Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosim o preventivnu kontrolu

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Odpovědět
Zpráva
Autor
toki
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 180
Registrován: 29 črc 2008 11:15
Bydliště: Košice, SK
Kontaktovat uživatele:
Kontaktovat uživatele toki

Prosim o preventivnu kontrolu

#1 Příspěvek od toki »

Dobry den, prosim o preventivnu kontrolu

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
Ran by tokar (administrator) on TOKIBEAST (ASUS System Product Name) (18-10-2024 09:58:07)
Running from C:\Users\tokar\Desktop\FRST64.exe
Loaded Profiles: tokar
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5011 (X64) Language: Angličtina (USA) -> Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe ->) (HP Inc. -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicator.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\sonar\SteelSeriesSonar.exe
(explorer.exe ->) (HP Inc. -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files\Windows Sidebar\sidebar.exe
(explorer.exe ->) (Skutta Software GmbH -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (DITEC, a.s. -> ) C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_dcf94619172aceb0\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(svchost.exe ->) (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.) C:\Program Files\EXPERTool\TBPanel.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\backup\AC0A95C4-A68D-4D9B-A2AC-05013B8499A9\OfficeC2RClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [15979856 2024-09-30] (SteelSeries ApS -> SteelSeries ApS)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-4196268700-3320623930-1906940996-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919312 2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4196268700-3320623930-1906940996-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe [4060096 2024-03-26] (Skutta Software GmbH -> )
HKU\S-1-5-21-4196268700-3320623930-1906940996-1001\...\Run: [HP Deskjet 5520 series (NET)] => C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe [2572960 2021-12-02] (HP Inc. -> Hewlett-Packard Co.)
HKU\S-1-5-21-4196268700-3320623930-1906940996-1001\...\Run: [Disig Web Signer] => C:\Program Files (x86)\Disig\Web Signer\WebSignerTray.exe [268128 2024-01-30] (Disig a.s. -> Disig a.s.)
HKLM\...\Print\Monitors\HP B611 Status Monitor: C:\Windows\system32\hpinkstsB611LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 5520 series): C:\Windows\system32\HPDiscoPMB611.dll [741536 2021-12-02] (HP Inc. -> Hewlett-Packard Co.)
Startup: C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar981.lnk [2024-10-18]
ShortcutTarget: Sidebar981.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [File not signed] [File is in use]

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {8DC04FBD-716D-4938-958B-92455AD8ADC0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {AFE6AE4E-01F4-46BD-BFFF-1764F6D9440F} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [672064 2024-02-12] (Advanced Micro Devices Inc. -> )
Task: {144F0B01-25F3-43B4-B0C9-AB19C3073A24} - System32\Tasks\Core Temp Autostart => C:\Program Files\Core Temp\Core Temp.exe [1040136 2023-09-24] (ALCPU -> ALCPU)
Task: {CF878675-5835-4953-9990-D2EC22345451} - System32\Tasks\Core Temp Autostart tokar => C:\Program Files\Core Temp\Core Temp.exe [1040136 2023-09-24] (ALCPU -> ALCPU)
Task: {8CBE7965-BB64-413D-8C68-A4634750EAA3} - System32\Tasks\DUpdaterTask => C:\Program Files (x86)\Ditec\DUpdater\DUpdater.exe [5515344 2024-06-18] (DITEC, a.s. -> DITEC, a.s.)
Task: {42B7DAF6-D6B3-4F03-8C22-B2FDEF58DCE1} - System32\Tasks\EXPERTool => C:\Program Files\EXPERTool\TBPanel.exe [4512208 2023-05-05] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.)
Task: {E9A39121-1706-4640-8ABA-6C3BF2350413} - System32\Tasks\HPCustParticipation HP Deskjet 5520 series => C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPCustPartic.exe [4119200 2021-12-02] (HP Inc. -> Hewlett-Packard Co.)
Task: {C024368C-0F6E-4089-9723-A23288F26213} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28617448 2024-10-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {33ECA1E8-F349-4E45-949E-D3681DDF327F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28617448 2024-10-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {D74F6D21-DF49-4DCD-B644-3492962B9178} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [223464 2024-10-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F638A57-C2E0-4337-8816-D9347C62F66C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [223464 2024-10-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {CACF7E20-F187-4BAB-832F-37448B0ED5B2} - System32\Tasks\Microsoft\Windows\Clip\ClipESU => C:\Windows\system32\clipesu.exe [221680 2024-10-10] (Microsoft Windows -> Microsoft Corporation)
Task: {2C158562-F516-46F8-80EC-01DEE843AF76} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FE5E12B0-E506-423D-BE25-BD25DF6767DD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B0F5AE62-7ED2-4744-8B96-37450A47A2BC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6DA829FC-F369-487E-9971-E7F931554781} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {787712FE-748C-407F-BB19-6DF564A128F6} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-4196268700-3320623930-1906940996-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672320 2024-10-16] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {B2A6AD85-0086-4C73-B169-949A9AFA8992} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-10-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {5E97688A-32C0-4ECF-AFB9-1022E10BDA67} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {37FB07AA-7780-4964-808D-52D4492F1F66} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0B29DB2C-8B80-4FDB-AE86-CED06CBC4CC8} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {CFB4A70E-6AC4-4A8C-90E4-93CC95E812E0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5DC24999-190D-40C3-952A-355C151E4A27} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2EEA813D-BAB6-4A86-9A8D-4A48B842E260} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7FE736BB-B6F4-4067-B6EC-30024F3F6C22} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E6A80867-E873-43C9-A0AF-E496215E3AB0} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F121210D-C6E0-44ED-A254-E61CB11719C4} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A8A26257-31D1-489A-B7F3-8C791EE279F8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209176 2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3CFB5C3-BDF3-44E2-B940-ABE9372B6DC6} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4196268700-3320623930-1906940996-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209176 2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {EBAF5B00-FF8E-4A67-B8B2-EBAAAF058379} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [728504 2023-08-05] (Advanced Micro Devices Inc. -> AMD)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 88.212.8.8 88.212.8.88
Tcpip\..\Interfaces\{2c4408fa-2971-460a-993f-ae573e129a90}: [DhcpNameServer] 88.212.8.8 88.212.8.88
Tcpip\..\Interfaces\{e2194eb6-1d29-41d0-9398-30fc51d91d17}: [DhcpNameServer] 88.212.8.8 88.212.8.88

Edge:
=======
Edge Profile: C:\Users\tokar\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-25]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\tokar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-25]
Edge Extension: (Edge relevant text changes) - C:\Users\tokar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-25]

FireFox:
========
FF DefaultProfile: av6s7xqy.default
FF ProfilePath: C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\av6s7xqy.default [2024-03-25]
FF ProfilePath: C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\djc2u04a.default-release [2024-10-18]
FF Session Restore: Mozilla\Firefox\Profiles\djc2u04a.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\djc2u04a.default-release -> hxxps://www.youtube.com; hxxps://web.telegram.org
FF Extension: (BetterTTV) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\djc2u04a.default-release\Extensions\firefox@betterttv.net.xpi [2024-10-18]
FF Extension: (uBlock Origin) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\djc2u04a.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-10-02]
FF Extension: (Three Wolf Moon Shirt) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\djc2u04a.default-release\Extensions\{50193c98-9eee-4b67-9244-95ced154911d}.xpi [2024-03-25]
FF Extension: (Video DownloadHelper) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\djc2u04a.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2024-09-10]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\djc2u04a.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2024-10-02]
FF Extension: (Dark Fox) - C:\Users\tokar\AppData\Roaming\Mozilla\Firefox\Profiles\djc2u04a.default-release\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2024-03-25]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~1.DLL [2022-08-15] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecNMc -> C:\PROGRA~2\Ditec\DLAUNC~2\NPDITE~1.DLL [2022-05-06] (DITEC, a.s. -> DITEC, a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\PROGRA~2\Ditec\DViewer\NPDITE~1.DLL [2024-07-19] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~2.DLL [2023-09-19] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~3.DLL [2023-09-19] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~1.DLL [2024-07-19] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~2.DLL [2024-07-19] (DITEC, a.s. -> Ditec,a.s.)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [842128 2024-10-11] (ASUSTeK Computer Inc. -> )
R2 AUEPLauncher; C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe [527800 2023-08-05] (Advanced Micro Devices Inc. -> AMD)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2562696 2024-03-26] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [19383592 2024-10-12] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13861080 2024-10-13] (Microsoft Corporation -> Microsoft Corporation)
R2 dLauncherLoopback; C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe [154960 2019-08-02] (DITEC, a.s. -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncHelper.exe [3525136 2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_dcf94619172aceb0\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.186.0915.0004\OneDriveUpdaterService.exe [3869200 2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [4530160 2024-04-24] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [530488 2024-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesGGUpdateServiceProxy; C:\Program Files\SteelSeries\GG\SteelSeriesGGUpdateServiceProxy.exe [1500608 2024-08-29] (SteelSeries ApS -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 A38CCID; C:\Windows\system32\DRIVERS\a38ccid.sys [86880 2018-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Card Systems Ltd.)
R3 ALSysIO; C:\Users\tokar\AppData\Local\Temp\ALSysIO64.sys [43528 2024-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Arthur Liberman) <==== ATTENTION
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2022-06-03] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [43568 2024-07-22] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 sshid; C:\Windows\System32\drivers\sshid.sys [54416 2024-09-02] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 SteelSeries_Sonar_VAD; C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_7a086649438f4409\SteelSeries-Sonar-VAD.sys [95400 2024-08-07] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-09-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602392 2024-09-18] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-18] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; \??\C:\Users\tokar\AppData\Local\Temp\tmp93F2.tmp [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-10-18 09:58 - 2024-10-18 09:58 - 000024274 _____ C:\Users\tokar\Desktop\FRST.txt
2024-10-18 09:58 - 2024-10-18 09:58 - 000000000 ____D C:\FRST
2024-10-18 09:56 - 2024-10-18 09:56 - 002397696 _____ (Farbar) C:\Users\tokar\Desktop\FRST64.exe
2024-10-16 10:57 - 2024-10-16 10:57 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-10-14 09:54 - 2024-10-14 09:54 - 000044538 _____ C:\Users\tokar\Downloads\[SkT]Vikingove___Vikings_-_1.serie_(2013)(CZ_EN)[1080pHD].torrent
2024-10-14 09:28 - 2024-10-14 09:28 - 000181878 _____ C:\Users\tokar\Downloads\[SkT]Hra_o_truny___Game_of_Thrones_-_Serie_8_(CZ)[1080p_H264_SDR]_=_CSFD_91_.torrent
2024-10-12 11:40 - 2024-10-12 11:40 - 000000000 ____D C:\Users\tokar\AppData\Local\BattlEye
2024-10-10 09:22 - 2024-10-10 09:22 - 000000000 ___HD C:\$WinREAgent
2024-10-07 10:40 - 2024-10-07 10:40 - 000000667 _____ C:\Users\tokar\AppData\Roaming\Drives Monitor_#0_Settings.ini
2024-10-06 16:25 - 2024-10-06 16:28 - 000000603 _____ C:\Users\tokar\AppData\Roaming\Drives Monitor_Settings.ini
2024-10-04 16:10 - 2024-10-04 16:10 - 002286516 _____ C:\Users\tokar\Downloads\Protikorupčná činnosť_úprava_1_9_2024_požiadavka DT-1.pdf
2024-10-04 16:10 - 2024-10-04 16:10 - 002286516 _____ C:\Users\tokar\Downloads\Protikorupčná činnosť_úprava_1_9_2024_požiadavka DT.pdf
2024-10-02 20:14 - 2024-10-02 20:14 - 000094022 _____ C:\Users\tokar\Downloads\Prikaz-Mzdy za 09-2024.pdf
2024-10-02 20:09 - 2024-10-02 20:09 - 000122426 _____ C:\Users\tokar\Downloads\Dokument-1.pdf
2024-10-02 20:08 - 2024-10-02 20:08 - 000120263 _____ C:\Users\tokar\Downloads\Dokument.pdf
2024-09-23 14:04 - 2024-09-23 14:05 - 000000000 ____D C:\Users\tokar\AppData\Roaming\PSpad
2024-09-23 14:03 - 2024-09-23 14:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
2024-09-23 14:03 - 2024-09-23 14:03 - 000000000 ____D C:\Program Files (x86)\PSPad editor
2024-09-23 13:56 - 2024-09-23 13:56 - 000000000 ____D C:\Users\tokar\Documents\My Games
2024-09-23 13:56 - 2024-09-23 13:56 - 000000000 ____D C:\Users\tokar\AppData\Local\Fallout3
2024-09-20 18:50 - 2024-09-20 18:50 - 000065448 _____ C:\Users\tokar\Downloads\[SkT]____Hra_o_truny___Game_of_Thrones_-_8._serie_(CZ_EN)[WebRip][1080p]_=_CSFD_91_.torrent
2024-09-20 18:49 - 2024-09-20 18:49 - 000219889 _____ C:\Users\tokar\Downloads\[SkT]____Hra_o_truny___Game_of_Thrones_1.-7._serie_(CZ)[720p]_=_CSFD_92_.torrent
2024-09-20 18:48 - 2024-09-20 18:48 - 000087830 _____ C:\Users\tokar\Downloads\[SkT]Zaklínac___The_Witcher_(CZ_EN)(S03)(2023)(1080p)(HEVC)(HDR)(WEB-DL)_=_CSFD_76_.torrent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-10-18 09:57 - 2024-03-25 19:30 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-10-18 09:56 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-10-18 09:56 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-10-18 09:53 - 2024-08-27 10:03 - 000013754 _____ C:\Users\tokar\Network_Meter_Data.js
2024-10-18 09:53 - 2024-03-26 19:15 - 000014761 _____ C:\Users\tokar\IP_Log_Data.js
2024-10-18 09:53 - 2024-03-25 19:24 - 000000000 ___RD C:\Users\tokar\OneDrive
2024-10-18 09:53 - 2024-03-25 19:23 - 000000000 ____D C:\ProgramData\NVIDIA
2024-10-17 21:43 - 2024-03-26 19:27 - 000000028 _____ C:\Users\tokar\AppData\Roaming\Network Meter_Usage.ini
2024-10-17 21:38 - 2024-06-20 18:53 - 000000000 ____D C:\Users\tokar\AppData\Local\Spotify
2024-10-17 21:38 - 2024-04-17 11:41 - 000000000 ____D C:\Users\tokar\AppData\Roaming\discord
2024-10-17 21:38 - 2024-04-17 11:41 - 000000000 ____D C:\Users\tokar\AppData\Local\Discord
2024-10-17 21:37 - 2024-06-20 18:53 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Spotify
2024-10-17 21:37 - 2024-03-25 19:18 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-10-17 21:37 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-10-17 16:43 - 2024-04-26 15:06 - 000000000 ____D C:\Users\tokar\.ditec
2024-10-17 15:50 - 2024-03-29 18:49 - 000000000 ____D C:\Users\tokar\AppData\Roaming\vlc
2024-10-17 09:37 - 2024-03-25 19:29 - 000000000 ____D C:\Users\tokar\AppData\Local\D3DSCache
2024-10-16 15:06 - 2024-03-25 19:30 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-10-16 15:06 - 2024-03-25 19:30 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-10-15 21:25 - 2024-07-16 18:21 - 000000000 ____D C:\Users\tokar\AppData\Roaming\qBittorrent
2024-10-14 09:06 - 2024-03-26 10:23 - 000000000 ____D C:\Program Files\RUXIM
2024-10-13 12:04 - 2024-03-26 17:54 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-10-12 11:42 - 2022-09-08 05:12 - 000000000 ____D C:\Windows\SystemTemp
2024-10-11 12:44 - 2024-03-26 18:34 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-10-11 12:44 - 2024-03-26 17:55 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-10-11 12:44 - 2024-03-26 17:55 - 000002146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-10-11 12:44 - 2024-03-25 19:25 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4196268700-3320623930-1906940996-1001
2024-10-11 10:18 - 2024-03-25 19:23 - 000840878 _____ C:\Windows\system32\PerfStringBackup.INI
2024-10-11 10:18 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-10-11 10:12 - 2024-03-25 19:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-10-11 10:12 - 2024-03-25 19:18 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-10-11 10:12 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2024-10-11 10:11 - 2024-03-25 19:18 - 000880672 _____ C:\Windows\system32\wpbbin.exe
2024-10-11 10:11 - 2024-03-25 19:18 - 000842128 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-10-11 10:11 - 2024-03-25 19:18 - 000008192 ___SH C:\DumpStack.log.tmp
2024-10-10 20:54 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-10-10 20:53 - 2024-03-25 19:18 - 000439016 _____ C:\Windows\system32\FNTCACHE.DAT
2024-10-10 20:53 - 2019-12-07 11:51 - 000000000 ____D C:\Windows\system32\OpenSSH
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-10-10 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-10-10 19:08 - 2024-03-25 19:18 - 000003536 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-10-10 19:08 - 2024-03-25 19:18 - 000003412 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-10-10 09:28 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-10-10 09:26 - 2024-03-25 19:19 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-10-09 18:59 - 2024-03-26 15:21 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2024-10-09 11:56 - 2024-03-26 10:24 - 000000000 ____D C:\Windows\system32\MRT
2024-10-09 11:55 - 2024-03-26 10:24 - 201324920 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-10-07 10:51 - 2024-03-26 15:24 - 000000629 _____ C:\Users\tokar\AppData\Roaming\All CPU MeterV3_Settings.ini
2024-10-07 10:51 - 2024-03-26 15:23 - 000000287 _____ C:\Users\tokar\AppData\Roaming\GPU MeterV2_Settings.ini
2024-10-05 18:10 - 2024-03-26 10:17 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-10-05 18:10 - 2024-03-26 10:17 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-10-05 10:56 - 2024-05-15 10:00 - 000000000 ____D C:\Users\tokar\AppData\Local\CrashDumps
2024-10-02 20:00 - 2024-04-26 15:03 - 000000000 ____D C:\Users\tokar\AppData\Local\eID_klient
2024-10-02 17:01 - 2024-03-26 10:20 - 000000000 ____D C:\Users\tokar\AppData\Roaming\steelseries-gg-client
2024-09-27 19:33 - 2024-03-26 10:03 - 000000000 ____D C:\Program Files (x86)\Steam
2024-09-23 18:44 - 2024-03-26 17:56 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Word
2024-09-23 12:59 - 2024-03-26 10:06 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-09-23 12:58 - 2024-03-26 10:04 - 000000000 ____D C:\Users\tokar\AppData\Local\Steam
2024-09-22 12:26 - 2024-03-26 18:11 - 000000000 ____D C:\Users\tokar\AppData\Roaming\Microsoft\Excel
2024-09-18 16:34 - 2024-03-26 10:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games
2024-09-18 09:47 - 2024-03-25 19:18 - 000000000 ____D C:\Windows\system32\Drivers\wd

==================== Files in the root of some directories ========

2024-03-26 19:15 - 2024-10-18 09:53 - 000014761 _____ () C:\Users\tokar\IP_Log_Data.js
2024-08-27 10:03 - 2024-10-18 09:53 - 000013754 _____ () C:\Users\tokar\Network_Meter_Data.js
2024-03-26 15:24 - 2024-10-07 10:51 - 000000629 _____ () C:\Users\tokar\AppData\Roaming\All CPU MeterV3_Settings.ini
2024-10-07 10:40 - 2024-10-07 10:40 - 000000667 _____ () C:\Users\tokar\AppData\Roaming\Drives Monitor_#0_Settings.ini
2024-10-06 16:25 - 2024-10-06 16:28 - 000000603 _____ () C:\Users\tokar\AppData\Roaming\Drives Monitor_Settings.ini
2024-03-26 15:23 - 2024-10-07 10:51 - 000000287 _____ () C:\Users\tokar\AppData\Roaming\GPU MeterV2_Settings.ini
2024-03-26 19:15 - 2024-09-13 20:45 - 000001093 _____ () C:\Users\tokar\AppData\Roaming\Network Meter_Settings.ini
2024-03-26 19:27 - 2024-10-17 21:43 - 000000028 _____ () C:\Users\tokar\AppData\Roaming\Network Meter_Usage.ini
2024-03-26 19:17 - 2024-03-26 19:17 - 000007679 _____ () C:\Users\tokar\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
toki
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 180
Registrován: 29 črc 2008 11:15
Bydliště: Košice, SK
Kontaktovat uživatele:
Kontaktovat uživatele toki

Re: Prosim o preventivnu kontrolu

#2 Příspěvek od toki »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-09-2024
Ran by tokar (18-10-2024 09:58:50)
Running from C:\Users\tokar\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.5011 (X64) (2024-03-25 17:19:15)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4196268700-3320623930-1906940996-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4196268700-3320623930-1906940996-503 - Limited - Disabled)
Guest (S-1-5-21-4196268700-3320623930-1906940996-501 - Limited - Disabled)
tokar (S-1-5-21-4196268700-3320623930-1906940996-1001 - Administrator - Enabled) => C:\Users\tokar
WDAGUtilityAccount (S-1-5-21-4196268700-3320623930-1906940996-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

8GadgetPack (HKLM-x32\...\{36E60904-D465-40F7-82A7-A9C7A84C29B7}) (Version: 24.0.0 - 8GadgetPack.net)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1051-1033-7760-BC15014EA700}) (Version: 24.003.20180 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 4.07.13.2243 - Advanced Micro Devices, Inc.)
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.89 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.19.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Master (HKLM\...\{02247819-03CD-414E-AC8D-FD518BFBA445}) (Version: 2.13.0.2908 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.13.0.2908 - Advanced Micro Devices, Inc.)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{2b787d65-59ec-46d5-9e6b-8b4761e7903c}) (Version: 4.07.13.2243 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlestate Games Launcher 14.3.3.2672 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 14.3.3.2672 - Battlestate Games)
Bit4id - miniLector (HKLM-x32\...\Bit4id - miniLector) (Version: 3.7 - Bit4id)
Core Temp 1.18.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.18.1 - ALCPU)
CPUID HWMonitor 1.53 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.53 - CPUID, Inc.)
D.Launcher (x86) (HKLM-x32\...\{87531250-5002-4C7F-9014-95262CF5ACCF}) (Version: 1.2.0.2 - DITEC, a.s.)
D.Launcher 2 (x86) (HKLM-x32\...\{F5F57CFE-518F-4076-8FF4-93A64EBCF48B}) (Version: 2.0.0.4 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{CCAAD7AC-A266-457C-BCB1-3FCE638987B1}) (Version: 4.0.33 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{DBF890A0-A51E-4024-BD57-3502E07AF690}) (Version: 4.0.21 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{9f661d85-aa3f-44ef-acbf-250f7062f542}) (Version: 1.1.8 - DITEC, a.s.)
D.Updater (x86) (HKLM-x32\...\{552F8F8D-FD58-4D83-BB52-705B8A789200}) (Version: 1.0.6 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{2907EF63-24BB-4959-9816-8CB7A40E9A7B}) (Version: 4.0.2040 - DITEC, a.s.)
Discord (HKU\S-1-5-21-4196268700-3320623930-1906940996-1001\...\Discord) (Version: 1.0.9039 - Discord Inc.)
Disig Web Signer (HKLM-x32\...\{7D865707-8D65-408E-8C57-DA0FF2BCED2B}) (Version: 2.2.0 - Disig)
eID Klient (HKLM-x32\...\{1C15FC1F-2525-4FFB-B1CE-13D76FCC191E}) (Version: 4.8.0 - MV SR)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.15.2.1.32757 - Battlestate Games)
EXPERTool v11.10 (HKLM\...\{660D3DDC-C82C-49B9-9511-284043713699}_is1) (Version: 11.10.0.0 - Gainward Co. Ltd.)
GemPcCCID (HKLM\...\{C2C14C20-A217-4FCA-B668-89B6C70B6EFF}) (Version: 2.0.7 - Gemalto)
HP Deskjet 5520 series Basic Device Software (HKLM\...\{BEA72779-F607-4F0E-A0BF-3F2418181F5C}) (Version: 28.1.1320.0 - Hewlett-Packard Co.)
HP Deskjet 5520 series Product Improvement Study (HKLM\...\{3EFAA8AD-0ADC-4AF4-9ACF-AAE839881C17}) (Version: 28.1.1320.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 129.0.2792.89 - Microsoft Corporation)
Microsoft Office 2016 Professional Plus - sk-sk (HKLM\...\ProPlusRetail - sk-sk) (Version: 16.0.18025.20140 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.186.0915.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 sk) (HKLM\...\Mozilla Firefox 131.0.3 (x64 sk)) (Version: 131.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 124.0.1 - Mozilla)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA Grafický ovládač 561.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 561.09 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.4.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.0.1 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.2.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.18025.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.18025.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.18025.20140 - Microsoft Corporation) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden
PSPad editor (HKLM-x32\...\PSPad editor 32bit_is1) (Version: 5.0.7.775 - Jan Fiala)
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.6.5 - The qBittorrent project)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.88.1929 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.0.7 - Rockstar Games)
Speedtest by Ookla (HKLM\...\{49DC746F-BFC1-41CC-B5B1-AE3721829A3A}) (Version: 1.13.194.001 - Ookla)
Spotify (HKU\S-1-5-21-4196268700-3320623930-1906940996-1001\...\Spotify) (Version: 1.2.48.405.gf2c48e6f - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 72.0.0 (HKLM\...\SteelSeries GG) (Version: 72.0.0 - SteelSeries ApS)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
WinRAR 7.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.00.0 - win.rar GmbH)

Packages:
=========

NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-09-15] (NVIDIA Corp.)
Vyhľadávanie na webe z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-29] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4196268700-3320623930-1906940996-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll (AddGadgets IT -> )
CustomCLSID: HKU\S-1-5-21-4196268700-3320623930-1906940996-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-4196268700-3320623930-1906940996-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-4196268700-3320623930-1906940996-1001_Classes\CLSID\{25815CC0-43F4-3C75-8C3A-A139D9ADE740}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Network_Meter_V8.4.gadget\netlib.dll (AddGadgets IT -> Jonathan Abbott)
CustomCLSID: HKU\S-1-5-21-4196268700-3320623930-1906940996-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-4196268700-3320623930-1906940996-1001_Classes\CLSID\{5b55a44a-d008-49aa-9234-86fb7709bc0a}\InprocServer32 -> C:\Users\tokar\AppData\Local\Microsoft\Windows Sidebar\Gadgets\GPU_Meter_V2.4.gadget\GPUStatusReader.dll (AddGadgets IT -> Orbmu2k)
CustomCLSID: HKU\S-1-5-21-4196268700-3320623930-1906940996-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.186.0915.0004\FileSyncShell64.dll [2024-10-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_dcf94619172aceb0\nvshext.dll [2024-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-02-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-4196268700-3320623930-1906940996-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-03-19 15:12 - 2018-03-19 15:12 - 000113678 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libgcc_s_dw2-1.dll
2018-03-19 15:12 - 2018-03-19 15:12 - 001542158 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libstdc++-6.dll
2024-09-23 14:03 - 2014-11-02 18:45 - 000029184 _____ () [File not signed] C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2024-03-26 15:22 - 2017-10-07 16:28 - 000608256 _____ (Helmut Buhler) [File not signed] C:\Program Files\Windows Sidebar\dwmapi.dll
2018-03-19 15:12 - 2018-03-19 15:12 - 000047104 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libwinpthread-1.dll
2019-07-01 14:51 - 2019-07-01 14:51 - 006623384 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\Qt5Core.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2024-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2024-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-10-01] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4196268700-3320623930-1906940996-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 88.212.8.8 - 88.212.8.88
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Intel(R) Wi-Fi 6 AX200 160MHz -> Netwtw10.sys
Local Area Connection: TAP-Windows Adapter V9 -> tap0901.sys
Bluetooth Network Connection: Bluetooth Device (Personal Area Network) -> bthpan.sys
Ethernet: Realtek PCIe 2.5GbE Family Controller -> rt640x64.sys
D.Launcher Loopback: TAP-Windows Adapter V9 #2 -> tap0901.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-4196268700-3320623930-1906940996-1001\...\StartupApproved\Run: => "Disig Web Signer"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{81460F76-DAEF-4721-AA32-C5E92FFCCE96}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{13247981-B3E2-4FAF-9316-E5A8E676532A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{79C80391-7D8A-47EF-B54B-0493708A0C01}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{150BB9BA-964E-4092-832F-9FC627C543D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0F234D81-0F46-4EF5-B20A-9D0DC365E3D7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F0ED2990-B0F8-492A-823C-147075E8D847}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{777D1021-A537-4CE8-B59B-82A8EAD9DB74}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C19DE9B4-F8BE-406B-9871-9AD465C97E9E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{56D662D9-2919-4B3C-95B1-CECB401C3344}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{D591B8FC-7953-4C08-8469-AA88729E2F62}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> )
FirewallRules: [{66E63698-642A-4CFB-8ABF-33F8A3B6C3DC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1729AFA1-37CB-4204-BB4D-5CCCF02262B5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{619738DD-A8FF-41E1-B2CB-9CCAF13DE5C3}] => (Allow) F:\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{7BFD884E-8708-4762-972A-8188E92832EA}] => (Allow) F:\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{DB3641E8-8965-4838-9BE9-6C2F67DD1FB1}F:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{2FA7FF8C-1327-48B7-9733-BBE308C7F7B0}F:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{0A78A18F-A490-4650-AB9E-DDBD0EC8397A}] => (Block) F:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{ED920507-B278-479C-99E5-9E0C0F242189}] => (Block) F:\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{E7E2F7D1-B162-4AD6-BB51-02867703A1DB}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\DeviceSetup.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{BDDB56B2-32E8-40B5-816B-454AAEC3197D}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicator.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{8C32AA45-C5F5-485B-BEB3-D1967BDD3EB5}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc. -> Hewlett-Packard Co.)
FirewallRules: [{5744993C-8F12-4BF2-A849-F72BC9AC5E05}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DDC40130-962C-4B35-8505-8B0602F4A8B0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A5A5D4EA-4C8A-401E-9262-18940F11173D}C:\users\tokar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tokar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{ADFF40DE-C07C-4BE6-A60A-03A46103B79F}C:\users\tokar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tokar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{ED07A533-EECE-41AF-A525-6D2C70E98602}] => (Block) C:\users\tokar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DFBE94C0-D539-4D9D-8F03-581255AB66CE}] => (Block) C:\users\tokar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{385E4325-A275-4D31-B2F6-CDC9EDCC66BA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B5061F07-0D04-46F2-88EF-444132CB70FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{86DC2D84-E65C-4A55-8E8B-3D264C8A9C59}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7BCC6E62-4A20-41C0-BB50-079ED5D5C0BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{81D228CF-702C-4532-8643-B70761B3BC34}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{23A9AFE8-7ED6-48E5-A49E-569310D59D3F}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{119E96C9-3A97-478A-84BB-D4433A953E58}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{ADE54782-DDFC-41E8-BB67-8E3ED632B6B3}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{707D5636-2BC4-4F1E-8785-1139AC248306}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{E1EAA494-108C-4045-BE0A-26B7F0010ECA}] => (Allow) F:\SteamLibrary\steamapps\common\Fallout 3 goty\Fallout3Launcher.exe (Bethesda Softworks LLC -> Bethesda Softworks)
FirewallRules: [{34041729-0FA4-4E54-BC7E-110210D1D2BF}] => (Allow) F:\SteamLibrary\steamapps\common\Fallout 3 goty\Fallout3Launcher.exe (Bethesda Softworks LLC -> Bethesda Softworks)
FirewallRules: [TCP Query User{612F5B90-E97C-4512-835E-CEE062CB9C80}C:\users\tokar\appdata\local\discord\app-1.0.9166\discord.exe] => (Allow) C:\users\tokar\appdata\local\discord\app-1.0.9166\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [UDP Query User{514178AB-4DD5-420F-9A9F-50A98638D8D0}C:\users\tokar\appdata\local\discord\app-1.0.9166\discord.exe] => (Allow) C:\users\tokar\appdata\local\discord\app-1.0.9166\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{211F5049-2402-4A37-8829-2691CF85360F}] => (Block) C:\users\tokar\appdata\local\discord\app-1.0.9166\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{FCC81043-F3ED-473F-9EF1-8E2808B39674}] => (Block) C:\users\tokar\appdata\local\discord\app-1.0.9166\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{060F2B86-2519-4D7E-AFDA-8381A56F4B54}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\129.0.2792.89\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

09-10-2024 11:56:37 Windows Modules Installer

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (10/17/2024 02:55:16 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť retrim v Toki HDD (D:), pretože: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

Error: (10/17/2024 06:08:08 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4957 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 30f4

Start Time: 01db2049a8654574

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: 99252ec9-80ff-411d-aead-3804bbbe51dc

Faulting package full name: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Cross-process

Error: (10/16/2024 10:56:06 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4957 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: d8c

Start Time: 01db1fa8f622ebb8

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: c8266c7f-e271-49bf-ad40-dfeeadf0478b

Faulting package full name: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Cross-process

Error: (10/15/2024 08:44:14 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4957 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 24b0

Start Time: 01db1ecd5829aca3

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: ac10304d-ba6a-43e8-bef3-b129b7197e2f

Faulting package full name: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Cross-process

Error: (10/14/2024 09:09:44 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4957 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2268

Start Time: 01db1e07a1b2d890

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: 0a94513d-d817-4561-a93b-308795c45e04

Faulting package full name: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Cross-process

Error: (10/13/2024 12:03:48 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: TOKIBEAST)
Description: Application or service 'Microsoft Office SDX Helper' could not be shut down.

Error: (10/12/2024 11:41:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4957 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 31dc

Start Time: 01db1c8a8a5d86bc

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: 43a712a9-c466-4097-b0ef-f511c73b8f5e

Faulting package full name: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Cross-process

Error: (10/11/2024 10:14:47 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.4957 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1dec

Start Time: 01db1bb549ac3bd3

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: 26a504db-aec4-4905-99bd-fec6b1de75ff

Faulting package full name: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Cross-process


System errors:
=============
Error: (10/18/2024 09:56:15 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80073d02: 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (10/18/2024 09:52:51 AM) (Source: TPM) (EventID: 15) (User: )
Description: The device driver for the Trusted Platform Module (TPM) encountered a non-recoverable error in the TPM hardware, which prevents TPM services (such as data encryption) from being used. For further help, please contact the computer manufacturer.

Error: (10/17/2024 09:43:40 PM) (Source: DCOM) (EventID: 10010) (User: TOKIBEAST)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.

Error: (10/17/2024 09:43:40 PM) (Source: DCOM) (EventID: 10010) (User: TOKIBEAST)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.

Error: (10/17/2024 09:43:27 PM) (Source: DCOM) (EventID: 10010) (User: TOKIBEAST)
Description: The server Microsoft.AAD.BrokerPlugin_1000.19041.4239.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider did not register with DCOM within the required timeout.

Error: (10/17/2024 09:43:27 PM) (Source: DCOM) (EventID: 10010) (User: TOKIBEAST)
Description: The server Microsoft.AAD.BrokerPlugin_1000.19041.4239.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider did not register with DCOM within the required timeout.

Error: (10/17/2024 09:43:14 PM) (Source: DCOM) (EventID: 10010) (User: TOKIBEAST)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.

Error: (10/17/2024 09:38:58 PM) (Source: DCOM) (EventID: 10010) (User: TOKIBEAST)
Description: The server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2024-10-17 10:12:00
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2024-10-17 06:15:05
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2024-10-15 17:48:47
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2024-10-14 10:25:52
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2024-10-13 12:01:56
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:

Date: 2024-07-26 18:46:32
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.184.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2024-07-26 18:46:32
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.184.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2024-07-26 18:46:32
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.184.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2024-07-26 18:46:32
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.184.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2024-07-26 18:46:32
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.415.184.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.24060.5
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

CodeIntegrity:
===============
Date: 2024-10-17 21:38:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Users\tokar\AppData\Local\Discord\app-1.0.9166\Discord.exe) attempted to load \Device\HarddiskVolume1\ProgramData\obs-studio-hook\graphics-hook64.dll that did not meet the Microsoft signing level requirements.

Date: 2024-10-02 17:02:02
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Users\tokar\AppData\Local\Discord\app-1.0.9164\Discord.exe) attempted to load \Device\HarddiskVolume1\ProgramData\obs-studio-hook\graphics-hook64.dll that did not meet the Microsoft signing level requirements.

Date: 2024-09-28 13:39:40
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Users\tokar\AppData\Local\Discord\app-1.0.9163\Discord.exe) attempted to load \Device\HarddiskVolume1\ProgramData\obs-studio-hook\graphics-hook64.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 2423 08/10/2021
Motherboard: ASUSTeK COMPUTER INC. TUF GAMING B550-PLUS (WI-FI)
Processor: AMD Ryzen 5 5600X 6-Core Processor
Percentage of memory in use: 16%
Total physical RAM: 32679.49 MB
Available physical RAM: 27386.05 MB
Total Virtual: 39079.49 MB
Available Virtual: 32877.02 MB

==================== Drives ================================

Drive c: (Win 10 Pro SSD) (Fixed) (Total:931.51 GB) (Free:798.46 GB) (Model: WDS100T3X0C-00SJG0) NTFS
Drive d: (Toki HDD) (Fixed) (Total:931.51 GB) (Free:487.49 GB) (Model: ST1000DM010-2EP102) NTFS
Drive f: (Toki SSD) (Fixed) (Total:256.12 GB) (Free:127.68 GB) (Model: Crucial_CT275MX300SSD1) NTFS

\\?\Volume{b8bf055a-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 256.2 GB) (Disk ID: B8BF055A)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=256.1 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: B8BF0547)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: CCD76E19)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118905
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosim o preventivnu kontrolu

#3 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
R3 ALSysIO; C:\Users\tokar\AppData\Local\Temp\ALSysIO64.sys [43528 2024-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Arthur Liberman) <==== ATTENTION
S3 WinRing0_1_2_0; \??\C:\Users\tokar\AppData\Local\Temp\tmp93F2.tmp [X] <==== ATTENTION
C:\DumpStack.log.tmp


EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
toki
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 180
Registrován: 29 črc 2008 11:15
Bydliště: Košice, SK
Kontaktovat uživatele:
Kontaktovat uživatele toki

Re: Prosim o preventivnu kontrolu

#4 Příspěvek od toki »

Fix result of Farbar Recovery Scan Tool (x64) Version: 16-09-2024
Ran by tokar (19-10-2024 11:34:11) Run:1
Running from C:\Users\tokar\Desktop
Loaded Profiles: tokar
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
R3 ALSysIO; C:\Users\tokar\AppData\Local\Temp\ALSysIO64.sys [43528 2024-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Arthur Liberman) <==== ATTENTION
S3 WinRing0_1_2_0; \??\C:\Users\tokar\AppData\Local\Temp\tmp93F2.tmp [X] <==== ATTENTION
C:\DumpStack.log.tmp


EmptyTemp:
End

*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
ALSysIO => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\ALSysIO => removed successfully
ALSysIO => service removed successfully
HKLM\System\CurrentControlSet\Services\WinRing0_1_2_0 => removed successfully
WinRing0_1_2_0 => service removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 683584461 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 761680690 B
Windows/system/drivers => 35779503 B
Edge => 0 B
Firefox => 552147521 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 287559888 B
systemprofile32 => 287559888 B
LocalService => 287559888 B
NetworkService => 287719818 B
tokar => 319071781 B

RecycleBin => 0 B
EmptyTemp: => 3.3 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 19-10-2024 11:36:58)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 11:36:58 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118905
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosim o preventivnu kontrolu

#5 Příspěvek od Rudy »

Smazáno, log je nyní již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
toki
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 180
Registrován: 29 črc 2008 11:15
Bydliště: Košice, SK
Kontaktovat uživatele:
Kontaktovat uživatele toki

Re: Prosim o preventivnu kontrolu

#6 Příspěvek od toki »

Velmi pekne dakujem, zelam krasny vikend
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118905
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosim o preventivnu kontrolu

#7 Příspěvek od Rudy »

Hezký víkend i vám a nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Sekce pouze pro Vzorné návštěvníky“