![2 :)](./images/smilies/2.gif)
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-12-2021
Ran by tokar (12-12-2021 21:12:48)
Running from C:\Users\tokar\OneDrive\Plocha
Microsoft Windows 10 Pro Version 20H2 19042.1387 (X64) (2021-12-01 16:23:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2398447425-3274881014-1611824863-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2398447425-3274881014-1611824863-503 - Limited - Disabled)
Guest (S-1-5-21-2398447425-3274881014-1611824863-501 - Limited - Disabled)
tokar (S-1-5-21-2398447425-3274881014-1611824863-1001 - Administrator - Enabled) => C:\Users\tokar
WDAGUtilityAccount (S-1-5-21-2398447425-3274881014-1611824863-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
8GadgetPack (HKLM-x32\...\{36E60904-D465-40F7-82A7-A9C7A84C29B7}) (Version: 24.0.0 - 8GadgetPack.net)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1051-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlestate Games Launcher 12.11.1.1827 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.11.1.1827 - Battlestate Games)
Core Temp 1.17.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.17.1 - ALCPU)
Discord (HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.12.0.16029 - Battlestate Games)
EXPERTool v11.6 (HKLM\...\{660D3DDC-C82C-49B9-9511-284043713699}_is1) (Version: 11.6.0.0 - Gainward Co. Ltd.)
HP Deskjet 5520 series Basic Device Software (HKLM\...\{014A59C8-DDA5-4788-906D-1F5CBA8A583D}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 5520 series Product Improvement Study (HKLM\...\{29E392C4-E0C3-4E96-85B6-03B8E3963310}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft Office 2016 Professional Plus - sk-sk (HKLM\...\ProPlusRetail - sk-sk) (Version: 16.0.14701.20226 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30133 (HKLM-x32\...\{38b2c744-ad08-4d5b-91a2-3fb6f739ff3e}) (Version: 14.29.30133.0 - Microsoft Corporation)
Mozilla Firefox (x64 sk) (HKLM\...\Mozilla Firefox 95.0 (x64 sk)) (Version: 95.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.2 - Mozilla)
NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.123 - NVIDIA Corporation)
NVIDIA Grafický ovládač 497.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 497.09 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.94 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20210 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 12.0.0 (HKLM\...\SteelSeries GG) (Version: 12.0.0 - SteelSeries ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Windows Kontrola stavu počítača (HKLM\...\{BDBC15A5-E9F1-485F-A0D3-7526052FB2B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
WowUp 2.5.2 (HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\b31ca559-50e4-54d8-a458-330e72a28314) (Version: 2.5.2 - Jliddev)
Packages:
=========
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-12-06] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_132.5.268.0_x64__v10z8vjag6ke6 [2021-12-09] (HP Inc.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.11.12030.0_x64__8wekyb3d8bbwe [2021-12-12] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-12-01] (NVIDIA Corp.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll (AddGadgets IT -> )
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{5b55a44a-d008-49aa-9234-86fb7709bc0a}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\GPU_Meter_V2.4.gadget\GPUStatusReader.dll (AddGadgets IT -> Orbmu2k)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncShell64.dll [2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_642e50d7b66aa2a4\nvshext.dll [2021-11-27] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2021-12-01 18:48 - 2011-03-02 12:40 - 000164864 _____ () [File not signed] C:\Program Files\WinRAR\rarext.dll
2021-12-01 18:11 - 2017-10-07 15:28 - 000608256 _____ (Helmut Buhler) [File not signed] C:\Program Files\Windows Sidebar\dwmapi.dll
2021-07-27 16:54 - 2021-07-27 16:54 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\GG\HIDDLL.dll
2021-07-27 16:54 - 2021-07-27 16:54 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\GG\ISPDLL.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{53C3E040-A75A-4C0C-82E8-612201D4AEF3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C2D6D953-7ECB-4CD0-9BA0-4DC640B5723F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C71AFB43-2459-426C-BC8A-77C22F486C2A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2D7AF0B2-5BFB-4B0E-A6EF-F82FC78D3AB4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{713A8875-016A-46F0-A7AD-48F0CEC3B6E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D1AAD1A5-0BF5-4EF4-83DE-1DB1922D65FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EB5F09E3-6CAA-451B-A950-88D565CA4D43}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{842CABA2-F5BE-4718-ACBB-A67F3D4372D7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{D32D6FD3-96D4-49AE-90C0-228D335E245F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A00FB31B-1D49-4C57-A0EA-12215B9D8848}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{32A420F3-2025-4FDD-A113-855A0057CD60}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FB4F5307-F3DB-48C2-9DC4-EF882310FA25}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{034E4612-264E-427D-BFE8-61D375C7898D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{1993C863-9F50-4F25-9D28-CDA2743C32F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{F590C54E-2AC0-4C1F-8EC4-4E116C082A98}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{370CEA0E-4074-409C-A37E-00517110B670}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{403F5AD6-FF88-44DD-97FF-A1D6D7CDD5BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9059F263-890D-4E57-B0C8-1AC16D9A666E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6F26BF7F-8C72-4D90-96DB-644C89B4D19D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{82139CB3-C127-45F6-8F36-F5B5C3EF50A3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{47219659-E0E4-421D-A949-36FF629B1D19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{ADD01913-9969-44AD-9D5F-BA3FC0775E53}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{80C1FE84-3390-423A-A632-C5C917340F2C}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{616FF936-4AB4-491D-AFBC-312E4F372F20}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{CF08F7F4-F2B8-49C5-9B3C-97E00BE5C040}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{4C8E793D-39B4-406D-900F-170996069F47}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6AC0DEF6-7328-4F97-A3FD-71B0F5025BD6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4FAFBFA4-F359-4189-BD45-8BEF8688F8C9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CC2B8FBC-08F0-44AA-B6ED-72C2945AD3B9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9FD1E3CA-50FC-4ABF-BF39-5CCBAF0CC1EA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CAD707E4-4FC2-472B-9740-58202858E14D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{B180EE4C-93DC-4D3E-B27C-E08079D51870}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{53D773CE-6DBA-40EC-BAC4-55F98CB9FB38}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{2C131F54-DC4E-4530-B294-F48E00C13985}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{71B7BDC4-BBF3-4A2C-8C79-6603E7305BBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{39F871AB-F5A5-4D79-B063-1E46C7E791F8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AC02E800-72B9-476C-87DE-0C107FD1E93D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2536BD53-7C7A-423A-9920-9119F5C6326D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
05-12-2021 09:28:30 Scheduled Checkpoint
==================== Faulty Device Manager Devices ============
Name: HID-compliant headset
Description: HID-compliant headset
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: WUDFRd
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/12/2021 02:39:34 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\TOKIBEAST$ via https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep failed:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Sun, 12 Dec 2021 13:39:33 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 74633d55-cabf-4442-9605-73f91960a8a4
Method: GET(281ms)
Stage: GetCACaps
Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (12/12/2021 07:00:58 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\TOKIBEAST$ via https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep failed:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Sun, 12 Dec 2021 06:00:57 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 41fb6222-47d6-4069-8d6a-9157199a4554
Method: GET(328ms)
Stage: GetCACaps
Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (12/11/2021 10:35:38 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0xC004C008
Sku Id=84832881-46ef-4124-8abc-eb493cdcf78e
Error: (12/11/2021 10:35:38 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: License acquisition failure details.
hr=0xC004C008
Error: (12/11/2021 11:57:09 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v Toki HDD (D:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
Error: (12/10/2021 08:40:47 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Acquisition of End User License failed. hr=0xC004C008
Sku Id=84832881-46ef-4124-8abc-eb493cdcf78e
Error: (12/10/2021 08:40:47 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: License acquisition failure details.
hr=0xC004C008
Error: (12/09/2021 02:35:26 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v Toki HDD (D:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)
System errors:
=============
Error: (12/12/2021 06:22:23 PM) (Source: TPM) (EventID: 15) (User: )
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
Error: (12/12/2021 02:39:33 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby SstpSvc, od ktorej závisí služba RasMan, zlyhalo kvôli nasledujúcej chybe:
The operation completed successfully.
Error: (12/12/2021 02:37:57 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
Error: (12/12/2021 02:39:03 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 10:20:50 on 12. 12. 2021 was unexpected.
Error: (12/12/2021 02:37:53 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684A fatal error occurred processing the restoration data.
Error: (12/12/2021 07:00:46 AM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
Error: (12/12/2021 07:00:50 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 22:49:59 on 11. 12. 2021 was unexpected.
Error: (12/12/2021 07:00:42 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684A fatal error occurred processing the restoration data.
Windows Defender:
================
Date: 2021-12-11 11:57:04
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-12-09 12:51:41
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-12-08 16:18:17
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-12-07 15:20:43
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-12-05 12:37:02
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2423 08/10/2021
Motherboard: ASUSTeK COMPUTER INC. TUF GAMING B550-PLUS (WI-FI)
Processor: AMD Ryzen 5 5600X 6-Core Processor
Percentage of memory in use: 15%
Total physical RAM: 32679.5 MB
Available physical RAM: 27590.49 MB
Total Virtual: 37543.5 MB
Available Virtual: 30759.93 MB
==================== Drives ================================
Drive c: (Win 10 x64) (Fixed) (Total:931.02 GB) (Free:760.22 GB) NTFS
Drive d: (Toki HDD) (Fixed) (Total:931.51 GB) (Free:921.15 GB) NTFS
Drive f: (Toki SSD) (Fixed) (Total:256.12 GB) (Free:256.02 GB) NTFS
\\?\Volume{8a153a08-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
\\?\Volume{fdcc8b75-0000-0000-0000-70c1e8000000}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 256.2 GB) (Disk ID: 8A153A08)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=256.1 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8A153A32)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: FDCC8B75)
Partition 1: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=500 MB) - (Type=27)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-12-2021
Ran by tokar (administrator) on TOKIBEAST (ASUS System Product Name) (12-12-2021 21:11:56)
Running from C:\Users\tokar\OneDrive\Plocha
Loaded Profiles: tokar
Platform: Microsoft Windows 10 Pro Version 20H2 19042.1387 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.) C:\Program Files\EXPERTool\TBPanel.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicator.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_642e50d7b66aa2a4\Display.NvContainer\NVDisplay.Container.exe <2>
(Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesEngine.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [14823760 2021-12-07] (SteelSeries ApS -> SteelSeries ApS)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2703520 2021-12-08] (Skutta, Kristjan -> )
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Run: [HP Deskjet 5520 series (NET)] => C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP B611 Status Monitor: C:\Windows\system32\hpinkstsB611LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 5520 series): C:\Windows\system32\HPDiscoPMB611.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar211.lnk [2021-12-12]
ShortcutTarget: Sidebar211.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [File not signed] [File is in use]
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {060790B7-CB90-4D82-8116-66466061A732} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2021-11-26] (Nvidia Corporation -> NVIDIA Corporation)
Task: {16085D16-7DCA-4080-841D-B77571F7D37E} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4074344 2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {1886A197-9CE0-40C2-B6D8-E05908DA4849} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-11-26] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1CA7FDBE-B1BF-438F-BFD4-C2F36DCB71CC} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\96.0.1054.53\Installer\setup.exe [2874808 2021-12-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E375136-40B0-42ED-B8D6-B96B5D5BC55C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-12-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2689A042-E84E-49FD-9288-822629924339} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-26] (Nvidia Corporation -> NVIDIA Corporation)
Task: {280C86C3-2C36-4127-B389-7E40D800BBF3} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38560 2021-12-01] (HP Inc. -> HP Inc.)
Task: {2EAE7D23-BED8-402F-ACED-973A896A7BDD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-11-26] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3222669C-FF33-4A92-BED9-14922DA97564} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6331288 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B801E9F-76CB-4B3A-9890-8ABFC5DF3027} - System32\Tasks\PCMeter\Startup => E:\uTorrent\PROGRAMY\PCMeterV4\PCMeterV0.4.exe (No File)
Task: {5150EA08-9A74-4098-A37F-68AA6F981091} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {6631A775-F33D-4EA8-BC7F-4CF1A12E3829} - System32\Tasks\EXPERTool => C:\Program Files\EXPERTool\TBPanel.exe [4460624 2021-09-10] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.)
Task: {6EFDC0E6-270D-4FB2-A7D7-BA2645808B67} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-26] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7DA7BB32-9E1A-494E-954B-799BF1EA2AC1} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2398447425-3274881014-1611824863-1001 => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (No File)
Task: {8E201DD6-DBFD-48B9-B2B0-7B1B25D647EA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339464 2021-11-26] (Nvidia Corporation -> NVIDIA Corporation)
Task: {97166E78-9D5B-41E2-8E10-B2A1524C279C} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38560 2021-12-01] (HP Inc. -> HP Inc.)
Task: {A5A8792D-5B7D-4BC0-9157-41F2E9F34C04} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-26] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {A72D85E7-ECE4-409C-B990-F26FFF342C98} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-12-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B56ABF30-FE79-45C4-ABC2-F63797E0045A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {BBADDF38-9C99-40FB-9B78-B687077185F8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22799320 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6A4DFCF-5C49-4DA8-87F0-D4BAF89B9F8C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111032 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCD8E1C2-E29A-4F09-A336-D00A9897F969} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111032 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD843184-8F36-4F0A-8F2A-94A0C153ABDD} - System32\Tasks\HPCustParticipation HP Deskjet 5520 series => C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPCustPartic.exe [4119656 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {CFA39DBE-0475-43A2-8F97-43CC7689A259} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-26] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D2527908-07C7-4FF7-8373-33770A978BDA} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {D8B05402-25FC-4C7E-BFD1-0C6E8246255A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-12-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E51293D6-1895-4CFA-9C75-AFD1F1BEFB3B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-26] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EC0080EE-669A-4CDE-A6D5-B60BFAC170E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-12-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EFF673A7-D820-48D5-BDC8-40E204A88395} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22799320 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {F3C71C14-89C8-48F3-804F-A70F67C3AECC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6331288 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {F4B70D96-17F0-4A52-A42B-D16193EB886B} - System32\Tasks\Core Temp Autostart tokar => C:\Program Files\Core Temp\Core Temp.exe [1035096 2021-04-11] (ALCPU -> ALCPU)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{599b1d2c-5456-4ddf-9a91-748cadf2a09b}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\tokar\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-02]
FireFox:
========
FF DefaultProfile: n6sro3jy.default
FF ProfilePath: C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\n6sro3jy.default [2021-12-01]
FF ProfilePath: C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release [2021-12-12]
FF Session Restore: Mozilla\Firefox\Profiles\zs3fcvbj.default-release -> is enabled.
FF Extension: (BetterTTV) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\firefox@betterttv.net.xpi [2021-12-07]
FF Extension: (uBlock Origin) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-12-04]
FF Extension: (Three Wolf Moon Shirt) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{50193c98-9eee-4b67-9244-95ced154911d}.xpi [2021-12-01]
FF Extension: (Video DownloadHelper) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-12-01]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-12-01]
FF Extension: (Dark Fox) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2021-12-01]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [842128 2021-12-12] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8944720 2021-11-23] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129160 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.230.1107.0004\FileSyncHelper.exe [3280760 2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-12-01] (HP Inc. -> HP Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.230.1107.0004\OneDriveUpdaterService.exe [3737976 2021-12-11] (Microsoft Corporation -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6136520 2021-12-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [31568 2021-12-07] (SteelSeries ApS -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-12-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-12-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_642e50d7b66aa2a4\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_642e50d7b66aa2a4\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ALSysIO; C:\Users\tokar\AppData\Local\Temp\ALSysIO64.sys [47240 2021-12-12] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== ATTENTION
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 MpKsl837bf84b; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{083BF879-51CB-4B81-AAA6-9F397A26D397}\MpKslDrv.sys [134376 2021-12-12] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-26] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [47784 2021-09-03] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\Windows\system32\DRIVERS\sshid.sys [47760 2021-09-01] (SteelSeries ApS -> SteelSeries ApS)
R3 SteelSeries_Sonar_VAD; C:\Windows\System32\DriverStore\FileRepository\steelseries.sonar.vad.inf_amd64_991d9c8eaf1c6f0e\SteelSeries.Sonar.VAD.sys [77200 2021-11-22] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48520 2021-12-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435424 2021-12-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86240 2021-12-03] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; C:\Users\tokar\AppData\Local\Temp\tmpFD0F.tmp [14544 2021-12-01] (Noriyuki MIYAZAKI -> OpenLibSys.org) <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-12 21:11 - 2021-12-12 21:12 - 000000000 ____D C:\FRST
2021-12-11 16:12 - 2021-12-12 18:25 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2021-12-11 16:05 - 2021-12-11 16:05 - 000003608 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2398447425-3274881014-1611824863-1001
2021-12-10 16:13 - 2021-12-12 07:00 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-12-09 13:24 - 2021-12-11 16:12 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-12-09 13:24 - 2021-12-11 16:12 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-09 13:24 - 2021-12-09 13:24 - 000000000 ___RD C:\Users\Default\OneDrive
2021-12-09 13:22 - 2021-12-09 13:22 - 000002573 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-12-09 13:22 - 2021-12-09 13:22 - 000002534 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2021-12-09 13:22 - 2021-12-09 13:22 - 000002495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-12-09 13:22 - 2021-12-09 13:22 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-12-09 13:22 - 2021-12-09 13:22 - 000002490 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-12-09 13:22 - 2021-12-09 13:22 - 000002485 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-12-09 13:22 - 2021-12-09 13:22 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-12-09 13:22 - 2021-12-09 13:22 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-12-09 13:22 - 2021-12-09 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje balíka Microsoft Office
2021-12-09 13:21 - 2021-12-09 13:22 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-09 13:21 - 2021-12-09 13:21 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-12-07 17:59 - 2021-12-12 10:34 - 000000000 ____D C:\Users\tokar\AppData\Roaming\vlc
2021-12-07 17:58 - 2021-12-07 17:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2021-12-07 17:58 - 2021-12-07 17:58 - 000000000 ____D C:\Program Files (x86)\VideoLAN
2021-12-04 18:27 - 2021-12-04 18:27 - 000000000 ____D C:\Users\tokar\AppData\Roaming\NVIDIA
2021-12-04 18:13 - 2021-12-12 08:13 - 000004782 _____ C:\Windows\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask
2021-12-03 14:40 - 2021-12-03 14:40 - 000000000 ____D C:\Users\tokar\AppData\Local\PeerDistRepub
2021-12-03 12:38 - 2021-12-08 15:22 - 000000000 ____D C:\Users\tokar\AppData\Roaming\WowUp
2021-12-03 12:38 - 2021-12-03 12:38 - 000002279 _____ C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WowUp.lnk
2021-12-03 12:38 - 2021-12-03 12:38 - 000000000 ____D C:\Users\tokar\AppData\Local\wowup-updater
2021-12-03 12:38 - 2021-12-03 12:38 - 000000000 ____D C:\Users\tokar\.local
2021-12-02 18:36 - 2021-12-02 18:36 - 000000000 ____D C:\Users\tokar\AppData\LocalLow\Battlestate Games
2021-12-02 18:31 - 2021-12-02 18:31 - 000000000 ____D C:\Users\tokar\OneDrive\Documents\The Witcher 3
2021-12-02 18:30 - 2021-12-02 18:31 - 000000000 ____D C:\Users\tokar\OneDrive\Documents\Euro Truck Simulator 2
2021-12-02 18:30 - 2021-12-02 18:30 - 000000000 ____D C:\Users\tokar\OneDrive\Documents\Escape from Tarkov
2021-12-02 18:30 - 2021-12-02 18:30 - 000000000 ____D C:\Users\tokar\OneDrive\Documents\Electronic Arts
2021-12-02 17:04 - 2021-12-12 16:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games
2021-12-02 17:04 - 2021-12-02 18:36 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Battlestate Games
2021-12-02 17:04 - 2021-12-02 17:05 - 000000000 ____D C:\Battlestate Games
2021-12-02 17:04 - 2021-12-02 17:04 - 000000000 ____D C:\Users\tokar\AppData\Local\Battlestate Games
2021-12-02 17:04 - 2021-12-02 17:04 - 000000000 ____D C:\ProgramData\Battlestate Games
2021-12-02 16:26 - 2021-12-09 17:10 - 000000000 ____D C:\Users\tokar\AppData\Roaming\HpUpdate
2021-12-02 16:26 - 2021-12-02 16:29 - 000000000 ____D C:\Users\tokar\AppData\Local\HP
2021-12-02 16:26 - 2021-12-02 16:26 - 000003780 _____ C:\Windows\system32\Tasks\HPCustParticipation HP Deskjet 5520 series
2021-12-02 16:26 - 2021-12-02 16:26 - 000000057 _____ C:\ProgramData\Ament.ini
2021-12-02 16:26 - 2021-12-02 16:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-12-02 16:26 - 2021-12-02 16:26 - 000000000 ____D C:\ProgramData\HP
2021-12-02 16:26 - 2021-12-02 16:26 - 000000000 ____D C:\Program Files\HP
2021-12-02 16:26 - 2021-12-02 16:26 - 000000000 ____D C:\Program Files (x86)\HP
2021-12-02 16:26 - 2012-10-17 04:31 - 000741480 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPMB611.dll
2021-12-02 15:06 - 2021-12-02 15:06 - 000000000 ____D C:\Users\tokar\AppData\LocalLow\Adobe
2021-12-02 15:06 - 2021-12-02 15:06 - 000000000 ____D C:\Users\tokar\AppData\Local\SolidDocuments
2021-12-02 14:46 - 2021-12-03 10:43 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-12-02 14:46 - 2021-12-03 10:43 - 000002083 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-12-02 14:46 - 2021-12-03 10:42 - 000000000 ____D C:\ProgramData\Adobe
2021-12-02 14:46 - 2021-12-02 14:46 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-12-02 14:46 - 2021-12-02 14:46 - 000000000 ____D C:\Program Files\Adobe
2021-12-02 14:45 - 2021-12-03 10:42 - 000000000 ____D C:\Users\tokar\AppData\Local\Adobe
2021-12-01 18:53 - 2021-12-03 12:43 - 000000000 ____D C:\Users\tokar\AppData\Roaming\steelseries-gg-client
2021-12-01 18:53 - 2021-12-01 18:53 - 000000000 ____D C:\ProgramData\obs-studio-hook
2021-12-01 18:52 - 2021-12-01 18:52 - 000000000 ____D C:\Windows\system32\Tasks\HP
2021-12-01 18:51 - 2021-12-01 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2021-12-01 18:50 - 2021-12-09 14:41 - 000000000 ____D C:\ProgramData\SteelSeries
2021-12-01 18:49 - 2021-12-01 18:49 - 000003094 _____ C:\Windows\system32\Tasks\EXPERTool
2021-12-01 18:49 - 2021-12-01 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EXPERTool
2021-12-01 18:49 - 2021-12-01 18:49 - 000000000 ____D C:\Program Files\EXPERTool
2021-12-01 18:48 - 2021-12-01 18:48 - 000000000 ____D C:\Users\tokar\AppData\Roaming\WinRAR
2021-12-01 18:48 - 2021-12-01 18:48 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-12-01 18:48 - 2021-12-01 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-12-01 18:48 - 2021-12-01 18:48 - 000000000 ____D C:\Program Files\WinRAR
2021-12-01 18:43 - 2021-12-01 18:43 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2021-12-01 18:37 - 2021-12-01 18:37 - 000000000 ____D C:\Windows\system32\Tasks\PCMeter
2021-12-01 18:35 - 2021-12-12 14:44 - 000049064 _____ C:\Windows\system32\perfh01B.dat
2021-12-01 18:35 - 2021-12-12 14:44 - 000012206 _____ C:\Windows\system32\perfc01B.dat
2021-12-01 18:35 - 2021-12-01 18:35 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-12-01 18:35 - 2021-12-01 18:35 - 000000000 ____D C:\Program Files\MSBuild
2021-12-01 18:35 - 2021-12-01 18:35 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-12-01 18:35 - 2021-12-01 18:35 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-12-01 18:25 - 2021-12-01 18:25 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-12-01 18:25 - 2021-12-01 18:25 - 000011785 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-12-01 18:22 - 2021-12-01 18:22 - 000000000 ___HD C:\$WinREAgent
2021-12-01 18:15 - 2021-12-04 19:43 - 000000287 _____ C:\Users\tokar\AppData\Roaming\GPU MeterV2_Settings.ini
2021-12-01 18:12 - 2021-12-04 19:43 - 000000629 _____ C:\Users\tokar\AppData\Roaming\All CPU MeterV3_Settings.ini
2021-12-01 18:12 - 2021-12-01 18:12 - 002371072 _____ C:\Windows\system32\rdpnano.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 002254336 _____ C:\Windows\system32\dwmscene.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 002111488 _____ (Digimarc) C:\Windows\SysWOW64\DMRCDecoder.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 001864192 _____ (The ICU Project) C:\Windows\SysWOW64\icu.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 001687040 _____ C:\Windows\system32\libcrypto.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 001164288 _____ C:\Windows\system32\MBR2GPT.EXE
2021-12-01 18:12 - 2021-12-01 18:12 - 000672768 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000611960 _____ C:\Windows\SysWOW64\TextShaping.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2021-12-01 18:12 - 2021-12-01 18:12 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2021-12-01 18:12 - 2021-12-01 18:12 - 000480256 _____ C:\Windows\system32\AssignedAccessCsp.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000468440 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000330752 _____ C:\Windows\SysWOW64\ssdm.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000266240 _____ C:\Windows\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000240640 _____ C:\Windows\SysWOW64\CoreMas.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000235520 _____ C:\Windows\SysWOW64\HeatCore.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2021-12-01 18:12 - 2021-12-01 18:12 - 000203264 _____ C:\Windows\system32\uwfcfgmgmt.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000190976 _____ C:\Windows\system32\BthpanContextHandler.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000170496 _____ C:\Windows\system32\DeviceUpdateCenterCsp.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000158208 _____ C:\Windows\system32\uwfcsp.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000152064 _____ C:\Windows\system32\EoAExperiences.exe
2021-12-01 18:12 - 2021-12-01 18:12 - 000138056 _____ C:\Windows\system32\HvsiManagementApi.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000101704 _____ C:\Windows\SysWOW64\HvsiManagementApi.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000095744 _____ C:\Windows\system32\VirtualMonitorManager.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000067072 _____ C:\Windows\system32\BWContextHandler.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2021-12-01 18:12 - 2021-12-01 18:12 - 000053760 _____ C:\Windows\SysWOW64\BWContextHandler.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000040960 _____ C:\Windows\system32\uwfservicingapi.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2021-12-01 18:12 - 2021-12-01 18:12 - 000010752 _____ C:\Windows\SysWOW64\agentactivationruntimestarter.exe
2021-12-01 18:12 - 2021-12-01 18:12 - 000001370 _____ C:\Windows\system32\ThirdPartyNoticesBySHS.txt
2021-12-01 18:11 - 2021-12-01 18:12 - 000000000 ____D C:\Users\tokar\AppData\Local\Sidebar7
2021-12-01 18:11 - 2021-12-01 18:11 - 002295296 _____ (Digimarc) C:\Windows\system32\DMRCDecoder.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 002260480 _____ (The ICU Project) C:\Windows\system32\icu.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000706536 _____ C:\Windows\system32\TextShaping.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000657464 _____ C:\Windows\system32\WindowManagementAPI.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000455168 _____ C:\Windows\system32\ssdm.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000363520 _____ C:\Windows\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000306688 _____ C:\Windows\system32\HeatCore.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000287232 _____ C:\Windows\system32\CoreMas.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000272384 _____ C:\Windows\system32\TpmTool.exe
2021-12-01 18:11 - 2021-12-01 18:11 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000098304 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-12-01 18:11 - 2021-12-01 18:11 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000074240 _____ C:\Windows\system32\rdsxvmaudio.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-12-01 18:11 - 2021-12-01 18:11 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe
2021-12-01 18:11 - 2021-12-01 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\8GadgetPack
2021-12-01 18:08 - 2021-12-01 18:08 - 000002922 _____ C:\Windows\system32\Tasks\Core Temp Autostart tokar
2021-12-01 18:08 - 2021-12-01 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2021-12-01 18:08 - 2021-12-01 18:08 - 000000000 ____D C:\Program Files\Core Temp
2021-12-01 18:06 - 2021-12-12 20:51 - 000000000 ____D C:\Users\tokar\AppData\Roaming\discord
2021-12-01 18:06 - 2021-12-12 20:15 - 000000000 ____D C:\Users\tokar\AppData\Local\Discord
2021-12-01 18:06 - 2021-12-01 18:06 - 000001156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-12-01 18:06 - 2021-12-01 18:06 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2021-12-01 18:06 - 2021-12-01 18:06 - 000000000 ____D C:\Users\tokar\AppData\Local\SquirrelTemp
2021-12-01 18:06 - 2021-12-01 18:06 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-12-01 18:06 - 2021-12-01 18:06 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-12-01 18:05 - 2021-12-01 18:06 - 000000000 ____D C:\Windows\system32\MRT
2021-12-01 18:01 - 2021-12-01 18:01 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-12-01 18:01 - 2021-12-01 18:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2021-12-01 18:00 - 2021-12-10 20:22 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2021-12-01 17:59 - 2021-12-09 19:49 - 000000000 ____D C:\Program Files (x86)\Steam
2021-12-01 17:59 - 2021-12-01 17:59 - 000000000 ____D C:\Users\tokar\AppData\Local\Steam
2021-12-01 17:59 - 2021-12-01 17:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2021-12-01 17:59 - 2021-12-01 17:59 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2021-12-01 17:57 - 2021-12-12 21:06 - 000000000 ____D C:\Users\tokar\AppData\Local\Battle.net
2021-12-01 17:57 - 2021-12-01 17:59 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Battle.net
2021-12-01 17:56 - 2021-12-10 20:49 - 000000000 ____D C:\Program Files (x86)\Battle.net
2021-12-01 17:56 - 2021-12-01 17:56 - 000000000 ____D C:\Users\tokar\AppData\Local\Blizzard Entertainment
2021-12-01 17:56 - 2021-12-01 17:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2021-12-01 17:56 - 2021-12-01 17:56 - 000000000 ____D C:\ProgramData\Battle.net
2021-12-01 17:50 - 2021-12-10 20:48 - 000000000 ____D C:\Users\tokar\AppData\Local\NVIDIA Corporation
2021-12-01 17:50 - 2021-12-01 17:50 - 000000000 ____D C:\Users\tokar\AppData\Local\OneDrive
2021-12-01 17:50 - 2021-12-01 17:50 - 000000000 ____D C:\Users\tokar\AppData\Local\CEF
2021-12-01 17:50 - 2021-12-01 17:50 - 000000000 ____D C:\Users\tokar\ansel
2021-12-01 17:45 - 2021-12-12 18:22 - 000000000 ____D C:\ProgramData\NVIDIA
2021-12-01 17:45 - 2021-12-01 17:45 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-01 17:45 - 2021-12-01 17:45 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-01 17:45 - 2021-12-01 17:45 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-01 17:45 - 2021-12-01 17:45 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-01 17:45 - 2021-12-01 17:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-01 17:45 - 2021-12-01 17:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-01 17:45 - 2021-12-01 17:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-01 17:45 - 2021-12-01 17:45 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-01 17:45 - 2021-12-01 17:45 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-01 17:45 - 2021-12-01 17:45 - 000000000 ____D C:\Windows\system32\lxss
2021-12-01 17:45 - 2021-12-01 17:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-12-01 17:45 - 2021-12-01 17:45 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-12-01 17:45 - 2021-11-26 20:16 - 002849992 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2021-12-01 17:45 - 2021-11-26 20:16 - 002195656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2021-12-01 17:45 - 2021-11-26 20:16 - 001294032 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2021-12-01 17:45 - 2021-11-26 20:16 - 000175248 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2021-12-01 17:45 - 2021-11-26 20:16 - 000154224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2021-12-01 17:45 - 2021-11-26 20:16 - 000078544 _____ C:\Windows\system32\FvSDK_x64.dll
2021-12-01 17:45 - 2021-11-26 20:16 - 000068296 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2021-12-01 17:45 - 2021-11-26 20:16 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2021-12-01 17:44 - 2021-12-01 17:44 - 000000000 ____D C:\Users\tokar\AppData\Local\Comms
2021-12-01 17:44 - 2021-11-26 20:16 - 000067464 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2021-12-01 17:44 - 2021-11-26 20:16 - 000048552 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2021-12-01 17:44 - 2021-11-26 20:16 - 000043408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\NvModuleTracker.sys
2021-12-01 17:44 - 2021-11-26 20:16 - 000038016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2021-12-01 17:43 - 2021-11-27 18:08 - 001874648 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-12-01 17:43 - 2021-11-27 18:08 - 001874648 _____ C:\Windows\system32\vulkaninfo.exe
2021-12-01 17:43 - 2021-11-27 18:08 - 001466808 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-12-01 17:43 - 2021-11-27 18:08 - 001450200 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-12-01 17:43 - 2021-11-27 18:08 - 001450200 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-12-01 17:43 - 2021-11-27 18:08 - 001206400 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-12-01 17:43 - 2021-11-27 18:08 - 001111272 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-12-01 17:43 - 2021-11-27 18:08 - 001111272 _____ C:\Windows\system32\vulkan-1.dll
2021-12-01 17:43 - 2021-11-27 18:08 - 000966416 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-12-01 17:43 - 2021-11-27 18:08 - 000966416 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-12-01 17:43 - 2021-11-27 18:05 - 000802232 _____ C:\Windows\system32\nvofapi64.dll
2021-12-01 17:43 - 2021-11-27 18:05 - 000658360 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-12-01 17:43 - 2021-11-27 18:05 - 000636856 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-12-01 17:43 - 2021-11-27 18:04 - 002116536 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-12-01 17:43 - 2021-11-27 18:04 - 001599416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-12-01 17:43 - 2021-11-27 18:04 - 001523328 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-12-01 17:43 - 2021-11-27 18:04 - 001172608 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-12-01 17:43 - 2021-11-27 18:04 - 000981120 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-12-01 17:43 - 2021-11-27 18:04 - 000795104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-12-01 17:43 - 2021-11-27 18:04 - 000707712 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-12-01 17:43 - 2021-11-27 18:04 - 000678328 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-12-01 17:43 - 2021-11-27 18:04 - 000564352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-12-01 17:43 - 2021-11-27 18:03 - 008725928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-12-01 17:43 - 2021-11-27 18:03 - 007845816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-12-01 17:43 - 2021-11-27 18:03 - 005728384 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2021-12-01 17:43 - 2021-11-27 18:03 - 004938880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-12-01 17:43 - 2021-11-27 18:03 - 002850432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-12-01 17:43 - 2021-11-27 18:03 - 000452208 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-12-01 17:43 - 2021-11-27 18:02 - 000849016 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-12-01 17:43 - 2021-11-27 18:01 - 006434528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-12-01 17:43 - 2021-11-26 20:16 - 000085718 _____ C:\Windows\system32\nvinfo.pb
2021-12-01 17:39 - 2021-12-01 17:50 - 000000000 ____D C:\Users\tokar\AppData\Local\NVIDIA
2021-12-01 17:39 - 2021-12-01 17:39 - 000000000 ____D C:\Users\tokar\AppData\Roaming\AMD
2021-12-01 17:39 - 2021-12-01 17:39 - 000000000 ____D C:\Users\tokar\AppData\Local\setup
2021-12-01 17:39 - 2021-12-01 17:39 - 000000000 ____D C:\Users\tokar\AppData\Local\cache
2021-12-01 17:39 - 2021-12-01 17:39 - 000000000 ____D C:\AMD
2021-12-01 17:38 - 2021-12-01 18:50 - 000000000 ____D C:\ProgramData\Package Cache
2021-12-01 17:38 - 2021-12-01 17:38 - 000000000 ____D C:\Program Files (x86)\AMD
2021-12-01 17:33 - 2021-12-12 21:11 - 000000000 ____D C:\Users\tokar\AppData\LocalLow\Mozilla
2021-12-01 17:33 - 2021-12-12 21:09 - 000000000 ____D C:\ProgramData\Mozilla
2021-12-01 17:33 - 2021-12-12 07:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-12-01 17:33 - 2021-12-11 11:10 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-12-01 17:33 - 2021-12-11 11:10 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-12-01 17:33 - 2021-12-01 17:33 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Mozilla
2021-12-01 17:33 - 2021-12-01 17:33 - 000000000 ____D C:\Users\tokar\AppData\Local\Mozilla
2021-12-01 17:31 - 2021-12-01 17:31 - 000333944 _____ (Mozilla) C:\Users\tokar\Downloads\Firefox Installer.exe
2021-12-01 17:30 - 2021-12-12 07:01 - 000000000 ___RD C:\Users\tokar\OneDrive
2021-12-01 17:30 - 2021-12-09 17:17 - 000000000 ____D C:\Users\tokar\AppData\Local\PlaceholderTileLogoFolder
2021-12-01 17:30 - 2021-12-01 17:30 - 000000000 ___HD C:\OneDriveTemp
2021-12-01 17:30 - 2021-12-01 17:30 - 000000000 ____D C:\Users\tokar\OneDrive\Documents\Vlastní šablony Office
2021-12-01 17:30 - 2021-12-01 17:30 - 000000000 ____D C:\Users\tokar\OneDrive\Documents\Toki OneDrive
2021-12-01 17:28 - 2021-12-09 13:59 - 000000000 ____D C:\Users\tokar\AppData\Local\Packages
2021-12-01 17:28 - 2021-12-05 06:53 - 000000000 ____D C:\Users\tokar\AppData\Local\D3DSCache
2021-12-01 17:28 - 2021-12-02 15:06 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Adobe
2021-12-01 17:28 - 2021-12-01 17:50 - 000000000 ____D C:\Users\tokar\AppData\Local\ConnectedDevicesPlatform
2021-12-01 17:28 - 2021-12-01 17:28 - 000000000 ___RD C:\Users\tokar\3D Objects
2021-12-01 17:28 - 2021-12-01 17:28 - 000000000 ____D C:\Users\tokar\AppData\Local\VirtualStore
2021-12-01 17:28 - 2021-12-01 17:28 - 000000000 ____D C:\Users\tokar\AppData\Local\Publishers
2021-12-01 17:27 - 2021-12-12 14:44 - 000885196 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-01 17:27 - 2021-12-03 12:38 - 000000000 ____D C:\Users\tokar
2021-12-01 17:27 - 2021-12-02 15:38 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-12-01 17:27 - 2021-12-01 18:50 - 000000000 ____D C:\Program Files\SteelSeries
2021-12-01 17:27 - 2021-12-01 17:45 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2021-12-01 17:27 - 2021-12-01 17:45 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-12-01 17:27 - 2021-12-01 17:27 - 000000020 ___SH C:\Users\tokar\ntuser.ini
2021-12-01 17:26 - 2021-11-27 18:02 - 007582680 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-12-01 17:26 - 2021-11-26 20:16 - 000125568 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2021-12-01 17:25 - 2021-12-01 17:28 - 000338272 _____ () C:\Windows\system32\AsusDownLoadLicense.exe
2021-12-01 17:24 - 2021-12-01 17:24 - 000000000 ____D C:\Windows\CSC
2021-12-01 17:23 - 2021-12-01 17:23 - 000000000 _SHDL C:\Documents and Settings
2021-12-01 17:22 - 2021-12-12 14:37 - 000880672 _____ C:\Windows\system32\wpbbin.exe
2021-12-01 17:22 - 2021-12-12 14:37 - 000842128 _____ C:\Windows\system32\AsusUpdateCheck.exe
2021-12-01 17:22 - 2021-12-12 14:37 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-01 17:22 - 2021-12-01 17:22 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-12-01 17:22 - 2021-12-01 17:22 - 000000000 ____D C:\ProgramData\ASUS
2021-12-01 17:21 - 2021-12-04 18:40 - 000000000 ____D C:\Windows\Panther
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-12 21:07 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-12 18:22 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-12 18:22 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-12-12 16:11 - 2020-11-18 23:45 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-12-12 14:49 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-12-12 14:39 - 2020-11-19 00:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-12-12 14:38 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2021-12-12 14:38 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-12-12 08:13 - 2020-11-19 00:47 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-12 07:00 - 2020-11-18 23:45 - 000438936 _____ C:\Windows\system32\FNTCACHE.DAT
2021-12-11 11:07 - 2020-11-19 00:47 - 000003576 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-11 11:07 - 2020-11-19 00:47 - 000003452 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-09 13:21 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-12-07 01:26 - 2020-11-19 00:49 - 000000000 ____D C:\ProgramData\Packages
2021-12-03 10:43 - 2020-11-19 00:45 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-12-03 10:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-12-03 10:41 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-12-02 08:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat
2021-12-01 18:58 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-12-01 18:58 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-12-01 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-12-01 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-12-01 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-12-01 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-12-01 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-12-01 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-12-01 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-12-01 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-12-01 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-12-01 18:58 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-12-01 18:18 - 2019-12-07 15:41 - 000000000 ___SD C:\Windows\system32\AppV
2021-12-01 18:18 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-12-01 18:18 - 2019-12-07 15:41 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-12-01 18:18 - 2019-12-07 15:39 - 000000000 ____D C:\Windows\system32\OpenSSH
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Keywords
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\DDFs
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\DiagTrack
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-12-01 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-12-01 18:18 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2021-12-01 18:14 - 2019-12-07 15:41 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2021-12-01 18:11 - 2020-11-19 00:47 - 002877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2021-12-01 18:11 - 2019-12-07 10:14 - 000000000 ___SD C:\Program Files\Windows Sidebar
2021-12-01 18:11 - 2019-12-07 10:14 - 000000000 ___SD C:\Program Files (x86)\Windows Sidebar
2021-12-01 17:29 - 2020-11-19 00:49 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-12-01 17:24 - 2019-12-07 15:39 - 000000000 ____D C:\Windows\system32\FxsTmp
2021-12-01 17:22 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Drivers\DriverData
2021-12-01 17:22 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-12-01 17:21 - 2019-12-07 10:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template
==================== Files in the root of some directories ========
2021-12-01 18:12 - 2021-12-04 19:43 - 000000629 _____ () C:\Users\tokar\AppData\Roaming\All CPU MeterV3_Settings.ini
2021-12-01 18:15 - 2021-12-04 19:43 - 000000287 _____ () C:\Users\tokar\AppData\Roaming\GPU MeterV2_Settings.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================