Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11.03.2019
Ran by petal219 (12-03-2019 23:22:58)
Running from C:\Users\petal219\Desktop
Windows 10 Home Version 1803 17134.590 (X64) (2018-05-23 20:25:25)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-412039192-1154255929-2393577243-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-412039192-1154255929-2393577243-503 - Limited - Disabled)
Guest (S-1-5-21-412039192-1154255929-2393577243-501 - Limited - Disabled)
petal219 (S-1-5-21-412039192-1154255929-2393577243-1001 - Administrator - Enabled) => C:\Users\petal219
WDAGUtilityAccount (S-1-5-21-412039192-1154255929-2393577243-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

${{arpDisplayName}} (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cufft_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Jumpstart (HKLM-x32\...\{8B441B85-0AFA-4EB3-A756-A47453481D2D}) (Version: 3.1.18240.4 - Acer)
Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3025 - Acer Incorporated)
Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.03.3004 - Acer Incorporated)
Adobe After Effects CC 2015 (HKLM-x32\...\{147EC100-14BE-45EF-AB42-35BAEE7D02F0}) (Version: 13.5.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.7.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.156 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0) (Version: 18.0.0 - Adobe Systems Incorporated)
Affinity Photo Trial (HKLM\...\{8FD1B683-89C5-4E7D-838A-9AADE52734F5}) (Version: 1.5.1.54 - Serif (Europe) Ltd)
Aktualizace NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.4 - Electronic Arts, Inc.)
Apowersoft Video Konvertor V4.7.8 (HKLM-x32\...\{195E8D7F-292B-4B04-A6E7-E96CAF04C767}_is1) (Version: 4.7.8 - APOWERSOFT LIMITED)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk)
Autodesk App Manager 2016-2017 (HKLM-x32\...\{C0954809-F5DC-426C-847E-8409DE14E4C0}) (Version: 2.2.0 - Autodesk)
Autodesk Desktop App (HKLM-x32\...\Autodesk Desktop App) (Version: 6.0.45.5 - Autodesk)
Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk)
Autodesk ReCap 360 (HKLM\...\{5F0F7049-0000-1033-0102-73A6DA3D7FA6}) (Version: 3.0.0.52 - Autodesk) Hidden
Autodesk ReCap 360 (HKLM\...\Autodesk ReCap 360) (Version: 3.0.0.52 - Autodesk)
Backup and Sync from Google (HKLM\...\{693CADB0-962B-4AC1-A939-9524B258C997}) (Version: 3.43.2448.9071 - Google, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bitvise SSH Client - FlowSshNet (x64) (HKLM\...\{CBB04108-53F5-4E3C-A526-FB27BF6AA525}) (Version: 7.41.0.0 - Bitvise Limited) Hidden
Bitvise SSH Client - FlowSshNet (x86) (HKLM-x32\...\{6A619CAE-A4AF-482B-A3C0-743CF9AC84D9}) (Version: 7.41.0.0 - Bitvise Limited) Hidden
Bitvise SSH Client 7.41 (remove only) (HKLM-x32\...\BvSshClient) (Version: 7.41 - Bitvise Limited)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 4.1.14.1460 - BlueStack Systems, Inc.)
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
Clipboard Manager (HKLM-x32\...\{5014D10B-A773-45C1-AFFF-309361CD9284}) (Version: 1.2.1 - Autodesk)
Colin McRae Rally 2005 (HKLM-x32\...\Colin McRae Rally 2005_is1) (Version:  - GOG.com)
CombineZM (HKLM-x32\...\{7E41D2A5-C0DD-4139-8C7A-2F0E1F20ED24}) (Version: 1.0.0 - Alan Hadley)
Command Line Tools (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_command_line_tools_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
Compiler (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_compiler_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
Core Temp 1.11 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.11 - ALCPU)
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
CUBLAS Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cublas_dev_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CUBLAS Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cublas_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CUDA Documentation (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_documentation_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CUDA Toolkit (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDAToolkit_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CUDA Version (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDAVersion_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CUDART Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cudart_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CUFFT Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cufft_dev_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CURAND Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_curand_dev_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CURAND Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_curand_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CUSOLVER Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusolver_dev_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CUSOLVER Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusolver_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CUSPARSE Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusparse_dev_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CUSPARSE Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusparse_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
CyberLink PhotoDirector 5 (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5424.0 - CyberLink Corp.) Hidden
CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5424.0 - CyberLink Corp.)
CyberLink PowerDirector 15 (HKLM-x32\...\{FA285575-B543-4E6E-A573-A4F534AC9965}) (Version: 15.0.2026.0 - CyberLink Corp.)
CyberLink WaveEditor 2 (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 5620 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0410 - Disc Soft Ltd)
DARK SOULS REMASTERED (HKLM-x32\...\DARK SOULS REMASTERED_is1) (Version:  - )
Demo Suite (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_demo_suite_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
DiRT Rally 2 0 (HKLM-x32\...\DiRT Rally 2 0_is1) (Version:  - )
Discord (HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.34 - NVIDIA Corporation) Hidden
Dolby Audio X2 Windows API SDK (HKLM\...\{8738A898-221B-4279-BC87-FEF7938022C1}) (Version: 0.8.8.87 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.)
DWG Compare 2016-2018 (HKLM-x32\...\{357B9FF4-FACA-4838-9935-283B1EB135F3}) (Version: 2.4.0 - Autodesk)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version:  - SEIKO EPSON Corporation)
FaceGen Artist Demo 2 64bit (HKLM\...\{F00A332C-51CD-41B5-B5F3-9F0C31026DA4}) (Version: 2.1 - Singular Inversions Inc.)
FaceGen Modeller Demo 3 64bit (HKLM\...\{A504045D-2930-49DD-8C37-47DCC5161D24}) (Version: 3.18 - Singular Inversions Inc.)
Facial Studio (Windows edition) Demo (HKLM-x32\...\Facial Studio (Windows edition) Demo) (Version:  - Di-O-Matic, Inc.)
FARO LS 1.1.505.0 (64bit) (HKLM-x32\...\{8834451B-6209-4E02-9EF4-4EF9E3C1F70F}) (Version: 5.5.0.44203 - FARO Scanner Production)
FARO LS 1.1.600.6 (64bit) (HKLM-x32\...\{510A08AF-1649-4844-94E5-EAC43A023685}) (Version: 6.0.6.5 - FARO Scanner Production)
FileZilla Client 3.33.0 (HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\FileZilla Client) (Version: 3.33.0 - Tim Kosse)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
Fortran Examples (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_fortran_examples_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
Free Video Converter V 3.2 (HKLM-x32\...\Free Video Converter_is1) (Version: 3.2.0.0 - Koyote Soft)
Free Video to JPG Converter (HKLM-x32\...\Free Video to JPG Converter_is1) (Version: 5.0.101.201 - Digital Wave Ltd)
Frostpunk (HKLM-x32\...\Frostpunk_is1) (Version:  - )
Gadwin PrintScreen (64-Bit) (HKLM\...\{9D41A5E9-499A-4B98-8F05-CAB1C879E046}) (Version: 5.8.5.0 - Gadwin Systems)
Geekbench 4 (HKLM-x32\...\Geekbench 4) (Version:  - Primate Labs Inc.)
GIMP 2.10.0 (HKLM\...\GIMP-2_is1) (Version: 2.10.0 - The GIMP Team)
GOG.com Heroes of Might and Magic 3 (HKLM\...\{1d3c859c-1028-4822-b0a7-da4f7bbc18bc}.sdb) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.121 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.25) (Version: 9.25 - Artifex Software Inc.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Helicon Focus 7.0.2.0 (HKLM\...\Helicon Focus 7_is1) (Version:  - Helicon Soft Ltd.)
Heroes of Might and Magic 3 Complete (HKLM-x32\...\GOGPACKHOMM3COMPLETE_is1) (Version: 2.0.0.16 - GOG.com)
Hitman Blood Money version 1.2.0.0 (HKLM-x32\...\Hitman Blood Money_is1) (Version: 1.2.0.0 - Mr DJ)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Import souborů SketchUp 2016-2018 (HKLM-x32\...\{F9F3F56C-3FE2-40A6-9489-8751559791D5}) (Version: 2.4.0 - Autodesk)
Import z webu Galerie 3D objektů 2016-2018 (HKLM-x32\...\{71F81FDC-9F32-48A4-AB5F-3A93691B5612}) (Version: 2.4.0 - Autodesk)
Inkscape 0.92.3 (HKLM-x32\...\Inkscape) (Version: 0.92.3 - Inkscape Project)
Innkeeper (HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\Innkeeper) (Version: 0.4.25 - Curse Inc.)
Intel(R) Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1028 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4749 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.7.0.1014 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1713.2 - Intel Corporation)
KeyboardTest V3.2 (HKLM\...\KeyboardTest_is1) (Version: 3.2 - PassMark Software)
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Lust for Darkness (HKLM-x32\...\Lust for Darkness_is1) (Version:  - )
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.11328.20146 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\OneDriveSetup.exe) (Version: 19.012.0121.0011 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MTGArena (HKLM-x32\...\{A8AFE495-9759-494A-9537-BDAD5B3B52F2}) (Version: 0.1.879.0 - Wizards of the Coast)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.31.0 - Nikon Corporation)
NewBlue Titler Pro for Windows (HKLM-x32\...\NewBlue Titler Pro for Windows) (Version: 1.5 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VI for Windows (HKLM-x32\...\NewBlue Video Essentials VI for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VII for Windows (HKLM-x32\...\NewBlue Video Essentials VII for Windows) (Version: 3.0 - NewBlue)
Novabench (HKLM\...\{2FAC7FB5-8FA6-46F2-826D-B2757EFC2E83}) (Version: 4.0.4 - Novawave Inc.)
NPP Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_npp_dev_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
NPP Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_npp_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVGRAPH Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvgraph_dev_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
NVGRAPH Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvgraph_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
NVIDIA CUDA Development 8.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDADevelopment_8.0) (Version: 8.0 - NVIDIA Corporation)
NVIDIA CUDA Documentation 8.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDADocument_8.0) (Version: 8.0 - NVIDIA Corporation)
NVIDIA CUDA Runtime 8.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDARuntimes_8.0) (Version: 8.0 - NVIDIA Corporation)
NVIDIA CUDA Samples 8.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_samples_8.0) (Version: 8.0 - NVIDIA Corporation)
NVIDIA CUDA Visual Studio Integration 8.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_visual_studio_integration_8.0) (Version: 8.0 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Nsight Visual Studio Edition 5.2.0.16321 (HKLM\...\{39F2CF8F-DE76-49F1-85D5-FC215853B709}) (Version: 5.2.0.16321 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.34 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.34 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
NVIDIA Tools Extension SDK (NVTX) - 64 bit (HKLM\...\{B56D2F88-8865-40FD-B7AC-F074EE4D201D}) (Version: 1.00.00.00 - NVIDIA Corporation)
NVML Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvml_dev_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
NVRTC Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvrtc_dev_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
NVRTC Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvrtc_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
Occupancy Calculator (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_occupancy_calculator_8.0) (Version: 8.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11328.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11328.20146 - Microsoft Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
OpenVPN 2.4.6-I602  (HKLM\...\OpenVPN) (Version: 2.4.6-I602 - OpenVPN Technologies, Inc.)
Opera Stable 58.0.3135.79 (HKLM-x32\...\Opera 58.0.3135.79) (Version: 58.0.3135.79 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.35.22222 - Electronic Arts, Inc.)
Overload (HKLM\...\b3ZlcmxvYWQ_is1) (Version: 1 - )
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Ovládací panel NVIDIA 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 416.34 - NVIDIA Corporation) Hidden
PDF Report Writer (novaPDF 6.4  printer) (HKLM\...\PDF Report Writer_is1) (Version:  - Softland)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22329 - Microsoft Corporation)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.10667 - Kakao Corp.)
proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.114.1 - proDAD GmbH)
qBittorrent 4.1.4 (HKLM-x32\...\qBittorrent) (Version: 4.1.4 - The qBittorrent project)
QR Codes 2016-2018 (HKLM-x32\...\{64F1D858-70A9-4C7D-9BF8-C4CED48BECF5}) (Version: 2.4.0 - Autodesk)
Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10434 - Qualcomm)
Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.312 - Qualcomm Atheros)
RawTherapee verze 5.4 (HKLM\...\RawTherapee5.4_is1) (Version: 5.4 - rawtherapee.com)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21299 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8564 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
RefUcsSpy (HKLM-x32\...\{A9FAB96D-95BC-4B4D-B7E4-A84C225EC080}) (Version: 1.1.1 - Autodesk)
Rome - Total War (HKLM-x32\...\{51D386C4-0227-46A9-AC45-61F0A50E7AFF}) (Version: 1.5 - The Creative Assembly)
Screenshot (HKLM-x32\...\{5DA04C3D-D295-4BB4-A565-03100D717B61}) (Version: 1.1.1 - Autodesk, Inc.)
SketchUp 2017 (HKLM\...\{E59BD84C-169B-4F3F-AC5D-85127CF67051}) (Version: 17.2.2555 - Trimble, Inc.)
Speciální aplikace Autodesk 2016-2017 (HKLM-x32\...\{27C15055-713B-4D0E-881F-19598A2DFD59}) (Version: 2.2.0 - Autodesk)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
TechSmith EnSharpen (HKLM-x32\...\{6F4845D7-10CE-4EB7-B8E7-0AFEBE6B771F}) (Version: 2.0.1.0 - TechSmith Corporation) Hidden
The Klub 17 (HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\Klub-7) (Version: 7.5.0 - Team WRK17)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 73.0 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN)
VooPoo version 1.5.1.31 (HKLM-x32\...\{63EEAD1F-3FC8-40F5-A415-E4BE098004C0}_is1) (Version: 1.5.1.31 - KunShan XW-TEC)
VSDC Free Video Editor version 5.7.7.694 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 5.7.7.694 - Flash-Integro LLC)
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-2) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-3) (Version: 1.0.42.0 - LunarG, Inc.)
War Thunder Launcher 1.0.3.123 (HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version:  - Gaijin Entertainment)
Wargaming.net Game Center (HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\Wargaming.net Game Center) (Version: 19.0.0.3507 - Wargaming.net)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 18 - Windscribe Limited)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wireshark 2.6.5 64-bit (HKLM-x32\...\Wireshark) (Version: 2.6.5 - The Wireshark developer community, hxxps://www.wireshark.org)
XnViewMP 0.92 (HKLM\...\XnViewMP_is1) (Version: 0.92 - Gougelet Pierre-e)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-412039192-1154255929-2393577243-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-412039192-1154255929-2393577243-1001_Classes\CLSID\{0D327DA6-B4DF-4842-B833-2CFF84F0948F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2017\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-412039192-1154255929-2393577243-1001_Classes\CLSID\{720DB9AF-D62C-4ED0-A377-429C22312852}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2017\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-412039192-1154255929-2393577243-1001_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-412039192-1154255929-2393577243-1001_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-412039192-1154255929-2393577243-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2017\en-US\acadficn.dll => No File
CustomCLSID: HKU\S-1-5-21-412039192-1154255929-2393577243-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-12-07] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-12-07] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-12-07] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated -> Acer Incorporated)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-12-07] (Google Inc -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-04-03] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-04-03] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-12-07] (Google Inc -> Google)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igfxDTCM.dll [2017-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02A4B6AE-7901-4CDF-AA4A-A14A5B507128} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {08170189-F4A9-4901-BA06-2701538DC74D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {13731A64-4EAA-4052-9261-298095C915AD} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe (Acer Incorporated -> Acer Incorporated)
Task: {1BE6D13B-EA53-4B79-A5AA-58F53E41AF83} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {23B52422-1A33-4513-8EDB-123D5639FB05} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe (Acer Incorporated -> Acer)
Task: {2D94DEB6-9EAC-4E30-8A17-C8E9EB8CD8B9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {431611CD-4E3F-42E9-B1DC-5394475B0A44} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {43181481-C078-4282-BA06-D5659E2F5B07} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {4B15310F-D3B3-484C-87B8-15F05D092FF8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {4DC9A4A0-4E85-4B37-AC5F-BCEF6D63C57C} - System32\Tasks\AdobeGCInvoker-1.0-LAPTOP-K1RNS0G5-petal219 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {5072E94B-6F1D-463B-B505-87DA1474DCEB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {51CEAAB8-7A0F-4352-95A8-FB15362ED652} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {566177DF-D0A6-44AA-9C6B-55895A1BD815} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {60823D4D-EBA1-45C5-8C03-283403B2C81C} - System32\Tasks\MonitorAcerPortal => C:\ProgramData\acer\Acer Portal\monitorPortal.exe (Acer Incorporated -> )
Task: {66B8E720-8639-4D31-88FE-572C91988561} - System32\Tasks\Opera scheduled Autoupdate 1524405035 => C:\Program Files\Opera\launcher.exe (Opera Software AS -> Opera Software)
Task: {6EDD0B2F-2092-44A6-A8B0-4464142CB271} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {73580A83-8E31-42F4-A48B-395EB46EAC21} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7B8874A2-4FE2-47EB-8A97-35559021259A} - System32\Tasks\AdobeAAMUpdater-1.0-LAPTOP-K1RNS0G5-petal219 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7E509876-D10D-40F4-94F0-F09D8E94C365} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {983260F8-859F-4320-9C6C-200C69DEC7A6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9B25AFE9-5A86-48F0-882C-7458A7470798} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A15CFABF-5BFE-4AE4-9CD5-FA10ADC0FD90} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe (Acer Incorporated -> TODO: <Company name>)
Task: {A5214A97-7D02-4C6E-A2F3-A9670045477F} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A7FAFE8A-D9A5-4795-B22A-2831EB73D1BD} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe (Acer Incorporated -> Acer Incorporated)
Task: {B01E9385-9CC2-4E07-A4FE-7E7ADDB7CD03} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {B10CEE9C-E764-4BB5-B756-B96DCDE71CCF} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B2A70263-4E16-4F67-9EDF-EA023A3C8039} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {B2B9CBAC-929E-4B0D-80C0-1E1D7BC58BA6} - System32\Tasks\TinyTakeUpgrade => C:\Users\petal219\AppData\Local\MangoApps\TinyTake by MangoApps\TinyTake.exe
Task: {B354FFDB-0F72-4CC1-8DEB-DF9D3CBB9BBD} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B999C273-BFD8-489B-A391-64D7A530B839} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {C2EBE372-DA82-497B-A15A-66135BFC3560} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {C47F6044-8CE1-4BC0-B186-7C08EA33DFC6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_pepper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {CD7BC62B-F32F-4689-8A71-FA4197F08408} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE46057F-320D-4F1E-A50B-C8A25FBC90A9} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe (Acer Incorporated -> Acer Incorporated)
Task: {CF5666F4-2F0F-420F-B2B9-719A92E98BFA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {D08A8D7F-AABD-4EBD-9A75-8AA078C45A8C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D10BE337-731B-4CFB-B8C4-FAAEEF5CE5B4} - System32\Tasks\AcerCloud => C:\ProgramData\acer\Acer Portal\launchPortal.exe (Acer Incorporated -> )
Task: {E2493DD1-9E8A-4CE6-B8DE-7B5D51D89A4E} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe (Acer Incorporated -> )
Task: {EAEA620E-F7A1-4BF0-8B76-CD9D8EE21F31} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {EBF7E9A4-4105-44FE-A6BA-0B8AFCB3D09D} - System32\Tasks\S-1-5-21-412039192-1154255929-2393577243-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {EC223B53-DEC8-460E-AC65-8001FADD13AE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {F08533FA-D2C4-409A-AA86-A1F402D7708F} - System32\Tasks\PicstreamAgent => C:\Program [Argument = Files (x86)\Acer\AOP Framework\uwplauncher.exe AcerIncorporated.6245439DEEE9E_48frkmn4z8aw4!abPhoto]
Task: {FF2A521E-BD97-4BAA-AB3E-5A0F3C7029DE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-03-12 22:06 - 2019-03-12 22:06 - 003042304 ____C (Python Software Foundation) [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\python27.dll
2019-03-12 22:06 - 2019-03-12 22:06 - 000113664 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\_ctypes.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000080896 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\bz2.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 001792512 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\_hashlib.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000128512 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32api.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000137728 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\pywintypes27.dll
2019-03-12 22:06 - 2019-03-12 22:06 - 000548864 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\pythoncom27.dll
2019-03-12 22:06 - 2019-03-12 22:06 - 000689664 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\unicodedata.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000438784 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32com.shell.shell.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 001489408 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wx._core_.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000202240 ____C (wxWidgets development team) [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wxbase30u_net_vc90_x64.dll
2019-03-12 22:06 - 2019-03-12 22:06 - 006542336 ____C (wxWidgets development team) [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wxmsw30u_core_vc90_x64.dll
2019-03-12 22:06 - 2019-03-12 22:06 - 002831872 ____C (wxWidgets development team) [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wxbase30u_vc90_x64.dll
2019-03-12 22:06 - 2019-03-12 22:06 - 001654784 ____C (wxWidgets development team) [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wxmsw30u_adv_vc90_x64.dll
2019-03-12 22:06 - 2019-03-12 22:06 - 001007104 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wx._gdi_.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 001039872 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wx._windows_.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000773632 ____C (wxWidgets development team) [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wxmsw30u_html_vc90_x64.dll
2019-03-12 22:06 - 2019-03-12 22:06 - 001325056 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wx._controls_.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000916992 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wx._misc_.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 001084416 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\pysqlite2._sqlite.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000149504 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32file.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000136192 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32security.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000007680 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\hashobjs_ext.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000020992 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\thumbnails_ext.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000118784 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\usb_ext.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000047616 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\_socket.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 002224640 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\_ssl.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000014848 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\common.time34.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000023040 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32event.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000034304 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\windows.conditional.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000020480 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\windows.winwrap.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000110080 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\windows.volumes.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000223232 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32gui.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000173568 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\_elementtree.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000169472 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\pyexpat.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000048128 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32inet.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000103424 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wx._html2.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000137216 ____C (wxWidgets development team) [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\wxmsw30u_webview_vc90_x64.dll
2019-03-12 22:06 - 2019-03-12 22:06 - 000046080 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\_psutil_windows.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000011776 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32crypt.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000301568 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\PIL._imaging.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000032256 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\_multiprocessing.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 005752320 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\cello.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000026112 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\_yappi.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000044032 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32process.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000027648 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32pipe.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000010752 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\select.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000029696 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32pdh.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000038400 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\windows.connectivity.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000073216 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\windows.device_monitor.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000020480 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32profile.pyd
2019-03-12 22:06 - 2019-03-12 22:06 - 000026624 ____C () [File not signed] C:\Users\petal219\AppData\Local\Temp\_MEI9082\win32ts.pyd
2019-03-05 14:56 - 2019-02-13 23:01 - 001177600 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Network.dll
2019-03-05 14:56 - 2019-02-13 23:01 - 000184832 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Xml.dll
2019-03-05 14:56 - 2019-02-13 23:01 - 005089792 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Widgets.dll
2019-03-05 14:56 - 2019-02-13 23:01 - 005487104 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Core.dll
2019-03-05 14:56 - 2019-02-13 23:01 - 005841920 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Gui.dll
2019-03-05 14:56 - 2019-02-13 23:01 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Origin\LIBEAY32.dll
2019-03-05 14:56 - 2019-02-13 23:01 - 001611264 _____ (The Qt Company Ltd) [File not signed] D:\Origin\platforms\qwindows.dll
2019-03-05 14:56 - 2019-02-13 23:01 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Origin\ssleay32.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\petal219:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-412039192-1154255929-2393577243-1001\Software\Classes\.scr: AutoCADScriptFile => C:\WINDOWS\system32\notepad.exe "%1"
HKU\S-1-5-21-412039192-1154255929-2393577243-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\sharepoint.com -> hxxps://mendelu-files.sharepoint.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-11 22:39 - 2019-03-11 22:53 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


2018-05-31 10:59 - 2018-09-28 15:13 - 000000524 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

90
192.168.137.1 LAPTOP-K1RNS0G5.mshome.net # 2023 9 4 21 20 0 40 232

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files\NVIDIA GPU Computing Toolkit\CUDA\v8.0\bin;C:\Program Files\NVIDIA GPU Computing Toolkit\CUDA\v8.0\libnvvp;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-412039192-1154255929-2393577243-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\petal219\Desktop\her1234.jpg
DNS Servers: 10.142.8.1 - 195.178.72.150
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "DFX"
HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\StartupApproved\Run: => "Innkeeper"
HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\StartupApproved\Run: => "Autodesk Sync"
HKU\S-1-5-21-412039192-1154255929-2393577243-1001\...\StartupApproved\Run: => "Gaijin.Net Agent"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{88F2C232-D84B-4770-8A1B-EC2959A9C8C9}D:\games\world_of_tanks\worldoftanks.exe] => (Block) D:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [TCP Query User{E9E7A6E6-2EB2-43F5-8630-C24340AD2A37}D:\games\world_of_tanks\worldoftanks.exe] => (Block) D:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [UDP Query User{CD3DAB25-3B0B-428D-9441-F6FC6A44D49F}D:\games\world_of_tanks\wotlauncher.exe] => (Allow) D:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [TCP Query User{A761F1B5-5BD0-4C66-992A-1269D4078C46}D:\games\world_of_tanks\wotlauncher.exe] => (Allow) D:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [{EAF0829F-771C-4BEB-9FF1-C030BB2D6708}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe No File
FirewallRules: [UDP Query User{2019A3F7-91E8-40EC-8B1B-356A0FDC8CA9}D:\instalace\vlc\vlc.exe] => (Allow) D:\instalace\vlc\vlc.exe No File
FirewallRules: [TCP Query User{45B8E35A-6CC9-4A93-A5B9-F2428F4F5CCB}D:\instalace\vlc\vlc.exe] => (Allow) D:\instalace\vlc\vlc.exe No File
FirewallRules: [UDP Query User{91FA9C64-9CA8-4315-A7F3-6D8AF8389043}D:\games\hearthstone\hearthstone.exe] => (Allow) D:\games\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{1A3C3357-C059-4B09-B69F-DDD2F9D5C50D}D:\games\hearthstone\hearthstone.exe] => (Allow) D:\games\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{BD82409F-CE8D-4EE6-8D53-F90AAEF31F48}C:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) C:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe () [File not signed]
FirewallRules: [TCP Query User{C8C32324-F110-4C2A-96E0-9B3EC8D3D8E9}C:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) C:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe () [File not signed]
FirewallRules: [{ECAB6B23-1545-46C4-9F68-ED390EFDD4FF}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{C6A7DC59-45DA-4F2B-8E3D-43469B063094}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{A64CB45E-6072-4025-A549-2D44D22F662E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{7C8E9235-BC71-4E34-8E36-8E2005E00F1C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [UDP Query User{1AE36323-BD21-4A7E-92B6-74BA14955AFE}C:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) C:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe () [File not signed]
FirewallRules: [TCP Query User{D977C98B-8990-416A-9496-10E534153BED}C:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) C:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe () [File not signed]
FirewallRules: [{1384E386-23BD-4794-9F85-175CF93231ED}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{AC7E747A-6C4A-49DA-8F66-59893724D825}] => (Allow) D:\instalace\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{4475FA9A-9D0B-452B-B4CF-A21ADF387B94}] => (Allow) D:\instalace\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [UDP Query User{CB58DDA3-B572-4EFD-995A-62963470E4B7}D:\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe] => (Allow) D:\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe (Eugen Systems -> Eugen Systems)
FirewallRules: [TCP Query User{3C149504-AAC9-4478-8C56-F57C898F112E}D:\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe] => (Allow) D:\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe (Eugen Systems -> Eugen Systems)
FirewallRules: [UDP Query User{EB8B0729-36E3-43B5-88E3-6CE0019E79AA}D:\games\overwatch\overwatch.exe] => (Allow) D:\games\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{56872FEA-16DA-4919-BE82-008E1F7EDBFB}D:\games\overwatch\overwatch.exe] => (Allow) D:\games\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{A094F27F-7C94-436C-8AE1-BD2FFD33A7F2}D:\games\world_of_tanks\worldoftanks.exe] => (Allow) D:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [TCP Query User{40025B55-B085-40A3-8960-021C0D40D74E}D:\games\world_of_tanks\worldoftanks.exe] => (Allow) D:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [UDP Query User{9C64A014-46FA-4839-8CEB-E6E09FF79F19}D:\games\overwatch\overwatch.exe] => (Allow) D:\games\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{96BE31FA-D67A-4B15-963C-79E571361752}D:\games\overwatch\overwatch.exe] => (Allow) D:\games\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{2D98DFD3-A60B-4CA2-9C16-0FC4B5BEC4F8}D:\instalace\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\instalace\steam\steamapps\common\counter-strike global offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{99E7C9C6-ED1D-405D-8CC6-9F00BB8EB39D}D:\instalace\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\instalace\steam\steamapps\common\counter-strike global offensive\csgo.exe (Valve -> )
FirewallRules: [UDP Query User{957E7628-3C03-4EC4-92DA-E3597EB76FD6}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [TCP Query User{4A1E0F8C-B436-452C-B529-245DF641DD84}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{CC20C41F-7A67-41B6-9477-FA5BDF9BAFF4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{98421A53-8912-44E8-A1F8-C463522F1F4C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D9D89C51-D708-40DC-BBE9-DCAB241859FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [{B7792B0D-E9CE-4C5D-A6F3-B0323BAC5FDA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{96A1BA1E-515B-43ED-A12F-582775E61CC8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CB14ADE5-593C-4049-8422-9C3316D4C91C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe No File
FirewallRules: [{66AAB200-F2D1-440E-A272-72005709F677}] => (Allow) D:\No\Steam.exe No File
FirewallRules: [{D2204513-9B3F-47D0-9BE4-BD6CB3A921CE}] => (Allow) D:\No\Steam.exe No File
FirewallRules: [TCP Query User{CFA23BDC-0F10-4BDC-B3F6-C96273BE2C9C}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{30D17DFB-FF52-42FF-9950-0172FBEC5D2E}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{A4603341-826D-4EFD-B84C-5294C3B6C79F}] => (Allow) D:\D\instalace\Steam\Steam.exe No File
FirewallRules: [{635E48C4-9D4C-467A-B697-312BC089C8CC}] => (Allow) D:\D\instalace\Steam\Steam.exe No File
FirewallRules: [{973C7F60-CDEA-47FA-BF89-53C86D569185}] => (Allow) D:\D\instalace\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{3AE3EF81-6540-4B72-BB57-86AC7C6F258F}] => (Allow) D:\D\instalace\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [TCP Query User{6793502E-C4D4-4676-9307-768CA729C7A9}D:\d\instalace\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\d\instalace\steam\steamapps\common\counter-strike global offensive\csgo.exe No File
FirewallRules: [UDP Query User{E702DF96-ADD4-47FE-BC1D-939D13B65A9D}D:\d\instalace\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\d\instalace\steam\steamapps\common\counter-strike global offensive\csgo.exe No File
FirewallRules: [TCP Query User{E770D774-1921-46D9-9A74-0ED766048586}D:\instalace\lol\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) D:\instalace\lol\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{29806AE0-9F46-44AB-9749-1C523842ED4B}D:\instalace\lol\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) D:\instalace\lol\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{83F74AF1-3728-480E-8A04-4C433601ED9D}D:\d\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe] => (Allow) D:\d\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe No File
FirewallRules: [UDP Query User{ED688A28-448B-4A9D-A04C-DD15ABE8397C}D:\d\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe] => (Allow) D:\d\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe No File
FirewallRules: [TCP Query User{E228AB38-199B-45EC-A2B2-0189D249C646}D:\world_of_tanks\worldoftanks.exe] => (Allow) D:\world_of_tanks\worldoftanks.exe No File
FirewallRules: [UDP Query User{52631A3E-C50A-4908-86B7-5A3AF0216B73}D:\world_of_tanks\worldoftanks.exe] => (Allow) D:\world_of_tanks\worldoftanks.exe No File
FirewallRules: [{B3DCF1D8-BA7C-4378-BA3C-B4D4DCA774E4}] => (Allow) D:\instalace\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{5AE2625C-9617-42A0-83C2-96A56C47D128}] => (Allow) D:\instalace\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{16F4B275-8336-4E0E-AA79-9C2249120B01}] => (Allow) D:\instalace\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{3D881439-45FE-41F3-9E23-FE6D251AEF3D}] => (Allow) D:\instalace\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{C919725E-940A-43E1-9487-C80DF3756A4F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{29905A92-6F10-4392-989D-AA956C5747B9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EE22D794-E2EB-4579-AD82-9B0F1A30549A}] => (Allow) LPort=8317
FirewallRules: [{F7F5643D-3B2F-4334-A812-09727458D50C}] => (Block) %ProgramFiles% (x86)\TechSmith\Camtasia Studio 8\CamtasiaStudio.exe No File
FirewallRules: [{534CCE08-4D58-482D-B1AF-B4B325065A9D}] => (Block) %ProgramFiles% (x86)\TechSmith\Camtasia Studio 8\CamtasiaUtl.exe No File
FirewallRules: [{72AEA086-C997-4F82-8714-00FD5144C63F}] => (Allow) D:\instalace\Steam\steamapps\common\Rampage Knights\rampage_knights.exe (Rake in Grass) [File not signed]
FirewallRules: [{123FB463-0A2C-4B2B-874C-E20B16FAAD05}] => (Allow) D:\instalace\Steam\steamapps\common\Rampage Knights\rampage_knights.exe (Rake in Grass) [File not signed]
FirewallRules: [{F5875B75-63BA-4459-9448-D57EEFEE4C6F}] => (Allow) D:\instalace\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{07C8FE2E-7615-49EB-B8B1-8B9A57B3DAA4}] => (Allow) D:\instalace\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{18CBD618-A7FA-4312-9D94-8D316CBB0BAB}] => (Allow) C:\Program Files (x86)\Mr DJ\Hitman Blood Money\HitmanBloodMoney.exe No File
FirewallRules: [{88525A59-8CFE-4BBA-8532-A6AE98C35489}] => (Allow) C:\Program Files (x86)\Mr DJ\Hitman Blood Money\HitmanBloodMoney.exe No File
FirewallRules: [{E436542C-97B7-4CCE-AA73-75818E3DFBE8}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{39268EC2-09A3-47CD-869B-62AB1D06015D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{44871769-283B-4014-B112-FB7E175367CC}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe (Flash-Integro LLC) [File not signed]
FirewallRules: [{03D8BEE7-4145-4047-A9E4-B05CA77837DE}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe (Flash-Integro LLC) [File not signed]
FirewallRules: [{A129DFA5-3408-411F-86C5-5B397AED52EB}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Activation.exe (Vector Ltd. -> Flash-Integro LLC)
FirewallRules: [{45D220FA-D048-46EA-9BCC-0CA86068508E}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Activation.exe (Vector Ltd. -> Flash-Integro LLC)
FirewallRules: [{781EC123-26C3-45C0-99B8-34E28841E2AA}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe (Vector Ltd. -> Flash-Integro LLC)
FirewallRules: [{C149DE13-CAD5-4A47-877C-085033290B8D}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe (Vector Ltd. -> Flash-Integro LLC)
FirewallRules: [{113A0DA3-A73B-41F4-871D-FEB729A266A0}] => (Allow) D:\instalace\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe (The build server will stamp this field) [File not signed]
FirewallRules: [{34D0EE97-DD27-47E4-9F5F-EE15E89A8FF4}] => (Allow) D:\instalace\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe (The build server will stamp this field) [File not signed]
FirewallRules: [{9C6FED03-1E64-404C-BBD8-F91BEA44D21C}] => (Allow) D:\instalace\Steam\steamapps\common\Company of Heroes\RelicCOH.exe (THQ Canada Inc. -> THQ Canada Inc.)
FirewallRules: [{C76BC895-EA72-4413-9FDD-23F55727BF85}] => (Allow) D:\instalace\Steam\steamapps\common\Company of Heroes\RelicCOH.exe (THQ Canada Inc. -> THQ Canada Inc.)
FirewallRules: [TCP Query User{2C5A83B1-AB9A-4B4B-BC42-48BCBC05296D}D:\instalace\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe] => (Allow) D:\instalace\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe (THQ Canada Inc.) [File not signed]
FirewallRules: [UDP Query User{88784715-4E07-425F-9A08-51CC53599227}D:\instalace\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe] => (Allow) D:\instalace\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe (THQ Canada Inc.) [File not signed]
FirewallRules: [{30E3C3FB-2F98-46E3-810F-56DF16FD1FB7}] => (Allow) D:\instalace\Steam\steamapps\common\World of Warships\bin\clientrunner\clientrunner.exe No File
FirewallRules: [{FE10F5A5-D1F8-4319-A065-D986F64F6277}] => (Allow) D:\instalace\Steam\steamapps\common\World of Warships\bin\clientrunner\clientrunner.exe No File
FirewallRules: [TCP Query User{FE379989-0AC3-4FC1-9E09-CE669693F6F7}D:\games\overload\overload\win64\overload.exe] => (Block) D:\games\overload\overload\win64\overload.exe No File
FirewallRules: [UDP Query User{078EE80A-8337-419E-AEDA-3A48FAA919B1}D:\games\overload\overload\win64\overload.exe] => (Block) D:\games\overload\overload\win64\overload.exe No File
FirewallRules: [{ACC331EA-7ABD-45D0-A178-A3E7962B9FA3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DD4EEC45-619A-4A2D-8263-2B6D928911A2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{799E7C10-4EA7-42B4-8F5F-31C99A4D0802}D:\instalace\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) D:\instalace\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe () [File not signed]
FirewallRules: [UDP Query User{4A8E085D-D8C5-4865-A62F-E5013D5E8527}D:\instalace\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) D:\instalace\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe () [File not signed]
FirewallRules: [TCP Query User{B6E61EA4-91AC-47DA-9A6D-D9877CCF92B4}C:\users\petal219\appdata\local\temp\rar$exa12308.40199\imagej\imagej.exe] => (Allow) C:\users\petal219\appdata\local\temp\rar$exa12308.40199\imagej\imagej.exe No File
FirewallRules: [UDP Query User{5307DBDF-37FB-4D7B-9CF2-55A390B708BA}C:\users\petal219\appdata\local\temp\rar$exa12308.40199\imagej\imagej.exe] => (Allow) C:\users\petal219\appdata\local\temp\rar$exa12308.40199\imagej\imagej.exe No File
FirewallRules: [TCP Query User{64DD6DE4-DE03-4631-B088-8A85EE83B81C}C:\users\petal219\desktop\imgj\imagej.exe] => (Allow) C:\users\petal219\desktop\imgj\imagej.exe No File
FirewallRules: [UDP Query User{958ABBBB-31E5-4C35-A393-B5E2CD4EB454}C:\users\petal219\desktop\imgj\imagej.exe] => (Allow) C:\users\petal219\desktop\imgj\imagej.exe No File
FirewallRules: [TCP Query User{C9B58A91-36B9-4609-ACC4-CBA55808AC02}C:\users\petal219\desktop\fiji.app\imagej-win64.exe] => (Allow) C:\users\petal219\desktop\fiji.app\imagej-win64.exe No File
FirewallRules: [UDP Query User{BF108917-1C56-4545-B6BA-60FF72D6BF84}C:\users\petal219\desktop\fiji.app\imagej-win64.exe] => (Allow) C:\users\petal219\desktop\fiji.app\imagej-win64.exe No File
FirewallRules: [{5C184590-D2B1-4DB9-8A64-DFE485298063}] => (Allow) C:\Program Files\CyberLink\PowerDirector15\PDR10.EXE No File
FirewallRules: [TCP Query User{BAA08DED-8620-49D5-862A-CAD8417A91AC}D:\games\hearthstone\hearthstone.exe] => (Allow) D:\games\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{500449E9-5D74-466B-8D44-3A0457AF5F4F}D:\games\hearthstone\hearthstone.exe] => (Allow) D:\games\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{EF7A63F0-7C0B-4476-8994-F66BEA02E959}D:\instalace\qbittorrent\qbittorrent.exe] => (Allow) D:\instalace\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [UDP Query User{2A3D7A4A-6C04-42AF-B162-EE4C67480352}D:\instalace\qbittorrent\qbittorrent.exe] => (Allow) D:\instalace\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{301B15E5-86FD-493D-B4C2-34F2A3F9B95D}C:\gog games\heroes of might and magic 3 complete\heroes3.exe] => (Allow) C:\gog games\heroes of might and magic 3 complete\heroes3.exe No File
FirewallRules: [UDP Query User{0F66C30D-759C-46DB-A7D2-BBF25CE3040E}C:\gog games\heroes of might and magic 3 complete\heroes3.exe] => (Allow) C:\gog games\heroes of might and magic 3 complete\heroes3.exe No File
FirewallRules: [TCP Query User{7F655F36-1628-43B7-9668-361114CBA9E4}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{9051FDE8-DAEE-43E8-AC7E-BAA14C300F13}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B3592BFE-08E8-4147-96B3-2CD19860CEAD}] => (Allow) D:\games\Heroes & Generals\live\hng.exe No File
FirewallRules: [{E65FCE6E-3570-4B13-9E38-2AD93937D284}] => (Allow) D:\games\Heroes & Generals\live\hng.exe No File
FirewallRules: [{1BA269AB-B6FA-4DB5-B40A-959D81FBF696}] => (Allow) D:\instalace\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{17C59C53-207C-4B9C-B9F9-1C7B3E086574}] => (Allow) D:\instalace\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{525F42A0-38CF-4302-BEAF-D6C7FD686CE1}D:\instalace\lol\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) D:\instalace\lol\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{0CEE8AAC-E3C6-4392-BCCF-7771BEF8454E}D:\instalace\lol\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) D:\instalace\lol\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [{5487F9E8-F791-4BE5-A548-64C4BA7E8EA6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6B393F2A-DD14-40DA-8307-85F8142C0C03}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{92D81A7E-BA20-4A62-9800-4068CECF4122}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{38805A19-D8E6-4664-842E-1B80101420F3}D:\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe] => (Allow) D:\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe (Eugen Systems -> Eugen Systems)
FirewallRules: [UDP Query User{7C0B1F71-6028-41C0-AF38-C515E733E2A7}D:\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe] => (Allow) D:\instalace\steam\steamapps\common\wargame red dragon\wargame3.exe (Eugen Systems -> Eugen Systems)
FirewallRules: [TCP Query User{6A1B4EDE-8904-4C58-A417-4B119EAC57CC}C:\program files (x86)\wizards of the coast\mtga\mtga.exe] => (Allow) C:\program files (x86)\wizards of the coast\mtga\mtga.exe No File
FirewallRules: [UDP Query User{82813EA1-64F2-4DCC-81A4-E7DE6653D341}C:\program files (x86)\wizards of the coast\mtga\mtga.exe] => (Allow) C:\program files (x86)\wizards of the coast\mtga\mtga.exe No File
FirewallRules: [TCP Query User{893E8B13-DAC0-42D8-ABF1-A8A219BC3C00}D:\games\warthunder\launcher.exe] => (Allow) D:\games\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{631A2426-BE0D-4D86-9CB7-1D8281288DD5}D:\games\warthunder\launcher.exe] => (Allow) D:\games\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{807F190D-C545-4A96-A17B-1F196FC0099B}D:\games\warthunder\win64\aces.exe] => (Allow) D:\games\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{2C915C72-6DD7-4EE7-A615-73A2B5411E54}D:\games\warthunder\win64\aces.exe] => (Allow) D:\games\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{EC4B5790-E109-4D69-8E2D-822E3E6FFE4C}C:\program files (x86)\dearmob\5kplayer\5kplayer.exe] => (Block) C:\program files (x86)\dearmob\5kplayer\5kplayer.exe No File
FirewallRules: [UDP Query User{38B24597-7C0C-4DC5-8694-EECDFD10F744}C:\program files (x86)\dearmob\5kplayer\5kplayer.exe] => (Block) C:\program files (x86)\dearmob\5kplayer\5kplayer.exe No File
FirewallRules: [TCP Query User{BF12D2B2-68A3-449E-AD56-5200991E2D47}D:\games\warthunder\win64\aces.exe] => (Allow) D:\games\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{A6B3D34D-A2D0-4A8C-B115-17349E653E90}D:\games\warthunder\win64\aces.exe] => (Allow) D:\games\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{C6FB5392-7F49-443F-876A-04B9C171575D}] => (Allow) C:\Program Files (x86)\EA GAMES\The Battle for Middle-earth (tm)\game.dat No File
FirewallRules: [{B7220288-C111-4EE2-89EB-6EA40A62DC57}] => (Allow) C:\Program Files (x86)\EA GAMES\The Battle for Middle-earth (tm)\game.dat No File
FirewallRules: [{922E215E-26D0-4C51-8617-C1068112E3AA}] => (Allow) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{D40C68FD-9B39-4B37-87C9-58D10991B129}] => (Allow) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{62A94B81-C6A0-4946-AFED-FE515119ADDF}] => (Allow) D:\instalace\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{D9101288-AC23-4459-9796-D852DC6211E3}] => (Allow) D:\instalace\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{56A6F310-3772-4A71-BA5C-E85DBCFEB576}D:\activision\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) D:\activision\call of duty 4 - modern warfare\iw3mp.exe No File
FirewallRules: [UDP Query User{B73F8560-E913-47B3-B3D0-4308D061B546}D:\activision\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) D:\activision\call of duty 4 - modern warfare\iw3mp.exe No File
FirewallRules: [TCP Query User{625C665B-9015-47B1-9FA6-E8F5284D060B}C:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe] => (Block) C:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe No File
FirewallRules: [UDP Query User{BDA1ABFD-E46F-4264-BF6D-F01042502E40}C:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe] => (Block) C:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe No File
FirewallRules: [{D00D1C54-7B2E-4AEA-A88B-80891CC52539}] => (Allow) D:\instalace\Steam\steamapps\common\Wargame Airland Battle\WarGame2.exe (Eugen Systems -> Eugen Systems)
FirewallRules: [{DCEBDA5C-80C4-4BD0-8924-AD30A392DD45}] => (Allow) D:\instalace\Steam\steamapps\common\Wargame Airland Battle\WarGame2.exe (Eugen Systems -> Eugen Systems)
FirewallRules: [TCP Query User{CDBDD72F-B32A-4EA3-8C31-31D19E62082B}C:\program files (x86)\the creative assembly\rome - total war\rometw.exe] => (Allow) C:\program files (x86)\the creative assembly\rome - total war\rometw.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [UDP Query User{6D9EC165-375D-465F-B2AC-663546254B2D}C:\program files (x86)\the creative assembly\rome - total war\rometw.exe] => (Allow) C:\program files (x86)\the creative assembly\rome - total war\rometw.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{CABDC171-44AE-426C-9CC9-8F85985FD890}] => (Allow) D:\instalace\Steam\steamapps\common\Rome Total War Gold\RomeTW.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{F3AD66F3-5B92-4F2A-8522-CB882FC345C0}] => (Allow) D:\instalace\Steam\steamapps\common\Rome Total War Gold\RomeTW.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{D6319800-89CE-4C57-A125-C299CBDF6E93}] => (Allow) D:\instalace\Steam\steamapps\common\Rome Total War Gold\RomeTW-BI.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{E3EDC272-ECDC-4E05-ADEB-82AA7B0631A7}] => (Allow) D:\instalace\Steam\steamapps\common\Rome Total War Gold\RomeTW-BI.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{98746EB7-F1AF-4537-AB91-22A70BA1A0A5}] => (Allow) D:\instalace\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{8FEDF4B1-C5D4-4ED2-927F-A0BD2A290582}] => (Allow) D:\instalace\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{9106EEFF-5B68-468C-9AF0-F4CD6C66F274}] => (Allow) D:\instalace\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{5C8E5457-A610-4D7C-9D13-8768EAA464C9}] => (Allow) D:\instalace\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{4824F7F1-EC04-4BCB-8505-D7B3FA3B64EB}D:\games\lol\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D07236CD-1FCD-4F81-9E7C-08EC35B4F029}D:\games\lol\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{67C1B925-BCE0-4074-B367-2F6BD3368822}C:\users\petal219\desktop\aoe2\age2_x1\age2_x2.exe] => (Allow) C:\users\petal219\desktop\aoe2\age2_x1\age2_x2.exe No File
FirewallRules: [UDP Query User{270D7BC9-4D99-41FA-B37D-E073A7279222}C:\users\petal219\desktop\aoe2\age2_x1\age2_x2.exe] => (Allow) C:\users\petal219\desktop\aoe2\age2_x1\age2_x2.exe No File
FirewallRules: [TCP Query User{675EAEA3-2592-45E2-925B-8D1116682169}C:\program files (x86)\common files\oracle\java\javapath_target_146282125\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_146282125\java.exe No File
FirewallRules: [UDP Query User{C5C0CE3F-5AF7-4828-94EE-75719B60A9BA}C:\program files (x86)\common files\oracle\java\javapath_target_146282125\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_146282125\java.exe No File
FirewallRules: [TCP Query User{28877C19-9DE4-48E9-88BC-921AEFE8853C}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [UDP Query User{0FBC3016-2565-4930-A7FB-92AF779AD3A5}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe No File
FirewallRules: [TCP Query User{535B2F8A-7B26-4E54-997E-3E150426D561}D:\games\lol\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{840E2361-1EF8-47D8-B3AF-4E3036CADB10}D:\games\lol\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{612108D9-7967-4D25-A872-E2159BD13629}D:\games\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{E20FE873-F1A5-41F1-B63D-74E2CD57D1A7}D:\games\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{67DB9E56-8876-4CD0-8282-EB646A804D68}D:\games\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{ECC6F3BF-D5CD-430B-8863-5A19512CC397}D:\games\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{B8E8FC01-2DC9-4321-B9DC-F486C4636A0A}D:\games\lol\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{9CF772A7-CF25-4B7E-98E7-E9353FF2E6CE}D:\games\lol\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{EB28DBC5-8132-4579-88F8-965AA2CC0A70}D:\games\lol\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{2F6CB1AE-B5AE-46A4-B320-A0E707BA5E16}D:\games\lol\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) D:\games\lol\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [{B96A877B-6731-4E5F-8BA4-9C9C6CF705D8}] => (Allow) D:\instalace\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe (Paradox Interactive) [File not signed]
FirewallRules: [{EB3DE645-2EA2-46E7-9D40-ECA8DB336A07}] => (Allow) D:\instalace\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe (Paradox Interactive) [File not signed]
FirewallRules: [TCP Query User{41252821-5B2A-4398-BD20-E33BD1BE9904}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [UDP Query User{567A7561-25C1-4C7D-B690-8D944A7FF3F9}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [{AE4FCF2F-8908-4D1B-AC5C-64CCADB4D0E1}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{9EF7A848-801F-4914-80DF-EF8200EFF497}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{841740EF-A4C3-4B28-A27A-17464E67C357}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{376DFA45-293D-4E10-ABC1-16EF7CF312F9}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [TCP Query User{82542B7C-57BE-4D5A-99E1-F324B156C4C6}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{F75A5292-5F32-4FE9-ACF7-27164FC515C3}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{212D7ECD-7E7E-43DC-8472-0ACE53667A5F}] => (Allow) C:\Program Files\Opera\58.0.3135.68\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{EF4934F8-F851-4F5F-8A30-65AE6FA27EA7}] => (Block) C:\program files (x86)\nzxt\cam\cam.desktop.exe No File
FirewallRules: [{01E5D870-7F19-4DF5-9AAB-541838831905}] => (Block) C:\program files (x86)\nzxt\cam\cam.desktop.exe No File
FirewallRules: [{2FF4C270-7765-4C66-8C23-166BB6F96CBB}] => (Allow) C:\program files (x86)\nzxt\cam\cam.desktop.exe No File
FirewallRules: [{70BA7DF5-58CC-44DF-A357-826EC4CAC307}] => (Allow) C:\program files (x86)\nzxt\cam\cam.desktop.exe No File
FirewallRules: [{E53DAD0F-BEE4-4E82-8273-0F3426B551AD}] => (Allow) C:\Program Files\Opera\58.0.3135.79\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{3A31884D-EB5B-4F45-8D66-37433451D466}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [UDP Query User{D7AC146C-CDB9-4521-A40A-0580065E4046}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [{42BCC8BE-7EC2-4FBD-AE59-C0569D3EB87D}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{53E18775-B74E-44CE-86F6-B84E1D6B780B}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{837D382F-8F85-4FB1-BC92-4E717C13B697}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BE233A8D-652F-40AD-99E9-35DBBC1BEB33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B5850209-D840-48C0-85C9-F5E228659ACF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{897CF3AB-2F36-4A66-A891-31FECD238D35}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9C22009A-6C04-4FC4-9B87-739564B9093B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [TCP Query User{1A5F5C73-D53A-474A-A52D-D16CE5630CA8}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{376606A4-8A3C-4455-B4E7-0A6CF19FB4CA}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{5ADFD37F-5EE4-496D-B7F0-8BE6719D0763}D:\world_of_tanks_eu\worldoftanks.exe] => (Allow) D:\world_of_tanks_eu\worldoftanks.exe No File
FirewallRules: [UDP Query User{544D0F13-14F2-4DD9-B482-A23DFD035EF7}D:\world_of_tanks_eu\worldoftanks.exe] => (Allow) D:\world_of_tanks_eu\worldoftanks.exe No File
FirewallRules: [{F530E24C-A444-49CF-A803-C9F126C5E68E}] => (Allow) D:\instalace\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]
FirewallRules: [{28B088D4-F1EC-4B34-838B-22185676DAAB}] => (Allow) D:\instalace\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]
FirewallRules: [{23674115-2929-4EB1-AC2D-A9E9DE62877B}] => (Allow) D:\instalace\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]
FirewallRules: [{88AF94CA-5D20-4930-A0D4-5DDE3EE30F48}] => (Allow) D:\instalace\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/12/2019 11:21:55 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/12/2019 10:19:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Služba Šifrování neinicializovala databázi katalogu. Chyba součásti ESENT: -529.

Error: (03/12/2019 10:19:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Služba Šifrování neinicializovala databázi katalogu. Chyba součásti ESENT: -529.

Error: (03/12/2019 10:19:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Služba Šifrování neinicializovala databázi katalogu. Chyba součásti ESENT: -529.

Error: (03/12/2019 10:19:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Služba Šifrování neinicializovala databázi katalogu. Chyba součásti ESENT: -529.

Error: (03/12/2019 10:19:00 PM) (Source: ESENT) (EventID: 482) (User: )
Description: Catalog Database (4052,R,98) Catalog Database: Pokus o zápis do souboru C:\WINDOWS\system32\CatRoot2\edbres00001.jrs na posunu 2097152 (0x0000000000200000) o 0 (0x00000000) bajtů po 0.000 sekundách selhal. Došlo k systémové chybě 112 (0x00000070): Na disku není dost místa. . Operace zápisu selže a dojde k chybě -1808 (0xfffff8f0). Pokud s tím budou dál problémy, může být soubor poškozený a budete ho možná muset obnovit z předchozí zálohy.

Error: (03/12/2019 10:19:00 PM) (Source: ESENT) (EventID: 428) (User: )
Description: Catalog Database (4052,R,98) Catalog Database: Databázový stroj odmítá operace aktualizace kvůli nedostatku místa na disku s protokolem.

Error: (03/12/2019 10:19:00 PM) (Source: ESENT) (EventID: 482) (User: )
Description: Catalog Database (4052,R,98) Catalog Database: Pokus o zápis do souboru C:\WINDOWS\system32\CatRoot2\edbres00001.jrs na posunu 2097152 (0x0000000000200000) o 0 (0x00000000) bajtů po 0.000 sekundách selhal. Došlo k systémové chybě 112 (0x00000070): Na disku není dost místa. . Operace zápisu selže a dojde k chybě -1808 (0xfffff8f0). Pokud s tím budou dál problémy, může být soubor poškozený a budete ho možná muset obnovit z předchozí zálohy.


System errors:
=============
Error: (03/12/2019 10:07:59 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
Windows.SecurityCenter.WscDataProtection
 a APPID 
Není k dispozici
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/12/2019 10:07:59 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
Windows.SecurityCenter.WscBrokerManager
 a APPID 
Není k dispozici
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/12/2019 10:07:59 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
Windows.SecurityCenter.WscBrokerManager
 a APPID 
Není k dispozici
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/12/2019 10:07:59 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
Windows.SecurityCenter.WscBrokerManager
 a APPID 
Není k dispozici
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/12/2019 10:06:39 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-K1RNS0G5)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli LAPTOP-K1RNS0G5\petal219 (SID: S-1-5-21-412039192-1154255929-2393577243-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/12/2019 10:06:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 a APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/12/2019 10:06:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 a APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/12/2019 10:05:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba RHDISK_AMD64 neuspěla při spuštění v důsledku následující chyby: 
Systém nemůže nalézt uvedenou cestu.


Windows Defender:
===================================
Date: 2019-03-12 21:57:03.102
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Script/Cloxer.A!cl&threatid=2147725998&enterprise=0
Název: Trojan:Script/Cloxer.A!cl
ID: 2147725998
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I2P\Open I2P Profile Folder (service).lnk; startup:_C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I2P\Open I2P Profile Folder (service).lnk
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: LAPTOP-K1RNS0G5\petal219
Název procesu: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
Verze podpisu: AV: 1.289.911.0, AS: 1.289.911.0, NIS: 1.289.911.0
Verze modulu: AM: 1.1.15700.9, NIS: 1.1.15700.9

Date: 2019-03-12 21:56:20.198
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Script/Cloxer.A!cl&threatid=2147725998&enterprise=0
Název: Trojan:Script/Cloxer.A!cl
ID: 2147725998
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I2P\Open I2P Profile Folder (service).lnk
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: LAPTOP-K1RNS0G5\petal219
Název procesu: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
Verze podpisu: AV: 1.289.911.0, AS: 1.289.911.0, NIS: 1.289.911.0
Verze modulu: AM: 1.1.15700.9, NIS: 1.1.15700.9

Date: 2019-03-07 22:19:29.571
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {809B7370-EBBF-4913-A9B1-9313840ACFEC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-07 16:50:43.064
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {DE358B6C-35EA-4148-8807-1F6295F81B3F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-01 02:49:53.317
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {D4C0930C-B0B7-434E-B1D9-C1E862896F81}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-12 22:16:04.088
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.289.911.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.15700.9
Kód chyby: 0x80240438
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. 

CodeIntegrity:
===================================

Date: 2019-01-01 17:08:55.778
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Acer\AOP Framework\Clearfishellext_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2019-01-01 17:08:55.774
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Acer\AOP Framework\Clearfishellext_x64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Percentage of memory in use: 36%
Total physical RAM: 16267.6 MB
Available physical RAM: 10348.83 MB
Total Virtual: 18699.6 MB
Available Virtual: 10747.5 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:118.13 GB) (Free:19.49 GB) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:21.6 GB) NTFS

\\?\Volume{b7ba3360-3cef-40aa-b811-0eb05545711a}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.6 GB) NTFS
\\?\Volume{c057635d-a719-4c7b-b3b7-b7e68487c027}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: C1E432F3)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: C1E432DE)

Partition: GPT.

==================== End of Addition.txt ============================