Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosim o preventivnu kontrolu

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Zamčeno
Zpráva
Autor
toki
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 29 črc 2008 11:15
Bydliště: Košice, SK
Kontaktovat uživatele:

Prosim o preventivnu kontrolu

#1 Příspěvek od toki »

Dobry den, prosim o preventivnu kontrolu, dakujem pekne.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-03-2022
Ran by tokar (11-03-2022 21:31:37)
Running from C:\Users\tokar\OneDrive\Plocha
Microsoft Windows 10 Pro Version 20H2 19042.1586 (X64) (2021-12-01 16:23:25)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2398447425-3274881014-1611824863-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2398447425-3274881014-1611824863-503 - Limited - Disabled)
Guest (S-1-5-21-2398447425-3274881014-1611824863-501 - Limited - Disabled)
tokar (S-1-5-21-2398447425-3274881014-1611824863-1001 - Administrator - Enabled) => C:\Users\tokar
WDAGUtilityAccount (S-1-5-21-2398447425-3274881014-1611824863-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

8GadgetPack (HKLM-x32\...\{36E60904-D465-40F7-82A7-A9C7A84C29B7}) (Version: 24.0.0 - 8GadgetPack.net)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1051-1033-7760-BC15014EA700}) (Version: 21.011.20039 - Adobe)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlestate Games Launcher 12.11.1.1846 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.11.1.1846 - Battlestate Games)
Core Temp 1.17.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.17.1 - ALCPU)
Discord (HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.12.15.16909 - Battlestate Games)
EXPERTool v11.6 (HKLM\...\{660D3DDC-C82C-49B9-9511-284043713699}_is1) (Version: 11.6.0.0 - Gainward Co. Ltd.)
HP Deskjet 5520 series Basic Device Software (HKLM\...\{014A59C8-DDA5-4788-906D-1F5CBA8A583D}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 5520 series Product Improvement Study (HKLM\...\{29E392C4-E0C3-4E96-85B6-03B8E3963310}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 99.0.1150.36 - Microsoft Corporation)
Microsoft Office 2016 Professional Plus - sk-sk (HKLM\...\ProPlusRetail - sk-sk) (Version: 16.0.14931.20120 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.022.0130.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{5016990D-7F61-4A20-9451-A915D6616DD9}) (Version: 3.66.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30133 (HKLM-x32\...\{38b2c744-ad08-4d5b-91a2-3fb6f739ff3e}) (Version: 14.29.30133.0 - Microsoft Corporation)
Mozilla Firefox (x64 sk) (HKLM\...\Mozilla Firefox 98.0 (x64 sk)) (Version: 98.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.2 - Mozilla)
NVIDIA FrameView SDK 1.2.7321.30900954 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7321.30900954 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.0.84 - NVIDIA Corporation)
NVIDIA Grafický ovládač 511.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 511.79 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.39.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.3 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14931.20010 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14931.20072 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14931.20094 - Microsoft Corporation) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.55.661 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 16.1.0 (HKLM\...\SteelSeries GG) (Version: 16.1.0 - SteelSeries ApS)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Windows Kontrola stavu počítača (HKLM\...\{BDBC15A5-E9F1-485F-A0D3-7526052FB2B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
WowUp 2.6.2 (HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\b31ca559-50e4-54d8-a458-330e72a28314) (Version: 2.6.2 - Jliddev)

Packages:
=========
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-12-06] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_134.1.221.0_x64__v10z8vjag6ke6 [2022-01-31] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa [2022-03-07] (Apple Inc.) [Startup Task]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.2180.0_x64__8wekyb3d8bbwe [2022-02-27] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-02-15] (NVIDIA Corp.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll (AddGadgets IT -> )
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{5b55a44a-d008-49aa-9234-86fb7709bc0a}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\GPU_Meter_V2.4.gadget\GPUStatusReader.dll (AddGadgets IT -> Orbmu2k)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3b12ac0f95b18b9d\nvshext.dll [2022-02-10] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-12-01 18:11 - 2017-10-07 15:28 - 000608256 _____ (Helmut Buhler) [File not signed] C:\Program Files\Windows Sidebar\dwmapi.dll
2021-07-27 16:54 - 2021-07-27 16:54 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\GG\HIDDLL.dll
2021-07-27 16:54 - 2021-07-27 16:54 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\GG\ISPDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{53C3E040-A75A-4C0C-82E8-612201D4AEF3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C2D6D953-7ECB-4CD0-9BA0-4DC640B5723F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C71AFB43-2459-426C-BC8A-77C22F486C2A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{713A8875-016A-46F0-A7AD-48F0CEC3B6E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{D32D6FD3-96D4-49AE-90C0-228D335E245F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A00FB31B-1D49-4C57-A0EA-12215B9D8848}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{32A420F3-2025-4FDD-A113-855A0057CD60}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FB4F5307-F3DB-48C2-9DC4-EF882310FA25}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{034E4612-264E-427D-BFE8-61D375C7898D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{1993C863-9F50-4F25-9D28-CDA2743C32F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{F590C54E-2AC0-4C1F-8EC4-4E116C082A98}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{370CEA0E-4074-409C-A37E-00517110B670}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{403F5AD6-FF88-44DD-97FF-A1D6D7CDD5BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9059F263-890D-4E57-B0C8-1AC16D9A666E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6F26BF7F-8C72-4D90-96DB-644C89B4D19D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{82139CB3-C127-45F6-8F36-F5B5C3EF50A3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{47219659-E0E4-421D-A949-36FF629B1D19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{ADD01913-9969-44AD-9D5F-BA3FC0775E53}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{80C1FE84-3390-423A-A632-C5C917340F2C}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{616FF936-4AB4-491D-AFBC-312E4F372F20}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{CF08F7F4-F2B8-49C5-9B3C-97E00BE5C040}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{6AC0DEF6-7328-4F97-A3FD-71B0F5025BD6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CC2B8FBC-08F0-44AA-B6ED-72C2945AD3B9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{71B7BDC4-BBF3-4A2C-8C79-6603E7305BBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{39F871AB-F5A5-4D79-B063-1E46C7E791F8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AC02E800-72B9-476C-87DE-0C107FD1E93D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2536BD53-7C7A-423A-9920-9119F5C6326D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{91D8C7DA-72CC-4BB5-A69B-02C7CA3B5475}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{C548227E-C7BF-48C9-935B-E20A1708A089}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BB8986A8-9F31-446B-AFF4-D6FAE19261A5}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{2C84C296-7CFC-4E67-B4B0-254258002786}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{9917B4D4-5673-4CF7-BE3E-6AF52CF4EBE1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99570443-C075-4BF2-AB1E-44D846630035}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{861F8BB4-991B-4DA8-B439-CD22AEEAFFD3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B6A8A5DE-0457-4552-9421-2D3AAE58CF0A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{522DC6B2-8C93-4565-8DD5-03C6FF906870}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{46D6D196-54C0-46A6-AAE0-3E606EF211DF}] => (Allow) F:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{56B208A5-BB59-42EF-8C22-0ED06AF988E4}] => (Allow) F:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{3A41DA54-CE06-4310-8BFD-E36A30DD3F2A}F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{29A2D209-6477-4B90-81B5-FE73A8CCE5DB}F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{809D3E51-AF69-49B4-AE0B-E185FC227CF3}] => (Block) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{20497EE7-1FAD-4DF2-98F7-7752374566F6}] => (Block) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{783C4AB6-D1A3-465B-A41F-DCB1BA94C4BC}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{F063CB51-9D12-46E6-B345-D9A73F44F4E4}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{30582602-6FF8-44DC-87AB-5BF0AD1F9797}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{200C5C7A-D731-42D4-9135-83B99F20575B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{52B1F6CA-67CB-4B57-AD8C-0A67C3670C7E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{71792560-A35E-4A0C-966D-1A1983B38BE6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{C1D0D6EE-D34F-4910-886E-6F982CC84AA2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0058792B-E552-4221-A33C-A910E4565DEE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4EE9CFD9-E7F0-40DD-88F1-E3BA8A10B8CF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8255FD85-C9BA-438A-989C-90147B37AFB9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{26A8047C-255D-48EB-85C8-FA505C04F7A8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A915297F-AC5E-41D3-A6EB-FC42819BAF4F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A1C90E3D-9FC1-419A-8B46-2FD557776E86}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{54E4DA2D-9D12-4863-8728-82E0A5F9CA40}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

==================== Restore Points =========================

20-02-2022 16:16:54 Scheduled Checkpoint
28-02-2022 11:09:55 Inštalátor modulov systému Windows
07-03-2022 12:31:04 Scheduled Checkpoint
10-03-2022 22:06:17 Inštalátor modulov systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/11/2022 10:13:10 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\TOKIBEAST$ via https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep failed:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Fri, 11 Mar 2022 09:13:10 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 4a90e460-887a-4b91-a3c8-6e22219ea751

Method: GET(281ms)
Stage: GetCACaps
Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (03/10/2022 11:53:40 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\TOKIBEAST$ via https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep failed:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 10 Mar 2022 22:53:41 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: d6052055-6d1d-4113-9728-1fdf469118dc

Method: GET(250ms)
Stage: GetCACaps
Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (03/10/2022 11:53:09 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (02/28/2022 03:33:34 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\TOKIBEAST$ via https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep failed:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 28 Feb 2022 14:33:32 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: cd08b359-cf56-4877-ab2d-0969cabe4403

Method: GET(297ms)
Stage: GetCACaps
Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (02/15/2022 11:25:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: wallpaper32.exe, verzia: 1.0.0.0, časová značka: 0x61aa916f
Názov chybujúceho modulu: d3d11.dll, verzia: 10.0.19041.1202, časová značka: 0x30c37f1c
Kód výnimky: 0xc0000005
Odstup chyby: 0x0011d1e6
Identifikácia chybujúceho procesu: 0x3958
Čas spustenia chybujúcej aplikácie: 0x01d82261f80390fa
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
Cesta chybujúceho modulu: C:\Windows\SYSTEM32\d3d11.dll
Identifikácia hlásenia: 47ac5313-53f1-455f-866a-79f78695b868
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (02/12/2022 01:08:48 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\TOKIBEAST$ via https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep failed:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Sat, 12 Feb 2022 12:08:48 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 7e343b0a-c5af-4cb6-a285-9612efd517eb

Method: GET(344ms)
Stage: GetCACaps
Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (02/11/2022 07:38:24 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\TOKIBEAST$ via https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep failed:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Fri, 11 Feb 2022 18:38:25 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 29bb0703-8dc9-488d-b61f-01176f5ce870

Method: GET(250ms)
Stage: GetCACaps
Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (02/06/2022 05:35:57 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\TOKIBEAST$ via https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep failed:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Sun, 06 Feb 2022 16:35:55 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: cec06a28-e304-465d-95f2-92b2e37ef0c6

Method: GET(313ms)
Stage: GetCACaps
Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)


System errors:
=============
Error: (03/11/2022 05:00:33 PM) (Source: Netwtw08) (EventID: 5005) (User: )
Description: Intel(R) Wi-Fi 6 AX200 160MHz : Has encountered an internal error and has failed.
5005 - Driver internal error

Error: (03/11/2022 05:00:33 PM) (Source: Netwtw08) (EventID: 5002) (User: )
Description: Intel(R) Wi-Fi 6 AX200 160MHz : Has determined that the network adapter is not functioning properly.
5002 - uCode SW error (SysAssert, NMI)

Error: (03/11/2022 05:00:31 PM) (Source: TPM) (EventID: 15) (User: )
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.

Error: (03/11/2022 10:12:59 AM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.

Error: (03/10/2022 11:53:29 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.

Error: (03/10/2022 03:23:27 PM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 1) (User: NT AUTHORITY)
Description: A fatal hardware error has occurred. A record describing the condition is contained in the data section of this event.

Error: (03/10/2022 09:45:20 AM) (Source: Netwtw08) (EventID: 5005) (User: )
Description: Intel(R) Wi-Fi 6 AX200 160MHz : Has encountered an internal error and has failed.
5005 - Driver internal error

Error: (03/10/2022 09:45:20 AM) (Source: Netwtw08) (EventID: 5002) (User: )
Description: Intel(R) Wi-Fi 6 AX200 160MHz : Has determined that the network adapter is not functioning properly.
5002 - uCode SW error (SysAssert, NMI)


Windows Defender:
================
Date: 2022-03-11 11:07:51
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-03-09 22:18:33
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-03-07 19:26:57
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-03-07 12:30:05
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-03-06 17:43:03
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

CodeIntegrity:
===============
Date: 2022-03-11 10:28:06
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-03-08 22:35:12
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.2-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 2423 08/10/2021
Motherboard: ASUSTeK COMPUTER INC. TUF GAMING B550-PLUS (WI-FI)
Processor: AMD Ryzen 5 5600X 6-Core Processor
Percentage of memory in use: 14%
Total physical RAM: 32679.5 MB
Available physical RAM: 27848.73 MB
Total Virtual: 37543.5 MB
Available Virtual: 30811.68 MB

==================== Drives ================================

Drive c: (Win 10 x64) (Fixed) (Total:931.02 GB) (Free:741.64 GB) NTFS
Drive d: (Toki HDD) (Fixed) (Total:931.51 GB) (Free:916.02 GB) NTFS
Drive f: (Toki SSD) (Fixed) (Total:256.12 GB) (Free:100.79 GB) NTFS

\\?\Volume{8a153a08-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
\\?\Volume{fdcc8b75-0000-0000-0000-70c1e8000000}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 256.2 GB) (Disk ID: 8A153A08)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=256.1 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8A153A32)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: FDCC8B75)
Partition 1: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=500 MB) - (Type=27)

==================== End of Addition.txt =======================


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-03-2022
Ran by tokar (administrator) on TOKIBEAST (ASUS System Product Name) (11-03-2022 21:31:03)
Running from C:\Users\tokar\OneDrive\Plocha
Loaded Profiles: tokar
Platform: Microsoft Windows 10 Pro Version 20H2 19042.1586 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesEngine.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCopyAccelerator.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(explorer.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe
(explorer.exe ->) (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\Windows Sidebar\sidebar.exe
(explorer.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3b12ac0f95b18b9d\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(svchost.exe ->) (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.) C:\Program Files\EXPERTool\TBPanel.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [14880592 2022-03-07] (SteelSeries ApS -> SteelSeries ApS)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2707104 2022-01-31] (Skutta, Kristjan -> )
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Run: [HP Deskjet 5520 series (NET)] => C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\yzmatrix.scr [2768896 2006-09-15] () [File not signed]
HKLM\...\Print\Monitors\HP B611 Status Monitor: C:\Windows\system32\hpinkstsB611LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 5520 series): C:\Windows\system32\HPDiscoPMB611.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar774.lnk [2022-03-11]
ShortcutTarget: Sidebar774.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [File not signed] [File is in use]

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00E8E114-4ED0-4EB1-B0C6-3D480729EBA7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {0EC12531-C2C1-4817-8CB7-5954DB187DE5} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1296FAF1-223A-45D9-8AAA-88D6B8259061} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1A2258EE-A183-4A94-8CAA-140B8B762290} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1CA7FDBE-B1BF-438F-BFD4-C2F36DCB71CC} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\99.0.1150.36\Installer\setup.exe [3191184 2022-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {2395BA9A-227F-4FF7-A2CF-E55C57DC5933} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\PLUGScheduler => C:\Program Files\RUXIM\PLUGscheduler.exe [369512 2022-01-12] (Microsoft Windows -> Microsoft Corporation)
Task: {2824B9FF-DF88-46EB-AB29-92029A970160} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2AF62EC2-2DDC-41FC-B028-3E34171F145A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {384266DF-1BA6-4F36-BE9E-B09F853E9A25} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2398447425-3274881014-1611824863-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4158856 2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C265A0C-F1C8-430A-AF3C-4D27681B9F79} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580640 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {55535633-1148-4E08-B4E0-16B1CEAA6D51} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6481872 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {56EF8693-F995-425F-9A5E-A3D963F55A40} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111000 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {5ADA76E8-95B1-4DB1-9602-FDB46D4A9307} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6631A775-F33D-4EA8-BC7F-4CF1A12E3829} - System32\Tasks\EXPERTool => C:\Program Files\EXPERTool\TBPanel.exe [4460624 2021-09-10] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.)
Task: {708A7E0F-8734-4CFF-A5F9-839CFBE305D0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {752B9336-1878-4942-96F1-ECE210321514} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {76CEF3BE-C88F-43A2-8451-1BEA410ABC8A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339472 2022-02-03] (Nvidia Corporation -> NVIDIA Corporation)
Task: {79C72E5E-2900-44D7-AF49-0CCE0BEF7C0A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580640 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3209D99-85C6-4502-A87C-81A6565BD3B6} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4158856 2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {CB077595-72C6-4638-833B-9DA5BEC93B81} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1009872 2021-11-02] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {CD6A372F-53C3-42B7-BEE1-C08B93AD8B12} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CD843184-8F36-4F0A-8F2A-94A0C153ABDD} - System32\Tasks\HPCustParticipation HP Deskjet 5520 series => C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPCustPartic.exe [4119656 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {D6CD0BA7-8639-43D7-8434-8FF6C02DD546} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {E162E271-5BDE-470E-B397-15AE964093B6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111000 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7F853A2-E8B9-4445-8E6C-9BDFE427CDFB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6481872 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {E8EEE4CC-836C-4A29-9948-38D305710EB5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F4B70D96-17F0-4A52-A42B-D16193EB886B} - System32\Tasks\Core Temp Autostart tokar => C:\Program Files\Core Temp\Core Temp.exe [1035096 2021-04-11] (ALCPU -> ALCPU)
Task: {FC8D839D-0120-4ED3-8474-3F3E8A845CC1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FDEED202-867F-4C83-BA04-4B70846CEE21} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{599b1d2c-5456-4ddf-9a91-748cadf2a09b}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Profile: C:\Users\tokar\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-01]

FireFox:
========
FF DefaultProfile: n6sro3jy.default
FF ProfilePath: C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\n6sro3jy.default [2021-12-13]
FF ProfilePath: C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release [2022-03-11]
FF Session Restore: Mozilla\Firefox\Profiles\zs3fcvbj.default-release -> is enabled.
FF Extension: (BetterTTV) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\firefox@betterttv.net.xpi [2022-02-23]
FF Extension: (uBlock Origin) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-02-24]
FF Extension: (Three Wolf Moon Shirt) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{50193c98-9eee-4b67-9244-95ced154911d}.xpi [2021-12-01]
FF Extension: (Video DownloadHelper) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-12-01]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-12-01]
FF Extension: (Dark Fox) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2021-12-01]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [842128 2022-03-11] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8930120 2022-02-15] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11649952 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncHelper.exe [3380616 2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [260256 2022-01-31] (HP Inc. -> HP Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.022.0130.0001\OneDriveUpdaterService.exe [3851128 2022-02-26] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; F:\Rockstar Games Launcher\RockstarService.exe [2559896 2022-02-24] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6228008 2022-03-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [31568 2022-03-07] (SteelSeries ApS -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe [3046608 2022-03-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe [132504 2022-03-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3b12ac0f95b18b9d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3b12ac0f95b18b9d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ALSysIO; C:\Users\tokar\AppData\Local\Temp\ALSysIO64.sys [47240 2022-03-11] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== ATTENTION
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 MpKsl085a0fe6; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0ADE8E2B-09C5-4000-A912-8FE5B43F2C85}\MpKslDrv.sys [137464 2022-03-11] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-26] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [47784 2021-09-03] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\Windows\system32\DRIVERS\sshid.sys [48800 2022-02-28] (SteelSeries ApS -> SteelSeries ApS)
R3 SteelSeries_Sonar_VAD; C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_689082cfb8a03f07\SteelSeries-Sonar-VAD.sys [80200 2022-01-06] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49600 2022-03-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [439544 2022-03-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-11] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; \??\C:\Users\tokar\AppData\Local\Temp\tmpFD0F.tmp [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-03-10 22:09 - 2022-03-10 22:09 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-03-10 22:09 - 2022-03-10 22:09 - 002254336 _____ C:\Windows\system32\dwmscene.dll
2022-03-10 22:09 - 2022-03-10 22:09 - 000272896 _____ C:\Windows\system32\TpmTool.exe
2022-03-10 22:09 - 2022-03-10 22:09 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2022-03-10 22:09 - 2022-03-10 22:09 - 000195584 _____ C:\Windows\system32\uwfcfgmgmt.dll
2022-03-10 22:09 - 2022-03-10 22:09 - 000011911 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-03-10 22:06 - 2022-03-10 22:06 - 000000000 ___HD C:\$WinREAgent
2022-03-09 10:10 - 2022-03-10 23:53 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-03-07 23:15 - 2022-03-07 23:15 - 000000000 ____D C:\ProgramData\Apple Computer
2022-03-07 23:15 - 2022-03-07 23:15 - 000000000 ____D C:\ProgramData\Apple
2022-02-28 11:55 - 2022-02-28 11:55 - 000000000 ____D C:\Windows\system32\SteelSeries
2022-02-16 21:42 - 2022-02-26 23:13 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2398447425-3274881014-1611824863-1001
2022-02-16 12:36 - 2022-02-16 20:36 - 000000000 ____D C:\Program Files\RUXIM
2022-02-15 23:25 - 2022-02-15 23:25 - 000000000 ____D C:\Users\tokar\AppData\Local\CrashDumps
2022-02-15 23:23 - 2022-02-10 19:42 - 001905936 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-02-15 23:23 - 2022-02-10 19:42 - 001905936 _____ C:\Windows\system32\vulkaninfo.exe
2022-02-15 23:23 - 2022-02-10 19:42 - 001478416 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-02-15 23:23 - 2022-02-10 19:42 - 001478416 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-02-15 23:23 - 2022-02-10 19:42 - 001467840 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-02-15 23:23 - 2022-02-10 19:42 - 001432336 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-02-15 23:23 - 2022-02-10 19:42 - 001432336 _____ C:\Windows\system32\vulkan-1.dll
2022-02-15 23:23 - 2022-02-10 19:42 - 001209280 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-02-15 23:23 - 2022-02-10 19:42 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-02-15 23:23 - 2022-02-10 19:42 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-02-15 23:23 - 2022-02-10 19:39 - 001531872 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2022-02-15 23:23 - 2022-02-10 19:39 - 001176704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2022-02-15 23:23 - 2022-02-10 19:39 - 000797112 _____ C:\Windows\system32\nvofapi64.dll
2022-02-15 23:23 - 2022-02-10 19:39 - 000717760 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2022-02-15 23:23 - 2022-02-10 19:39 - 000636032 _____ C:\Windows\SysWOW64\nvofapi.dll
2022-02-15 23:23 - 2022-02-10 19:38 - 002120320 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2022-02-15 23:23 - 2022-02-10 19:38 - 001602728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2022-02-15 23:23 - 2022-02-10 19:38 - 000983992 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2022-02-15 23:23 - 2022-02-10 19:38 - 000711608 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2022-02-15 23:23 - 2022-02-10 19:37 - 008612496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2022-02-15 23:23 - 2022-02-10 19:37 - 007714960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2022-02-15 23:23 - 2022-02-10 19:37 - 005727376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2022-02-15 23:23 - 2022-02-10 19:37 - 005099152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2022-02-15 23:23 - 2022-02-10 19:37 - 002935744 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2022-02-15 23:23 - 2022-02-10 19:37 - 000456848 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2022-02-15 23:23 - 2022-02-10 19:35 - 000849024 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2022-02-15 23:23 - 2022-02-10 19:34 - 006461040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2022-02-15 23:23 - 2022-02-10 07:18 - 000089251 _____ C:\Windows\system32\nvinfo.pb
2022-02-11 12:01 - 2022-02-11 12:01 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-02-11 12:01 - 2022-02-11 12:01 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-02-09 11:55 - 2022-03-11 17:02 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-03-11 21:31 - 2021-12-12 21:11 - 000000000 ____D C:\FRST
2022-03-11 21:30 - 2021-12-01 17:33 - 000000000 ____D C:\Users\tokar\AppData\LocalLow\Mozilla
2022-03-11 21:20 - 2021-12-01 18:06 - 000000000 ____D C:\Users\tokar\AppData\Roaming\discord
2022-03-11 21:20 - 2021-12-01 18:00 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2022-03-11 21:20 - 2021-12-01 17:57 - 000000000 ____D C:\Users\tokar\AppData\Local\Battle.net
2022-03-11 21:01 - 2021-12-01 18:06 - 000000000 ____D C:\Users\tokar\AppData\Local\Discord
2022-03-11 20:45 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-03-11 20:44 - 2020-11-18 23:45 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-03-11 19:04 - 2021-12-01 18:06 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-03-11 19:04 - 2021-12-01 18:05 - 145666720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-03-11 19:04 - 2021-12-01 18:05 - 000000000 ____D C:\Windows\system32\MRT
2022-03-11 17:00 - 2021-12-01 17:45 - 000000000 ____D C:\ProgramData\NVIDIA
2022-03-11 10:28 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-03-11 10:23 - 2020-11-19 00:45 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-03-11 10:20 - 2021-12-01 18:35 - 000049064 _____ C:\Windows\system32\perfh01B.dat
2022-03-11 10:20 - 2021-12-01 18:35 - 000012206 _____ C:\Windows\system32\perfc01B.dat
2022-03-11 10:20 - 2021-12-01 17:27 - 000885196 _____ C:\Windows\system32\PerfStringBackup.INI
2022-03-11 10:16 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-03-11 10:13 - 2021-12-01 17:22 - 000842128 _____ C:\Windows\system32\AsusUpdateCheck.exe
2022-03-11 10:13 - 2021-12-01 17:22 - 000008192 ___SH C:\DumpStack.log.tmp
2022-03-11 10:13 - 2020-11-19 00:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-03-11 10:13 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2022-03-11 10:12 - 2021-12-01 17:22 - 000880672 _____ C:\Windows\system32\wpbbin.exe
2022-03-10 23:53 - 2021-12-01 17:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-03-10 23:53 - 2020-11-18 23:45 - 000438936 _____ C:\Windows\system32\FNTCACHE.DAT
2022-03-10 23:53 - 2019-12-07 15:41 - 000000000 ___SD C:\Windows\system32\AppV
2022-03-10 23:53 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-03-10 23:53 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-03-10 23:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-03-10 23:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2022-03-10 23:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2022-03-10 23:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2022-03-10 23:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-03-10 23:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-03-10 23:53 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-03-10 23:53 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2022-03-10 22:11 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-03-10 22:09 - 2020-11-19 00:47 - 002877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-03-10 10:14 - 2021-12-03 12:38 - 000000000 ____D C:\Users\tokar\AppData\Roaming\WowUp
2022-03-10 09:45 - 2020-11-19 00:47 - 000003576 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-03-10 09:45 - 2020-11-19 00:47 - 000003452 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-03-09 13:05 - 2021-12-01 18:50 - 000000000 ____D C:\ProgramData\SteelSeries
2022-03-09 13:05 - 2021-12-01 17:33 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-03-09 13:05 - 2021-12-01 17:33 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-03-09 10:07 - 2021-12-04 18:13 - 000004782 _____ C:\Windows\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask
2022-03-09 10:07 - 2020-11-19 00:47 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-03-09 10:07 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-03-08 09:15 - 2021-12-07 17:59 - 000000000 ____D C:\Users\tokar\AppData\Roaming\vlc
2022-03-07 23:14 - 2021-12-01 17:30 - 000000000 ____D C:\Users\tokar\AppData\Local\PlaceholderTileLogoFolder
2022-03-07 23:14 - 2021-12-01 17:28 - 000000000 ____D C:\Users\tokar\AppData\Local\Publishers
2022-03-07 23:14 - 2021-12-01 17:28 - 000000000 ____D C:\Users\tokar\AppData\Local\Packages
2022-03-07 23:14 - 2020-11-19 00:49 - 000000000 ____D C:\ProgramData\Packages
2022-03-06 23:28 - 2021-12-01 18:53 - 000000000 ____D C:\Users\tokar\AppData\Roaming\steelseries-gg-client
2022-03-05 16:08 - 2021-12-09 13:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-03-05 13:06 - 2021-12-01 17:59 - 000000000 ____D C:\Program Files (x86)\Steam
2022-03-02 10:02 - 2021-12-01 17:56 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-02-28 18:01 - 2021-09-03 18:10 - 000048800 _____ (SteelSeries ApS) C:\Windows\system32\Drivers\sshid.sys
2022-02-28 15:33 - 2021-12-11 16:12 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-02-26 23:13 - 2021-12-09 13:24 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-02-26 23:13 - 2021-12-09 13:24 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-23 13:47 - 2021-12-28 14:55 - 000000000 ____D C:\Users\tokar\AppData\Roaming\dvdcss
2022-02-19 12:36 - 2021-12-01 17:28 - 000000000 ____D C:\Users\tokar\AppData\Local\D3DSCache
2022-02-16 12:39 - 2021-12-01 17:39 - 000000000 ____D C:\Users\tokar\AppData\Local\NVIDIA
2022-02-15 23:22 - 2021-12-01 17:45 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 23:22 - 2021-12-01 17:45 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 23:22 - 2021-12-01 17:45 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 23:22 - 2021-12-01 17:45 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 23:22 - 2021-12-01 17:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 23:22 - 2021-12-01 17:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 23:22 - 2021-12-01 17:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 23:22 - 2021-12-01 17:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 23:22 - 2021-12-01 17:45 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 23:22 - 2021-12-01 17:45 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-02-15 23:22 - 2021-12-01 17:27 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-02-15 23:22 - 2021-12-01 17:27 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-02-14 21:06 - 2021-12-01 18:06 - 000600944 _____ (Microsoft Corporation) C:\Windows\system32\sedplugins.dll
2022-02-14 21:06 - 2021-12-01 18:06 - 000482120 _____ (Microsoft Corporation) C:\Windows\system32\QualityUpdateAssistant.dll
2022-02-11 19:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-02-11 19:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2022-02-11 19:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2022-02-11 19:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2022-02-11 19:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2022-02-11 19:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2022-02-10 19:38 - 2022-01-20 11:48 - 000795584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2022-02-10 19:34 - 2021-12-01 17:26 - 007613344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2022-02-09 11:55 - 2021-12-01 17:33 - 000000000 ____D C:\ProgramData\Mozilla

==================== Files in the root of some directories ========

2021-12-01 18:12 - 2021-12-13 12:52 - 000000629 _____ () C:\Users\tokar\AppData\Roaming\All CPU MeterV3_Settings.ini
2021-12-01 18:15 - 2021-12-23 12:30 - 000000287 _____ () C:\Users\tokar\AppData\Roaming\GPU MeterV2_Settings.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118200
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o preventivnu kontrolu

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
R3 ALSysIO; C:\Users\tokar\AppData\Local\Temp\ALSysIO64.sys [47240 2022-03-11] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== ATTENTION
S3 WinRing0_1_2_0; \??\C:\Users\tokar\AppData\Local\Temp\tmpFD0F.tmp [X] <==== ATTENTION
C:\DumpStack.log.tmp

EmptyTemo:
End
Uložte do C:\Users\tokar\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

toki
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 29 črc 2008 11:15
Bydliště: Košice, SK
Kontaktovat uživatele:

Re: Prosim o preventivnu kontrolu

#3 Příspěvek od toki »

Fix result of Farbar Recovery Scan Tool (x64) Version: 08-03-2022
Ran by tokar (12-03-2022 09:49:20) Run:2
Running from C:\Users\tokar\OneDrive\Plocha
Loaded Profiles: tokar
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
R3 ALSysIO; C:\Users\tokar\AppData\Local\Temp\ALSysIO64.sys [47240 2022-03-11] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== ATTENTION
S3 WinRing0_1_2_0; \??\C:\Users\tokar\AppData\Local\Temp\tmpFD0F.tmp [X] <==== ATTENTION
C:\DumpStack.log.tmp

EmptyTemo:
End
*****************

Processes closed successfully.
ALSysIO => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\ALSysIO => removed successfully
ALSysIO => service removed successfully
HKLM\System\CurrentControlSet\Services\WinRing0_1_2_0 => removed successfully
WinRing0_1_2_0 => service removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
EmptyTemo: => Error: No automatic fix found for this entry.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 12-03-2022 09:50:01)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 09:50:01 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118200
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o preventivnu kontrolu

#4 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

toki
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 173
Registrován: 29 črc 2008 11:15
Bydliště: Košice, SK
Kontaktovat uživatele:

Re: Prosim o preventivnu kontrolu

#5 Příspěvek od toki »

Rudy, dakujem pekne, nech sa dari :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118200
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o preventivnu kontrolu

#6 Příspěvek od Rudy »

Děkuji a nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno