
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-12-2024
Ran by tokar (08-12-2024 12:21:47)
Running from C:\Users\tokar\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.5198 (X64) (2024-12-01 10:59:53)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1791491201-4104823955-1735782586-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1791491201-4104823955-1735782586-503 - Limited - Disabled)
Guest (S-1-5-21-1791491201-4104823955-1735782586-501 - Limited - Disabled)
tokar (S-1-5-21-1791491201-4104823955-1735782586-1001 - Administrator - Enabled) => C:\Users\tokar
WDAGUtilityAccount (S-1-5-21-1791491201-4104823955-1735782586-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 24.09 (x64) (HKLM\...\7-Zip) (Version: 24.09 - Igor Pavlov)
8GadgetPack (HKLM-x32\...\{36E60904-D465-40F7-82A7-A9C7A84C29B7}) (Version: 24.0.0 - 8GadgetPack.net)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1051-1033-7760-BC15014EA700}) (Version: 24.005.20307 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.133 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 6.05.16.221 - Advanced Micro Devices, Inc.)
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.124 - Advanced Micro Devices, Inc.) Hidden
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.90 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.27.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Master (HKLM\...\{02247819-03CD-414E-AC8D-FD518BFBA445}) (Version: 2.14.1.3286 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.14.1.3286 - Advanced Micro Devices, Inc.)
AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.14.2.3330 - Advanced Micro Devices, Inc.)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.44 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{1ee7f179-da35-4723-a064-99a2a93c80be}) (Version: 6.05.16.221 - Advanced Micro Devices, Inc.) Hidden
AniMe Matrix MB EN (HKLM\...\{399B6DA7-B609-426E-95F8-B9A83FB7D06E}) (Version: 1.0.1 - ASUS)
Aplikácia NVIDIA 11.0.1.184 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.1.184 - NVIDIA Corporation)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.9.9 - ASUS)
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.4.0.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{10d231d0-1052-4fac-8e3e-b262fd9f23ea}) (Version: 1.4.0.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM\...\{127BAA1F-BF99-457D-92AD-DCCD7698B294}) (Version: 4.2.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS Ambient HAL (HKLM-x32\...\{984fc5fa-e6ab-4cfa-880b-81b5db4f8b4b}) (Version: 4.2.0.0 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{49c4358d-054e-4cf1-9ec1-dca3487f304a}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{359B9A9D-A289-4962-BCE2-13EBFD50D532}) (Version: 1.5.0.2 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{00aac91e-7198-484b-b29d-1c9990d843ae}) (Version: 1.5.0.2 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.46 - ASUSTek COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 4.2.0.4 - ASUSTeK Computer Inc.)
ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 4.03.01 - ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.117 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{B6B3BA9B-2FA3-4B3A-9C3A-0945B89E725C}) (Version: 1.1.27 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{9983b059-3dd9-449a-80e6-bcb45c840bdf}) (Version: 1.1.27 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.44 - ASUSTek COMPUTER INC.)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.44 - ASUSTek COMPUTER INC.)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.07.54 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{5a78a7d3-44e9-4462-8796-3746f1c62cb8}) (Version: 3.07.54 - ASUSTeK Computer Inc.)
Battlestate Games Launcher 14.3.3.2759 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 14.3.3.2759 - Battlestate Games)
Core Temp 1.18.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.18.1 - ALCPU)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.53.0 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{34c42fa7-d8b5-4396-b5d0-5e377ca5c3ad}) (Version: 1.1.53.0 - Ene Tech.) Hidden
ENE Video Capture Box HAL (HKLM\...\{A096611D-BA11-4A1A-8D09-0A0462D7C8F2}) (Version: 1.0.5.15 - Ene Tech.) Hidden
ENE Video Capture Box HAL (HKLM-x32\...\{974259bf-3ed1-4cd6-9ed1-40c7f601a786}) (Version: 1.0.5.15 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{c1d017c2-8846-4000-9254-5689eccd462e}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
ENE_External_Device_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.14.0 - ENE Tech) Hidden
ENE_External_Device_HAL (HKLM-x32\...\{5d3c3229-f8ae-4c6c-9db7-7231adc1ff08}) (Version: 1.0.14.0 - ENE Tech) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{c2c794a4-7986-4c45-884d-d4ca43b88df9}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.6.3 - ENE TECHNOLOGY INC.) Hidden
ENE_X_AIC_HAL (HKLM-x32\...\{c662a481-d76a-4188-95d2-6eb4ffd55542}) (Version: 1.0.6.3 - ENE TECHNOLOGY INC.) Hidden
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.15.5.1.33420 - Battlestate Games)
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.36 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{afab10dc-c1d5-45c1-ad91-fe33af8ac488}) (Version: 1.1.36 - KINGSTON COMPONENTS INC.) Hidden
Microsoft .NET Host - 6.0.16 (x64) (HKLM\...\{1D0AC7F1-2B34-44AF-91F6-88757D768DA7}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.16 (x64) (HKLM\...\{B8537ACA-B210-4DF5-B928-E41CEB76723D}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM\...\{C71E93D2-B8B4-4858-B2A1-4C967DBC1C5F}) (Version: 48.67.58427 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.16 (x64) (HKLM-x32\...\{2a8d0f2b-911b-4b58-8252-46b29e7a4590}) (Version: 6.0.16.32323 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.86 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2021 - en-us (HKLM\...\ProPlus2021Retail - en-us) (Version: 16.0.18227.20152 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - sk-sk (HKLM\...\ProPlus2021Retail - sk-sk) (Version: 16.0.18227.20152 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 23.038.0219.0001 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1791491201-4104823955-1735782586-1001\...\Teams) (Version: 1.5.00.30767 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 sk) (HKLM\...\Mozilla Firefox 133.0 (x64 sk)) (Version: 133.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 133.0 - Mozilla)
MSI Afterburner 4.6.5 (HKLM-x32\...\Afterburner) (Version: 4.6.5 - MSI Co., LTD)
MSI Center SDK (HKLM-x32\...\{15289038-41BE-48F8-B8B9-0B1021D3089E}}_is1) (Version: 3.2024.1114.01 - MSI)
NVIDIA FrameView SDK 1.4.10624.35034762 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.4.10624.35034762 - NVIDIA Corporation)
NVIDIA Grafický ovládač 566.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 566.36 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.4.2.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.2.6 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18227.20082 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18227.20152 - Microsoft Corporation) Hidden
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.8 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{55993b50-5bec-47c8-8b2b-1aecad927e48}) (Version: 1.0.9.8 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.3 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{6e0eff60-c502-43bb-8f56-360ca07e73d9}) (Version: 1.1.0.3 - Patriot Memory) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.1.0 - Advanced Micro Devices, Inc.) Hidden
PSPad editor (HKLM\...\PSPad editor 64bit_is1) (Version: 5.0.7.775 - Jan Fiala)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9238.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.71.312.2024 - Realtek)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.98.2208_S13_R3 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.8.0 - Rockstar Games)
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.4.24.0 - ASUSTek COMPUTER INC.)
ROGFontInstaller (HKLM\...\{605108C1-153E-43D8-8A67-7CE326B00ECA}) (Version: 1.0.0 - ASUS)
Speedtest by Ookla (HKLM\...\{49DC746F-BFC1-41CC-B5B1-AE3721829A3A}) (Version: 1.13.194.001 - Ookla)
Spotify (HKU\S-1-5-21-1791491201-4104823955-1735782586-1001\...\Spotify) (Version: 1.2.52.442.g01893f92 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 76.0.0 (HKLM\...\SteelSeries GG) (Version: 76.0.0 - SteelSeries ApS)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.5.0.30767 - Microsoft Corporation)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.7 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{9a732423-e2f4-47d0-87ab-ef745c7dba69}) (Version: 1.0.0.7 - PD) Hidden
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Verbatim_SureFireGaming_Product (HKLM\...\{35CB65C6-A7E3-4EE7-AD40-738D70A72164}) (Version: 1.0.3.11 - Verbatim) Hidden
Verbatim_SureFireGaming_Product (HKLM-x32\...\{d601832a-0d94-46ce-9b19-78e8a5887313}) (Version: 1.0.3.11 - Verbatim) Hidden
WD P40 Game Drive (HKLM\...\{EE55DBAE-ECDD-4ADD-AAB5-23DE848B0996}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden
WD P40 Game Drive (HKLM-x32\...\{72b1a866-fc31-4381-bff3-fa6cd8823777}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM-x32\...\{a1d1ba00-92b7-4a99-8ebd-65b25c0e9e44}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
Packages:
=========
Armoury Crate -> C:\Program Files\ASUS\AacAmbientHal [2024-12-05] (Sparse Package)
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.9.9.0_x64__qmba6cd70vzyy [2024-12-05] (ASUSTeK COMPUTER INC.)
DTS Custom for Asus -> C:\Program Files\WindowsApps\DTSInc.DTSCustomforAsus_2.1.1.0_x64__t5j2fzbtdg37r [2024-12-05] (DTS, Inc.)
MSI Center -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.45.0_x64__kzh8wxbdkxb8p [2024-12-05] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
MSI Game Bar -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSIGameBar_3.0.8.0_x64__kzh8wxbdkxb8p [2024-12-01] (MICRO-STAR INTERNATIONAL CO., LTD)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-12-07] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.29.256.0_x64__dt26b99r8h8gj [2024-12-05] (Realtek Semiconductor Corp)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll (AddGadgets IT -> )
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.22272.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{1F80F4F0-5D28-40D3-A252-4D3662D5E4BA}\localserver32 -> "C:\Users\tokar\AppData\Local\Microsoft\OneDrive\24.221.1103.0003\FileCoAuth.exe" => No File
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{25815CC0-43F4-3C75-8C3A-A139D9ADE740}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Network_Meter_V9.6.gadget\netlib.dll (AddGadgets IT -> Jonathan Abbott)
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{3A308EFE-656D-46BB-9963-0A41C0D6BCA2}\localserver32 -> "C:\Users\tokar\AppData\Local\Microsoft\OneDrive\24.221.1103.0003\FileCoAuth.exe" => No File
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{544c4c52-de0b-4d14-9510-21745381d5ca}\localserver32 -> "C:\Users\tokar\AppData\Local\Microsoft\OneDrive\24.221.1103.0003\FileCoAuth.exe" => No File
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{5b55a44a-d008-49aa-9234-86fb7709bc0a}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\GPU_Meter_V2.4.gadget\GPUStatusReader.dll (AddGadgets IT -> Orbmu2k)
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{7AE67172-9863-42B1-8750-2B85084FD8E8}\localserver32 -> "C:\Users\tokar\AppData\Local\Microsoft\OneDrive\24.221.1103.0003\FileCoAuth.exe" => No File
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files\PSPad editor\pspshellx64.dll () [File not signed]
CustomCLSID: HKU\S-1-5-21-1791491201-4104823955-1735782586-1001_Classes\CLSID\{F37369D9-1C22-40A0-A997-0B4D5F7B6637}\localserver32 -> "C:\Users\tokar\AppData\Local\Microsoft\OneDrive\24.221.1103.0003\FileCoAuth.exe" => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-11-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-11-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\amd64\FileSyncShell64.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_fe5a9cae5c641286\nvshext.dll [2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-11-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers1_S-1-5-21-1791491201-4104823955-1735782586-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2024-12-05 16:16 - 2024-07-03 15:49 - 000346112 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\@img\sharp-win32-ia32\lib\sharp-win32-ia32.node
2024-12-05 16:16 - 2024-08-13 14:58 - 000449536 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\resources\app.asar.unpacked\node_modules\ac_node_addon\build\Release\ac_node_addon.node
2024-12-02 12:04 - 2017-10-07 15:28 - 000608256 _____ (Helmut Buhler) [File not signed] C:\Program Files\Windows Sidebar\dwmapi.dll
2024-12-02 12:04 - 2017-10-06 18:25 - 000475648 _____ (Helmut Buhler) [File not signed] C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll
2024-12-01 12:17 - 2024-12-07 11:52 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA app\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1791491201-4104823955-1735782586-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 88.212.8.8 - 88.212.8.88
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek PCIe 2.5GbE Family Controller -> rt640x64.sys
Wi-Fi: Intel(R) Wi-Fi 6 AX200 160MHz -> Netwtw10.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-1791491201-4104823955-1735782586-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_BAC599BC2DABC91C491462A8A7E537E3"
HKU\S-1-5-21-1791491201-4104823955-1735782586-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{8A56B47A-4976-4EF9-8A1F-6E4C9F06A855}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0C2EA543-8FC4-4F51-AFCE-26E4AE2BFA06}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FF5C792F-1447-4F98-8F2B-099498F72115}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{676BEA8D-EDB9-45C3-89B6-8AB92061C205}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7F849715-58E5-4300-8397-99B585173218}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2C99B7EF-AD7C-455B-BB76-6BAC26B6A012}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7667AC55-DD98-47A2-98B3-ACF5A7B85A3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{AA1F730D-EA31-4578-9889-E3DA27EFB063}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [TCP Query User{7FD7AC13-4BF6-4450-8FB0-DF7202B70328}C:\users\tokar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tokar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{1041BA04-1DBA-48DF-A220-2285B33DDE90}C:\users\tokar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tokar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5D63E6A8-6158-4ADD-B3A1-580E399220FF}] => (Block) C:\users\tokar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CC71E0EF-282F-4014-8C3A-53B0D5494747}] => (Block) C:\users\tokar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F82C75D7-BA35-44B4-835A-0D944F06626E}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{7A1B9FB0-E5C9-4398-85AE-0A9305E70427}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{613494F7-FFCB-430D-839E-F5A74E0CC945}] => (Allow) C:\Users\tokar\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{85363FBF-9F07-489F-9492-8CFD789982D8}] => (Allow) C:\Users\tokar\AppData\Local\Temp\ACFL\ACSetup\ACSetup.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{22B9B1B1-1C2D-40C6-AA3C-C399A70D0AC4}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{9612DD7D-C90D-4620-B98B-B70DCED35FD9}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{F5B2F6B0-894E-4920-9A22-5FDC0ABB200B}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{4B131088-F852-4E8E-80D0-9BF50BBE13B6}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{E0C9D6E2-61E9-46D4-8481-FF42BAD0D719}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{73A31626-639A-48AF-AA64-564805BDB9D1}] => (Allow) C:\Program Files\ASUS\AacAmbientHal\AacAmbientLighting.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [{C34EEB25-4B19-4C5A-89B8-DFD61D073435}] => (Allow) C:\program files\asus\aacambienthal\aacambientlighting.exe (ASUSTeK COMPUTER INC. -> )
FirewallRules: [{8776EB6B-102C-41D9-880D-B4C5AA439FE0}] => (Allow) C:\Users\tokar\AppData\Local\Packages\B9ECED6F.ArmouryCrate_qmba6cd70vzyy\LocalState\GridUpdateFile\ASUSGCDriverUpdateClient.exe (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
FirewallRules: [{8D8EA1A4-A135-433F-BD6E-04E7D86A4D68}] => (Allow) LPort=32682
FirewallRules: [{0AF9CBCD-94C1-46E4-B920-98E76D6244F8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5D3AA88F-FB44-4A64-B114-67071A545C67}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.86\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{738C5E75-F81B-48B8-9C22-A4A6AD6D898B}] => (Allow) D:\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{2F24C8D3-CF51-43FC-9201-D8E49BA97DD0}] => (Allow) D:\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{46EDE068-3F19-4045-B086-86D8EDBD7745}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{2384B14B-5B3C-49B2-8D02-8CFCF1E8C0E4}D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{E923E3D6-788B-4D48-B779-0DFD7E0FF3F5}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{56407D4F-4B61-406C-9B40-F8661A9BDB76}] => (Block) D:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{6A6CEF14-8FE1-47D9-A53E-C037E24356B9}] => (Allow) LPort=32683
FirewallRules: [{DF3AF61E-1DCE-4F2F-995E-00824A29EFF2}] => (Allow) LPort=33683
FirewallRules: [{B1FD627F-7FDA-491A-9AAB-CB9BFC3812A6}] => (Allow) LPort=26822
==================== Restore Points =========================
03-12-2024 19:26:04 Installed Speedtest by Ookla
05-12-2024 14:47:49 WD_BLACK AN1500
07-12-2024 22:56:10 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532
07-12-2024 22:56:16 Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/08/2024 12:18:57 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\Windows\system32\sysmain.dll" (Win32 error code 126).
Error: (12/07/2024 11:15:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: ArmourySocketServer.exe, verzia: 0.1.20.13, časová značka: 0x66bb1e92
Názov chybujúceho modulu: ArmourySocketServer.exe, verzia: 0.1.20.13, časová značka: 0x66bb1e92
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000011f0c1
Identifikácia chybujúceho procesu: 0x101c
Čas spustenia chybujúcej aplikácie: 0x01db4896c6fa23c4
Cesta chybujúcej aplikácie: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Cesta chybujúceho modulu: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Identifikácia hlásenia: 2e46ce22-22dc-4244-8302-d5b51a3ec9d1
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (12/06/2024 09:25:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: ArmourySocketServer.exe, verzia: 0.1.20.13, časová značka: 0x66bb1e92
Názov chybujúceho modulu: ArmourySocketServer.exe, verzia: 0.1.20.13, časová značka: 0x66bb1e92
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000011f0c1
Identifikácia chybujúceho procesu: 0x1274
Čas spustenia chybujúcej aplikácie: 0x01db47f0d562e52d
Cesta chybujúcej aplikácie: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Cesta chybujúceho modulu: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
Identifikácia hlásenia: f09e55a6-ea77-4ffe-8a46-6c6f2ca5e06c
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (12/06/2024 08:12:20 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0xC004C008
Sku Id=8d77de46-78fb-428d-b8c4-c4a078e8912d
Error: (12/06/2024 08:12:20 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: License acquisition failure details.
hr=0xC004C008
Error: (12/06/2024 08:07:48 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0xC004C008
Sku Id=8d77de46-78fb-428d-b8c4-c4a078e8912d
Error: (12/06/2024 08:07:48 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: License acquisition failure details.
hr=0xC004C008
Error: (12/06/2024 08:06:50 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0xC004C008
Sku Id=8d77de46-78fb-428d-b8c4-c4a078e8912d
System errors:
=============
Error: (12/07/2024 11:11:15 PM) (Source: DCOM) (EventID: 10010) (User: TOKI)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.
Error: (12/07/2024 11:09:35 PM) (Source: DCOM) (EventID: 10010) (User: TOKI)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.
Error: (12/07/2024 11:09:18 PM) (Source: DCOM) (EventID: 10010) (User: TOKI)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.
Error: (12/07/2024 11:08:18 PM) (Source: DCOM) (EventID: 10010) (User: TOKI)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.
Error: (12/07/2024 11:02:18 PM) (Source: DCOM) (EventID: 10010) (User: TOKI)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.
Error: (12/07/2024 11:01:55 PM) (Source: DCOM) (EventID: 10010) (User: TOKI)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.
Error: (12/07/2024 10:34:05 PM) (Source: DCOM) (EventID: 10010) (User: TOKI)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.
Error: (12/07/2024 07:19:44 PM) (Source: DCOM) (EventID: 10010) (User: TOKI)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 3611 09/30/2024
Motherboard: ASUSTeK COMPUTER INC. TUF GAMING B550-PLUS (WI-FI)
Processor: AMD Ryzen 5 5600X 6-Core Processor
Percentage of memory in use: 14%
Total physical RAM: 32678.5 MB
Available physical RAM: 27938.34 MB
Total Virtual: 37798.5 MB
Available Virtual: 28967.67 MB
==================== Drives ================================
Drive c: (Windows 10 Pro) (Fixed) (Total:930.86 GB) (Free:789.3 GB) (Model: WDS100T3X0C-00SJG0) NTFS
Drive d: (Toki SSD) (Fixed) (Total:256.16 GB) (Free:136.43 GB) (Model: Crucial_CT275MX300SSD1) NTFS
Drive e: (Toki HDD) (Fixed) (Total:931.51 GB) (Free:530.81 GB) (Model: ST1000DM010-2EP102) NTFS
\\?\Volume{31c3896b-2d12-41c4-9fe7-69b97848a9bc}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS
\\?\Volume{425615cb-a30e-45c8-a4a8-000edf4c9551}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 256.2 GB) (Disk ID: 28A81A03)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: B8BF0547)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: B432C3AB)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2024
Ran by tokar (administrator) on TOKI (ASUS System Product Name) (08-12-2024 12:21:05)
Running from C:\Users\tokar\Desktop\FRST64.exe
Loaded Profiles: tokar
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5198 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.45.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\MSI Center\Engine\CC_Engine_x64.exe
(C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\sonar\SteelSeriesSonar.exe
(explorer.exe ->) (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\Windows Sidebar\sidebar.exe
(explorer.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.43\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.03.12\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_fe5a9cae5c641286\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e8d71250669d562e\RtkAudUService64.exe <2>
(svchost.exe ->) (ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe <2>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <7>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [16808784 2024-12-03] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e8d71250669d562e\RtkAudUService64.exe [1350240 2024-12-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [138214768 2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-1791491201-4104823955-1735782586-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [2405296 2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1791491201-4104823955-1735782586-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3580352 2024-12-01] (Skutta Software GmbH -> )
Startup: C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PC meter.lnk [2024-12-02]
ShortcutTarget: PC meter.lnk -> C:\Program Files\PC meter\pcme..tion_d306096800bb0d13_0000.0000_a36b46185e5895a9\PC meter.exe (No File)
Startup: C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar396.lnk [2024-12-08]
ShortcutTarget: Sidebar396.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [File not signed] [File is in use]
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {9184F70C-1398-4B07-B3EC-93EF1804FA18} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {8ABDFBEA-47D1-4482-8702-D9A4954B0707} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [671440 2024-07-24] (Advanced Micro Devices -> )
Task: {03A52894-25BB-4CCA-81EF-DBD941EDEA5A} - System32\Tasks\ApplicationTasks\L-Connect 3 Launcher task => "C:\Program Files\L-Connect 3\L-Connect 3.exe" /args --openAsHidden (No File)
Task: {05F7DBEE-81E5-4DCC-B66E-5B967502B8AC} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [371048 2024-08-13] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {3E6D8E03-5335-4EB8-9DB1-F26066C0A9AD} - System32\Tasks\ASUS\Armoury Crate Service Task_CountDown => C:\ProgramData\ASUS\FestsEffect\data\CountDown\CountDown.exe [108504 2023-10-31] (ASUSTeK COMPUTER INC. -> )
Task: {D063CC57-39E2-4530-8FB4-2FD81A69628C} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1771368 2024-08-13] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {350FC6FF-0BFF-4DB2-B9AC-31B5B4EB4A46} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1db472896e3e251 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [249192 2024-12-05] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {B3EA6956-8C19-44A5-9337-DF507388A697} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [249192 2024-12-05] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {F715FED4-899B-4B18-8884-4855FF6B65FC} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [152109928 2024-08-13] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {C87DAA4A-D048-4731-94D6-8FAE518F2AFE} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1261928 2024-04-09] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {B7513194-A150-4FCE-9BF1-22DB1569853A} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {84ACC198-AEF3-43F2-8A65-53EB86328EDD} - System32\Tasks\Core Temp Autostart tokar => C:\Program Files\Core Temp\Core Temp.exe [1040136 2023-09-24] (ALCPU -> ALCPU)
Task: {49FB5211-0B72-46E0-B3DA-3B5C237A2F8B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28660968 2024-12-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {6EF65A64-F4FD-4F51-999E-5910D36B0EB3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28660968 2024-12-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {6135E1B7-62AF-4F5B-B53D-D4890EE8474E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [311952 2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A7B7CB1D-2608-4A0C-926C-2A696D73F87F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [311952 2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {57DA58BF-76AB-4850-89FD-88FFD75860B4} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [186992 2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D3F8ECB-8A42-4A8C-8D14-8DD7FF383CE5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CAC70E2D-4719-4683-BFBC-57D8BD0023A1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CBB2B82A-41E7-4FFA-B009-7EF70BE47B86} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8E68C412-2D33-4B72-B03A-138C06BDDC1F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A3963D05-C14F-4035-AA5B-D7AA82C0FE65} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1791491201-4104823955-1735782586-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-11-21] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {AC153F81-3C2A-43B8-9E59-826B510105D2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-11-21] (Mozilla Corporation -> Mozilla Foundation)
Task: {5DBE0B46-EE5F-41EF-9341-6D2A8D7709F9} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe Detect_Monitor (No File)
Task: {CAB11094-705B-4FC7-B31B-7C7134CAC81E} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe Detect_DisplayID (No File)
Task: {57EAA3B5-74EA-486B-B647-815FB40813FB} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe [3084896 2024-11-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {5E2CEA37-93E3-4406-B6F0-BD9D165C9B02} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3333672 2024-11-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6CA10185-0432-4017-B5D1-2525F6858C48} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3165576 2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {82C63B0F-391C-4884-B0C8-36FD85E5CC6E} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1791491201-4104823955-1735782586-1001 => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3165576 2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 88.212.8.8 88.212.8.88
Tcpip\..\Interfaces\{c698dc0d-f8f5-40e9-81d2-5f89ba8599da}: [DhcpNameServer] 88.212.8.8 88.212.8.88
Edge:
=======
Edge Profile: C:\Users\tokar\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-05]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\tokar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-01]
Edge Extension: (Edge relevant text changes) - C:\Users\tokar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-12-01]
FireFox:
========
FF DefaultProfile: ayc6vtcz.default
FF ProfilePath: C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\ayc6vtcz.default [2024-12-01]
FF ProfilePath: C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\rq31oaa1.default-release [2024-12-08]
FF Session Restore: Mozilla\Firefox\Profiles\rq31oaa1.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\rq31oaa1.default-release -> hxxps://mail.google.com
FF Extension: (BetterTTV) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\rq31oaa1.default-release\Extensions\firefox@betterttv.net.xpi [2024-12-01]
FF Extension: (uBlock Origin) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\rq31oaa1.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-12-01]
FF Extension: (Three Wolf Moon Shirt) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\rq31oaa1.default-release\Extensions\{50193c98-9eee-4b67-9244-95ced154911d}.xpi [2024-12-01]
FF Extension: (Video DownloadHelper) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\rq31oaa1.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2024-12-01]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\rq31oaa1.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2024-12-01]
FF Extension: (Dark Fox) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\rq31oaa1.default-release\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2024-12-01]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-01] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [401880 2024-09-05] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.03.12\atkexComSvc.exe [908648 2024-09-03] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [249192 2024-12-05] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [503144 2024-10-01] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.43\AsusFanControlService.exe [1854312 2024-09-03] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [249192 2024-12-05] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [681832 2024-12-05] (ASUSTeK COMPUTER INC. -> ASUS)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [845256 2024-12-08] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [20317352 2024-12-03] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13512968 2024-12-04] (Microsoft Corporation -> Microsoft Corporation)
R2 DTSAPO3Service; C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe [222104 2024-12-05] (DTS, Inc. -> )
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\FileSyncHelper.exe [2576264 2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4955496 2024-08-08] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 LightKeeperService; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe [92768 2023-05-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MSI_Case_Service; C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe [74768 2024-06-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_Center_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [172048 2024-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe [41064 2024-04-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_fe5a9cae5c641286\Display.NvContainer\NVDisplay.Container.exe [1275568 2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001\OneDriveUpdaterService.exe [2883976 2024-12-06] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [4828136 2024-12-07] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [2102744 2024-09-03] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesGGUpdateServiceProxy; C:\Program Files\SteelSeries\GG\SteelSeriesGGUpdateServiceProxy.exe [1500608 2024-08-28] (SteelSeries ApS -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-12-02] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ALSysIO; C:\Users\tokar\AppData\Local\Temp\ALSysIO64.sys [43528 2024-12-08] (Microsoft Windows Hardware Compatibility Publisher -> Arthur Liberman) <==== ATTENTION
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [27920 2024-03-26] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [58936 2024-10-01] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 cpuz155; C:\Windows\temp\cpuz155\cpuz155_x64.sys [41480 2024-12-05] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
S3 cpuz158; C:\Windows\temp\cpuz158\cpuz158_x64.sys [44592 2024-12-07] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [34920 2024-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [54888 2024-05-14] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R3 MpKsl91c2d824; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C13C0C6A-DFD6-46A9-B1E5-DAEEC2C58EE4}\MpKslDrv.sys [267552 2024-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19672 2023-12-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [32592 2024-09-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Lib\NTIOLib_X64.sys [32488 2023-11-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [43568 2024-07-22] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 sshid; C:\Windows\System32\drivers\sshid.sys [54416 2024-09-02] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 SteelSeries_Sonar_VAD; C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_7a086649438f4409\SteelSeries-Sonar-VAD.sys [95400 2024-08-07] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22104 2024-12-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [606624 2024-12-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105888 2024-12-02] (Microsoft Windows -> Microsoft Corporation)
R2 WinRing0x64; C:\Windows\System32\Drivers\WinRing0x64.sys [14544 2023-01-07] (Noriyuki MIYAZAKI -> OpenLibSys.org)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-12-08 12:21 - 2024-12-08 12:21 - 000027327 _____ C:\Users\tokar\Desktop\FRST.txt
2024-12-08 12:20 - 2024-12-08 12:21 - 000000000 ____D C:\FRST
2024-12-07 23:15 - 2024-12-07 23:15 - 002402304 _____ (Farbar) C:\Users\tokar\Desktop\FRST64.exe
2024-12-07 23:03 - 2024-12-07 23:04 - 000000845 _____ C:\Users\tokar\AppData\Roaming\Drives Meter_Settings.ini
2024-12-07 22:59 - 2024-12-07 23:01 - 000000000 ____D C:\Users\tokar\AppData\Local\Rockstar Games
2024-12-07 22:59 - 2024-12-07 23:00 - 000000000 ____D C:\Users\tokar\Documents\Rockstar Games
2024-12-07 22:56 - 2024-12-07 22:56 - 000001928 _____ C:\Users\tokar\Desktop\Rockstar Games Launcher.lnk
2024-12-07 22:56 - 2024-12-07 22:56 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2024-12-07 22:55 - 2024-12-07 22:56 - 000000000 ____D C:\ProgramData\Rockstar Games
2024-12-07 22:55 - 2024-12-07 22:56 - 000000000 ____D C:\Program Files\Rockstar Games
2024-12-07 22:55 - 2024-12-07 22:55 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2024-12-07 22:55 - 2024-12-07 22:55 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2024-12-07 22:31 - 2024-12-07 22:31 - 000000223 _____ C:\Users\tokar\Desktop\Red Dead Redemption 2.url
2024-12-07 16:44 - 2024-12-07 16:44 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\UProof
2024-12-07 16:44 - 2024-12-07 16:44 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Office
2024-12-07 11:55 - 2024-12-07 11:55 - 000000000 ____D C:\Windows\LastGood.Tmp
2024-12-07 11:53 - 2024-12-04 19:05 - 002060664 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-12-07 11:53 - 2024-12-04 19:05 - 002060664 _____ C:\Windows\system32\vulkaninfo.exe
2024-12-07 11:53 - 2024-12-04 19:05 - 001600376 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-12-07 11:53 - 2024-12-04 19:05 - 001600376 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-12-07 11:53 - 2024-12-04 19:05 - 001452432 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-12-07 11:53 - 2024-12-04 19:05 - 001452432 _____ C:\Windows\system32\vulkan-1.dll
2024-12-07 11:53 - 2024-12-04 19:05 - 001301880 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-12-07 11:53 - 2024-12-04 19:05 - 001301880 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-12-07 11:53 - 2024-12-04 19:05 - 000478384 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-12-07 11:53 - 2024-12-04 19:05 - 000374432 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-12-07 11:53 - 2024-12-04 19:02 - 001114792 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2024-12-07 11:53 - 2024-12-04 19:02 - 000670352 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2024-12-07 11:53 - 2024-12-04 19:02 - 000505504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2024-12-07 11:53 - 2024-12-04 19:01 - 025450120 _____ C:\Windows\system32\nvidia-pcc.exe
2024-12-07 11:53 - 2024-12-04 19:01 - 001554608 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2024-12-07 11:53 - 2024-12-04 19:01 - 001208992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2024-12-07 11:53 - 2024-12-04 19:01 - 000863888 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2024-12-07 11:53 - 2024-12-04 19:00 - 016811696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2024-12-07 11:53 - 2024-12-04 19:00 - 002185360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2024-12-07 11:53 - 2024-12-04 19:00 - 001634464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2024-12-07 11:53 - 2024-12-04 19:00 - 001042072 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2024-12-07 11:53 - 2024-12-04 19:00 - 000801432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2024-12-07 11:53 - 2024-12-04 19:00 - 000462480 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2024-12-07 11:53 - 2024-12-04 18:59 - 017736840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2024-12-07 11:53 - 2024-12-04 18:59 - 006953104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2024-12-07 11:53 - 2024-12-04 18:59 - 005909664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2024-12-07 11:53 - 2024-12-04 18:59 - 005435544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2024-12-07 11:53 - 2024-12-04 18:59 - 003807888 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2024-12-07 11:53 - 2024-12-04 18:59 - 000853680 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2024-12-07 11:53 - 2024-12-04 18:58 - 007158560 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2024-12-07 11:53 - 2024-12-04 18:58 - 006236264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2024-12-07 11:53 - 2024-12-04 02:11 - 000132703 _____ C:\Windows\system32\nvinfo.pb
2024-12-07 11:52 - 2024-12-07 11:52 - 000001448 _____ C:\Users\Public\Desktop\NVIDIA.lnk
2024-12-07 11:51 - 2024-12-08 12:19 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Teams
2024-12-07 11:51 - 2024-12-07 11:51 - 000002382 _____ C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2024-12-07 11:51 - 2024-12-07 11:51 - 000000000 ____D C:\Users\tokar\AppData\Local\SquirrelTemp
2024-12-06 20:12 - 2024-12-06 20:12 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-12-06 20:11 - 2024-12-06 20:11 - 000002463 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Notes (new).lnk
2024-12-06 20:06 - 2024-12-07 16:43 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Excel
2024-12-06 20:06 - 2024-12-06 20:06 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\AddIns
2024-12-06 20:05 - 2024-12-06 20:05 - 000003206 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-12-06 20:05 - 2024-12-06 20:05 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-06 20:05 - 2024-12-06 20:05 - 000000000 ___RD C:\Users\Default\OneDrive
2024-12-06 20:05 - 2024-12-06 20:05 - 000000000 ____D C:\Program Files (x86)\Teams Installer
2024-12-06 20:05 - 2024-12-06 20:05 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2024-12-06 20:04 - 2024-12-06 20:04 - 000002465 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2024-12-06 20:04 - 2024-12-06 20:04 - 000002464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2024-12-06 20:04 - 2024-12-06 20:04 - 000002428 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2024-12-06 20:04 - 2024-12-06 20:04 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2024-12-06 20:04 - 2024-12-06 20:04 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook (classic).lnk
2024-12-06 20:04 - 2024-12-06 20:04 - 000002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2024-12-06 20:04 - 2024-12-06 20:04 - 000002407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2024-12-06 20:04 - 2024-12-06 20:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2024-12-06 20:03 - 2024-12-07 16:46 - 000000000 ____D C:\Program Files\Microsoft Office
2024-12-06 20:03 - 2024-12-06 20:03 - 000000000 ____D C:\Program Files\Microsoft Office 15
2024-12-05 19:00 - 2024-12-05 19:00 - 000003174 _____ C:\Windows\system32\Tasks\MSI Task Host - LEDKeeper2_Host
2024-12-05 19:00 - 2024-12-05 19:00 - 000000000 ____D C:\Program Files\WD
2024-12-05 18:59 - 2024-12-05 18:59 - 000000000 ____D C:\Program Files\Verbatim
2024-12-05 18:55 - 2022-05-16 17:23 - 000013576 _____ (Windows (R) Win 7 DDK provider) C:\Windows\acpimof.dll
2024-12-05 18:49 - 2024-12-05 18:49 - 000001173 _____ C:\Users\tokar\Desktop\MSI Afterburner.lnk
2024-12-05 18:49 - 2024-12-05 18:49 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2024-12-05 18:48 - 2024-12-05 18:53 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2024-12-05 16:43 - 2024-12-05 16:51 - 000000000 ____D C:\ProgramData\UWP
2024-12-05 16:43 - 2024-12-05 16:43 - 000000000 ___HD C:\Program Files (x86)\Temp
2024-12-05 16:43 - 2024-12-05 16:43 - 000000000 ____D C:\Windows\system32\DTS
2024-12-05 16:43 - 2024-12-05 16:43 - 000000000 ____D C:\ProgramData\DTSAudio
2024-12-05 16:43 - 2024-12-05 16:39 - 006519336 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2024-12-05 16:43 - 2024-12-05 16:39 - 002875968 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2024-12-05 16:43 - 2024-12-05 16:39 - 000276848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll
2024-12-05 16:43 - 2024-12-05 16:39 - 000231280 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll
2024-12-05 16:40 - 2024-12-05 16:43 - 000000000 ____D C:\Program Files (x86)\Realtek
2024-12-05 16:40 - 2024-12-05 16:40 - 001331144 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2024-12-05 16:39 - 2024-12-05 16:39 - 000000000 _____ C:\Windows\SysWOW64\Drivers\1043_ASUSTeK_System Product Name.alu
2024-12-05 16:23 - 2024-12-05 16:23 - 000001609 _____ C:\Users\tokar\Desktop\ARMOURY CRATE.lnk
2024-12-05 16:22 - 2024-12-08 12:18 - 000000000 ____D C:\Users\tokar\AppData\Roaming\asus_framework
2024-12-05 16:20 - 2024-12-05 16:20 - 000000000 ____D C:\Program Files\PD
2024-12-05 16:19 - 2024-12-05 16:19 - 000000000 ____D C:\Program Files\Patriot
2024-12-05 16:17 - 2024-12-05 16:18 - 000000000 ____D C:\Program Files (x86)\LightingService
2024-12-05 16:17 - 2024-12-05 16:17 - 000000000 ____D C:\Program Files\dotnet
2024-12-05 16:16 - 2024-12-05 16:43 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-12-05 16:16 - 2024-12-05 16:21 - 000000000 ____D C:\Users\tokar\AppData\Local\AcSdkInsLog
2024-12-05 16:16 - 2024-12-05 16:16 - 000000000 ____D C:\Users\tokar\AppData\Local\ASUS
2024-12-05 16:16 - 2024-05-14 09:55 - 000054888 ____N (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2024-12-05 16:15 - 2024-12-08 12:19 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2024-12-05 16:15 - 2024-12-07 18:16 - 000000000 ____D C:\Program Files\ASUS
2024-12-05 16:15 - 2024-10-01 15:29 - 000524648 _____ (Asustek Computer Inc.) C:\Windows\system32\AsIO3.dll
2024-12-05 16:15 - 2024-10-01 15:29 - 000430440 _____ (Asustek Computer Inc.) C:\Windows\SysWOW64\AsIO3.dll
2024-12-05 16:15 - 2024-10-01 15:29 - 000058936 _____ (Asustek Computer Inc.) C:\Windows\system32\Drivers\AsIO3.sys
2024-12-05 16:13 - 2024-12-05 16:17 - 000000000 ____D C:\Program Files (x86)\ASUS
2024-12-05 15:46 - 2024-12-05 15:53 - 000000000 ____D C:\Users\tokar\AppData\Roaming\OpenRGB
2024-12-05 15:46 - 2023-01-07 08:25 - 000014544 _____ (OpenLibSys.org) C:\Windows\system32\Drivers\WinRing0x64.sys
2024-12-05 15:32 - 2024-12-07 11:55 - 000000000 ____D C:\Users\tokar\AppData\Local\NVIDIA
2024-12-05 15:32 - 2024-12-05 15:32 - 000000000 ____D C:\Windows\system32\Tasks\ApplicationTasks
2024-12-05 15:32 - 2024-12-05 15:32 - 000000000 ____D C:\Users\tokar\AppData\Local\l-connect3-updater
2024-12-05 15:21 - 2024-12-05 16:12 - 000000000 ____D C:\Windows\system32\Tasks\LianLi
2024-12-05 15:19 - 2024-12-05 15:19 - 000000000 ____D C:\Users\tokar\AppData\LocalLow\Ookla
2024-12-05 15:18 - 2024-12-05 15:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2024-12-05 15:18 - 2024-12-05 15:18 - 000000000 ____D C:\Program Files\7-Zip
2024-12-05 14:49 - 2024-12-05 19:00 - 000000000 ____D C:\Program Files\ENE
2024-12-05 14:49 - 2024-12-05 14:49 - 000003284 _____ C:\Windows\system32\Tasks\MSI Task Host - Detect_Monitor
2024-12-05 14:49 - 2024-12-05 14:49 - 000003268 _____ C:\Windows\system32\Tasks\MSI Task Host - DisplayID
2024-12-04 08:23 - 2024-12-04 08:23 - 000094036 _____ C:\Users\tokar\Downloads\Prikaz-Mzdy za 11-2024.pdf
2024-12-03 19:26 - 2024-12-03 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speedtest By Ookla
2024-12-03 19:26 - 2024-12-03 19:26 - 000000000 ____D C:\Program Files\Speedtest
2024-12-03 09:01 - 2024-12-03 09:01 - 000000000 ____D C:\ProgramData\Adobe
2024-12-03 08:59 - 2024-12-03 08:59 - 000022205 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-12-03 08:59 - 2024-12-03 08:59 - 000022205 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-12-03 08:56 - 2024-12-03 08:56 - 000000000 ___HD C:\$WinREAgent
2024-12-03 08:55 - 2024-12-03 08:55 - 000000000 ____D C:\Users\tokar\AppData\Local\AMD_Common
2024-12-03 08:52 - 2024-12-03 08:52 - 000000716 _____ C:\Users\tokar\Desktop\Robota.lnk
2024-12-02 18:41 - 2024-12-07 23:15 - 000000000 ____D C:\Users\tokar\AppData\Local\CrashDumps
2024-12-02 18:41 - 2024-12-02 18:41 - 000000700 _____ C:\Users\tokar\Desktop\Toki.lnk
2024-12-02 18:24 - 2024-12-02 18:24 - 000000000 ____D C:\Users\tokar\AppData\Roaming\PSpad
2024-12-02 18:24 - 2024-12-02 18:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
2024-12-02 18:24 - 2024-12-02 18:24 - 000000000 ____D C:\Program Files\PSPad editor
2024-12-02 18:22 - 2024-12-02 18:22 - 000002922 _____ C:\Windows\system32\Tasks\Core Temp Autostart tokar
2024-12-02 17:05 - 2024-12-02 17:06 - 000000913 _____ C:\Users\tokar\AppData\Roaming\Network Meter_Settings.ini
2024-12-02 17:04 - 2024-12-02 17:05 - 000000287 _____ C:\Users\tokar\AppData\Roaming\GPU MeterV2_Settings.ini
2024-12-02 17:03 - 2024-12-06 16:30 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-12-02 17:03 - 2024-12-06 16:30 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-12-02 17:03 - 2024-12-02 17:03 - 000000000 ____D C:\Users\tokar\AppData\Roaming\com.adobe.dunamis
2024-12-02 17:03 - 2024-12-02 17:03 - 000000000 ____D C:\Users\tokar\AppData\LocalLow\Adobe
2024-12-02 17:03 - 2024-12-02 17:03 - 000000000 ____D C:\Users\tokar\AppData\Local\SolidDocuments
2024-12-02 17:03 - 2024-12-02 17:03 - 000000000 ____D C:\Users\tokar\.ms-ad
2024-12-02 17:03 - 2024-12-02 17:03 - 000000000 ____D C:\Program Files\Adobe
2024-12-02 17:02 - 2024-12-02 17:03 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-12-02 17:00 - 2024-12-03 09:01 - 000000000 ____D C:\Users\tokar\AppData\Local\Adobe
2024-12-02 16:47 - 2024-12-08 12:19 - 000002041 _____ C:\Users\tokar\IP_Log_Data.js
2024-12-02 16:47 - 2024-12-08 12:19 - 000001336 _____ C:\Users\tokar\Network_Meter_Data.js
2024-12-02 12:32 - 2024-12-07 12:04 - 000049064 _____ C:\Windows\system32\perfh01B.dat
2024-12-02 12:32 - 2024-12-07 12:04 - 000012206 _____ C:\Windows\system32\perfc01B.dat
2024-12-02 12:32 - 2024-12-02 12:32 - 000000000 ____D C:\Program Files\Reference Assemblies
2024-12-02 12:32 - 2024-12-02 12:32 - 000000000 ____D C:\Program Files\MSBuild
2024-12-02 12:32 - 2024-12-02 12:32 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2024-12-02 12:32 - 2024-12-02 12:32 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-12-02 12:23 - 2024-12-03 09:01 - 000000000 ____D C:\Windows\system32\compatrel
2024-12-02 12:16 - 2024-12-07 23:15 - 000000026 _____ C:\Users\tokar\AppData\Roaming\Network Meter_Usage.ini
2024-12-02 12:15 - 2024-12-02 12:15 - 000000000 ____D C:\Windows\system32\SteelSeries
2024-12-02 12:15 - 2024-12-02 12:15 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2024-12-02 12:15 - 2024-06-05 22:14 - 005229128 _____ (Intel Corporation) C:\Windows\system32\Drivers\Netwtw10.sys
2024-12-02 12:15 - 2024-06-05 22:13 - 001496136 _____ (Intel Corporation) C:\Windows\system32\IntelIHVRouter10.dll
2024-12-02 12:14 - 2024-12-05 14:39 - 000000000 ____D C:\Users\tokar\AppData\Roaming\steelseries-gg-client
2024-12-02 12:14 - 2024-12-03 08:55 - 000000000 ____D C:\Program Files\RUXIM
2024-12-02 12:14 - 2024-12-02 12:15 - 000000000 ____D C:\Windows\system32\MRT
2024-12-02 12:14 - 2024-12-02 12:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2024-12-02 12:13 - 2024-12-02 12:13 - 000000000 ____D C:\ProgramData\SteelSeries
2024-12-02 12:13 - 2024-12-02 12:13 - 000000000 ____D C:\Program Files\SteelSeries
2024-12-02 12:09 - 2024-12-02 17:04 - 000000629 _____ C:\Users\tokar\AppData\Roaming\All CPU MeterV3_Settings.ini
2024-12-02 12:08 - 2024-12-02 18:22 - 000000000 ____D C:\Program Files\Core Temp
2024-12-02 12:08 - 2024-12-02 12:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2024-12-02 12:06 - 2024-12-02 12:06 - 000000000 ___HD C:\OneDriveTemp
2024-12-02 12:05 - 2024-12-02 12:05 - 000000000 ____D C:\Users\tokar\AppData\Local\Clipboarder
2024-12-02 12:04 - 2024-12-08 12:19 - 000000000 ____D C:\Users\tokar\AppData\Local\Sidebar7
2024-12-02 12:04 - 2024-12-02 12:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\8GadgetPack
2024-12-02 11:54 - 2024-12-02 11:54 - 000000000 ____D C:\Users\tokar\AppData\Local\Backup
2024-12-01 13:11 - 2024-12-07 23:14 - 000000000 ____D C:\Users\tokar\AppData\Local\Spotify
2024-12-01 13:11 - 2024-12-07 23:08 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Spotify
2024-12-01 13:11 - 2024-12-01 13:11 - 000001850 _____ C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2024-12-01 13:01 - 2024-12-01 13:02 - 000000000 ____D C:\Users\tokar\Documents\Escape from Tarkov
2024-12-01 13:01 - 2024-12-01 13:01 - 000000000 ____D C:\Users\Default\AppData\Roaming\Battlestate Games
2024-12-01 12:56 - 2024-12-01 12:56 - 000000000 ____D C:\Users\tokar\AppData\Roaming\NVIDIA
2024-12-01 12:56 - 2024-12-01 12:56 - 000000000 ____D C:\Users\tokar\AppData\LocalLow\Battlestate Games
2024-12-01 12:56 - 2024-12-01 12:56 - 000000000 ____D C:\Users\tokar\AppData\Local\BattlEye
2024-12-01 12:34 - 2024-12-07 22:31 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-12-01 12:33 - 2024-12-01 12:33 - 000000000 ____D C:\Users\tokar\AppData\Local\Steam
2024-12-01 12:31 - 2024-12-01 12:56 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Battlestate Games
2024-12-01 12:31 - 2024-12-01 12:31 - 000000000 ____D C:\Users\tokar\AppData\Local\Battlestate Games
2024-12-01 12:31 - 2024-12-01 12:31 - 000000000 ____D C:\ProgramData\Battlestate Games
2024-12-01 12:28 - 2024-12-07 23:15 - 000000000 ____D C:\Program Files (x86)\Steam
2024-12-01 12:28 - 2024-12-01 12:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2024-12-01 12:26 - 2024-12-08 12:21 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-12-01 12:26 - 2024-12-03 18:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games
2024-12-01 12:26 - 2024-12-01 12:32 - 000000000 ____D C:\Battlestate Games
2024-12-01 12:26 - 2024-12-01 12:26 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Súkromné prehliadanie Firefoxu.lnk
2024-12-01 12:26 - 2024-12-01 12:26 - 000001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-12-01 12:26 - 2024-12-01 12:26 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-12-01 12:26 - 2024-12-01 12:26 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Mozilla
2024-12-01 12:26 - 2024-12-01 12:26 - 000000000 ____D C:\Users\tokar\AppData\Local\PeerDistRepub
2024-12-01 12:26 - 2024-12-01 12:26 - 000000000 ____D C:\Users\tokar\AppData\Local\Mozilla
2024-12-01 12:26 - 2024-12-01 12:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-12-01 12:26 - 2024-12-01 12:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-12-01 12:25 - 2024-12-05 18:54 - 000000000 ____D C:\Program Files (x86)\MSI
2024-12-01 12:25 - 2024-12-05 18:54 - 000000000 ____D C:\MSI
2024-12-01 12:24 - 2024-12-01 12:24 - 000000000 ____D C:\Users\tokar\AppData\Local\Comms
2024-12-01 12:20 - 2024-12-05 14:45 - 000000000 ____D C:\ProgramData\MSI
2024-12-01 12:20 - 2024-11-07 03:41 - 000125048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2024-12-01 12:18 - 2024-12-02 18:25 - 000000000 ____D C:\Users\tokar\AppData\Local\NVIDIA Corporation
2024-12-01 12:18 - 2024-12-01 12:18 - 000000000 ____D C:\Users\tokar\AppData\Local\CEF
2024-12-01 12:18 - 2024-12-01 12:18 - 000000000 ____D C:\Users\tokar\ansel
2024-12-01 12:17 - 2024-12-07 11:52 - 000003834 _____ C:\Windows\system32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-12-01 12:17 - 2024-12-07 11:52 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-12-01 12:17 - 2024-12-05 18:54 - 000000000 ____D C:\Program Files\AMD
2024-12-01 12:17 - 2024-12-05 14:48 - 000000000 ____D C:\Users\tokar\AppData\Local\Downloaded Installations
2024-12-01 12:17 - 2024-12-01 12:17 - 000003528 _____ C:\Windows\system32\Tasks\AMDAutoUpdate
2024-12-01 12:17 - 2024-12-01 12:17 - 000000000 ____D C:\Users\tokar\AppData\Local\AMD
2024-12-01 12:17 - 2024-12-01 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-12-01 12:17 - 2024-12-01 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Ryzen Master
2024-12-01 12:17 - 2024-11-26 08:37 - 003074088 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-12-01 12:17 - 2024-11-26 08:37 - 002369064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-12-01 12:17 - 2024-11-26 08:37 - 000270888 _____ C:\Windows\system32\FvSDK_x64.dll
2024-12-01 12:17 - 2024-11-26 08:37 - 000245288 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2024-12-01 12:17 - 2024-11-26 08:17 - 000180760 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2024-12-01 12:17 - 2024-11-26 08:17 - 000159768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2024-12-01 12:17 - 2024-11-08 01:09 - 000059928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2024-12-01 12:15 - 2024-12-05 19:00 - 000000000 ____D C:\ProgramData\Package Cache
2024-12-01 12:15 - 2024-12-05 16:07 - 000000000 ____D C:\AMD
2024-12-01 12:15 - 2024-12-01 12:15 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\MMC
2024-12-01 12:15 - 2024-12-01 12:15 - 000000000 ____D C:\Users\tokar\AppData\Roaming\AMD
2024-12-01 12:15 - 2024-12-01 12:15 - 000000000 ____D C:\Users\tokar\AppData\Local\setup
2024-12-01 12:15 - 2024-12-01 12:15 - 000000000 ____D C:\Program Files (x86)\AMD
2024-12-01 12:11 - 2024-12-02 12:14 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Spelling
2024-12-01 12:06 - 2024-12-06 20:05 - 000003608 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1791491201-4104823955-1735782586-1001
2024-12-01 12:06 - 2024-12-05 14:38 - 000000000 ____D C:\Users\tokar\AppData\Local\PlaceholderTileLogoFolder
2024-12-01 12:06 - 2024-12-03 09:06 - 000000000 ___RD C:\Users\tokar\OneDrive
2024-12-01 12:06 - 2024-12-01 12:06 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2024-12-01 12:04 - 2024-12-07 23:01 - 000000000 ____D C:\Users\tokar\AppData\Local\D3DSCache
2024-12-01 12:04 - 2024-12-05 18:53 - 000000000 ____D C:\Users\tokar\AppData\Local\Packages
2024-12-01 12:04 - 2024-12-02 17:03 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Adobe
2024-12-01 12:04 - 2024-12-01 12:09 - 000000000 ____D C:\Users\tokar\AppData\Local\ConnectedDevicesPlatform
2024-12-01 12:04 - 2024-12-01 12:05 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-12-01 12:04 - 2024-12-01 12:04 - 000338040 _____ () C:\Windows\system32\AsusDownLoadLicense.exe
2024-12-01 12:04 - 2024-12-01 12:04 - 000000000 ___SD C:\Users\tokar\AppData\Roaming\Microsoft\Crypto
2024-12-01 12:04 - 2024-12-01 12:04 - 000000000 ___RD C:\Users\tokar\3D Objects
2024-12-01 12:04 - 2024-12-01 12:04 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Vault
2024-12-01 12:04 - 2024-12-01 12:04 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Network
2024-12-01 12:04 - 2024-12-01 12:04 - 000000000 ____D C:\Users\tokar\AppData\LocalLow\NVIDIA
2024-12-01 12:04 - 2024-12-01 12:04 - 000000000 ____D C:\Users\tokar\AppData\Local\VirtualStore
2024-12-01 12:04 - 2024-12-01 12:04 - 000000000 ____D C:\Users\tokar\AppData\Local\Publishers
2024-12-01 12:03 - 2024-12-08 12:19 - 000000000 ___SD C:\Users\tokar\AppData\Roaming\Microsoft\Credentials
2024-12-01 12:03 - 2024-12-08 12:18 - 000000000 ____D C:\ProgramData\NVIDIA
2024-12-01 12:03 - 2024-12-07 12:04 - 000885196 _____ C:\Windows\system32\PerfStringBackup.INI
2024-12-01 12:03 - 2024-12-06 20:43 - 000000000 ____D C:\ProgramData\Packages
2024-12-01 12:03 - 2024-12-02 18:46 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-12-01 12:03 - 2024-12-01 12:21 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2024-12-01 12:03 - 2024-12-01 12:17 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-12-01 12:03 - 2024-12-01 12:03 - 000000000 ___SD C:\Users\tokar\AppData\Roaming\Microsoft\SystemCertificates
2024-12-01 12:03 - 2024-12-01 12:03 - 000000000 ___SD C:\Users\tokar\AppData\Roaming\Microsoft\Protect
2024-12-01 12:03 - 2024-12-01 12:03 - 000000000 ____D C:\Windows\system32\lxss
2024-12-01 12:02 - 2024-12-02 17:03 - 000000000 ____D C:\Users\tokar
2024-12-01 12:02 - 2024-12-01 12:04 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Windows
2024-12-01 12:02 - 2024-12-01 12:02 - 000000020 ___SH C:\Users\tokar\ntuser.ini
2024-12-01 12:00 - 2024-12-01 12:00 - 000000000 ____D C:\Windows\CSC
2024-12-01 11:59 - 2024-12-01 11:59 - 000000000 _SHDL C:\Documents and Settings
2024-12-01 11:58 - 2024-12-08 12:18 - 000901328 _____ () C:\Windows\system32\wpbbin.exe
2024-12-01 11:58 - 2024-12-08 12:18 - 000845256 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-12-01 11:58 - 2024-12-08 12:18 - 000008192 ___SH C:\DumpStack.log.tmp
2024-12-01 11:58 - 2024-12-08 12:18 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-12-01 11:58 - 2024-12-07 19:19 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-12-01 11:58 - 2024-12-07 18:16 - 000000000 ____D C:\ProgramData\ASUS
2024-12-01 11:58 - 2024-12-07 11:51 - 000440896 _____ C:\Windows\system32\FNTCACHE.DAT
2024-12-01 11:58 - 2024-12-03 14:51 - 000000000 ____D C:\Windows\Panther
2024-12-01 11:58 - 2024-12-02 11:56 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-12-01 11:58 - 2024-12-01 12:15 - 000003632 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-01 11:58 - 2024-12-01 12:15 - 000003508 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-12-01 11:58 - 2024-12-01 11:58 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2024-12-01 11:58 - 2024-12-01 11:58 - 000000000 ____D C:\Windows\ServiceProfiles
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-12-08 12:18 - 2023-12-04 03:47 - 000000000 ____D C:\Windows\SystemTemp
2024-12-08 12:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2024-12-08 12:18 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-07 23:15 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-12-07 16:46 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-12-07 12:04 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-12-07 11:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-12-06 20:43 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-05 14:37 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat
2024-12-03 09:01 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-12-03 09:01 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-12-03 09:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-12-03 09:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-12-03 09:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-12-03 09:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-12-03 09:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-12-03 09:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-12-03 09:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2024-12-03 09:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-12-03 09:00 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-12-02 12:23 - 2023-12-04 03:47 - 000000000 ____D C:\Windows\InboxApps
2024-12-02 12:23 - 2019-12-07 15:41 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2024-12-02 12:23 - 2019-12-07 15:41 - 000000000 ___SD C:\Windows\system32\AppV
2024-12-02 12:23 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-12-02 12:23 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-12-02 12:23 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-12-02 12:23 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-12-02 12:23 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-12-02 12:23 - 2019-12-07 15:39 - 000000000 ____D C:\Windows\system32\OpenSSH
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\DDFs
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-12-02 12:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\DiagTrack
2024-12-02 12:23 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2024-12-02 12:04 - 2019-12-07 10:14 - 000000000 ___SD C:\Program Files\Windows Sidebar
2024-12-02 12:04 - 2019-12-07 10:14 - 000000000 ___SD C:\Program Files (x86)\Windows Sidebar
2024-12-02 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2024-12-02 11:47 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2024-12-01 12:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2024-12-01 12:00 - 2019-12-07 15:39 - 000000000 ____D C:\Windows\system32\FxsTmp
2024-12-01 12:00 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\spool
2024-12-01 12:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2024-12-01 11:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Drivers\DriverData
2024-12-01 11:57 - 2019-12-07 10:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template
==================== Files in the root of some directories ========
2024-12-02 16:47 - 2024-12-08 12:19 - 000002041 _____ () C:\Users\tokar\IP_Log_Data.js
2024-12-02 16:47 - 2024-12-08 12:19 - 000001336 _____ () C:\Users\tokar\Network_Meter_Data.js
2024-12-02 12:09 - 2024-12-02 17:04 - 000000629 _____ () C:\Users\tokar\AppData\Roaming\All CPU MeterV3_Settings.ini
2024-12-07 23:03 - 2024-12-07 23:04 - 000000845 _____ () C:\Users\tokar\AppData\Roaming\Drives Meter_Settings.ini
2024-12-02 17:04 - 2024-12-02 17:05 - 000000287 _____ () C:\Users\tokar\AppData\Roaming\GPU MeterV2_Settings.ini
2024-12-02 17:05 - 2024-12-02 17:06 - 000000913 _____ () C:\Users\tokar\AppData\Roaming\Network Meter_Settings.ini
2024-12-02 12:16 - 2024-12-07 23:15 - 000000026 _____ () C:\Users\tokar\AppData\Roaming\Network Meter_Usage.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================