\SimHub
2024-05-07 08:02 - 2021-11-22 11:39 - 000002243 _____ C:\Users\Ferda\Desktop\Discord.lnk
2024-05-07 08:02 - 2021-11-20 16:22 - 000000000 ___RD C:\Users\Ferda\OneDrive
2024-05-07 08:02 - 2021-11-20 14:44 - 000000000 ____D C:\ProgramData\NVIDIA
2024-05-06 23:31 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-05-06 23:31 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-05-06 23:11 - 2021-12-11 17:22 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1016078844-47908565-2139151003-1001
2024-05-06 23:11 - 2021-11-20 17:28 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1016078844-47908565-2139151003-1001
2024-05-06 23:11 - 2021-11-20 17:25 - 000002377 _____ C:\Users\Ferda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-05-06 21:32 - 2021-12-04 19:08 - 000000000 ____D C:\Users\Ferda\AppData\Local\CrashDumps
2024-05-06 20:59 - 2021-11-20 17:34 - 000000000 ____D C:\Program Files\ASUS
2024-05-06 20:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-06 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-05-06 20:19 - 2021-12-17 00:39 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-05-06 20:19 - 2021-11-20 16:23 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-06 20:19 - 2021-11-20 16:23 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-05-06 20:18 - 2023-01-17 12:47 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-05-06 20:18 - 2021-11-20 14:39 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-02 22:38 - 2021-11-24 00:11 - 000000000 ____D C:\Users\Ferda\AppData\Roaming\obs-studio
2024-05-02 19:50 - 2021-11-20 17:33 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-02 19:50 - 2019-12-07 16:41 - 000716602 _____ C:\WINDOWS\system32\perfh005.dat
2024-05-02 19:50 - 2019-12-07 16:41 - 000144780 _____ C:\WINDOWS\system32\perfc005.dat
2024-04-30 20:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-30 20:21 - 2021-11-22 11:10 - 000000000 ____D C:\Users\Ferda\AppData\Local\Steam
2024-04-30 20:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-30 20:20 - 2021-11-20 17:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-30 20:20 - 2021-11-20 17:24 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-30 20:20 - 2021-11-20 14:37 - 001136496 _____ C:\WINDOWS\system32\wpbbin.exe
2024-04-30 20:20 - 2021-11-20 14:37 - 001097624 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2024-04-29 23:11 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-29 23:09 - 2024-01-08 00:37 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-29 23:09 - 2022-10-26 09:16 - 000000000 ____D C:\WINDOWS\en-GB
2024-04-29 23:09 - 2021-11-20 17:24 - 000350488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-25 22:39 - 2022-05-12 23:30 - 000000000 ____D C:\WINDOWS\Minidump
2024-04-25 22:39 - 2021-11-20 16:28 - 000000000 ___DC C:\WINDOWS\Panther
2024-04-25 22:38 - 2022-05-16 10:46 - 000000000 ____D C:\ProgramData\Piriform
2024-04-14 21:16 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-14 21:14 - 2021-11-20 17:28 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-14 21:09 - 2021-11-20 17:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-14 21:07 - 2021-11-20 17:04 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 21:14 - 2021-11-20 14:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-09 12:18 - 2021-11-20 16:31 - 000000000 ____D C:\Users\Ferda\AppData\Local\NVIDIA Corporation
2024-04-09 12:17 - 2021-11-20 16:31 - 000000000 ____D C:\Users\Ferda\AppData\Local\NVIDIA
2024-04-09 12:10 - 2021-12-01 00:04 - 000114268 _____ C:\Users\Ferda\Documents\FPSMonitor.txt
2024-04-09 11:55 - 2021-11-20 14:46 - 000000000 ____D C:\Users\Ferda\AppData\Local\Packages
2024-04-07 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-04-07 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-04-07 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-04-07 23:09 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2024-04-07 21:46 - 2021-11-20 17:28 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-07 21:46 - 2021-11-20 17:28 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by Ferda (07-05-2024 09:41:21)
Running from C:\Users\Ferda\Downloads
Microsoft Windows 10 Home Version 22H2 19045.4291 (X64) (2021-11-20 15:28:31)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1016078844-47908565-2139151003-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1016078844-47908565-2139151003-503 - Limited - Disabled)
Ferda (S-1-5-21-1016078844-47908565-2139151003-1001 - Administrator - Enabled) => C:\Users\Ferda
Guest (S-1-5-21-1016078844-47908565-2139151003-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1016078844-47908565-2139151003-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3D Ripper DX v1.8.2 (HKLM-x32\...\3D Ripper DX_is1) (Version: - Roman Lut)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_2) (Version: 20.0.2 - Adobe Systems Incorporated)
advanced-scene-switcher version 1.24.2 (HKLM-x32\...\{A4ADDF26-4426-4D2E-B26A-C7C878DA8FC9}_is1) (Version: 1.24.2 - WarmUpTill)
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.19 - Arduino LLC)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.2.10 - ASUS)
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.1.40.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{10f6ee35-55c3-46eb-91a6-816ce9af34c7}) (Version: 1.1.40.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.13 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{c398adfb-d090-4897-8845-baca53f7ecde}) (Version: 1.1.0.13 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.2.6.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{84e91062-91cd-4caf-ab18-1805169f546d}) (Version: 1.2.6.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{7a0d5159-cb5e-4f66-91f8-bab46f864f14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32\...\{8bf47d14-406b-49e8-8759-966757033aa0}) (Version: 2.1.1.3 - ASUSTek COMPUTER INC.)
ASUS Framework Service (HKLM-x32\...\{EA6A87BE-8AD3-40D2-944C-9DF5FBFF4332}) (Version: 2.1.1.3 - ASUSTek COMPUTER INC.) Hidden
ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 2.01.06 - ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.113 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{9AFE5429-866B-457D-A864-80BCF7672EE8}) (Version: 1.1.16 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{41a78792-5489-400c-a567-b78d40b8c878}) (Version: 1.1.16 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.18 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.18 - ASUS)
AX206 Screen driver 1.0.0.0 (HKLM-x32\...\AX206 Screen driver_is1) (Version: 0.1.10.1 - AX206 Screen driver)
Balíček ovladače systému Windows - Adafruit Industries LLC (usbser) Ports (02/25/2016 6.2.2600.0) (HKLM\...\1245A5961AC9D2C18ADF9EEC931D77E059B7F74E) (Version: 02/25/2016 6.2.2600.0 - Adafruit Industries LLC)
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (01/04/2013 1.0.0.0) (HKLM\...\1E3EA5624DD04BEFECF3FFF6D3A21CCE9CD70A91) (Version: 01/04/2013 1.0.0.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (11/24/2015 1.2.3.0) (HKLM\...\8B585560B248755A6C5A24D5C0F50FA998310883) (Version: 11/24/2015 1.2.3.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Genuino USB Driver (01/07/2016 1.0.3.0) (HKLM\...\EC414D98E2986DCA1628FAED2163CD1C9A4ED7EC) (Version: 01/07/2016 1.0.3.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino Srl (www.arduino.org) Arduino USB Driver (02/27/2014 1.1.0.0) (HKLM\...\D98AC5103994615BD84394E441ADFA35EB61C8A6) (Version: 02/27/2014 1.1.0.0 - Arduino Srl (www.arduino.org))
Balíček ovladače systému Windows - Arduino Srl (www.arduino.org) Arduino USB Driver (03/19/2015 1.1.1.0) (HKLM\...\69E507459B453D69A453EFC9E461FAE1E073408A) (Version: 03/19/2015 1.1.1.0 - Arduino Srl (www.arduino.org))
Balíček ovladače systému Windows - libusb-win32 (libusb0) libusb-win32 devices (04/21/2015 1.0.0.0) (HKLM\...\28E91B69CA377EB48D6E1B92C37F897036E8A818) (Version: 04/21/2015 1.0.0.0 - libusb-win32)
Balíček ovladače systému Windows - Linino (usbser) Ports (01/13/2014 1.0.0.0) (HKLM\...\A2C084AD4515675961A87E71B10E80E4FDCF7FAA) (Version: 01/13/2014 1.0.0.0 - Linino)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
blender (HKLM\...\{8E411BEA-E05E-4E73-B9D3-A89A3084D67D}) (Version: 3.0.0 - Blender Foundation)
CCleaner (HKLM\...\CCleaner) (Version: 6.23 - Piriform)
CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.)
CrewChiefV4 (HKLM-x32\...\{45F49DB1-86B5-4D2A-9365-725A59609C65}) (Version: 4.16.2.2 - Britton IT Ltd)
DaVinci Resolve (HKLM\...\{E9983894-990A-4A5A-8DBF-8E4E0D3A058A}) (Version: 17.4.30010 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{7667C543-084F-47F7-BC60-175FC25E9D6F}) (Version: 2.0.1.0 - Blackmagic Design)
Discord (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.5.2 - DEV47APPS)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.37.0 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{413fe4b8-1352-4234-a775-ff2f04ad9042}) (Version: 1.1.37.0 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.1 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{bf1d7028-d935-477f-b5b2-053062f9b527}) (Version: 1.0.9.1 - ENE TECHNOLOGY INC.) Hidden
Fairlight Audio Accelerator Utility (HKLM\...\FairlightAudioAccelerator_is1) (Version: 1.0.13 - Blackmagic Design)
FFB Racing Wheel drivers (HKLM-x32\...\{28B758EA-5C83-48B1-B352-C70F12C73F5A}) (Version: 4.TTRS.2021 - Thrustmaster)
FPS Monitor (HKLM-x32\...\FPS Monitor_is1) (Version: 1 - )
FreeTrack v2.1.2 (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\FreeTrack v2.1.2) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 124.0.6367.119 - Google LLC)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{2237a879-7fa4-4e21-ae3b-00f6a649b9d9}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 124.0.2478.80 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 124.0.2478.80 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\OneDriveSetup.exe) (Version: 24.081.0421.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.34.31938 (HKLM-x32\...\{4f84f2dc-3f70-433a-8f50-8293e0089b0f}) (Version: 14.34.31938.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.34.31938 (HKLM-x32\...\{080D8397-60F4-44B3-BB95-FBB950CB0B4E}) (Version: 14.34.31938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.34.31938 (HKLM-x32\...\{8DE5B0D4-A6D8-4F72-B8EF-28776A2EE5D5}) (Version: 14.34.31938 - Microsoft Corporation) Hidden
MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 552.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 552.12 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.1.2 - OBS Project)
opentrack version opentrack-2022.3.2 (HKLM-x32\...\{63F53541-A29E-4B53-825A-9B6F876A2BD6}_is1) (Version: opentrack-2022.3.2 - opentrack)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.2 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{fdc098ce-d76c-4e2e-a0a6-01a24e9a1f7d}) (Version: 1.0.9.2 - Patriot Memory)
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.0.6.4 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{3c403389-0bc5-4298-bebf-09de0c0b745d}) (Version: 1.0.6.4 - Patriot Memory)
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
RaceRoom Racing Experience Launcher (HKLM-x32\...\{1FD9F07F-7BBF-4C91-B3F0-A23714A3A913}_is1) (Version: 1.0 - Sector3 Studios)
RBR Alpes Rally (remove only) (HKLM-x32\...\RBRTrack434) (Version: - )
RBR Aragona (remove only) (HKLM-x32\...\RBRTrack471) (Version: - )
RBR Banov v1.2 (remove only) (HKLM-x32\...\RBRTrack126) (Version: - )
RBR Biskupice 1.2 free (remove only) (HKLM-x32\...\RBRTrack1000) (Version: - )
RBR Dolina - polookruh (remove only) (HKLM-x32\...\RBRTrack137) (Version: - )
RBR Era del Cardon (remove only) (HKLM-x32\...\RBRTrack2000) (Version: - )
RBR Era del Cardon I + II (remove only) (HKLM-x32\...\RBRTrack429) (Version: - )
RBR Halenkovice 2018 (remove only) (HKLM-x32\...\RBRTrack170) (Version: - )
RBR Horazdovice - Komusin 1.25 (remove only) (HKLM-x32\...\RBRTrack1106) (Version: - )
RBR Kamen 1.01 (remove only) (HKLM-x32\...\RBRTrack166) (Version: - )
RBR Komusin - Horazdovice 1.25 (remove only) (HKLM-x32\...\RBRTrack1107) (Version: - )
RBR Koprivnice 1-4 v1.3 (remove only) (HKLM-x32\...\RBRTrack116) (Version: - )
RBR Koprivnice 3 + 4 (remove only) (HKLM-x32\...\RBRTrack118) (Version: - )
RBR Koudelky - Psinky (remove only) (HKLM-x32\...\RBRTrack138) (Version: - )
RBR La Atalaya I + II (remove only) (HKLM-x32\...\RBRTrack451) (Version: - )
RBR Legazpi-Gabiria 2004 (remove only) (HKLM-x32\...\RBRTrack9876) (Version: - )
RBR Mitterbach Tarmac v1.1 (remove only) (HKLM-x32\...\RBRTrack1916) (Version: - )
RBR Muxarello (remove only) (HKLM-x32\...\RBRTrack472) (Version: - )
RBR Nove Hory - Dolina (remove only) (HKLM-x32\...\RBRTrack136) (Version: - )
RBR Odry 1.2 (remove only) (HKLM-x32\...\RBRTrack160) (Version: - )
RBR Odry Snow Night v1.1 (remove only) (HKLM-x32\...\RBRTrack162) (Version: - )
RBR Peyre Winter (remove only) (HKLM-x32\...\RBRTrack576) (Version: - )
RBR Rallysprint Hondarribia 2011 v1.1 (remove only) (HKLM-x32\...\RBRTrack478) (Version: - )
RBR Reversed Tracks (remove only) (HKLM-x32\...\RBRReversedTracks) (Version: - )
RBR Rozmital 96 v1.1 (remove only) (HKLM-x32\...\RBRTrack415) (Version: - )
RBR RX-Kart Ring 1 + 2 (remove only) (HKLM-x32\...\RBRTrack133) (Version: - )
RBR RZ Barak 1.1 (remove only) (HKLM-x32\...\RBRTrack129) (Version: - )
RBR RZ Barak Snow 1.1 (remove only) (HKLM-x32\...\RBRTrack130) (Version: - )
RBR SS Helfstyn (remove only) (HKLM-x32\...\RBRTrack426) (Version: - )
RBR SSS Valasske Mezirici v1.2 (remove only) (HKLM-x32\...\RBRTrack449) (Version: - )
RBR Torsby 2018 + Sprint v1.1 (remove only) (HKLM-x32\...\RBRTrack725) (Version: - )
RBR Ul. Rajdowa (remove only) (HKLM-x32\...\RBRTrack468) (Version: - )
RBR Valstagna Reverse (remove only) (HKLM-x32\...\RBRTrack1301) (Version: - )
RBR Valstagna v1.1 (remove only) (HKLM-x32\...\RBRTrack1302) (Version: - )
RBR Zaton I + II (remove only) (HKLM-x32\...\RBRTrack411) (Version: - )
RBR Zelezniki (remove only) (HKLM-x32\...\RBRTrack575) (Version: - )
RBR Zlin SS1 (remove only) (HKLM-x32\...\RBRTrack3001) (Version: - )
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Richard Burns Rally (HKLM-x32\...\InstallShield_{72CE541B-52BD-4FA1-8CD6-19341939AB21}) (Version: 1.00.000 - Název společnosti:)
RivaTuner Statistics Server 7.3.3 (HKLM-x32\...\RTSS) (Version: 7.3.3 - Unwinder)
ROG FAN XPERT 4 (HKLM-x32\...\{2dfe216d-3481-4684-ad4d-2566bd7cfe4f}) (Version: 1.00.10 - ASUSTek Computer Inc.)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.1.5.0 - ASUSTek COMPUTER INC.)
SimHub version 9.1.20 (HKLM-x32\...\{019253FE-5A17-42BE-A6B8-D71A729FA5DE}_is1) (Version: 9.1.20 - Wotever)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TMM All-in-one extensions pack verzia 1.5 (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\{9688D712-6BB0-4B20-B3A5-67C29D0371A2}_is1) (Version: 1.5 - TM-Modding)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Twitch Studio (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.2 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{6870588f-9f28-488b-a169-cf548ad6b393}) (Version: 1.0.0.2 - PD)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B9A7A138-BFD5-4C73-A269-F78CCA28150E}) (Version: 8.94.0.0 - Microsoft Corporation)
USBD480 (HKLM-x32\...\USBD480) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
VOCORE USB2.0 Screen driver 1.0.0.0 (HKLM-x32\...\VOCORE USB2.0 Screen driver_is1) (Version: 0.1.10.1 - USB2.0 Screen driver)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Youtube Downloader HD v. 5.4.3 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
Packages:
=========
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.8.9.0_x64__qmba6cd70vzyy [2024-04-14] (ASUSTeK COMPUTER INC.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-05-16] (Microsoft Corporation)
HEVC Video Codec Pack -> C:\Program Files\WindowsApps\VirtualPulse.HEVCVideoCodecPack_1.254.77.0_x64__nh7p8cqfc4t04 [2023-10-31] (Virtual Pulse)
Microsoft Copilot -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-04-07] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-25] (NVIDIA Corp.)
Player for Media -> C:\Program Files\WindowsApps\VirtualPulse.26207BFC73B72_1.298.138.0_x64__nh7p8cqfc4t04 [2023-11-13] (Virtual Pulse)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2022-05-16] (Realtek Semiconductor Corp)
Rozšíření pro video HEVC -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_2.0.61933.0_x64__8wekyb3d8bbwe [2023-10-31] (Microsoft Corporation)
Vyhledávání na webu z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-04-14] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1016078844-47908565-2139151003-1001_Classes\CLSID\{5405618e-4c42-4fb9-a80a-d24d89911296}\localserver32 -> C:\Users\Ferda\AppData\Local\NhNotifSys\sonicstudio\asusns.exe (A-Volute SAS -> A-Volute)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-04-06] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_dc86c13caa1b5d99\nvshext.dll [2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-04-06] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Ferda\Desktop\Osoba 1 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Ferda\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Pavel - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2021-08-18 15:27 - 2021-08-18 15:27 - 000477696 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2021-08-18 15:27 - 2021-08-18 15:27 - 000471040 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2021-08-18 15:27 - 2021-08-18 15:27 - 000454656 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\registry-js\prebuilds\win32-ia32\node.napi.node
2021-11-20 17:36 - 2021-02-18 13:07 - 000085504 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\zlib1.dll
2021-11-20 17:34 - 2019-12-23 19:51 - 000093184 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\zlibwapi.dll
2021-08-18 15:27 - 2021-08-18 15:27 - 000081920 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000945664 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ACSharedMemory\d3f2206eaad1cf1d6ae705ec2ca48622\ACSharedMemory.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000358912 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ACToolsUtilities\2a5a52d5afa05a36200c6847c005a55c\ACToolsUtilities.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000090624 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ArqSerialLib\4a61004e5358196774dbba355fa10500\ArqSerialLib.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000431104 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BA63Driver\bcb9bf6417e79b8128e4b825506458c0\BA63Driver.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 001931776 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CodemastersReader\34149a109452c1483b357f96811d5ea1\CodemastersReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000300544 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ETS2Reader\814a57eded81f21efe7221dcfb3dcdfe\ETS2Reader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 001174016 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GameReaderCommon\058d96354aa02f90f3191adf2623a966\GameReaderCommon.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000310272 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GRallyReader\0dccdaee06b91f4ba8f15eb0bb507a36\GRallyReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002272256 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GSIReader\5253923def60edf966c0f8aafcc43c87\GSIReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000318464 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GTReader\24f078b7789472ed80290e69c133b392\GTReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000203776 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ICarsReader\7fadcb48e11f1067cf49f839047e4bb7\ICarsReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000093184 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\INIFileParser\55da67c8422baa7860c1944f508894c3\INIFileParser.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000652800 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\LFSReader\868315d5100d86d004549593d48ceced\LFSReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000309760 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NoLimits2Reader\236e329f5b23f645e4a9c67cae712be5\NoLimits2Reader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000933376 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PCarsSharedMemory\56b0f436e3687aee7c8cbc9d8e0d8589\PCarsSharedMemory.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000623616 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PibosoReader\f7ed1c10e83495f58825ae09d7da0968\PibosoReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000724992 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\RfactorReader\6576ee3f0660c3a8b4c5af0e2ba241e4\RfactorReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000522240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\RREReader\30664b0cb1fc63809cf4253a434a87fe\RREReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000482816 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SerialDash\984b29f6677b584a7ffc17147f8d78a1\SerialDash.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000104448 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SerialDashWPF\7b07cb01308ecc63729cde53c64ba23d\SerialDashWPF.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000565760 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimBin\dd621c2ea5205cae80f67733401dce13\SimBin.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000147968 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Bitm348e3f8f#\c08aad5f8fd3cabddd2e8b7bbfb58b76\SimHub.BitmapDisplay.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000056832 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Bitm57d0b616#\de69255d1e8b952b71cc70b52cb6d632\SimHub.BitmapDisplay.Vocore.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000048640 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.LibUsbNative\36c414da9adb9e427e0b64d745de90d1\SimHub.LibUsbNative.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000009216 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Logging\60b42b5645041c860587aac18fbaddef\SimHub.Logging.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000074240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Plug20f24dbd#\00b44346dabfca386e9c9c5c454e1ad7\SimHub.Plugins.Dashstudio.Behaviors.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 021037056 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Plugins\3c78a124868424e6f4e95bfc7e3bfa19\SimHub.Plugins.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000019968 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.SHSerialPort\d4919171cedbb8b5bf1b5928e42012cc\SimHub.SHSerialPort.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000267264 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SteamHelper\060997bd3d3b4a32c12d019f25606aa6\SteamHelper.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000294912 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\TrackmaniaReader\b9986ec24db599733ae6b9967c9a925b\TrackmaniaReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000090624 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WoteverLocalization\929acad38062c883f25752233e5fc597\WoteverLocalization.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000515072 _____ (Alexandre Mutel) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SharpDX.DirectInput\59179969c11019342687a13328822aed\SharpDX.DirectInput.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000631808 _____ (Alexandre Mutel) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SharpDX\25d3fdd9fb571a644dcbc0844a52dbd3\SharpDX.ni.dll
2022-08-18 22:14 - 2024-04-30 20:20 - 000036096 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.02.15\PEbiosinterface32.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000360960 _____ (DevCrew.pl Rafał Łopatka) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ToastNotifications\830a7ece96626324e364ad8c56336224\ToastNotifications.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000412672 _____ (GongSolutions.WPF.DragDrop) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GongSolutio459c0a76#\37dd61a7eea7348da1ed02b1bc023ac4\GongSolutions.WPF.DragDrop.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000186368 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.N259f2aea#\443722f7fbb70002414f682912fb7de0\Hardcodet.NotifyIcon.Wpf.ni.dll
2022-12-19 11:40 - 2022-12-19 11:39 - 000100352 _____ (hxxp://libusb-win32.sourceforge.net) [File not signed] C:\WINDOWS\system32\libusbK.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000398336 _____ (hxxps://github.com/ncalc) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NCalc\cfdfe5df7b23ac2cfa8e726d35d37bed\NCalc.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002041344 _____ (ic#code) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ICSharpCode6e2121f3#\781fbae5f227fc05da77145c5418e1c6\ICSharpCode.AvalonEdit.ni.dll
2021-11-22 11:47 - 2023-07-21 14:59 - 000130048 _____ (libusb.info) [File not signed] C:\Program Files (x86)\SimHub\libusb-1.0.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 003913728 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Met20c382b6#\e0651547160301ff51ef4fa86aebdc54\MahApps.Metro.IconPacks.Material.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000058880 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Metc5ddd046#\15ae7a12290422f9c803dcb05c631e5b\MahApps.Metro.IconPacks.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000135168 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Mete28bbf5a#\849f069fcde444e37c9309aab220de32\MahApps.Metro.SimpleChildWindow.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002990592 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Metro\aeef5c954fbcac258f51b53a313dbf98\MahApps.Metro.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000084480 _____ (Marc Gravell) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\FastMember\d68d8d8432d2b4b43f1ab2e6f76ed04e\FastMember.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000654336 _____ (Mark Heath) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio.Core\66c4242634dac89b82e5c5b9e91ef0e0\NAudio.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000685056 _____ (Mark Heath) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio.Wasapi\e8c5a6147e4f962f81fb195da6f06b0a\NAudio.Wasapi.ni.dll
2021-11-22 11:05 - 2021-11-22 11:05 - 001655296 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_8444db7d32915e4c\MFC80U.DLL
2024-05-02 11:13 - 2024-05-02 11:13 - 003109888 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\cac5561f8fac6180ba47e9e7502e7cf4\Newtonsoft.Json.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000153088 _____ (Nick Connors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MSIAfterburner.NET\eab0b334b027ab6ec1048c36cf51177d\MSIAfterburner.NET.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000148992 _____ (Open Source) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AvalonDock.b8ea423a#\6d8377e09d10c834a90db1c706091e0b\AvalonDock.Themes.VS2013.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 001958912 _____ (Open Source) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AvalonDock\d288d6b5173baa9a6f2181981f796d39\AvalonDock.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002272256 _____ (OxyPlot) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\OxyPlot\1824abc97b62f8ab71f57bbf2841c8ec\OxyPlot.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002012672 _____ (Sebastien Ros) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Esprima\2ed3d633d4f6d44c6dc1c96614d056ee\Esprima.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000783872 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\8d36aa2cea93c5ec007fe7ba202fc94e\log4net.ni.dll
2024-05-02 11:13 - 2024-05-02 11:13 - 000834560 _____ (The CefSharp Authors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CefSharp\98c439828f708ee68a2c63e80f006172\CefSharp.ni.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 000287232 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\libcurl.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\libcrypto-1_1-x64.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 002281984 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\LIBEAY32.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\libssl-1_1-x64.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 000361472 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\SSLEAY32.dll
2021-11-20 17:34 - 2019-06-26 17:07 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libcrypto-1_1-x64.dll
2021-11-20 17:34 - 2019-06-26 17:07 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libssl-1_1-x64.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000367104 _____ (Tunnel Vision Laboratories, LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Antlr3.Runtime\6dea2fb14cd6e1156b56b9b64af243c3\Antlr3.Runtime.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002475008 _____ (Wotever) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WoteverCommon\98ba3872c57e99192e70179fa92169c3\WoteverCommon.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 003827712 _____ (Xceed Software Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Xceed.Wpf.Toolkit\7d1d8905f55563cd18a248f786dd4f78\Xceed.Wpf.Toolkit.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2021-11-20 14:32 - 2021-11-20 14:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ferda\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0C40A3C7-56AE-489D-AC4B-FC62D2AFB6CE}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{C87B0E30-81EB-478B-8136-91EDD7C103EE}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{2E03B08D-B516-413C-BC9B-59A8E89F2A0E}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{E76CD7A4-0EDE-4F3B-A4E3-563F5C535409}] => (Allow) D:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4B8FC499-4AD6-4704-A024-DB32E53117D7}] => (Allow) D:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BE57A870-3237-424C-B21B-6430909B771F}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{890A8B8E-B07B-4D2E-84C5-F43A6B0DD6A9}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{08195790-4C9E-4D86-9C0D-E066DA72F715}] => (Allow) D:\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (AcClub -> AcClub) [File not signed]
FirewallRules: [{02FE054E-530D-4192-A4EF-93F2EE00DC3A}] => (Allow) D:\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (AcClub -> AcClub) [File not signed]
FirewallRules: [TCP Query User{8FBBC83F-A89A-42A6-B7E4-9163D0758A6D}D:\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs.exe () [File not signed]
FirewallRules: [UDP Query User{1CF824B0-7FD3-4063-8EE9-966C69C23FB8}D:\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs.exe () [File not signed]
FirewallRules: [{D92D0D93-7905-46EA-9417-6E2618A584F1}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Launcher\Launch rFactor.exe () [File not signed]
FirewallRules: [{7F0E42EE-A257-4E7B-BF10-771DD4AEA43D}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Launcher\Launch rFactor.exe () [File not signed]
FirewallRules: [TCP Query User{CE8083E1-ECE1-4229-9A8E-2E61714AD9BD}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe (Studio 397) [File not signed]
FirewallRules: [UDP Query User{4A91BB68-EF28-4D22-B885-7830E812D74C}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe (Studio 397) [File not signed]
FirewallRules: [TCP Query User{06647E1E-F5EC-49EB-9B14-5EFEBE86D539}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe (Studio 397) [File not signed]
FirewallRules: [UDP Query User{B86E200A-D441-4339-8133-689DD8494C6D}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe (Studio 397) [File not signed]
FirewallRules: [{5F267163-31B1-4D9E-90B8-DB05E56B18A8}] => (Allow) D:\Steam\steamapps\common\Assetto Corsa Competizione\acc.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{A3D98044-BE44-4EC0-BFDD-D886F4E101FD}] => (Allow) D:\Steam\steamapps\common\Assetto Corsa Competizione\acc.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{46486963-F833-4BF0-ACCF-E324E4FB8516}D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [UDP Query User{648C484D-C2A9-422D-BEAE-58B4B23480E5}D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [{3DE1E4A9-4522-4606-8D63-CE9CEB293B9B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{15D562E7-E483-49B7-B879-9863FC93E3D2}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{4234868F-2A1F-4FB5-AE5C-85A389F37339}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{2576DD25-EC1A-4EF8-9245-0298B8E7777F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{15B19FB7-D847-4A6C-9AA4-18B2FB6A5D02}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{EEE17BDE-D6DB-4C2A-ACE7-43C4D128F0FB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{DB6ED5C9-EEAB-4CCE-B34F-7D27E32DFAAE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{79832737-5E59-49F6-B62A-599B00FEF5CA}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [UDP Query User{059D24A8-9766-454A-8AFF-0479B4271548}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [TCP Query User{7BD4379D-469E-4527-BDB4-E4B782771E8E}C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [UDP Query User{8817BD8C-7E59-4D30-AA6D-C6FE79DEC33F}C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [TCP Query User{05079502-C603-4177-A35D-2DA7BDBC4A37}C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe] => (Allow) C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe
FirewallRules: [UDP Query User{937DAE30-A1F1-41F3-9A11-1943E311864F}C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe] => (Allow) C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe
FirewallRules: [TCP Query User{CCD5AB69-8F3B-4211-9789-D94858219BD8}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{DEEC067B-93EF-49BB-866A-8466F008228E}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{A1067982-3F5C-4519-9C92-65BBF74F3A46}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BA1C9ABE-0EDD-449E-9D29-3948D0ED5A17}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FD4871D3-F8CC-4ECB-A3DD-2CAE4E4E227E}] => (Allow) D:\Steam\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{CA37EC49-21AF-4451-931E-316FA669D9F7}] => (Allow) D:\Steam\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{6D12474E-B2F0-40FD-9B18-6946C81B86C6}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Bin64\rF Config.exe (Studio 397) [File not signed]
FirewallRules: [{963126B9-5CE4-4E6F-A3C4-FFFE0F201496}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Bin64\rF Config.exe (Studio 397) [File not signed]
FirewallRules: [TCP Query User{96E67B63-AE3D-498B-B501-F9CACD90EBC9}C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe] => (Block) C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe
FirewallRules: [UDP Query User{82E58669-AF96-4E47-A74B-F02315DD888F}C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe] => (Block) C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe
FirewallRules: [{6EAC959B-9BA5-4DE6-BDB9-6534DFE56B4D}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{A4DD3B03-1442-45FC-8282-7DE7159324F4}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{F1EA310B-D235-44A8-BEEB-94F81BF35E64}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\RRRE.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{8758CB41-D06C-424C-9566-EEEBE8481CBE}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\RRRE.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{AF37DA2A-657F-4773-A847-2C7F3F1229D2}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{E60B0625-AA22-456C-885A-E3AAA0B66B6E}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{7936E424-0337-4BFB-B0DC-E126C4A64169}] => (Allow) D:\Steam\steamapps\common\EA SPORTS WRC\WRC\Binaries\Win64\WRC.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{4B9310DD-F11E-4EDE-9364-ECEF16E7CCB7}] => (Allow) D:\Steam\steamapps\common\EA SPORTS WRC\WRC\Binaries\Win64\WRC.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{4EE18184-C89C-4BF0-B8BE-CD77D98EBAE1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4720FAA3-CD81-4F57-B62C-1E7D1B4BE853}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F9151CB1-E192-4FFD-A6B4-C8FDA916FDB7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{25911C65-DBF9-4083-B9F2-665FB4CFDD14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0CFC9589-928C-4BB1-A77A-84121C2933AC}] => (Allow) C:\Program Files (x86)\SimHub\SimHubWPF.exe () [File not signed] [File is in use]
FirewallRules: [{60A23713-1370-4029-B24C-FE709DC5A5E2}] => (Allow) C:\Program Files (x86)\SimHub\SimHub.PackageManager.Standalone.exe () [File not signed]
FirewallRules: [{A738F2C0-2D1F-4B6F-B2B8-C00DAD89350F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BE76CF6A-A816-4CE0-8D42-309F86A91DB5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C04BC6CD-8795-466D-84F8-203AAAD633EF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0D6312BB-E749-4CE9-A293-64FFC2B15218}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FFA2DF2D-5315-4FD3-9239-3A5ECA843718}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7D6C9FA3-3C20-464C-B71C-91EF006B9053}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.80\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
14-04-2024 21:09:05 Instalační služba modulů systému Windows
02-05-2024 11:19:43 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/06/2024 11:31:18 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.
Error: (05/06/2024 09:32:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x3648
Čas spuštění chybující aplikace: 0x01da9fe276d5ff82
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 301e0d1f-2f60-4f83-9d2b-8c12b173d8e4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/02/2024 10:38:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x3480
Čas spuštění chybující aplikace: 0x01da9cc619dab113
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: dfcd7d40-0fba-499b-854c-5496db8c0711
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/02/2024 08:40:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x159c
Čas spuštění chybující aplikace: 0x01da9cb98783945c
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 5e79847f-c692-4b4e-9f45-5a5da2536715
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/02/2024 12:40:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x3c8
Čas spuštění chybující aplikace: 0x01da9c7c0f02dcc7
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 501dcf1e-60f3-424a-bb95-1c00c24698e8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/30/2024 08:21:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ArmouryWebBrowserEdge.exe, verze: 1.0.0.14, časové razítko: 0x615d1361
Název chybujícího modulu: ArmouryWebBrowserEdge.exe, verze: 1.0.0.14, časové razítko: 0x615d1361
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000009d43
ID chybujícího procesu: 0x2bbc
Čas spuštění chybující aplikace: 0x01da9b2b2c48c0ea
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
ID zprávy: abcee60c-ef88-4f7d-907a-d8c85f1ddbf9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/11/2024 08:15:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x104c
Čas spuštění chybující aplikace: 0x01da8c3bcb9f180e
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 3289218d-5448-46d3-a0af-b52345054592
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/09/2024 11:50:00 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: DESKTOP-KR54MFR)
Description: Aplikaci nebo službu CefSharp.BrowserSubprocess nelze ukončit.
System errors:
=============
Error: (05/02/2024 11:01:32 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-KR54MFR)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/30/2024 08:22:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (04/30/2024 08:22:35 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (04/30/2024 08:20:35 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (04/29/2024 09:19:29 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): 2024-01, aktualizace zabezpečení pro Windows 10 Version 22H2 pro systémy typu x64 (KB5034441).
Error: (04/17/2024 09:58:02 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY)
Description: E:\Device\HarddiskVolume173
Error: (04/17/2024 09:48:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (04/17/2024 09:44:35 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku E: bylo zjištěno poškození.
Přesná povaha poškození není známa. Je potřeba zkontrolovat a opravit struktury systému souborů v online režimu.
Windows Defender:
================
Date: 2024-05-07 08:19:25
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {D45769E0-E08D-4A80-A88A-2776A07F438C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-05-02 11:13:56
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {3ED46DF1-9C84-4E19-A0CF-3FB9693A5BC0}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-17 21:48:30
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8A71C25D-EF4A-47CC-83B2-36D736AE03BA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-02-13 18:47:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {72A5342E-623C-46BA-A0F0-FD34D60A22CD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-01-17 19:42:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7CEE692E-6F41-4817-9D12-6F956378226A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\ProgramData\obs-studio-hook\graphics-hook64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\Twitch\Studio\Versions\0.107.8163.2311\TwitchNativeOverlay64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\RivaTuner Statistics Server\Vulkan\RTSSVkLayer64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\FPS Monitor\tools\fpsmonvk64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\ProgramData\obs-studio-hook\graphics-hook32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\Twitch\Studio\Versions\0.107.8163.2311\TwitchNativeOverlay32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\RivaTuner Statistics Server\Vulkan\RTSSVkLayer32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\FPS Monitor\tools\fpsmonvk32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-06 23:31:19
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 0803 07/25/2019
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B365-G GAMING
Processor: Intel(R) Core(TM) i7-9700KF CPU @ 3.60GHz
Percentage of memory in use: 45%
Total physical RAM: 16313.96 MB
Available physical RAM: 8823.88 MB
Total Virtual: 18745.96 MB
Available Virtual: 7534.01 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:953.24 GB) (Free:529.88 GB) (Model: INTEL SSDPEKNW010T8) NTFS
Drive d: (D) (Fixed) (Total:931.51 GB) (Free:424.59 GB) (Model: Samsung SSD 870 QVO 1TB) NTFS
\\?\Volume{090ab0df-3efd-4399-8d5c-13e977619f80}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{d5e15e15-5ca7-4c83-b829-d7a1a3fcc500}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8ACBAA22)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Fix result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by Ferda (07-05-2024 09:42:40) Run:1
Running from C:\Users\Ferda\Downloads
Loaded Profiles: Ferda
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [SimHub] => C:\Program Files (x86)\SimHub\SimHubWPF.exe [2816000 2024-01-09] () [File not signed] [File is in use] <==== ATTENTION
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\MountPoints2: {f2d671b4-4f21-11ed-abf7-d45d641e14dd} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {205E10C2-79C7-4436-B5CF-27A0DB8C902F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{607CEDEC-D131-4A63-9A3E-1CD97606CAD2} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X] <==== ATTENTION
C:\Users\Ferda\Downloads\Setup.exe
EmptyTemp:
End
*****************
Processes closed successfully.
"HKU\S-1-5-21-1016078844-47908565-2139151003-1001\Software\Microsoft\Windows\CurrentVersion\Run\\SimHub" => removed successfully
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f2d671b4-4f21-11ed-abf7-d45d641e14dd} => removed successfully
"C:\WINDOWS\system32\GroupPolicy\Machine" Folder move:
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\ProgramData\NTUSER.pol => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{205E10C2-79C7-4436-B5CF-27A0DB8C902F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{205E10C2-79C7-4436-B5CF-27A0DB8C902F}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{607CEDEC-D131-4A63-9A3E-1CD97606CAD2} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{607CEDEC-D131-4A63-9A3E-1CD97606CAD2}" => removed successfully
HKLM\System\CurrentControlSet\Services\cpuz152 => removed successfully
cpuz152 => service removed successfully
"C:\Users\Ferda\Downloads\Setup.exe" => not found
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 27509823 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1032400462 B
Windows/system/drivers => 25256988 B
Edge => 0 B
Chrome => 365242057 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 432 B
LocalService => 16430 B
NetworkService => 21094 B
Ferda => 93430692 B
RecycleBin => 92323080 B
EmptyTemp: => 1.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:43:09 ====
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Ran by Ferda (administrator) on DESKTOP-KR54MFR (07-05-2024 09:40:06)
Running from C:\Users\Ferda\Downloads\FRST64.exe
Loaded Profiles: Ferda
Platform: Microsoft Windows 10 Home Version 22H2 19045.4291 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(A-Volute SAS -> A-Volute) C:\Users\Ferda\AppData\Local\NhNotifSys\sonicstudio\asusns.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.80\msedgewebview2.exe <6>
(C:\Program Files (x86)\SimHub\SimHubWPF.exe ->) () [File not signed] [File is in use] C:\Program Files (x86)\SimHub\SimHub.BitmapDisplay.Subprocess.X86.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(D:\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(Discord Inc. -> Discord Inc.) C:\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe <6>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <31>
(explorer.exe ->) (Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_dc86c13caa1b5d99\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) () [File not signed] [File is in use] C:\Program Files (x86)\SimHub\SimHubWPF.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <4>
(svchost.exe ->) (ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Ferda\AppData\Local\Microsoft\OneDrive\24.081.0421.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2403.5.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [838648 2019-03-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [Discord] => C:\Users\Ferda\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [Steam] => D:\Steam\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [MicrosoftEdgeAutoLaunch_D0309FC2206AAAC2C703AF932281C6DD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4081192 2024-05-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [SimHub] => C:\Program Files (x86)\SimHub\SimHubWPF.exe [2816000 2024-01-09] () [File not signed] [File is in use] <==== ATTENTION
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45380000 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\MountPoints2: {f2d671b4-4f21-11ed-abf7-d45d641e14dd} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-06] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {D399601E-9B2B-41B0-96F5-F8453DE4001E} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [111328 2021-10-06] (ASUSTeK Computer Inc. -> ASUS)
Task: {F182965E-F184-43D0-A938-AACB56A46907} - System32\Tasks\ASUS\ArmouryAIOFanServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe [764152 2021-06-10] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {ABAB4A33-AA69-4791-8679-5AB7EC91A8C1} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [2196456 2021-10-06] (ASUSTeK Computer Inc. -> ASUS)
Task: {C7C0E547-F9F1-4F0D-8654-9C0D5A7045A0} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d7de23b09647ba => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {69D67917-A95C-41E8-A71F-FB50785EF1EB} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {70F89C0C-89C8-4DC8-9DDC-8FC4C066C21A} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [44588888 2021-08-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {EA48E9EF-9EC7-4384-9CE9-272B074EF91C} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1241448 2021-10-13] (ASUSTeK Computer Inc. -> ASUS)
Task: {7DFBAEC1-F9A5-4B89-AA86-2D050A3A1D67} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {2CA922FC-7733-4AD3-9E15-61CBF45DF14D} - System32\Tasks\AVG\Overseer => C:\Windows\OEM\CustomizationFiles\Overseer.exe [2181560 2023-09-11] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {C14CF219-B53B-4FAA-B7DA-F9C0B141E455} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {504468EC-8418-4164-AC15-337ECCF09EF3} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "e71e5f4d-ea47-4449-9a59-82f76d61e5e6" --version "6.23.11010" --silent
Task: {CCCEAA9C-F3C4-4971-9109-CD413BA0E186} - System32\Tasks\CCleanerSkipUAC - Ferda => C:\Program Files\CCleaner\CCleaner.exe [39118752 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {27354B89-8037-4E4F-9D1C-760006020F69} - System32\Tasks\elevator_b58b0b144169daf1a5b3ae13ea6f5142 => C:\Program Files (x86)\SimHub\SimHubWPF.exe [2816000 2024-01-09] () [File not signed] [File is in use]
Task: {205E10C2-79C7-4436-B5CF-27A0DB8C902F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{607CEDEC-D131-4A63-9A3E-1CD97606CAD2} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {27E40DF4-EB43-48FE-B1C2-907EC2D33C33} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {A500B4D0-56C9-4347-9170-7B700D549D40} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E2BE72BC-285F-4FAD-9E42-6D99BCFCF79C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {28197D2C-1733-49B2-8372-D95DF0564E66} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8B24CA68-B59F-4AEE-B8FA-969CD34015A3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8FB040B8-AE45-4618-9372-8A68F6431115} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {15A6107E-2B5A-47DE-975C-8C684AD1D871} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BFA2C7B0-9824-460C-8CCD-1B93814CCD25} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {049C6BE5-5931-4F3E-AFA0-CF91F805B89A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D5B360B1-6BE3-4AD1-916A-57BEA16F6FDD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1A1F5560-C414-4F09-AD02-48F7AD7CAD5A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {890270D3-0326-4EBB-988C-0048B634BF23} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1B00F0CA-1B94-4BEA-B90B-62B1B8F180B3} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B1F6E0A6-9C98-47A6-8657-B0E0887973D5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{546e6ce5-9f67-4c1c-997d-0510bea67e06}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{546e6ce5-9f67-4c1c-997d-0510bea67e06}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Ferda\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-07]
Edge Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07]
Edge Extension: (Edge relevant text changes) - C:\Users\Ferda\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Default [2024-04-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-20]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-04-25]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-05-07]
CHR Notifications: Profile 1 -> hxxps://drive.google.com
CHR Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-23]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-04-29]
CHR Notifications: Profile 2 -> hxxps://drive.google.com
CHR Extension: (Dokumenty Google offline) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-31]
CHR Profile: C:\Users\Ferda\AppData\Local\Google\Chrome\User Data\System Profile [2024-05-07]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [382112 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe [468504 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2022-08-18] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-20] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [1097624 2024-04-30] (ASUSTeK Computer Inc. -> )
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-04-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1920152 2021-11-01] (A-Volute SAS -> Nahimic)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_dc86c13caa1b5d99\Display.NvContainer\NVDisplay.Container.exe [1275424 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [142856 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [337112 2022-01-07] (Twitch Interactive, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [34384 2021-10-21] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [43168 2022-08-18] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 HWiNFO_163; C:\WINDOWS\system32\drivers\HWiNFO64A_163.SYS [55824 2021-12-01] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm))
R1 HWiNFO_187; C:\WINDOWS\system32\drivers\HWiNFO64A_187.SYS [56912 2024-04-09] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm))
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52832 2022-12-19] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47928 2022-12-19] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R3 MpKsl65c075a7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{03EF5073-A627-4E9A-843E-B082C3F49894}\MpKslDrv.sys [271648 2024-05-07] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tmhidusb; C:\WINDOWS\system32\DRIVERS\tmhidusb.sys [432136 2021-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster)
S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; C:\Program Files (x86)\SimHub\OpenHardwareMonitorLib.sys [14544 2024-01-09] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X] <==== ATTENTION
S3 dg_ssudbus; \SystemRoot\System32\drivers\ssudbus2.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-05-07 09:39 - 2024-05-07 09:39 - 000000876 _____ C:\Users\Ferda\Downloads\fixlist.txt
2024-05-07 08:06 - 2024-05-07 08:07 - 000066333 _____ C:\Users\Ferda\Downloads\Addition.txt
2024-05-07 08:04 - 2024-05-07 09:40 - 000026539 _____ C:\Users\Ferda\Downloads\FRST.txt
2024-05-07 08:04 - 2024-05-07 09:40 - 000000000 ____D C:\FRST
2024-05-07 08:03 - 2024-05-07 08:03 - 002394112 _____ (Farbar) C:\Users\Ferda\Downloads\FRST64.exe
2024-05-07 08:02 - 2024-05-07 08:02 - 000000000 ___HD C:\OneDriveTemp
2024-05-06 23:33 - 2024-05-06 23:33 - 000388608 _____ (Trend Micro Inc.) C:\Users\Ferda\Downloads\hijackthis.exe
2024-05-06 23:25 - 2024-05-06 23:31 - 000000000 ____D C:\Users\Ferda\AppData\Local\Malwarebytes
2024-05-06 23:24 - 2024-05-06 23:24 - 000038416 _____ C:\WINDOWS\system32\lc.dat
2024-05-06 23:23 - 2024-05-06 23:24 - 002589624 _____ (Malwarebytes) C:\Users\Ferda\Downloads\MBSetup.exe
2024-05-02 22:51 - 2024-05-02 22:51 - 013282831 _____ C:\Users\Ferda\Downloads\Video bez názvu_ Vytvořeno pomocí aplikace Clipchamp (2).mp4
2024-05-02 11:04 - 2024-05-02 11:04 - 000000000 ____D C:\Users\Ferda\Downloads\usbdeview_czech
2024-05-02 11:03 - 2024-05-02 11:26 - 000000000 ____D C:\Users\Ferda\Downloads\usbdeview-x64
2024-05-02 11:03 - 2024-05-02 11:03 - 000127001 _____ C:\Users\Ferda\Downloads\usbdeview-x64.zip
2024-05-02 11:03 - 2024-05-02 11:03 - 000003800 _____ C:\Users\Ferda\Downloads\usbdeview_czech.zip
2024-05-02 08:43 - 2024-05-02 08:43 - 000001586 _____ C:\Users\Ferda\Downloads\usblogview_czech.zip
2024-05-02 08:43 - 2024-05-02 08:43 - 000000000 ____D C:\Users\Ferda\Downloads\usblogview_czech
2024-05-02 08:39 - 2024-05-02 08:43 - 000000000 ____D C:\Users\Ferda\Downloads\usblogview
2024-05-02 08:39 - 2024-05-02 08:39 - 000213445 _____ C:\Users\Ferda\Downloads\usblogview.zip
2024-04-29 21:19 - 2024-04-29 21:19 - 000000000 ___HD C:\$WinREAgent
2024-04-25 22:40 - 2024-04-25 22:40 - 000369654 _____ C:\Users\Ferda\Documents\cc_20240425_224049.reg
2024-04-25 22:38 - 2024-05-07 08:02 - 000000000 ____D C:\Program Files\CCleaner
2024-04-25 22:38 - 2024-04-29 23:09 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-04-25 22:38 - 2024-04-25 22:38 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-04-25 22:38 - 2024-04-25 22:38 - 000003378 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-04-25 22:38 - 2024-04-25 22:38 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Ferda
2024-04-25 22:38 - 2024-04-25 22:38 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-04-25 22:38 - 2024-04-25 22:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-04-25 22:37 - 2024-04-25 22:37 - 083658872 _____ (Piriform Software Ltd) C:\Users\Ferda\Downloads\ccsetup623.exe
2024-04-16 22:41 - 2024-04-16 22:41 - 000000000 ____D C:\Users\Ferda\Documents\Nová složka
2024-04-14 21:14 - 2024-04-14 21:14 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-14 21:14 - 2024-04-14 21:14 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-09 21:19 - 2024-04-09 21:19 - 083395680 _____ (Piriform Software Ltd) C:\Users\Ferda\Downloads\ccsetup622.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 001578752 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 001578752 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-04-09 12:14 - 2024-04-03 15:53 - 001487904 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001445224 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001445224 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001295104 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001295104 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-04-09 12:14 - 2024-04-03 15:53 - 001226864 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 001543712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 001199624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 001046040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 000841736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-04-09 12:14 - 2024-04-03 15:50 - 000670240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-04-09 12:14 - 2024-04-03 15:50 - 000505352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 012929568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 002174496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 001626120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 001024544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 000787464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-04-09 12:14 - 2024-04-03 15:49 - 000459272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-04-09 12:14 - 2024-04-03 15:48 - 016034848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 006780960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 005913200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 005773344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 003721224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-04-09 12:14 - 2024-04-03 15:48 - 000853008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-04-09 12:14 - 2024-04-03 03:54 - 000119466 _____ C:\WINDOWS\system32\nvinfo.pb
2024-04-09 11:56 - 2024-04-09 11:56 - 000001107 _____ C:\Users\Public\Desktop\FPS Monitor.lnk
2024-04-09 11:56 - 2024-04-09 11:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FPS Monitor
2024-04-09 11:56 - 2024-04-09 11:56 - 000000000 ____D C:\Program Files (x86)\FPS Monitor
2024-04-09 11:47 - 2024-04-09 11:47 - 013564608 _____ (Eduard Kozadaev ) C:\Users\Ferda\Downloads\fpsmon-5472.exe
2024-04-08 22:00 - 2023-06-28 21:30 - 000006548 _____ C:\Users\Ferda\Desktop\track-5032_N.dls
2024-04-08 22:00 - 2023-06-24 20:16 - 000006500 _____ C:\Users\Ferda\Desktop\track-5032_O.dls
2024-04-08 22:00 - 2023-05-17 20:31 - 000006708 _____ C:\Users\Ferda\Desktop\track-136_O.dls
2024-04-08 21:57 - 2024-04-07 22:44 - 000006984 _____ C:\Users\Ferda\Desktop\track-136_N.dls
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-05-07 09:35 - 2021-11-20 17:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-05-07 09:35 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-07 09:02 - 2021-11-22 11:39 - 000000000 ____D C:\Users\Ferda\AppData\Local\Discord
2024-05-07 08:18 - 2021-11-20 16:25 - 000000000 ____D C:\Users\Ferda\AppData\Local\D3DSCache
2024-05-07 08:05 - 2021-12-09 13:39 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A85919F0-98E5-40FF-95E0-E9A6598CD741}
2024-05-07 08:03 - 2021-11-22 11:39 - 000000000 ____D C:\Users\Ferda\AppData\Roaming\discord
2024-05-07 08:02 - 2023-01-25 23:40 - 000000000 ____D C:\Users\Ferda\Documents\SimHub
2024-05-07 08:02 - 2021-11-22 11:39 - 000002243 _____ C:\Users\Ferda\Desktop\Discord.lnk
2024-05-07 08:02 - 2021-11-20 16:22 - 000000000 ___RD C:\Users\Ferda\OneDrive
2024-05-07 08:02 - 2021-11-20 14:44 - 000000000 ____D C:\ProgramData\NVIDIA
2024-05-06 23:31 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-05-06 23:31 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-05-06 23:11 - 2021-12-11 17:22 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1016078844-47908565-2139151003-1001
2024-05-06 23:11 - 2021-11-20 17:28 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1016078844-47908565-2139151003-1001
2024-05-06 23:11 - 2021-11-20 17:25 - 000002377 _____ C:\Users\Ferda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-05-06 21:32 - 2021-12-04 19:08 - 000000000 ____D C:\Users\Ferda\AppData\Local\CrashDumps
2024-05-06 20:59 - 2021-11-20 17:34 - 000000000 ____D C:\Program Files\ASUS
2024-05-06 20:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-06 20:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-05-06 20:19 - 2021-12-17 00:39 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-05-06 20:19 - 2021-11-20 16:23 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-06 20:19 - 2021-11-20 16:23 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-05-06 20:18 - 2023-01-17 12:47 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-05-06 20:18 - 2021-11-20 14:39 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-02 22:38 - 2021-11-24 00:11 - 000000000 ____D C:\Users\Ferda\AppData\Roaming\obs-studio
2024-05-02 19:50 - 2021-11-20 17:33 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-02 19:50 - 2019-12-07 16:41 - 000716602 _____ C:\WINDOWS\system32\perfh005.dat
2024-05-02 19:50 - 2019-12-07 16:41 - 000144780 _____ C:\WINDOWS\system32\perfc005.dat
2024-04-30 20:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-30 20:21 - 2021-11-22 11:10 - 000000000 ____D C:\Users\Ferda\AppData\Local\Steam
2024-04-30 20:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-30 20:20 - 2021-11-20 17:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-30 20:20 - 2021-11-20 17:24 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-30 20:20 - 2021-11-20 14:37 - 001136496 _____ C:\WINDOWS\system32\wpbbin.exe
2024-04-30 20:20 - 2021-11-20 14:37 - 001097624 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2024-04-29 23:11 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-29 23:09 - 2024-01-08 00:37 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-29 23:09 - 2022-10-26 09:16 - 000000000 ____D C:\WINDOWS\en-GB
2024-04-29 23:09 - 2021-11-20 17:24 - 000350488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-29 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-25 22:39 - 2022-05-12 23:30 - 000000000 ____D C:\WINDOWS\Minidump
2024-04-25 22:39 - 2021-11-20 16:28 - 000000000 ___DC C:\WINDOWS\Panther
2024-04-25 22:38 - 2022-05-16 10:46 - 000000000 ____D C:\ProgramData\Piriform
2024-04-14 21:16 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-14 21:14 - 2021-11-20 17:28 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-14 21:09 - 2021-11-20 17:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-14 21:07 - 2021-11-20 17:04 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 21:14 - 2021-11-20 14:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-09 12:18 - 2021-11-20 16:31 - 000000000 ____D C:\Users\Ferda\AppData\Local\NVIDIA Corporation
2024-04-09 12:17 - 2021-11-20 16:31 - 000000000 ____D C:\Users\Ferda\AppData\Local\NVIDIA
2024-04-09 12:10 - 2021-12-01 00:04 - 000114268 _____ C:\Users\Ferda\Documents\FPSMonitor.txt
2024-04-09 11:55 - 2021-11-20 14:46 - 000000000 ____D C:\Users\Ferda\AppData\Local\Packages
2024-04-07 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-04-07 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-04-07 23:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-04-07 23:09 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2024-04-07 21:46 - 2021-11-20 17:28 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-07 21:46 - 2021-11-20 17:28 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by Ferda (07-05-2024 09:41:21)
Running from C:\Users\Ferda\Downloads
Microsoft Windows 10 Home Version 22H2 19045.4291 (X64) (2021-11-20 15:28:31)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1016078844-47908565-2139151003-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1016078844-47908565-2139151003-503 - Limited - Disabled)
Ferda (S-1-5-21-1016078844-47908565-2139151003-1001 - Administrator - Enabled) => C:\Users\Ferda
Guest (S-1-5-21-1016078844-47908565-2139151003-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1016078844-47908565-2139151003-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3D Ripper DX v1.8.2 (HKLM-x32\...\3D Ripper DX_is1) (Version: - Roman Lut)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_2) (Version: 20.0.2 - Adobe Systems Incorporated)
advanced-scene-switcher version 1.24.2 (HKLM-x32\...\{A4ADDF26-4426-4D2E-B26A-C7C878DA8FC9}_is1) (Version: 1.24.2 - WarmUpTill)
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.19 - Arduino LLC)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.2.10 - ASUS)
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.1.40.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{10f6ee35-55c3-46eb-91a6-816ce9af34c7}) (Version: 1.1.40.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.13 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{c398adfb-d090-4897-8845-baca53f7ecde}) (Version: 1.1.0.13 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.2.6.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{84e91062-91cd-4caf-ab18-1805169f546d}) (Version: 1.2.6.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{7a0d5159-cb5e-4f66-91f8-bab46f864f14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32\...\{8bf47d14-406b-49e8-8759-966757033aa0}) (Version: 2.1.1.3 - ASUSTek COMPUTER INC.)
ASUS Framework Service (HKLM-x32\...\{EA6A87BE-8AD3-40D2-944C-9DF5FBFF4332}) (Version: 2.1.1.3 - ASUSTek COMPUTER INC.) Hidden
ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 2.01.06 - ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.113 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{9AFE5429-866B-457D-A864-80BCF7672EE8}) (Version: 1.1.16 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{41a78792-5489-400c-a567-b78d40b8c878}) (Version: 1.1.16 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.18 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.18 - ASUS)
AX206 Screen driver 1.0.0.0 (HKLM-x32\...\AX206 Screen driver_is1) (Version: 0.1.10.1 - AX206 Screen driver)
Balíček ovladače systému Windows - Adafruit Industries LLC (usbser) Ports (02/25/2016 6.2.2600.0) (HKLM\...\1245A5961AC9D2C18ADF9EEC931D77E059B7F74E) (Version: 02/25/2016 6.2.2600.0 - Adafruit Industries LLC)
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (01/04/2013 1.0.0.0) (HKLM\...\1E3EA5624DD04BEFECF3FFF6D3A21CCE9CD70A91) (Version: 01/04/2013 1.0.0.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (11/24/2015 1.2.3.0) (HKLM\...\8B585560B248755A6C5A24D5C0F50FA998310883) (Version: 11/24/2015 1.2.3.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Genuino USB Driver (01/07/2016 1.0.3.0) (HKLM\...\EC414D98E2986DCA1628FAED2163CD1C9A4ED7EC) (Version: 01/07/2016 1.0.3.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino Srl (www.arduino.org) Arduino USB Driver (02/27/2014 1.1.0.0) (HKLM\...\D98AC5103994615BD84394E441ADFA35EB61C8A6) (Version: 02/27/2014 1.1.0.0 - Arduino Srl (www.arduino.org))
Balíček ovladače systému Windows - Arduino Srl (www.arduino.org) Arduino USB Driver (03/19/2015 1.1.1.0) (HKLM\...\69E507459B453D69A453EFC9E461FAE1E073408A) (Version: 03/19/2015 1.1.1.0 - Arduino Srl (www.arduino.org))
Balíček ovladače systému Windows - libusb-win32 (libusb0) libusb-win32 devices (04/21/2015 1.0.0.0) (HKLM\...\28E91B69CA377EB48D6E1B92C37F897036E8A818) (Version: 04/21/2015 1.0.0.0 - libusb-win32)
Balíček ovladače systému Windows - Linino (usbser) Ports (01/13/2014 1.0.0.0) (HKLM\...\A2C084AD4515675961A87E71B10E80E4FDCF7FAA) (Version: 01/13/2014 1.0.0.0 - Linino)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
blender (HKLM\...\{8E411BEA-E05E-4E73-B9D3-A89A3084D67D}) (Version: 3.0.0 - Blender Foundation)
CCleaner (HKLM\...\CCleaner) (Version: 6.23 - Piriform)
CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.)
CrewChiefV4 (HKLM-x32\...\{45F49DB1-86B5-4D2A-9365-725A59609C65}) (Version: 4.16.2.2 - Britton IT Ltd)
DaVinci Resolve (HKLM\...\{E9983894-990A-4A5A-8DBF-8E4E0D3A058A}) (Version: 17.4.30010 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{7667C543-084F-47F7-BC60-175FC25E9D6F}) (Version: 2.0.1.0 - Blackmagic Design)
Discord (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.5.2 - DEV47APPS)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.37.0 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{413fe4b8-1352-4234-a775-ff2f04ad9042}) (Version: 1.1.37.0 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.1 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{bf1d7028-d935-477f-b5b2-053062f9b527}) (Version: 1.0.9.1 - ENE TECHNOLOGY INC.) Hidden
Fairlight Audio Accelerator Utility (HKLM\...\FairlightAudioAccelerator_is1) (Version: 1.0.13 - Blackmagic Design)
FFB Racing Wheel drivers (HKLM-x32\...\{28B758EA-5C83-48B1-B352-C70F12C73F5A}) (Version: 4.TTRS.2021 - Thrustmaster)
FPS Monitor (HKLM-x32\...\FPS Monitor_is1) (Version: 1 - )
FreeTrack v2.1.2 (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\FreeTrack v2.1.2) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 124.0.6367.119 - Google LLC)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{2237a879-7fa4-4e21-ae3b-00f6a649b9d9}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 124.0.2478.80 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 124.0.2478.80 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\OneDriveSetup.exe) (Version: 24.081.0421.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.34.31938 (HKLM-x32\...\{4f84f2dc-3f70-433a-8f50-8293e0089b0f}) (Version: 14.34.31938.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.34.31938 (HKLM-x32\...\{080D8397-60F4-44B3-BB95-FBB950CB0B4E}) (Version: 14.34.31938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.34.31938 (HKLM-x32\...\{8DE5B0D4-A6D8-4F72-B8EF-28776A2EE5D5}) (Version: 14.34.31938 - Microsoft Corporation) Hidden
MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 552.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 552.12 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.1.2 - OBS Project)
opentrack version opentrack-2022.3.2 (HKLM-x32\...\{63F53541-A29E-4B53-825A-9B6F876A2BD6}_is1) (Version: opentrack-2022.3.2 - opentrack)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.2 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{fdc098ce-d76c-4e2e-a0a6-01a24e9a1f7d}) (Version: 1.0.9.2 - Patriot Memory)
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.0.6.4 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{3c403389-0bc5-4298-bebf-09de0c0b745d}) (Version: 1.0.6.4 - Patriot Memory)
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
RaceRoom Racing Experience Launcher (HKLM-x32\...\{1FD9F07F-7BBF-4C91-B3F0-A23714A3A913}_is1) (Version: 1.0 - Sector3 Studios)
RBR Alpes Rally (remove only) (HKLM-x32\...\RBRTrack434) (Version: - )
RBR Aragona (remove only) (HKLM-x32\...\RBRTrack471) (Version: - )
RBR Banov v1.2 (remove only) (HKLM-x32\...\RBRTrack126) (Version: - )
RBR Biskupice 1.2 free (remove only) (HKLM-x32\...\RBRTrack1000) (Version: - )
RBR Dolina - polookruh (remove only) (HKLM-x32\...\RBRTrack137) (Version: - )
RBR Era del Cardon (remove only) (HKLM-x32\...\RBRTrack2000) (Version: - )
RBR Era del Cardon I + II (remove only) (HKLM-x32\...\RBRTrack429) (Version: - )
RBR Halenkovice 2018 (remove only) (HKLM-x32\...\RBRTrack170) (Version: - )
RBR Horazdovice - Komusin 1.25 (remove only) (HKLM-x32\...\RBRTrack1106) (Version: - )
RBR Kamen 1.01 (remove only) (HKLM-x32\...\RBRTrack166) (Version: - )
RBR Komusin - Horazdovice 1.25 (remove only) (HKLM-x32\...\RBRTrack1107) (Version: - )
RBR Koprivnice 1-4 v1.3 (remove only) (HKLM-x32\...\RBRTrack116) (Version: - )
RBR Koprivnice 3 + 4 (remove only) (HKLM-x32\...\RBRTrack118) (Version: - )
RBR Koudelky - Psinky (remove only) (HKLM-x32\...\RBRTrack138) (Version: - )
RBR La Atalaya I + II (remove only) (HKLM-x32\...\RBRTrack451) (Version: - )
RBR Legazpi-Gabiria 2004 (remove only) (HKLM-x32\...\RBRTrack9876) (Version: - )
RBR Mitterbach Tarmac v1.1 (remove only) (HKLM-x32\...\RBRTrack1916) (Version: - )
RBR Muxarello (remove only) (HKLM-x32\...\RBRTrack472) (Version: - )
RBR Nove Hory - Dolina (remove only) (HKLM-x32\...\RBRTrack136) (Version: - )
RBR Odry 1.2 (remove only) (HKLM-x32\...\RBRTrack160) (Version: - )
RBR Odry Snow Night v1.1 (remove only) (HKLM-x32\...\RBRTrack162) (Version: - )
RBR Peyre Winter (remove only) (HKLM-x32\...\RBRTrack576) (Version: - )
RBR Rallysprint Hondarribia 2011 v1.1 (remove only) (HKLM-x32\...\RBRTrack478) (Version: - )
RBR Reversed Tracks (remove only) (HKLM-x32\...\RBRReversedTracks) (Version: - )
RBR Rozmital 96 v1.1 (remove only) (HKLM-x32\...\RBRTrack415) (Version: - )
RBR RX-Kart Ring 1 + 2 (remove only) (HKLM-x32\...\RBRTrack133) (Version: - )
RBR RZ Barak 1.1 (remove only) (HKLM-x32\...\RBRTrack129) (Version: - )
RBR RZ Barak Snow 1.1 (remove only) (HKLM-x32\...\RBRTrack130) (Version: - )
RBR SS Helfstyn (remove only) (HKLM-x32\...\RBRTrack426) (Version: - )
RBR SSS Valasske Mezirici v1.2 (remove only) (HKLM-x32\...\RBRTrack449) (Version: - )
RBR Torsby 2018 + Sprint v1.1 (remove only) (HKLM-x32\...\RBRTrack725) (Version: - )
RBR Ul. Rajdowa (remove only) (HKLM-x32\...\RBRTrack468) (Version: - )
RBR Valstagna Reverse (remove only) (HKLM-x32\...\RBRTrack1301) (Version: - )
RBR Valstagna v1.1 (remove only) (HKLM-x32\...\RBRTrack1302) (Version: - )
RBR Zaton I + II (remove only) (HKLM-x32\...\RBRTrack411) (Version: - )
RBR Zelezniki (remove only) (HKLM-x32\...\RBRTrack575) (Version: - )
RBR Zlin SS1 (remove only) (HKLM-x32\...\RBRTrack3001) (Version: - )
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Richard Burns Rally (HKLM-x32\...\InstallShield_{72CE541B-52BD-4FA1-8CD6-19341939AB21}) (Version: 1.00.000 - Název společnosti:)
RivaTuner Statistics Server 7.3.3 (HKLM-x32\...\RTSS) (Version: 7.3.3 - Unwinder)
ROG FAN XPERT 4 (HKLM-x32\...\{2dfe216d-3481-4684-ad4d-2566bd7cfe4f}) (Version: 1.00.10 - ASUSTek Computer Inc.)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.1.5.0 - ASUSTek COMPUTER INC.)
SimHub version 9.1.20 (HKLM-x32\...\{019253FE-5A17-42BE-A6B8-D71A729FA5DE}_is1) (Version: 9.1.20 - Wotever)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TMM All-in-one extensions pack verzia 1.5 (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\{9688D712-6BB0-4B20-B3A5-67C29D0371A2}_is1) (Version: 1.5 - TM-Modding)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Twitch Studio (HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.2 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{6870588f-9f28-488b-a169-cf548ad6b393}) (Version: 1.0.0.2 - PD)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B9A7A138-BFD5-4C73-A269-F78CCA28150E}) (Version: 8.94.0.0 - Microsoft Corporation)
USBD480 (HKLM-x32\...\USBD480) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
VOCORE USB2.0 Screen driver 1.0.0.0 (HKLM-x32\...\VOCORE USB2.0 Screen driver_is1) (Version: 0.1.10.1 - USB2.0 Screen driver)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Youtube Downloader HD v. 5.4.3 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
Packages:
=========
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.8.9.0_x64__qmba6cd70vzyy [2024-04-14] (ASUSTeK COMPUTER INC.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-05-16] (Microsoft Corporation)
HEVC Video Codec Pack -> C:\Program Files\WindowsApps\VirtualPulse.HEVCVideoCodecPack_1.254.77.0_x64__nh7p8cqfc4t04 [2023-10-31] (Virtual Pulse)
Microsoft Copilot -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-04-07] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-25] (NVIDIA Corp.)
Player for Media -> C:\Program Files\WindowsApps\VirtualPulse.26207BFC73B72_1.298.138.0_x64__nh7p8cqfc4t04 [2023-11-13] (Virtual Pulse)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2022-05-16] (Realtek Semiconductor Corp)
Rozšíření pro video HEVC -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_2.0.61933.0_x64__8wekyb3d8bbwe [2023-10-31] (Microsoft Corporation)
Vyhledávání na webu z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-04-14] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1016078844-47908565-2139151003-1001_Classes\CLSID\{5405618e-4c42-4fb9-a80a-d24d89911296}\localserver32 -> C:\Users\Ferda\AppData\Local\NhNotifSys\sonicstudio\asusns.exe (A-Volute SAS -> A-Volute)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-04-06] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_dc86c13caa1b5d99\nvshext.dll [2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-04-06] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Ferda\Desktop\Osoba 1 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Ferda\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Pavel - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2021-08-18 15:27 - 2021-08-18 15:27 - 000477696 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2021-08-18 15:27 - 2021-08-18 15:27 - 000471040 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2021-08-18 15:27 - 2021-08-18 15:27 - 000454656 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\registry-js\prebuilds\win32-ia32\node.napi.node
2021-11-20 17:36 - 2021-02-18 13:07 - 000085504 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\zlib1.dll
2021-11-20 17:34 - 2019-12-23 19:51 - 000093184 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\zlibwapi.dll
2021-08-18 15:27 - 2021-08-18 15:27 - 000081920 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000945664 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ACSharedMemory\d3f2206eaad1cf1d6ae705ec2ca48622\ACSharedMemory.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000358912 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ACToolsUtilities\2a5a52d5afa05a36200c6847c005a55c\ACToolsUtilities.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000090624 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ArqSerialLib\4a61004e5358196774dbba355fa10500\ArqSerialLib.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000431104 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BA63Driver\bcb9bf6417e79b8128e4b825506458c0\BA63Driver.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 001931776 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CodemastersReader\34149a109452c1483b357f96811d5ea1\CodemastersReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000300544 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ETS2Reader\814a57eded81f21efe7221dcfb3dcdfe\ETS2Reader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 001174016 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GameReaderCommon\058d96354aa02f90f3191adf2623a966\GameReaderCommon.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000310272 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GRallyReader\0dccdaee06b91f4ba8f15eb0bb507a36\GRallyReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002272256 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GSIReader\5253923def60edf966c0f8aafcc43c87\GSIReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000318464 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GTReader\24f078b7789472ed80290e69c133b392\GTReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000203776 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ICarsReader\7fadcb48e11f1067cf49f839047e4bb7\ICarsReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000093184 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\INIFileParser\55da67c8422baa7860c1944f508894c3\INIFileParser.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000652800 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\LFSReader\868315d5100d86d004549593d48ceced\LFSReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000309760 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NoLimits2Reader\236e329f5b23f645e4a9c67cae712be5\NoLimits2Reader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000933376 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PCarsSharedMemory\56b0f436e3687aee7c8cbc9d8e0d8589\PCarsSharedMemory.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000623616 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PibosoReader\f7ed1c10e83495f58825ae09d7da0968\PibosoReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000724992 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\RfactorReader\6576ee3f0660c3a8b4c5af0e2ba241e4\RfactorReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000522240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\RREReader\30664b0cb1fc63809cf4253a434a87fe\RREReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000482816 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SerialDash\984b29f6677b584a7ffc17147f8d78a1\SerialDash.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000104448 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SerialDashWPF\7b07cb01308ecc63729cde53c64ba23d\SerialDashWPF.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000565760 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimBin\dd621c2ea5205cae80f67733401dce13\SimBin.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000147968 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Bitm348e3f8f#\c08aad5f8fd3cabddd2e8b7bbfb58b76\SimHub.BitmapDisplay.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000056832 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Bitm57d0b616#\de69255d1e8b952b71cc70b52cb6d632\SimHub.BitmapDisplay.Vocore.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000048640 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.LibUsbNative\36c414da9adb9e427e0b64d745de90d1\SimHub.LibUsbNative.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000009216 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Logging\60b42b5645041c860587aac18fbaddef\SimHub.Logging.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000074240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Plug20f24dbd#\00b44346dabfca386e9c9c5c454e1ad7\SimHub.Plugins.Dashstudio.Behaviors.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 021037056 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.Plugins\3c78a124868424e6f4e95bfc7e3bfa19\SimHub.Plugins.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000019968 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SimHub.SHSerialPort\d4919171cedbb8b5bf1b5928e42012cc\SimHub.SHSerialPort.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000267264 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SteamHelper\060997bd3d3b4a32c12d019f25606aa6\SteamHelper.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000294912 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\TrackmaniaReader\b9986ec24db599733ae6b9967c9a925b\TrackmaniaReader.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000090624 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WoteverLocalization\929acad38062c883f25752233e5fc597\WoteverLocalization.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000515072 _____ (Alexandre Mutel) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SharpDX.DirectInput\59179969c11019342687a13328822aed\SharpDX.DirectInput.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000631808 _____ (Alexandre Mutel) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SharpDX\25d3fdd9fb571a644dcbc0844a52dbd3\SharpDX.ni.dll
2022-08-18 22:14 - 2024-04-30 20:20 - 000036096 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.02.15\PEbiosinterface32.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000360960 _____ (DevCrew.pl Rafał Łopatka) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ToastNotifications\830a7ece96626324e364ad8c56336224\ToastNotifications.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000412672 _____ (GongSolutions.WPF.DragDrop) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\GongSolutio459c0a76#\37dd61a7eea7348da1ed02b1bc023ac4\GongSolutions.WPF.DragDrop.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000186368 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.N259f2aea#\443722f7fbb70002414f682912fb7de0\Hardcodet.NotifyIcon.Wpf.ni.dll
2022-12-19 11:40 - 2022-12-19 11:39 - 000100352 _____ (hxxp://libusb-win32.sourceforge.net) [File not signed] C:\WINDOWS\system32\libusbK.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000398336 _____ (hxxps://github.com/ncalc) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NCalc\cfdfe5df7b23ac2cfa8e726d35d37bed\NCalc.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002041344 _____ (ic#code) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ICSharpCode6e2121f3#\781fbae5f227fc05da77145c5418e1c6\ICSharpCode.AvalonEdit.ni.dll
2021-11-22 11:47 - 2023-07-21 14:59 - 000130048 _____ (libusb.info) [File not signed] C:\Program Files (x86)\SimHub\libusb-1.0.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 003913728 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Met20c382b6#\e0651547160301ff51ef4fa86aebdc54\MahApps.Metro.IconPacks.Material.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000058880 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Metc5ddd046#\15ae7a12290422f9c803dcb05c631e5b\MahApps.Metro.IconPacks.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000135168 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Mete28bbf5a#\849f069fcde444e37c9309aab220de32\MahApps.Metro.SimpleChildWindow.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002990592 _____ (MahApps) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MahApps.Metro\aeef5c954fbcac258f51b53a313dbf98\MahApps.Metro.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000084480 _____ (Marc Gravell) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\FastMember\d68d8d8432d2b4b43f1ab2e6f76ed04e\FastMember.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000654336 _____ (Mark Heath) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio.Core\66c4242634dac89b82e5c5b9e91ef0e0\NAudio.Core.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000685056 _____ (Mark Heath) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio.Wasapi\e8c5a6147e4f962f81fb195da6f06b0a\NAudio.Wasapi.ni.dll
2021-11-22 11:05 - 2021-11-22 11:05 - 001655296 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_8444db7d32915e4c\MFC80U.DLL
2024-05-02 11:13 - 2024-05-02 11:13 - 003109888 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\cac5561f8fac6180ba47e9e7502e7cf4\Newtonsoft.Json.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000153088 _____ (Nick Connors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MSIAfterburner.NET\eab0b334b027ab6ec1048c36cf51177d\MSIAfterburner.NET.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000148992 _____ (Open Source) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AvalonDock.b8ea423a#\6d8377e09d10c834a90db1c706091e0b\AvalonDock.Themes.VS2013.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 001958912 _____ (Open Source) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AvalonDock\d288d6b5173baa9a6f2181981f796d39\AvalonDock.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002272256 _____ (OxyPlot) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\OxyPlot\1824abc97b62f8ab71f57bbf2841c8ec\OxyPlot.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002012672 _____ (Sebastien Ros) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Esprima\2ed3d633d4f6d44c6dc1c96614d056ee\Esprima.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000783872 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\8d36aa2cea93c5ec007fe7ba202fc94e\log4net.ni.dll
2024-05-02 11:13 - 2024-05-02 11:13 - 000834560 _____ (The CefSharp Authors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CefSharp\98c439828f708ee68a2c63e80f006172\CefSharp.ni.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 000287232 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\libcurl.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\libcrypto-1_1-x64.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 002281984 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\LIBEAY32.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\libssl-1_1-x64.dll
2021-11-20 17:36 - 2021-02-18 13:07 - 000361472 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\SSLEAY32.dll
2021-11-20 17:34 - 2019-06-26 17:07 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libcrypto-1_1-x64.dll
2021-11-20 17:34 - 2019-06-26 17:07 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libssl-1_1-x64.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 000367104 _____ (Tunnel Vision Laboratories, LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Antlr3.Runtime\6dea2fb14cd6e1156b56b9b64af243c3\Antlr3.Runtime.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 002475008 _____ (Wotever) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WoteverCommon\98ba3872c57e99192e70179fa92169c3\WoteverCommon.ni.dll
2024-05-02 11:18 - 2024-05-02 11:18 - 003827712 _____ (Xceed Software Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Xceed.Wpf.Toolkit\7d1d8905f55563cd18a248f786dd4f78\Xceed.Wpf.Toolkit.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2021-11-20 14:32 - 2021-11-20 14:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ferda\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0C40A3C7-56AE-489D-AC4B-FC62D2AFB6CE}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{C87B0E30-81EB-478B-8136-91EDD7C103EE}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{2E03B08D-B516-413C-BC9B-59A8E89F2A0E}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{E76CD7A4-0EDE-4F3B-A4E3-563F5C535409}] => (Allow) D:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4B8FC499-4AD6-4704-A024-DB32E53117D7}] => (Allow) D:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BE57A870-3237-424C-B21B-6430909B771F}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{890A8B8E-B07B-4D2E-84C5-F43A6B0DD6A9}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{08195790-4C9E-4D86-9C0D-E066DA72F715}] => (Allow) D:\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (AcClub -> AcClub) [File not signed]
FirewallRules: [{02FE054E-530D-4192-A4EF-93F2EE00DC3A}] => (Allow) D:\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (AcClub -> AcClub) [File not signed]
FirewallRules: [TCP Query User{8FBBC83F-A89A-42A6-B7E4-9163D0758A6D}D:\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs.exe () [File not signed]
FirewallRules: [UDP Query User{1CF824B0-7FD3-4063-8EE9-966C69C23FB8}D:\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs.exe () [File not signed]
FirewallRules: [{D92D0D93-7905-46EA-9417-6E2618A584F1}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Launcher\Launch rFactor.exe () [File not signed]
FirewallRules: [{7F0E42EE-A257-4E7B-BF10-771DD4AEA43D}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Launcher\Launch rFactor.exe () [File not signed]
FirewallRules: [TCP Query User{CE8083E1-ECE1-4229-9A8E-2E61714AD9BD}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe (Studio 397) [File not signed]
FirewallRules: [UDP Query User{4A91BB68-EF28-4D22-B885-7830E812D74C}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2.exe (Studio 397) [File not signed]
FirewallRules: [TCP Query User{06647E1E-F5EC-49EB-9B14-5EFEBE86D539}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe (Studio 397) [File not signed]
FirewallRules: [UDP Query User{B86E200A-D441-4339-8133-689DD8494C6D}D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe] => (Allow) D:\steam\steamapps\common\rfactor 2\bin64\rfactor2 mod mode.exe (Studio 397) [File not signed]
FirewallRules: [{5F267163-31B1-4D9E-90B8-DB05E56B18A8}] => (Allow) D:\Steam\steamapps\common\Assetto Corsa Competizione\acc.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{A3D98044-BE44-4EC0-BFDD-D886F4E101FD}] => (Allow) D:\Steam\steamapps\common\Assetto Corsa Competizione\acc.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{46486963-F833-4BF0-ACCF-E324E4FB8516}D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [UDP Query User{648C484D-C2A9-422D-BEAE-58B4B23480E5}D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [{3DE1E4A9-4522-4606-8D63-CE9CEB293B9B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{15D562E7-E483-49B7-B879-9863FC93E3D2}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{4234868F-2A1F-4FB5-AE5C-85A389F37339}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{2576DD25-EC1A-4EF8-9245-0298B8E7777F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{15B19FB7-D847-4A6C-9AA4-18B2FB6A5D02}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{EEE17BDE-D6DB-4C2A-ACE7-43C4D128F0FB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{DB6ED5C9-EEAB-4CCE-B34F-7D27E32DFAAE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{79832737-5E59-49F6-B62A-599B00FEF5CA}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [UDP Query User{059D24A8-9766-454A-8AFF-0479B4271548}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [TCP Query User{7BD4379D-469E-4527-BDB4-E4B782771E8E}C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [UDP Query User{8817BD8C-7E59-4D30-AA6D-C6FE79DEC33F}C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\ferda\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [TCP Query User{05079502-C603-4177-A35D-2DA7BDBC4A37}C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe] => (Allow) C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe
FirewallRules: [UDP Query User{937DAE30-A1F1-41F3-9A11-1943E311864F}C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe] => (Allow) C:\users\ferda\downloads\arduino-nightly-windows\arduino-nightly\java\bin\javaw.exe
FirewallRules: [TCP Query User{CCD5AB69-8F3B-4211-9789-D94858219BD8}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{DEEC067B-93EF-49BB-866A-8466F008228E}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{A1067982-3F5C-4519-9C92-65BBF74F3A46}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BA1C9ABE-0EDD-449E-9D29-3948D0ED5A17}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FD4871D3-F8CC-4ECB-A3DD-2CAE4E4E227E}] => (Allow) D:\Steam\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{CA37EC49-21AF-4451-931E-316FA669D9F7}] => (Allow) D:\Steam\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{6D12474E-B2F0-40FD-9B18-6946C81B86C6}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Bin64\rF Config.exe (Studio 397) [File not signed]
FirewallRules: [{963126B9-5CE4-4E6F-A3C4-FFFE0F201496}] => (Allow) D:\Steam\steamapps\common\rFactor 2\Bin64\rF Config.exe (Studio 397) [File not signed]
FirewallRules: [TCP Query User{96E67B63-AE3D-498B-B501-F9CACD90EBC9}C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe] => (Block) C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe
FirewallRules: [UDP Query User{82E58669-AF96-4E47-A74B-F02315DD888F}C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe] => (Block) C:\program files (x86)\simhub\_addons\arduino\arduinoide\arduino-1.6.13\java\bin\javaw.exe
FirewallRules: [{6EAC959B-9BA5-4DE6-BDB9-6534DFE56B4D}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{A4DD3B03-1442-45FC-8282-7DE7159324F4}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{F1EA310B-D235-44A8-BEEB-94F81BF35E64}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\RRRE.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{8758CB41-D06C-424C-9566-EEEBE8481CBE}] => (Allow) D:\Steam\steamapps\common\raceroom racing experience\Game\RRRE.exe (Simbin Studios AB) [File not signed]
FirewallRules: [{AF37DA2A-657F-4773-A847-2C7F3F1229D2}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{E60B0625-AA22-456C-885A-E3AAA0B66B6E}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{7936E424-0337-4BFB-B0DC-E126C4A64169}] => (Allow) D:\Steam\steamapps\common\EA SPORTS WRC\WRC\Binaries\Win64\WRC.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{4B9310DD-F11E-4EDE-9364-ECEF16E7CCB7}] => (Allow) D:\Steam\steamapps\common\EA SPORTS WRC\WRC\Binaries\Win64\WRC.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{4EE18184-C89C-4BF0-B8BE-CD77D98EBAE1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4720FAA3-CD81-4F57-B62C-1E7D1B4BE853}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F9151CB1-E192-4FFD-A6B4-C8FDA916FDB7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{25911C65-DBF9-4083-B9F2-665FB4CFDD14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0CFC9589-928C-4BB1-A77A-84121C2933AC}] => (Allow) C:\Program Files (x86)\SimHub\SimHubWPF.exe () [File not signed] [File is in use]
FirewallRules: [{60A23713-1370-4029-B24C-FE709DC5A5E2}] => (Allow) C:\Program Files (x86)\SimHub\SimHub.PackageManager.Standalone.exe () [File not signed]
FirewallRules: [{A738F2C0-2D1F-4B6F-B2B8-C00DAD89350F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BE76CF6A-A816-4CE0-8D42-309F86A91DB5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C04BC6CD-8795-466D-84F8-203AAAD633EF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0D6312BB-E749-4CE9-A293-64FFC2B15218}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FFA2DF2D-5315-4FD3-9239-3A5ECA843718}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7D6C9FA3-3C20-464C-B71C-91EF006B9053}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.80\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
14-04-2024 21:09:05 Instalační služba modulů systému Windows
02-05-2024 11:19:43 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/06/2024 11:31:18 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.
Error: (05/06/2024 09:32:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x3648
Čas spuštění chybující aplikace: 0x01da9fe276d5ff82
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 301e0d1f-2f60-4f83-9d2b-8c12b173d8e4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/02/2024 10:38:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x3480
Čas spuštění chybující aplikace: 0x01da9cc619dab113
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: dfcd7d40-0fba-499b-854c-5496db8c0711
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/02/2024 08:40:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x159c
Čas spuštění chybující aplikace: 0x01da9cb98783945c
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 5e79847f-c692-4b4e-9f45-5a5da2536715
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/02/2024 12:40:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x3c8
Čas spuštění chybující aplikace: 0x01da9c7c0f02dcc7
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 501dcf1e-60f3-424a-bb95-1c00c24698e8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/30/2024 08:21:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ArmouryWebBrowserEdge.exe, verze: 1.0.0.14, časové razítko: 0x615d1361
Název chybujícího modulu: ArmouryWebBrowserEdge.exe, verze: 1.0.0.14, časové razítko: 0x615d1361
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000009d43
ID chybujícího procesu: 0x2bbc
Čas spuštění chybující aplikace: 0x01da9b2b2c48c0ea
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
ID zprávy: abcee60c-ef88-4f7d-907a-d8c85f1ddbf9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/11/2024 08:15:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RichardBurnsRally_SSE.exe, verze: 0.0.0.0, časové razítko: 0x417920d3
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x6763d3a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x104c
Čas spuštění chybující aplikace: 0x01da8c3bcb9f180e
Cesta k chybující aplikaci: D:\RBRCZ\RichardBurnsRally_SSE.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 3289218d-5448-46d3-a0af-b52345054592
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/09/2024 11:50:00 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: DESKTOP-KR54MFR)
Description: Aplikaci nebo službu CefSharp.BrowserSubprocess nelze ukončit.
System errors:
=============
Error: (05/02/2024 11:01:32 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-KR54MFR)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/30/2024 08:22:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (04/30/2024 08:22:35 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (04/30/2024 08:20:35 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (04/29/2024 09:19:29 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): 2024-01, aktualizace zabezpečení pro Windows 10 Version 22H2 pro systémy typu x64 (KB5034441).
Error: (04/17/2024 09:58:02 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY)
Description: E:\Device\HarddiskVolume173
Error: (04/17/2024 09:48:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (04/17/2024 09:44:35 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku E: bylo zjištěno poškození.
Přesná povaha poškození není známa. Je potřeba zkontrolovat a opravit struktury systému souborů v online režimu.
Windows Defender:
================
Date: 2024-05-07 08:19:25
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {D45769E0-E08D-4A80-A88A-2776A07F438C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-05-02 11:13:56
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {3ED46DF1-9C84-4E19-A0CF-3FB9693A5BC0}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-17 21:48:30
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8A71C25D-EF4A-47CC-83B2-36D736AE03BA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-02-13 18:47:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {72A5342E-623C-46BA-A0F0-FD34D60A22CD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-01-17 19:42:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7CEE692E-6F41-4817-9D12-6F956378226A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\ProgramData\obs-studio-hook\graphics-hook64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\Twitch\Studio\Versions\0.107.8163.2311\TwitchNativeOverlay64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\RivaTuner Statistics Server\Vulkan\RTSSVkLayer64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9146\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\FPS Monitor\tools\fpsmonvk64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\ProgramData\obs-studio-hook\graphics-hook32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\Twitch\Studio\Versions\0.107.8163.2311\TwitchNativeOverlay32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\RivaTuner Statistics Server\Vulkan\RTSSVkLayer32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-07 08:02:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\Ferda\AppData\Local\Discord\app-1.0.9045\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\FPS Monitor\tools\fpsmonvk32.dll that did not meet the Microsoft signing level requirements.
Date: 2024-05-06 23:31:19
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 0803 07/25/2019
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B365-G GAMING
Processor: Intel(R) Core(TM) i7-9700KF CPU @ 3.60GHz
Percentage of memory in use: 45%
Total physical RAM: 16313.96 MB
Available physical RAM: 8823.88 MB
Total Virtual: 18745.96 MB
Available Virtual: 7534.01 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:953.24 GB) (Free:529.88 GB) (Model: INTEL SSDPEKNW010T8) NTFS
Drive d: (D) (Fixed) (Total:931.51 GB) (Free:424.59 GB) (Model: Samsung SSD 870 QVO 1TB) NTFS
\\?\Volume{090ab0df-3efd-4399-8d5c-13e977619f80}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{d5e15e15-5ca7-4c83-b829-d7a1a3fcc500}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8ACBAA22)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Fix result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by Ferda (07-05-2024 09:42:40) Run:1
Running from C:\Users\Ferda\Downloads
Loaded Profiles: Ferda
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\Run: [SimHub] => C:\Program Files (x86)\SimHub\SimHubWPF.exe [2816000 2024-01-09] () [File not signed] [File is in use] <==== ATTENTION
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\...\MountPoints2: {f2d671b4-4f21-11ed-abf7-d45d641e14dd} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {205E10C2-79C7-4436-B5CF-27A0DB8C902F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{607CEDEC-D131-4A63-9A3E-1CD97606CAD2} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X] <==== ATTENTION
C:\Users\Ferda\Downloads\Setup.exe
EmptyTemp:
End
*****************
Processes closed successfully.
"HKU\S-1-5-21-1016078844-47908565-2139151003-1001\Software\Microsoft\Windows\CurrentVersion\Run\\SimHub" => removed successfully
HKU\S-1-5-21-1016078844-47908565-2139151003-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f2d671b4-4f21-11ed-abf7-d45d641e14dd} => removed successfully
"C:\WINDOWS\system32\GroupPolicy\Machine" Folder move:
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\ProgramData\NTUSER.pol => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{205E10C2-79C7-4436-B5CF-27A0DB8C902F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{205E10C2-79C7-4436-B5CF-27A0DB8C902F}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{607CEDEC-D131-4A63-9A3E-1CD97606CAD2} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{607CEDEC-D131-4A63-9A3E-1CD97606CAD2}" => removed successfully
HKLM\System\CurrentControlSet\Services\cpuz152 => removed successfully
cpuz152 => service removed successfully
"C:\Users\Ferda\Downloads\Setup.exe" => not found
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 27509823 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 1032400462 B
Windows/system/drivers => 25256988 B
Edge => 0 B
Chrome => 365242057 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 432 B
LocalService => 16430 B
NetworkService => 21094 B
Ferda => 93430692 B
RecycleBin => 92323080 B
EmptyTemp: => 1.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:43:09 ====
-
Rudy
- Site Admin
- Příspěvky: 118313
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pád hry do win a zpet,Prosím o kontrolu lagu
To je právě to, co nevíme, zda hra, či něco v PC. FRST smazal všechny zbytečnosti. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pád hry do win a zpet,Prosím o kontrolu lagu
Chápu...dnes večer budu testovat....a bliknutí dochází nahodně...za hodinu ale taky i za 4 h,je to fakt náhoda...hra by to neměla dělat,nikomu se tohle ve hře neděje a já bohužel jinou hru nehraju...Díky za vyčistění a určitě dám vědět
-
Rudy
- Site Admin
- Příspěvky: 118313
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pád hry do win a zpet,Prosím o kontrolu lagu
OK, držím palce. 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?