Dobry den, prosim o preventivnu kontrolu. Dakujem
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-05-2023 01
Ran by tokar (administrator) on TOKIBEAST (ASUS System Product Name) (14-05-2023 15:12:54)
Running from C:\Users\tokar\OneDrive\Plocha\FRST64.exe
Loaded Profiles: tokar
Platform: Microsoft Windows 10 Pro Version 21H2 19044.2965 (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicator.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCopyAccelerator.exe
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(explorer.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe
(explorer.exe ->) (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\Windows Sidebar\sidebar.exe
(explorer.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (DITEC, a.s. -> ) C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e34a87a86b660c23\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(svchost.exe ->) (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.) C:\Program Files\EXPERTool\TBPanel.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_11.2302.5.0_x64__8wekyb3d8bbwe\Time.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21422.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21422.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [13134160 2023-05-02] (SteelSeries ApS -> SteelSeries ApS)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3050080 2022-11-05] (Skutta, Kristjan -> )
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Run: [Disig Web Signer] => C:\Program Files (x86)\Disig\Web Signer\WebSignerTray.exe [254080 2021-02-04] (Disig a.s. -> Disig a.s.)
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Run: [HP Deskjet 5520 series (NET)] => C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\yzmatrix.scr [2768896 2006-09-15] () [File not signed]
HKLM\...\Print\Monitors\HP B611 Status Monitor: C:\Windows\system32\hpinkstsB611LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 5520 series): C:\Windows\system32\HPDiscoPMB611.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar990.lnk [2023-05-14]
ShortcutTarget: Sidebar990.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [File not signed] [File is in use]
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {14408F0E-ACF5-499F-9781-2F94D48EEB8A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [123872 2023-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {1D02B5FF-EA01-46F1-AA10-C60AA63851DD} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1DFFCF74-24FA-42E3-BC10-8E40F2708BBB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-04-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {25C7C9C5-9F2F-4807-A4A7-D591650D54D0} - System32\Tasks\EXPERTool => C:\Program Files\EXPERTool\TBPanel.exe [4515280 2022-11-16] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.)
Task: {37F7210B-F004-4CD8-ADFD-2FA9FBD108BC} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [672064 2022-12-02] (Advanced Micro Devices Inc. -> )
Task: {384266DF-1BA6-4F36-BE9E-B09F853E9A25} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2398447425-3274881014-1611824863-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4196744 2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {3A6407EA-3313-4B61-8976-CC1139135EB4} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [58832 2023-05-03] (HP Inc. -> HP Inc.)
Task: {41F4A866-6B3D-4E92-A8C5-C1688B2043C8} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [58832 2023-05-03] (HP Inc. -> HP Inc.)
Task: {425B50A9-A68B-4177-AA5C-D0C768FC68E9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-04-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {438037AD-D824-49A5-A485-90FF7466F52A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {48F11979-8FB8-4736-8382-7E36BBB03570} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {55CB62E7-3F62-4D57-A254-903221D777F3} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-10] (Overwolf Ltd -> Overwolf LTD)
Task: {6B1A439F-3287-47BB-B014-DDB1363D328E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-04-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {88D78E4C-7199-4321-BACE-966434339922} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4196744 2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {93B5B30E-302C-4113-BF2B-C348230C6677} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9AB5BE91-A3CA-4E22-8FB8-8D875B3D412E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {9AC060EA-489B-49B3-9BC7-DA83A2DCBBC5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {9BD5925A-60D4-490F-8FEA-6F962E1675C7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B3BCBE0F-52A3-4393-968C-F5AADDC3075B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26513416 2023-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD843184-8F36-4F0A-8F2A-94A0C153ABDD} - System32\Tasks\HPCustParticipation HP Deskjet 5520 series => C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPCustPartic.exe [4119656 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {D098872C-A2F5-4E17-9910-E0F7CB992ECC} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D3BF5442-F89E-4C40-9554-5BC0AFCC0CB1} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-04-27] (Mozilla Corporation -> Mozilla Foundation)
Task: {DCCB3A7A-FD2F-441A-8C2D-B451AF09F3D2} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DFAC4DC2-67E2-4C46-814D-B6A1E618A1AB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-04-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E4E0F164-2594-4124-812B-FAEB646A6EC1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26513416 2023-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {E92DDD4D-AF82-4AD5-894D-2FBE84D34078} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EDC54585-6A2F-40A4-AFF6-83707826EA4E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [123872 2023-05-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {F4B70D96-17F0-4A52-A42B-D16193EB886B} - System32\Tasks\Core Temp Autostart tokar => C:\Program Files\Core Temp\Core Temp.exe [1035096 2021-04-11] (ALCPU -> ALCPU)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{599b1d2c-5456-4ddf-9a91-748cadf2a09b}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\tokar\AppData\Local\Microsoft\Edge\User Data\Default [2023-04-29]
FireFox:
========
FF DefaultProfile: n6sro3jy.default
FF ProfilePath: C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\n6sro3jy.default [2021-12-13]
FF ProfilePath: C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release [2023-05-12]
FF Session Restore: Mozilla\Firefox\Profiles\zs3fcvbj.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\zs3fcvbj.default-release -> hxxps://moja.uniqa.sk
FF Extension: (BetterTTV) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\firefox@betterttv.net.xpi [2023-04-27]
FF Extension: (uBlock Origin) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\uBlock0@raymondhill.net.xpi [2023-05-05]
FF Extension: (Three Wolf Moon Shirt) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{50193c98-9eee-4b67-9244-95ced154911d}.xpi [2021-12-01]
FF Extension: (Video DownloadHelper) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2022-12-09]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-05-04]
FF Extension: (Dark Fox) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\zs3fcvbj.default-release\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2021-12-01]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~1.DLL [2021-02-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\PROGRA~2\Ditec\DViewer\NPDITE~1.DLL [2021-02-09] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~2.DLL [2021-02-09] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~3.DLL [2021-02-09] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~1.DLL [2021-09-06] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~2.DLL [2021-09-06] (DITEC, a.s. -> Ditec,a.s.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [842128 2023-05-10] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-11-08] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11749376 2023-05-12] (Microsoft Corporation -> Microsoft Corporation)
R2 dLauncherLoopback; C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe [154960 2019-08-02] (DITEC, a.s. -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncHelper.exe [3445624 2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-05-03] (HP Inc. -> HP Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.086.0423.0001\OneDriveUpdaterService.exe [3781496 2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-10] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; F:\Rockstar Games Launcher\RockstarService.exe [1846768 2023-04-04] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336256 2023-05-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35152 2023-05-02] (SteelSeries ApS -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-04-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-04-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e34a87a86b660c23\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e34a87a86b660c23\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 A38CCID; C:\Windows\system32\DRIVERS\a38ccid.sys [86880 2018-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Card Systems Ltd.)
R3 ALSysIO; C:\Users\tokar\AppData\Local\Temp\ALSysIO64.sys [47240 2023-05-10] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== ATTENTION
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [47784 2021-09-03] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\Windows\system32\DRIVERS\sshid.sys [44456 2023-03-13] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 SteelSeries_Sonar_VAD; C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_da15ab44a6216a8e\SteelSeries-Sonar-VAD.sys [95440 2023-03-17] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49616 2023-04-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [498944 2023-04-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99608 2023-04-26] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-05-10 06:49 - 2023-05-10 06:49 - 000000000 ___HD C:\$WinREAgent
2023-05-07 16:43 - 2023-05-07 16:43 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Bibliography
2023-05-03 18:12 - 2023-04-26 18:47 - 002172472 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2023-05-03 18:12 - 2023-04-26 18:47 - 002172472 _____ C:\Windows\system32\vulkaninfo.exe
2023-05-03 18:12 - 2023-04-26 18:47 - 001607736 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-05-03 18:12 - 2023-04-26 18:47 - 001607736 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2023-05-03 18:12 - 2023-04-26 18:47 - 001479216 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2023-05-03 18:12 - 2023-04-26 18:47 - 001479216 _____ C:\Windows\system32\vulkan-1.dll
2023-05-03 18:12 - 2023-04-26 18:47 - 001211448 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2023-05-03 18:12 - 2023-04-26 18:47 - 001211448 _____ C:\Windows\SysWOW64\vulkan-1.dll
2023-05-03 18:12 - 2023-04-26 18:46 - 001487872 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2023-05-03 18:12 - 2023-04-26 18:46 - 001226736 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2023-05-03 18:12 - 2023-04-26 18:43 - 001536512 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2023-05-03 18:12 - 2023-04-26 18:43 - 001194480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2023-05-03 18:12 - 2023-04-26 18:43 - 000851968 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2023-05-03 18:12 - 2023-04-26 18:43 - 000671256 _____ C:\Windows\system32\nvofapi64.dll
2023-05-03 18:12 - 2023-04-26 18:43 - 000506352 _____ C:\Windows\SysWOW64\nvofapi.dll
2023-05-03 18:12 - 2023-04-26 18:42 - 002166296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2023-05-03 18:12 - 2023-04-26 18:42 - 001621016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2023-05-03 18:12 - 2023-04-26 18:42 - 000979456 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2023-05-03 18:12 - 2023-04-26 18:42 - 000758768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2023-05-03 18:12 - 2023-04-26 18:42 - 000741400 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2023-05-03 18:12 - 2023-04-26 18:41 - 013769216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2023-05-03 18:12 - 2023-04-26 18:41 - 011650048 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2023-05-03 18:12 - 2023-04-26 18:41 - 006083568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2023-05-03 18:12 - 2023-04-26 18:41 - 005911024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2023-05-03 18:12 - 2023-04-26 18:41 - 005835288 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2023-05-03 18:12 - 2023-04-26 18:41 - 003430448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2023-05-03 18:12 - 2023-04-26 18:41 - 000457712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2023-05-03 18:12 - 2023-04-26 18:40 - 000853016 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2023-05-03 18:12 - 2023-04-26 01:34 - 000104369 _____ C:\Windows\system32\nvinfo.pb
2023-04-30 14:52 - 2023-04-26 18:39 - 006798792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2023-04-27 10:00 - 2023-05-10 12:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-04-17 06:30 - 2023-04-17 06:30 - 000165998 _____ C:\Users\tokar\Downloads\Object20230412104110540-1.pdf
2023-04-17 06:30 - 2023-04-17 06:30 - 000165998 _____ C:\Users\tokar\Downloads\Object20230412104110540.pdf
2023-04-14 17:49 - 2023-04-14 17:49 - 000000000 ____D C:\Windows\system32\Drivers\mde
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-05-14 15:13 - 2021-12-12 22:11 - 000000000 ____D C:\FRST
2023-05-14 15:07 - 2020-11-19 00:45 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-05-14 15:06 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-14 14:57 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-05-14 14:57 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-05-14 14:55 - 2021-12-01 18:45 - 000000000 ____D C:\ProgramData\NVIDIA
2023-05-14 13:17 - 2022-06-03 13:17 - 000000000 ____D C:\Program Files (x86)\Overwolf
2023-05-14 12:47 - 2021-12-11 17:12 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-05-14 12:47 - 2021-12-09 14:24 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-05-14 12:47 - 2021-12-09 14:24 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-05-14 12:36 - 2020-11-19 01:47 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-05-12 19:07 - 2021-12-09 14:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-05-12 19:04 - 2020-11-19 01:47 - 000003632 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-12 19:04 - 2020-11-19 01:47 - 000003508 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-05-11 18:39 - 2021-12-01 18:57 - 000000000 ____D C:\Users\tokar\AppData\Local\Battle.net
2023-05-11 13:57 - 2022-06-03 13:16 - 000000000 ____D C:\Users\tokar\AppData\Local\Overwolf
2023-05-11 13:57 - 2022-03-27 00:07 - 000000000 ____D C:\Users\tokar\AppData\Roaming\weakauras-companion
2023-05-11 13:11 - 2021-12-01 18:28 - 000000000 ____D C:\Users\tokar\AppData\Local\D3DSCache
2023-05-11 13:11 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-05-10 17:17 - 2021-12-07 18:59 - 000000000 ____D C:\Users\tokar\AppData\Roaming\vlc
2023-05-10 15:53 - 2022-10-12 15:55 - 000002083 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-05-10 15:53 - 2021-12-02 15:46 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-05-10 14:59 - 2021-12-01 19:35 - 000049064 _____ C:\Windows\system32\perfh01B.dat
2023-05-10 14:59 - 2021-12-01 19:35 - 000012206 _____ C:\Windows\system32\perfc01B.dat
2023-05-10 14:59 - 2021-12-01 18:27 - 000885196 _____ C:\Windows\system32\PerfStringBackup.INI
2023-05-10 14:52 - 2021-12-01 18:22 - 000880672 _____ C:\Windows\system32\wpbbin.exe
2023-05-10 14:52 - 2021-12-01 18:22 - 000842128 _____ C:\Windows\system32\AsusUpdateCheck.exe
2023-05-10 14:52 - 2021-12-01 18:22 - 000008192 ___SH C:\DumpStack.log.tmp
2023-05-10 14:52 - 2020-11-19 01:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-05-10 14:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2023-05-10 12:24 - 2021-12-01 18:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-05-10 12:24 - 2020-11-19 00:45 - 000439856 _____ C:\Windows\system32\FNTCACHE.DAT
2023-05-10 12:24 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-05-10 12:23 - 2019-12-07 16:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-05-10 12:23 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-05-10 12:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-05-10 12:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-05-10 12:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-05-10 12:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-05-10 12:23 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-05-10 12:05 - 2021-12-01 19:06 - 000000000 ____D C:\Users\tokar\AppData\Roaming\discord
2023-05-10 11:19 - 2021-12-01 19:06 - 000000000 ____D C:\Users\tokar\AppData\Local\Discord
2023-05-10 06:53 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-05-10 06:52 - 2020-11-19 01:47 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-05-10 06:49 - 2021-12-01 19:05 - 000000000 ____D C:\Windows\system32\MRT
2023-05-10 06:47 - 2021-12-01 19:05 - 159583304 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-05-09 12:03 - 2021-12-02 18:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games
2023-05-09 12:03 - 2021-12-01 19:00 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2023-05-08 14:02 - 2021-12-09 14:26 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Excel
2023-05-07 16:51 - 2021-12-09 14:25 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Word
2023-05-07 12:19 - 2022-02-16 22:42 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2398447425-3274881014-1611824863-1001
2023-05-05 13:31 - 2021-12-01 18:56 - 000000000 ____D C:\Program Files (x86)\Battle.net
2023-05-03 18:14 - 2021-12-01 18:39 - 000000000 ____D C:\Users\tokar\AppData\Local\NVIDIA
2023-05-03 15:24 - 2021-12-01 19:52 - 000000000 ____D C:\Windows\system32\Tasks\HP
2023-05-03 15:24 - 2021-12-01 19:43 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-04-30 23:32 - 2021-12-01 18:59 - 000000000 ____D C:\Program Files (x86)\Steam
2023-04-30 14:54 - 2021-12-01 19:49 - 000003082 _____ C:\Windows\system32\Tasks\EXPERTool
2023-04-30 14:54 - 2021-12-01 19:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EXPERTool
2023-04-30 14:54 - 2021-12-01 19:49 - 000000000 ____D C:\Program Files\EXPERTool
2023-04-28 15:01 - 2021-12-01 19:06 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-04-27 16:18 - 2021-12-01 18:33 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-04-26 18:39 - 2021-12-01 18:26 - 007935568 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2023-04-26 15:15 - 2020-11-19 01:45 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-04-24 17:46 - 2021-12-01 19:53 - 000000000 ____D C:\Users\tokar\AppData\Roaming\steelseries-gg-client
2023-04-19 13:11 - 2022-02-16 00:25 - 000000000 ____D C:\Users\tokar\AppData\Local\CrashDumps
2023-04-17 06:28 - 2022-10-19 10:04 - 000000000 ____D C:\Users\tokar\AppData\Local\eID_klient
2023-04-14 17:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-04-14 17:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-04-14 17:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-04-14 17:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\es-MX
2023-04-14 17:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2023-04-14 17:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2023-04-14 17:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
==================== Files in the root of some directories ========
2021-12-01 19:12 - 2023-02-06 12:44 - 000000629 _____ () C:\Users\tokar\AppData\Roaming\All CPU MeterV3_Settings.ini
2021-12-01 19:15 - 2023-03-23 19:19 - 000000287 _____ () C:\Users\tokar\AppData\Roaming\GPU MeterV2_Settings.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-05-2023 01
Ran by tokar (14-05-2023 15:13:34)
Running from C:\Users\tokar\OneDrive\Plocha
Microsoft Windows 10 Pro Version 21H2 19044.2965 (X64) (2021-12-01 16:23:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2398447425-3274881014-1611824863-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2398447425-3274881014-1611824863-503 - Limited - Disabled)
Guest (S-1-5-21-2398447425-3274881014-1611824863-501 - Limited - Disabled)
tokar (S-1-5-21-2398447425-3274881014-1611824863-1001 - Administrator - Enabled) => C:\Users\tokar
WDAGUtilityAccount (S-1-5-21-2398447425-3274881014-1611824863-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
8GadgetPack (HKLM-x32\...\{36E60904-D465-40F7-82A7-A9C7A84C29B7}) (Version: 24.0.0 - 8GadgetPack.net)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1051-1033-7760-BC15014EA700}) (Version: 23.001.20174 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.83 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.17.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 7.0.3.5 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Master (HKLM\...\{02247819-03CD-414E-AC8D-FD518BFBA445}) (Version: 2.10.1.2287 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.10.1.2287 - Advanced Micro Devices, Inc.)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Balík softvéru eID (HKLM-x32\...\{d2c66c1e-5862-43e7-abe2-9c895312112c}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlestate Games Launcher 13.0.2.1988 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 13.0.2.1988 - Battlestate Games)
Bit4id - miniLector (HKLM-x32\...\Bit4id - miniLector) (Version: 3.7 - Bit4id)
Burning Crusade Classic (HKLM-x32\...\Burning Crusade Classic) (Version: - Blizzard Entertainment)
Core Temp 1.17.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.17.1 - ALCPU)
CurseForge (HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.224.1.1 - Overwolf app)
D.Launcher (x86) (HKLM-x32\...\{0DC85C46-746B-4BC5-B727-D5434DF7E5D0}) (Version: 1.2.0.2 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{EDB276CE-A945-4201-A552-2683B13C321F}) (Version: 4.0.24 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{6648F510-5044-4CA9-BC21-494A2A198B3A}) (Version: 4.0.17 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{8d169eac-87e2-4981-825f-701b32f24d72}) (Version: 1.0.29 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{73D635BE-5D6F-43D3-8C1F-63B5CD4D5953}) (Version: 4.0.2033 - DITEC, a.s.)
Discord (HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Disig Web Signer (HKLM-x32\...\{41C0F02D-2389-4AB5-975C-C2363E7C554C}) (Version: 2.0.7 - Disig)
eID Klient (HKLM-x32\...\{76B43494-AB68-4271-92BA-033B0DBAFD59}) (Version: 4.6.0 - MV SR)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.13.0.4.22617 - Battlestate Games)
EXPERTool v11.9 (HKLM\...\{660D3DDC-C82C-49B9-9511-284043713699}_is1) (Version: 11.9.0.1 - Gainward Co. Ltd.)
GemPcCCID (HKLM\...\{C2C14C20-A217-4FCA-B668-89B6C70B6EFF}) (Version: 2.0.7 - Gemalto)
HP Deskjet 5520 series Basic Device Software (HKLM\...\{014A59C8-DDA5-4788-906D-1F5CBA8A583D}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 5520 series Product Improvement Study (HKLM\...\{29E392C4-E0C3-4E96-85B6-03B8E3963310}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 113.0.1774.42 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 113.0.1774.42 - Microsoft Corporation)
Microsoft Office 2016 Professional Plus - sk-sk (HKLM\...\ProPlusRetail - sk-sk) (Version: 16.0.16327.20248 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.086.0423.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30133 (HKLM-x32\...\{38b2c744-ad08-4d5b-91a2-3fb6f739ff3e}) (Version: 14.29.30133.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30133 (HKLM\...\{E699E009-1C3C-4E50-9B57-2B39F0954C7F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30133 (HKLM\...\{6CD9E9ED-906D-4196-8DC3-F987D2F6615F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30133 (HKLM-x32\...\{42667D2E-B054-46C1-9D46-2EE1332C14C1}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30133 (HKLM-x32\...\{EC9807DE-B577-47B1-A024-0251805ACF24}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 sk) (HKLM\...\Mozilla Firefox 112.0.2 (x64 sk)) (Version: 112.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.2 - Mozilla)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation)
NVIDIA Grafický ovládač 531.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 531.79 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.16327.20248 - Microsoft Corporation) Hidden
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.223.0.27 - Overwolf Ltd.)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.71.1428 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.1.7.0 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 37.0.0 (HKLM\...\SteelSeries GG) (Version: 37.0.0 - SteelSeries ApS)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.18 - VideoLAN)
Warcraft Logs Companion (HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\Overwolf_ecboebafnpgnolnpgppohegbpjbhffiahodgijdp) (Version: 2.2.9 - Overwolf app)
WeakAuras Companion 4.0.0 (HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\574e4d1e-05f6-5376-9898-b829d00eef2e) (Version: 4.0.0 - Buds)
Windows Kontrola stavu počítača (HKLM\...\{8D6B9DC1-A437-41E0-8DF1-9F37748394AE}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Wrath of the Lich King Classic (HKLM-x32\...\Wrath of the Lich King Classic) (Version: - Blizzard Entertainment)
Packages:
=========
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-12-06] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_145.2.1084.0_x64__v10z8vjag6ke6 [2023-05-07] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa [2023-04-01] (Apple Inc.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-05-03] (NVIDIA Corp.)
Rozšírenia pre video HEVC -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_2.0.60962.0_x64__8wekyb3d8bbwe [2023-04-27] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-21] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll (AddGadgets IT -> )
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2398447425-3274881014-1611824863-1001_Classes\CLSID\{5b55a44a-d008-49aa-9234-86fb7709bc0a}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\GPU_Meter_V2.4.gadget\GPUStatusReader.dll (AddGadgets IT -> Orbmu2k)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.086.0423.0001\FileSyncShell64.dll [2023-05-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e34a87a86b660c23\nvshext.dll [2023-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-03-19 15:12 - 2018-03-19 15:12 - 000113678 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libgcc_s_dw2-1.dll
2018-03-19 15:12 - 2018-03-19 15:12 - 001542158 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libstdc++-6.dll
2021-12-01 19:11 - 2017-10-07 16:28 - 000608256 _____ (Helmut Buhler) [File not signed] C:\Program Files\Windows Sidebar\dwmapi.dll
2021-12-09 14:22 - 2021-12-09 14:22 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll
2021-12-09 14:22 - 2021-12-09 14:22 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll
2018-03-19 15:12 - 2018-03-19 15:12 - 000047104 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libwinpthread-1.dll
2019-07-01 14:51 - 2019-07-01 14:51 - 006623384 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\Qt5Core.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2023-01-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2023-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-2398447425-3274881014-1611824863-1001\...\StartupApproved\Run: => "Disig Web Signer"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{53C3E040-A75A-4C0C-82E8-612201D4AEF3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C2D6D953-7ECB-4CD0-9BA0-4DC640B5723F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C71AFB43-2459-426C-BC8A-77C22F486C2A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{713A8875-016A-46F0-A7AD-48F0CEC3B6E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{D32D6FD3-96D4-49AE-90C0-228D335E245F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A00FB31B-1D49-4C57-A0EA-12215B9D8848}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{32A420F3-2025-4FDD-A113-855A0057CD60}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FB4F5307-F3DB-48C2-9DC4-EF882310FA25}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{034E4612-264E-427D-BFE8-61D375C7898D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{1993C863-9F50-4F25-9D28-CDA2743C32F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{F590C54E-2AC0-4C1F-8EC4-4E116C082A98}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{370CEA0E-4074-409C-A37E-00517110B670}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{403F5AD6-FF88-44DD-97FF-A1D6D7CDD5BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9059F263-890D-4E57-B0C8-1AC16D9A666E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6F26BF7F-8C72-4D90-96DB-644C89B4D19D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{82139CB3-C127-45F6-8F36-F5B5C3EF50A3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{47219659-E0E4-421D-A949-36FF629B1D19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{ADD01913-9969-44AD-9D5F-BA3FC0775E53}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{80C1FE84-3390-423A-A632-C5C917340F2C}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{616FF936-4AB4-491D-AFBC-312E4F372F20}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{CF08F7F4-F2B8-49C5-9B3C-97E00BE5C040}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{6AC0DEF6-7328-4F97-A3FD-71B0F5025BD6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CC2B8FBC-08F0-44AA-B6ED-72C2945AD3B9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{71B7BDC4-BBF3-4A2C-8C79-6603E7305BBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{39F871AB-F5A5-4D79-B063-1E46C7E791F8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AC02E800-72B9-476C-87DE-0C107FD1E93D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2536BD53-7C7A-423A-9920-9119F5C6326D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{91D8C7DA-72CC-4BB5-A69B-02C7CA3B5475}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{C548227E-C7BF-48C9-935B-E20A1708A089}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{3A41DA54-CE06-4310-8BFD-E36A30DD3F2A}F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{29A2D209-6477-4B90-81B5-FE73A8CCE5DB}F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{809D3E51-AF69-49B4-AE0B-E185FC227CF3}] => (Block) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{20497EE7-1FAD-4DF2-98F7-7752374566F6}] => (Block) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{783C4AB6-D1A3-465B-A41F-DCB1BA94C4BC}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [{F063CB51-9D12-46E6-B345-D9A73F44F4E4}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [{ED06D830-69C5-4854-883D-77A8EC4D46EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{3E9BC2FE-F23A-47CA-9617-3EC8D82AF8C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{047ABB9C-B6C4-42F5-8C95-2725C1154BE3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{76FF7494-1524-405D-AB9F-1D1FBB81D466}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{1FC4EDEC-9616-4A20-97AC-6CF7BDACEF06}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{39F50806-BF22-4CAC-B286-C59B00032197}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{ED9D23C0-BCC4-4C29-B01A-559344895438}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{8EA72022-AF58-4F8D-9D5E-21BADA590591}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [TCP Query User{80240CCE-800B-4A32-86B1-A3B8A8AB1F52}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [UDP Query User{54F89B86-6F63-4230-B0DE-EE5FC880D6F4}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{3F6443ED-FB8F-4693-8413-54C2E47F8816}F:\call of duty\_retail_\cod.exe] => (Allow) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [UDP Query User{D2A90EE1-9D86-4C83-AF2A-3998F28EBC01}F:\call of duty\_retail_\cod.exe] => (Allow) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [{2E34C7BA-B73E-4E0E-9AE0-68D2FC03DCF8}] => (Block) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [{8F50E0D9-169F-4D93-91EA-19218135A15B}] => (Block) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [TCP Query User{475CEB89-BFB0-4D6B-AA23-9C3BC9E9E06A}F:\call of duty\_retail_\sp22\sp22-cod.exe] => (Allow) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [UDP Query User{20CEB074-CE03-4E6B-9441-5422C824FE93}F:\call of duty\_retail_\sp22\sp22-cod.exe] => (Allow) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [{3ED673EC-4078-4782-9A6A-5E56E7CC309C}] => (Block) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [{4402285A-0E2D-4C24-B7ED-016A07F4685A}] => (Block) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [TCP Query User{FC132734-F4A1-4C9E-A462-F47B32699E99}F:\the sims 4\game\bin\ts4_x64.exe] => (Allow) F:\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [UDP Query User{9E7A7896-58DF-45A0-97AD-CB7214A36BD4}F:\the sims 4\game\bin\ts4_x64.exe] => (Allow) F:\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{83606242-7BDF-4780-BFB4-3CD08520A6EC}] => (Allow) F:\SteamLibrary\steamapps\common\Mafia Definitive Edition\2KLauncher\LauncherPatcher.exe => No File
FirewallRules: [{EF2141CF-F7C1-4DC6-835B-751D62C3E673}] => (Allow) F:\SteamLibrary\steamapps\common\Mafia Definitive Edition\2KLauncher\LauncherPatcher.exe => No File
FirewallRules: [{C1DEF51A-12A4-482C-8F08-B733A1C63EC2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{6D99C91B-CF62-4D62-AB84-A4484EAAE216}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{8AE6C010-C028-493A-AE43-C322041D5398}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{8DC4DA82-57D4-43CA-80B3-7447CE550216}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{AEEDD5A1-B63D-4D35-8173-3D50EA127584}] => (Allow) F:\SteamLibrary\steamapps\common\The Last of Us Part I\launcher.exe => No File
FirewallRules: [{01F5B907-1146-41B9-B85E-FCE1C4C667B6}] => (Allow) F:\SteamLibrary\steamapps\common\The Last of Us Part I\launcher.exe => No File
FirewallRules: [{4C50E095-DF52-4B56-B576-88DC21D21C72}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{4E731134-858A-4CA2-A84F-490D5F00C2A2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{E715B5C9-4A8E-4388-B316-902DE06AC8D8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{FE14377F-E13D-43A4-B84C-02949730A3E3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{ABA67B3F-330B-4B89-9485-C8B30E7728F3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B736D4BD-36EF-48C8-9BA8-FAF3C31A94FF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{2EC1B1BC-5A11-4D43-80E3-F33CBED9B2D2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{58982114-79C1-4229-A56B-7BBDC184F94A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{1AF178A2-5E73-4FF9-A548-02F7C6A0F0EC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{27E47C5F-21EF-4455-8A2E-A7CC2B36F0AA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0535EADC-9B71-435D-8A9C-A15868872F6F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{69EF460E-FB9F-48B7-A1D7-34506B8682DA}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{A26D90ED-35FE-45BF-926D-7079D9ABFDE3}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{BF76ABCE-C05F-44FE-864D-5B8B12382BC1}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\113.0.1774.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CB3AC001-DEFB-4634-B02D-998B080D2CEA}] => (Allow) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{3FDB7057-FCFD-437E-BF89-077BDCF25FAC}] => (Allow) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{B913EE2C-BF55-4114-9440-71F8BEF1BFF5}] => (Block) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{870070E3-5568-4720-8815-5B291A5EAFE3}] => (Block) C:\Program Files (x86)\Overwolf\0.221.109.14\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{30587935-6735-4958-AC24-625D47C2788A}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.27\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{3E7D45F7-A88C-40E7-B078-EF5D8EC857C9}] => (Allow) C:\Program Files (x86)\Overwolf\0.223.0.27\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
==================== Restore Points =========================
24-04-2023 18:20:00 Scheduled Checkpoint
03-05-2023 16:05:28 Scheduled Checkpoint
10-05-2023 06:49:04 Inštalátor modulov systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/10/2023 02:52:24 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\TOKIBEAST$ via https://AMD-KeyId-907d65e9b562315997dd5 ... s/Aik/scep failed:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 10 May 2023 12:52:23 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 08f5ba6a-139d-4580-8b33-2b8893aea935
Method: GET(344ms)
Stage: GetCACaps
Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (05/10/2023 02:52:24 PM) (Source: CertEnroll) (EventID: 57) (User: NT AUTHORITY)
Description: The "Plaut eID KSP" provider was not loaded because initialization failed.
Error: (05/10/2023 12:24:36 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\TOKIBEAST$ via https://AMD-KeyId-907d65e9b562315997dd5 ... s/Aik/scep failed:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-907d65e9b562315997dd5ad086b2b7598957b92c.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 10 May 2023 10:24:35 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 955bb674-4d3b-4de9-9d37-3cc7a2b4e7a0
Method: GET(328ms)
Stage: GetCACaps
Not found (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (05/10/2023 12:24:35 PM) (Source: CertEnroll) (EventID: 57) (User: NT AUTHORITY)
Description: The "Plaut eID KSP" provider was not loaded because initialization failed.
Error: (05/10/2023 12:24:02 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (05/10/2023 12:24:02 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (05/07/2023 12:16:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: nvcontainer.exe, verzia: 1.37.3103.4323, časová značka: 0x621dbda6
Názov chybujúceho modulu: nvapi64.dll, verzia: 31.0.15.3179, časová značka: 0x64480885
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000048bb80
Identifikácia chybujúceho procesu: 0x14d8
Čas spustenia chybujúcej aplikácie: 0x01d980cc84fa9cb9
Cesta chybujúcej aplikácie: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
Cesta chybujúceho modulu: C:\Windows\SYSTEM32\nvapi64.dll
Identifikácia hlásenia: 5170d4c2-759e-406c-a342-a99b1848747f
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (04/19/2023 01:11:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: Microsoft.Photos.exe, verzia: 2023.10030.7003.0, časová značka: 0x640782a3
Názov chybujúceho modulu: KERNELBASE.dll, verzia: 10.0.19041.2788, časová značka: 0x62e593d6
Kód výnimky: 0xc000027b
Odstup chyby: 0x0000000000117cd2
Identifikácia chybujúceho procesu: 0x40f8
Čas spustenia chybujúcej aplikácie: 0x01d972af8bcc1c12
Cesta chybujúcej aplikácie: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2023.10030.7003.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
Cesta chybujúceho modulu: C:\Windows\System32\KERNELBASE.dll
Identifikácia hlásenia: c1259487-e180-4d62-bdc4-42de9c72b8b4
Celé meno chybujúceho balíka: Microsoft.Windows.Photos_2023.10030.7003.0_x64__8wekyb3d8bbwe
Identifikácia chybujúcej aplikácie vzhľadom na balík: App
System errors:
=============
Error: (05/14/2023 02:55:42 PM) (Source: TPM) (EventID: 15) (User: )
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
Error: (05/14/2023 12:35:29 PM) (Source: TPM) (EventID: 15) (User: )
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
Error: (05/12/2023 07:04:00 PM) (Source: TPM) (EventID: 15) (User: )
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
Error: (05/11/2023 12:58:03 PM) (Source: TPM) (EventID: 15) (User: )
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
Error: (05/10/2023 02:52:13 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
Error: (05/10/2023 12:24:24 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
Error: (05/10/2023 10:33:15 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 1) (User: NT AUTHORITY)
Description: A fatal hardware error has occurred. A record describing the condition is contained in the data section of this event.
Error: (05/10/2023 06:33:16 AM) (Source: TPM) (EventID: 15) (User: )
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.
Windows Defender:
================
Date: 2023-05-14 15:06:42
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-05-11 16:33:41
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-05-09 15:30:47
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-05-08 15:46:14
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-05-07 17:36:52
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
CodeIntegrity:
===============
Date: 2023-05-11 13:11:12
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-04-16 16:08:41
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\ProgramData\Microsoft\Windows Defender\Platform\4.18.2303.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-03-24 11:13:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-03-16 16:56:49
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\ProgramData\Microsoft\Windows Defender\Platform\4.18.2302.3-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-02-21 12:52:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-02-05 14:11:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2423 08/10/2021
Motherboard: ASUSTeK COMPUTER INC. TUF GAMING B550-PLUS (WI-FI)
Processor: AMD Ryzen 5 5600X 6-Core Processor
Percentage of memory in use: 15%
Total physical RAM: 32679.5 MB
Available physical RAM: 27588.55 MB
Total Virtual: 37543.5 MB
Available Virtual: 30299.48 MB
==================== Drives ================================
Drive c: (Win 10 x64) (Fixed) (Total:931.02 GB) (Free:517.97 GB) (Model: WDS100T3X0C-00SJG0) NTFS
Drive d: (Toki HDD) (Fixed) (Total:931.51 GB) (Free:826.95 GB) (Model: ST1000DM010-2EP102) NTFS
Drive f: (Toki SSD) (Fixed) (Total:256.12 GB) (Free:139.64 GB) (Model: Crucial_CT275MX300SSD1) NTFS
\\?\Volume{8a153a08-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
\\?\Volume{fdcc8b75-0000-0000-0000-70c1e8000000}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 256.2 GB) (Disk ID: 8A153A08)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=256.1 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8A153A32)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: FDCC8B75)
Partition 1: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=500 MB) - (Type=27)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím o preventívnu kontrolu
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o preventívnu kontrolu
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\tokar\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
FirewallRules: [{809D3E51-AF69-49B4-AE0B-E185FC227CF3}] => (Block) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{20497EE7-1FAD-4DF2-98F7-7752374566F6}] => (Block) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{80240CCE-800B-4A32-86B1-A3B8A8AB1F52}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [UDP Query User{54F89B86-6F63-4230-B0DE-EE5FC880D6F4}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{3F6443ED-FB8F-4693-8413-54C2E47F8816}F:\call of duty\_retail_\cod.exe] => (Allow) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [UDP Query User{D2A90EE1-9D86-4C83-AF2A-3998F28EBC01}F:\call of duty\_retail_\cod.exe] => (Allow) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [{2E34C7BA-B73E-4E0E-9AE0-68D2FC03DCF8}] => (Block) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [{8F50E0D9-169F-4D93-91EA-19218135A15B}] => (Block) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [TCP Query User{475CEB89-BFB0-4D6B-AA23-9C3BC9E9E06A}F:\call of duty\_retail_\sp22\sp22-cod.exe] => (Allow) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [UDP Query User{20CEB074-CE03-4E6B-9441-5422C824FE93}F:\call of duty\_retail_\sp22\sp22-cod.exe] => (Allow) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [{3ED673EC-4078-4782-9A6A-5E56E7CC309C}] => (Block) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [{4402285A-0E2D-4C24-B7ED-016A07F4685A}] => (Block) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
- Vzorný návštěvník
- Příspěvky: 177
- Registrován: 29 črc 2008 11:15
- Bydliště: Košice, SK
- Kontaktovat uživatele:
Re: prosím o preventívnu kontrolu
Fix result of Farbar Recovery Scan Tool (x64) Version: 12-05-2023 01
Ran by tokar (14-05-2023 16:26:58) Run:4
Running from C:\Users\tokar\OneDrive\Plocha
Loaded Profiles: tokar
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
FirewallRules: [{809D3E51-AF69-49B4-AE0B-E185FC227CF3}] => (Block) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{20497EE7-1FAD-4DF2-98F7-7752374566F6}] => (Block) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{80240CCE-800B-4A32-86B1-A3B8A8AB1F52}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [UDP Query User{54F89B86-6F63-4230-B0DE-EE5FC880D6F4}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{3F6443ED-FB8F-4693-8413-54C2E47F8816}F:\call of duty\_retail_\cod.exe] => (Allow) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [UDP Query User{D2A90EE1-9D86-4C83-AF2A-3998F28EBC01}F:\call of duty\_retail_\cod.exe] => (Allow) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [{2E34C7BA-B73E-4E0E-9AE0-68D2FC03DCF8}] => (Block) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [{8F50E0D9-169F-4D93-91EA-19218135A15B}] => (Block) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [TCP Query User{475CEB89-BFB0-4D6B-AA23-9C3BC9E9E06A}F:\call of duty\_retail_\sp22\sp22-cod.exe] => (Allow) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [UDP Query User{20CEB074-CE03-4E6B-9441-5422C824FE93}F:\call of duty\_retail_\sp22\sp22-cod.exe] => (Allow) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [{3ED673EC-4078-4782-9A6A-5E56E7CC309C}] => (Block) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [{4402285A-0E2D-4C24-B7ED-016A07F4685A}] => (Block) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{809D3E51-AF69-49B4-AE0B-E185FC227CF3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{20497EE7-1FAD-4DF2-98F7-7752374566F6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{80240CCE-800B-4A32-86B1-A3B8A8AB1F52}F:\call of duty modern warfare\modernwarfare.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{54F89B86-6F63-4230-B0DE-EE5FC880D6F4}F:\call of duty modern warfare\modernwarfare.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3F6443ED-FB8F-4693-8413-54C2E47F8816}F:\call of duty\_retail_\cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D2A90EE1-9D86-4C83-AF2A-3998F28EBC01}F:\call of duty\_retail_\cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2E34C7BA-B73E-4E0E-9AE0-68D2FC03DCF8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8F50E0D9-169F-4D93-91EA-19218135A15B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{475CEB89-BFB0-4D6B-AA23-9C3BC9E9E06A}F:\call of duty\_retail_\sp22\sp22-cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{20CEB074-CE03-4E6B-9441-5422C824FE93}F:\call of duty\_retail_\sp22\sp22-cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3ED673EC-4078-4782-9A6A-5E56E7CC309C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4402285A-0E2D-4C24-B7ED-016A07F4685A}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 806105832 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 578799739 B
Windows/system/drivers => 14381910 B
Edge => 0 B
Firefox => 331200211 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 242500666 B
systemprofile32 => 242500666 B
LocalService => 242500666 B
NetworkService => 242868928 B
tokar => 305663050 B
RecycleBin => 887 B
EmptyTemp: => 2.8 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:27:43 ====
Ran by tokar (14-05-2023 16:26:58) Run:4
Running from C:\Users\tokar\OneDrive\Plocha
Loaded Profiles: tokar
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
FirewallRules: [{809D3E51-AF69-49B4-AE0B-E185FC227CF3}] => (Block) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{20497EE7-1FAD-4DF2-98F7-7752374566F6}] => (Block) F:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{80240CCE-800B-4A32-86B1-A3B8A8AB1F52}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [UDP Query User{54F89B86-6F63-4230-B0DE-EE5FC880D6F4}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{3F6443ED-FB8F-4693-8413-54C2E47F8816}F:\call of duty\_retail_\cod.exe] => (Allow) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [UDP Query User{D2A90EE1-9D86-4C83-AF2A-3998F28EBC01}F:\call of duty\_retail_\cod.exe] => (Allow) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [{2E34C7BA-B73E-4E0E-9AE0-68D2FC03DCF8}] => (Block) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [{8F50E0D9-169F-4D93-91EA-19218135A15B}] => (Block) F:\call of duty\_retail_\cod.exe => No File
FirewallRules: [TCP Query User{475CEB89-BFB0-4D6B-AA23-9C3BC9E9E06A}F:\call of duty\_retail_\sp22\sp22-cod.exe] => (Allow) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [UDP Query User{20CEB074-CE03-4E6B-9441-5422C824FE93}F:\call of duty\_retail_\sp22\sp22-cod.exe] => (Allow) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [{3ED673EC-4078-4782-9A6A-5E56E7CC309C}] => (Block) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
FirewallRules: [{4402285A-0E2D-4C24-B7ED-016A07F4685A}] => (Block) F:\call of duty\_retail_\sp22\sp22-cod.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{809D3E51-AF69-49B4-AE0B-E185FC227CF3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{20497EE7-1FAD-4DF2-98F7-7752374566F6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{80240CCE-800B-4A32-86B1-A3B8A8AB1F52}F:\call of duty modern warfare\modernwarfare.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{54F89B86-6F63-4230-B0DE-EE5FC880D6F4}F:\call of duty modern warfare\modernwarfare.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3F6443ED-FB8F-4693-8413-54C2E47F8816}F:\call of duty\_retail_\cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D2A90EE1-9D86-4C83-AF2A-3998F28EBC01}F:\call of duty\_retail_\cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2E34C7BA-B73E-4E0E-9AE0-68D2FC03DCF8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8F50E0D9-169F-4D93-91EA-19218135A15B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{475CEB89-BFB0-4D6B-AA23-9C3BC9E9E06A}F:\call of duty\_retail_\sp22\sp22-cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{20CEB074-CE03-4E6B-9441-5422C824FE93}F:\call of duty\_retail_\sp22\sp22-cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3ED673EC-4078-4782-9A6A-5E56E7CC309C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4402285A-0E2D-4C24-B7ED-016A07F4685A}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 806105832 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 578799739 B
Windows/system/drivers => 14381910 B
Edge => 0 B
Firefox => 331200211 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 242500666 B
systemprofile32 => 242500666 B
LocalService => 242500666 B
NetworkService => 242868928 B
tokar => 305663050 B
RecycleBin => 887 B
EmptyTemp: => 2.8 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:27:43 ====
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o preventívnu kontrolu
Smazáno, log již vypadá OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
- Vzorný návštěvník
- Příspěvky: 177
- Registrován: 29 črc 2008 11:15
- Bydliště: Košice, SK
- Kontaktovat uživatele:
Re: prosím o preventívnu kontrolu
dakujem pekne za expresne vybavenie.
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o preventívnu kontrolu
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.