Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-07-2021
Ran by šimon (14-07-2021 17:24:26)
Running from C:\Users\šimon\Downloads
Windows 10 Home Version 21H1 19043.1110 (X64) (2020-12-21 08:58:56)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1894395415-1596250772-784178250-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1894395415-1596250772-784178250-503 - Limited - Disabled)
Guest (S-1-5-21-1894395415-1596250772-784178250-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1894395415-1596250772-784178250-504 - Limited - Disabled)
šimon (S-1-5-21-1894395415-1596250772-784178250-1001 - Administrator - Enabled) => C:\Users\šimon

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 21.00 alpha (x64) (HKLM\...\7-Zip) (Version: 21.00 alpha - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.008.20071 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.5.2 - Advanced Micro Devices, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 21.5.2470 - Avast Software)
Badlion Client (HKLM\...\1de14785-dd8c-5cd2-aae8-d4a376f81d78) (Version: 3.2.4 - Badlion)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Blitz (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.14.30 - Blitz, Inc.)
Bonjour (HKLM\...\{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}) (Version: 2.0.4.0 - Apple Inc.)
Core Installer (HKLM-x32\...\{f2d036eb-fb40-4025-9a5a-1a313d0ce5f8}) (Version: 1.2.0.0 - Manticore Games) Hidden
CORE Launcher Install (HKLM\...\{C8B82193-C53B-4856-A7F4-D21BA0436B63}) (Version: 1.2.0.0 - Manticore Games.)
Counter Strike Global Offensive version 1.37.6.3 (HKLM-x32\...\Counter Strike Global Offensive_is1) (Version: 1.37.6.3 - Warzone)
Discord (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Enlisted Launcher 1.0.3.52 (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\{5fcad5a5-d0d8-4edf-a5ba-040b397eac31}}_is1) (Version:  - Gaijin Network)
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.5.2 - SCS Software)
Excel (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
FiveM (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\CitizenFX_FiveM) (Version:  - Cfx.re)
Free Download Manager (HKLM\...\{0C1D4CF2-5575-4786-834C-B0FC977E9714}}_is1) (Version: 6.14.0.3798 - Softdeluxe)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.124 - Google LLC)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2245.0 - Rockstar Games)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1937.12.0.1312 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.57.263.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{cca61e5e-7498-4d07-925c-194b016c272e}) (Version: 1.57.263.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{a2167b7c-e567-4ae5-9c88-8e1349a01363}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LDPlayer (HKLM-x32\...\LDPlayer4) (Version: 4.0.55 - XUANZHI INTERNATIONAL CO., LIMITED)
League of Legends (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\Riot Game league_of_legends.live) (Version:  - Riot Games, Inc)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.7.91 - Logitech)
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.59 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 21.119.0613.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{47C2CCDB-7A04-3797-992B-A84D3E90258F}) (Version: 10.0.60833 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{911FBC64-4C64-4B8F-A637-B34832638C86}) (Version: 1.0.0.0 - Mojang)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.9.5 - Notepad++ Team)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Opera Stable 77.0.4054.203 (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\Opera 77.0.4054.203) (Version: 77.0.4054.203 - Opera Software)
Outlook (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
PowerPoint (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
PUBG LITE (HKLM-x32\...\PUBG LITE_is1) (Version: 1.0.1.0 - )
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8984.1 - Realtek Semiconductor Corp.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version:  - Riot Games, Inc.)
Roblox Player for šimon (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\roblox-player) (Version:  - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.42.369 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.5 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 87.0 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{4EA298C9-B404-4790-87A6-8B7A34075C3F}) (Version: 1.0.12.0 - Epic Games, Inc.) Hidden
VALORANT (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\Riot Game valorant.live) (Version:  - Riot Games, Inc)
War Thunder Launcher 1.0.3.260 (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version:  - Gaijin Network)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.605 - McAfee, LLC)
WinRAR 6.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.01.0 - win.rar GmbH)
XMind 8 Update 9 (v3.7.9) (HKLM-x32\...\XMind_is1) (Version: 3.7.9.201912052356 - XMind Ltd.)
X-Mouse Button Control 2.19.2 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.19.2 - Highresolution Enterprises)
Zoom (HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\ZoomUMX) (Version: 5.5.4 (13142.0301) - Zoom Video Communications, Inc.)

Packages:
=========
Aim Assist -> C:\Program Files\WindowsApps\OptimumCUT.AimAssist_2.0.1.0_neutral__x9qvd8kxrp7qp [2021-05-11] (OptimumCUT)
Forza Horizon 4 -> C:\Program Files\WindowsApps\Microsoft.SunriseBaseGame_1.470.573.2_x64__8wekyb3d8bbwe [2021-07-10] (Microsoft Studios)
Forza Horizon 4 Formula Drift Car Pack -> C:\Program Files\WindowsApps\Microsoft.FormulaDriftCarPack_1.0.3.2_neutral__8wekyb3d8bbwe [2021-02-02] (Microsoft Studios)
Forza Horizon 4 Mitsubishi Car Pack -> C:\Program Files\WindowsApps\Microsoft.MitsubishiCarPack_1.0.0.2_neutral__8wekyb3d8bbwe [2021-03-12] (Microsoft Studios)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5060.0_x64__8wekyb3d8bbwe [2021-05-11] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_21.10405.5654.0_x64__8wekyb3d8bbwe [2021-05-11] (Microsoft Corporation)
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.22101.0_x64__8wekyb3d8bbwe [2021-04-24] (Microsoft Studios)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.223.0_x64__dt26b99r8h8gj [2021-01-16] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0 [2021-05-05] (Spotify AB) [Startup Task]
Word -> C:\Program Files\WindowsApps\word.office.com-CECA1A7F_1.0.0.2_neutral__jc2kecmnkxwqc [2021-06-30] (word.office.com)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-06-25] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-06-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-01-19] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2021-03-22] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-06-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-06-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-01-19] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.119.0613.0001\amd64\FileSyncShell64.dll [2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-06-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-01-19] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-06-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\šimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) ->  --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm
ShortcutWithArgument: C:\Users\šimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) ->  --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb
ShortcutWithArgument: C:\Users\šimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) ->  --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf
ShortcutWithArgument: C:\Users\šimon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Whereby.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=igamojompgopmihpkdkjokncpfffofgb

==================== Loaded Modules (Whitelisted) =============

2021-07-03 15:29 - 2021-07-02 18:41 - 000634880 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
2021-06-15 16:55 - 2021-07-10 12:13 - 000415232 _____ () [File not signed] \\?\C:\Users\šimon\AppData\Local\Programs\Blitz\resources\app.asar.unpacked\node_modules\leveldown\prebuilds\win32-ia32\node.napi.node
2021-06-15 16:55 - 2021-07-10 12:13 - 002662912 _____ () [File not signed] C:\Users\šimon\AppData\Local\Programs\Blitz\ffmpeg.dll
2021-06-15 16:55 - 2021-07-10 12:13 - 000367104 _____ () [File not signed] C:\Users\šimon\AppData\Local\Programs\Blitz\libegl.dll
2021-06-15 16:55 - 2021-07-10 12:13 - 006631936 _____ () [File not signed] C:\Users\šimon\AppData\Local\Programs\Blitz\libglesv2.dll
2021-04-09 12:00 - 2021-03-19 17:23 - 000078336 _____ (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\downloadsbatch.dll
2021-04-09 12:00 - 2021-03-19 17:24 - 003210752 _____ (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\downloadsbt.dll
2021-04-09 12:00 - 2021-03-19 17:24 - 000487424 _____ (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\downloadsms.dll
2021-04-09 12:00 - 2021-03-19 17:23 - 000272384 _____ (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\downloadswww.dll
2021-04-09 12:00 - 2021-03-19 17:20 - 000033792 _____ (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\logger.dll
2021-04-09 12:00 - 2021-03-19 17:23 - 000336896 _____ (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\vmsclshared.dll
2021-04-09 12:00 - 2021-03-19 17:20 - 000040960 _____ (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\winunivappfeatures.dll
2021-04-09 12:00 - 2020-05-27 22:16 - 002837504 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\libcrypto-1_1-x64.dll
2021-04-09 12:00 - 2020-05-27 22:16 - 000681472 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\libssl-1_1-x64.dll
2021-04-09 12:00 - 2021-03-19 17:24 - 005972464 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\Qt5Core.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5690]
AlternateDataStreams: C:\Users\šimon\Data aplikací:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\šimon\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1894395415-1596250772-784178250-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-06-25] (McAfee, LLC -> McAfee, LLC)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-06-25] (McAfee, LLC -> McAfee, LLC)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2021-07-14 13:32 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

2021-06-02 15:23 - 2021-06-02 15:28 - 000000439 _____ C:\Windows\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1894395415-1596250772-784178250-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\šimon\Downloads\255863-2girls-apron-aqua-wallpaper-preview.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "XMouseButtonControl"
HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_D430D43266990351B05456EFE0DAECBC"
HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"
HKU\S-1-5-21-1894395415-1596250772-784178250-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{50E754A1-A24B-4D26-B73C-74DCA7E7ADF5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{BED34764-5681-4C22-A7BF-806F2C6C5D89}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CCCF939A-C7DB-4C16-AC8A-E773D4BE850E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{3F625A1C-A595-4B5B-9068-32372F4D3179}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{9541BAF5-ECF2-46F2-951D-6506F55CAF57}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{05B3A343-EA0E-43FF-9366-3DDDA2FCD170}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{F52E3DD6-F1AE-4762-AD5B-35C72A31F5E6}C:\program files\amd\cnext\cnext\radeonsoftware.exe] => (Allow) C:\program files\amd\cnext\cnext\radeonsoftware.exe => No File
FirewallRules: [UDP Query User{B124014E-60C0-4EF3-99B9-2490433A0E31}C:\program files\amd\cnext\cnext\radeonsoftware.exe] => (Allow) C:\program files\amd\cnext\cnext\radeonsoftware.exe => No File
FirewallRules: [TCP Query User{6B108AB8-E5DF-424E-89EF-E8F823F51CF7}C:\users\šimon\onedrive\game\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\users\šimon\onedrive\game\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{7B457ED1-71D5-41C9-B943-F07E8A93B276}C:\users\šimon\onedrive\game\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\users\šimon\onedrive\game\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{F1E1F8E0-6AA7-45F6-8040-59453B30F6D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{C5B7CCA6-D4B4-4306-A6DF-4C0A9235C42B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{35156F0D-A104-426B-9832-BC9B5B66C9EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{8478C95E-0628-4FE6-93E9-74BA65B8D74C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [TCP Query User{51FFA6FE-07A0-496F-A67F-91526C4E9E43}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [UDP Query User{2E2EB1D5-D781-4313-AA7A-2F192660951E}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{5967E4A6-F06E-464C-A438-9F486F49ACAF}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{1C7B03C6-8940-4B0D-B3ED-DE3FB772AE1F}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{FC345DD1-8FBD-4B59-A0AC-48F188D33864}C:\users\šimon\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => No File
FirewallRules: [UDP Query User{CEC08931-561D-4DDE-85B0-B72EFEA684EF}C:\users\šimon\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => No File
FirewallRules: [{528A24DA-EA0B-4122-A4E9-309E862BB59A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BE7E3905-FD8A-47CF-9569-86905DD5A7C3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ACACE122-92B2-4CAA-8392-287344510E91}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F8DA8BDC-6A81-4BF0-8D2D-D0EBC7A5C1CC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CFF5CDE2-5E2F-47F6-9727-D7AA49EBF483}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D08C585F-AE83-4363-A31B-9360CE67EBDF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{F54AE91F-EEF8-48CD-91AB-EB034E12E60A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [{D6C69CBB-BA2C-437B-A5B7-E54F170F6B9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [TCP Query User{70E98E57-F18E-4E96-AD4E-114527B5C656}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{5011D407-A397-4BDB-B474-FD450BBE49FE}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{D0EBA177-82DE-4B73-BBEE-5FD9DCBB2FF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{B64E7CBD-A003-40D4-86B5-06285779A6D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{B8E420A9-59EE-4588-8B18-8BCED7EAE486}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed]
FirewallRules: [{42B7BA23-326F-4B55-BCE8-0BAF54B55D34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed]
FirewallRules: [{F1EEDEE3-B21D-4E41-B8AD-6BD1D9333BC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe => No File
FirewallRules: [{B1DDF661-5666-4BC0-AA06-B0D2E22EE74D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{F9251E72-D0D9-4F93-A5F3-1CA3B90F3E45}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{84416923-64BF-40D1-A7F6-37F44EB52539}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe => No File
FirewallRules: [{76012338-294E-4858-927F-44EB9846AF9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe => No File
FirewallRules: [{58731525-9680-4737-9531-C84672942961}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{70279A17-0F28-4A06-BCAC-91DB85D6ED9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{C7AD4099-581A-4B71-B723-2D62809D4728}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe => No File
FirewallRules: [{9CF979B3-E5F7-4EB1-9CDD-DA4138EFC724}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\eaccrlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{0A018354-E76F-4E32-BCE5-62258DEE431B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\eaccrlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{095DDBFD-CFF5-4987-B223-35DBC478D8E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [{E0E955D3-50D6-47B4-BF84-DC9C34E38E9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [{923AE09E-D894-46A1-9955-D909B1D5171E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\bpreport.exe (Gaijin Network LTD -> )
FirewallRules: [{513632E6-A469-4146-B8BC-E53C76B5A2A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\bpreport.exe (Gaijin Network LTD -> )
FirewallRules: [{0131D186-3BD9-4F53-B50A-8759DF2E8281}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\win32\bpreport.exe (Gaijin Network LTD -> )
FirewallRules: [{AF99362B-9C1C-456C-A6DA-5C9F36808C90}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\win32\bpreport.exe (Gaijin Network LTD -> )
FirewallRules: [{EC15D8AE-CFB3-4C5E-AA39-BAFEE308C001}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\gaijin_downloader.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [{274A9659-60F2-452E-9373-E93B040C101C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\gaijin_downloader.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [{09863C5F-375D-43E4-A134-39348395AC91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\win64\cuisine_royale.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{C27E03B5-FE85-48C8-88A1-319D9A26DE94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\win64\cuisine_royale.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{5BEF89F7-3692-4B76-A5E3-5854E22B6556}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\win32\cuisine_royale.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{8B619399-DF79-4BB3-8695-46630B4B7A1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\win32\cuisine_royale.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{B45C46AD-EA02-459D-AB6D-4A47EAB13535}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\cuisine_royale_eac_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{4F90D3C7-907E-47AF-AF7E-1B71EEADCDE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\cuisine_royale_eac_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{08B0F934-CD68-4A6A-98DA-5C9BF6065B2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\eaccrlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{012B5377-F3D5-4F6F-A2BF-B7CAF58E05D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CRSED\eaccrlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{2ACD4921-6B7B-4390-9729-9BEA9512DE9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{7FCF0885-78A4-4634-9DB1-B87684076225}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{C4544409-D2D1-45BA-98DF-DE4EBF2C87AE}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{423B07CC-E050-4A88-84C4-D13B5D1A78ED}C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{C5ACD293-16A4-4706-9540-6B496B1599F2}] => (Allow) C:\Games\Counter-Strike WaRzOnE\hl.exe (Valve) [File not signed]
FirewallRules: [{BDDFFCEC-BC8F-429F-9D75-62EE268E5007}] => (Allow) C:\Games\Counter-Strike WaRzOnE\hl.exe (Valve) [File not signed]
FirewallRules: [{8AD31C31-872D-4A1C-85FF-3561F12A573A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hydroneer\Mining.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{08D94255-7D27-421B-9924-9DD190685C0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hydroneer\Mining.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{2582E206-26B8-4C0B-8ED6-6C2A758725DC}C:\program files (x86)\steam\steamapps\common\hydroneer\mining\binaries\win64\mining-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\hydroneer\mining\binaries\win64\mining-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{46B5A1BC-1023-4F89-A616-7837673C6377}C:\program files (x86)\steam\steamapps\common\hydroneer\mining\binaries\win64\mining-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\hydroneer\mining\binaries\win64\mining-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{6C4B3C7E-00C7-4220-BFAC-16DF663EB0D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wildlands\GRW.exe (Blue Byte GmbH -> )
FirewallRules: [{617F687B-398C-4993-8424-6DA4E18E570E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wildlands\GRW.exe (Blue Byte GmbH -> )
FirewallRules: [TCP Query User{53FB13A4-762A-45BD-8178-8C0CD62A95BA}C:\users\šimon\onedrive\game\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\users\šimon\onedrive\game\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{EDE09960-E294-45F8-9E78-078333CEB555}C:\users\šimon\onedrive\game\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\users\šimon\onedrive\game\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{CF90B908-309C-4A12-9238-1C5435371A82}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{C9169EA9-2FBD-47B4-868F-64FE88B1BA50}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{F6E83E83-BA83-4858-8341-60C64640E9F7}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [UDP Query User{1546EF0A-2799-4807-99A6-91954AE64A06}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [{56D1CD0C-AEBB-41FB-BB75-2FA202B5F2FD}] => (Allow) C:\Users\šimon\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{B0D15709-4D02-44E6-9771-B0E4C901D21C}] => (Allow) C:\Users\šimon\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{7F0E15F8-2E22-4BF3-AFEB-AD13562805BE}] => (Allow) C:\Users\šimon\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{60FA8258-E11D-4081-BA9D-65E8537580A5}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{3823D63E-4813-4D65-92E4-F9A01C1F6000}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{2A121D19-59AC-4156-8340-D10B126D28E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fishing Planet\FishingPlanet.exe () [File not signed]
FirewallRules: [{05BC198D-2122-4DB9-AC79-A3645DDFA15C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fishing Planet\FishingPlanet.exe () [File not signed]
FirewallRules: [{21233673-09E0-467E-993C-684180D37907}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1400F73B-2896-4A3C-875E-10C7D9A2B9A1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{6BF7FD41-0E54-42DF-980B-185F79340F66}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe () [File not signed]
FirewallRules: [UDP Query User{3E509670-E975-4E32-A5BD-64B3FE0B70EE}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe () [File not signed]
FirewallRules: [TCP Query User{CC78C9B0-4677-4FAB-8380-BA9D53CBEC68}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{45DEDC8E-6199-4F51-B84B-183560A32C78}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{3F593CBA-3C16-47B9-92A8-51083289F98F}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [File not signed]
FirewallRules: [{369796E7-04DB-4A1B-886D-6897B8E62ADF}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [File not signed]
FirewallRules: [{B01DA8DB-C45B-4534-904E-FE6590823510}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [File not signed]
FirewallRules: [{DD396346-EAFA-4A24-8054-8F28739EEFA9}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [File not signed]
FirewallRules: [{7064C8D2-0C8C-45EE-B22A-B6EAD6E78DA0}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [File not signed]
FirewallRules: [{E5A010F0-0D4E-4FA4-BF88-82275355D146}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [File not signed]
FirewallRules: [TCP Query User{B1AD1FE8-E6F5-4CF9-8500-BF0A1B5F67C7}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{A91BC5E6-59AD-4D3F-99E2-962E711C070D}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{21C4DD3F-977C-44DB-8278-BA88EBA71E76}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{BCC89153-EA6B-4C7E-BF75-7450E45D61BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\eac_wt_mlauncher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{70543CFB-1905-4EF6-AF13-1BBF66D41064}C:\users\šimon\appdata\local\fivem\fivem.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{229B3799-37CC-445D-B0B7-EDA0C0DB338B}C:\users\šimon\appdata\local\fivem\fivem.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{55B66A1B-E10E-4D38-9025-960C89DEFEB0}C:\users\šimon\appdata\local\fivem\fivem.app\cache\subprocess\fivem_fxdk_gameruntime.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\cache\subprocess\fivem_fxdk_gameruntime.exe => No File
FirewallRules: [UDP Query User{8F6DFE35-B27A-4998-B822-3FA403BAC663}C:\users\šimon\appdata\local\fivem\fivem.app\cache\subprocess\fivem_fxdk_gameruntime.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\cache\subprocess\fivem_fxdk_gameruntime.exe => No File
FirewallRules: [TCP Query User{FDFBD531-73AB-4CF7-A493-12F4E375BDA0}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [UDP Query User{F4A85ADF-E495-4127-8282-6FE691CAB4FE}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [TCP Query User{E249B00A-DC68-4E09-B89B-EA42940FD811}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe => No File
FirewallRules: [UDP Query User{CF5F1A21-EC3B-4FD0-8E2C-47F9E8D3E172}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe => No File
FirewallRules: [{0CF7870E-E4B2-4C41-B8C9-FBD5575D4186}] => (Allow) C:\Program Files\Epic Games\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{880AED80-44C3-4B41-B6A2-B9C245883F15}] => (Allow) C:\Program Files\Epic Games\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{990A5F23-62B0-47AF-BE5F-8B319863E6FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Alien Swarm Reactive Drop\reactivedrop.exe () [File not signed]
FirewallRules: [{E0340F37-6313-4407-B3B7-A6C690AE83F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Alien Swarm Reactive Drop\reactivedrop.exe () [File not signed]
FirewallRules: [TCP Query User{E6BDB212-437B-4DD3-BD44-045D7384EBF6}C:\program files (x86)\steam\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Block) C:\program files (x86)\steam\steamapps\common\warface\13_2000076\bin64release\game.exe => No File
FirewallRules: [UDP Query User{622AC25F-63A8-483B-85DE-4D42BFE1CD93}C:\program files (x86)\steam\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Block) C:\program files (x86)\steam\steamapps\common\warface\13_2000076\bin64release\game.exe => No File
FirewallRules: [TCP Query User{8006625E-F885-4F81-B142-19584C0AD9F2}C:\games\counter strike global offensive warzone\csgo.exe] => (Allow) C:\games\counter strike global offensive warzone\csgo.exe () [File not signed]
FirewallRules: [UDP Query User{20BBE804-8323-44A0-8B02-11CB1CF4F89D}C:\games\counter strike global offensive warzone\csgo.exe] => (Allow) C:\games\counter strike global offensive warzone\csgo.exe () [File not signed]
FirewallRules: [TCP Query User{A951BD89-9209-4261-BAAC-20D9D8879C9E}C:\games\counter strike global offensive warzone\launcher\tools\steamcmd.exe] => (Allow) C:\games\counter strike global offensive warzone\launcher\tools\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{D16DE69F-9CA5-4153-BF03-5BBAF6620C31}C:\games\counter strike global offensive warzone\launcher\tools\steamcmd.exe] => (Allow) C:\games\counter strike global offensive warzone\launcher\tools\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{2EB5FB66-2FF9-41D2-B19D-D0DFB599B8BB}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (Turtle Entertainment Online, Inc. -> Badlion)
FirewallRules: [UDP Query User{41B9DD7B-9F55-4C37-A5B0-C41B5B05026B}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (Turtle Entertainment Online, Inc. -> Badlion)
FirewallRules: [{EBD18E65-F5AF-4476-B9FC-2BD00D96B199}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{04279E83-D8E2-4C88-8111-B284AFF50114}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1A79989F-7D52-48F8-8F4B-807AE86931BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{55C0B6BE-3CE8-47B8-8D52-A467EDD5E042}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BC30BA53-614D-4543-B309-7458145F8F7D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F9CCE5DB-6C6F-4336-B574-D19056373F0C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FAE96FD8-6A2F-4296-8C7E-B4F364DA8017}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0D002250-B69C-4DC8-B367-B21880A03F63}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{843913ED-DF83-42EB-9D0C-DAC3EC59BBF2}C:\program files\ldplayerbox\ldvboxheadless.exe] => (Allow) C:\program files\ldplayerbox\ldvboxheadless.exe (Shanghai Changzhi Network Technology Co., Ltd. -> Oracle Corporation)
FirewallRules: [UDP Query User{7B004DC9-12B1-49CA-A2F5-22EB16F28C71}C:\program files\ldplayerbox\ldvboxheadless.exe] => (Allow) C:\program files\ldplayerbox\ldvboxheadless.exe (Shanghai Changzhi Network Technology Co., Ltd. -> Oracle Corporation)
FirewallRules: [{871E2239-7090-457F-977C-64EBC8F22F4A}] => (Block) C:\program files\ldplayerbox\ldvboxheadless.exe (Shanghai Changzhi Network Technology Co., Ltd. -> Oracle Corporation)
FirewallRules: [{035249CB-16DA-40D3-A0B2-FAF10185356E}] => (Block) C:\program files\ldplayerbox\ldvboxheadless.exe (Shanghai Changzhi Network Technology Co., Ltd. -> Oracle Corporation)
FirewallRules: [TCP Query User{A1CC1318-8D9A-4DF5-AD72-5F13C063E071}C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{31962913-A2DE-4D4E-9E75-0CBCA064D544}C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{D0A3E3E6-EF33-4C9E-A5FE-2279CA3EC694}] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{3DA1984D-05A3-4D68-BB0D-1A4C55B0E2E9}] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{28390FFD-C814-481E-878A-BD1E23FE375B}C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{93B6AF6D-EE69-4271-9349-A5BD31479B2A}C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{7DB0164A-CF37-4353-A0F2-94EFA773F141}C:\program files\amd\cnext\cnext\radeonsoftware.exe] => (Allow) C:\program files\amd\cnext\cnext\radeonsoftware.exe => No File
FirewallRules: [UDP Query User{61CB4A88-BDF2-4BE1-98C8-BE36528F9241}C:\program files\amd\cnext\cnext\radeonsoftware.exe] => (Allow) C:\program files\amd\cnext\cnext\radeonsoftware.exe => No File
FirewallRules: [TCP Query User{C6C706E8-5DBC-4015-80BE-800ED2224CE0}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (Turtle Entertainment Online, Inc. -> Badlion)
FirewallRules: [UDP Query User{9E439ABB-3F63-4173-8F4D-16192B4E25DB}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (Turtle Entertainment Online, Inc. -> Badlion)
FirewallRules: [TCP Query User{EAD3219A-2D3B-404B-8325-FDA345991177}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [UDP Query User{2D45BDC3-DD4E-44D2-9951-D10530F06685}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [TCP Query User{37B15993-78C5-4ECF-AA95-4E540F69D4C0}C:\users\šimon\onedrive\game\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\šimon\onedrive\game\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{A5E7257B-EFAE-4385-9766-3D6249EEF74D}C:\users\šimon\onedrive\game\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\šimon\onedrive\game\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{FE36A6B1-BB83-4D0B-AB6D-02D0F81C4812}C:\games\counter strike global offensive warzone\csgo.exe] => (Allow) C:\games\counter strike global offensive warzone\csgo.exe () [File not signed]
FirewallRules: [UDP Query User{0882CE90-0F20-43F3-9E1D-F8B69D1ACCFD}C:\games\counter strike global offensive warzone\csgo.exe] => (Allow) C:\games\counter strike global offensive warzone\csgo.exe () [File not signed]
FirewallRules: [TCP Query User{990D1392-A06B-425D-A17A-7ABB8C139474}C:\users\šimon\appdata\local\enlisted\launcher.exe] => (Allow) C:\users\šimon\appdata\local\enlisted\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [UDP Query User{7DF801E1-3DF8-41DA-8E25-8848C380ADF7}C:\users\šimon\appdata\local\enlisted\launcher.exe] => (Allow) C:\users\šimon\appdata\local\enlisted\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [TCP Query User{3B90DA67-FE63-462C-8338-D87E5CC9A23C}C:\users\šimon\appdata\local\enlisted\win64\enlisted.exe] => (Allow) C:\users\šimon\appdata\local\enlisted\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{10DF1D35-637C-484F-9806-8A9D44163F64}C:\users\šimon\appdata\local\enlisted\win64\enlisted.exe] => (Allow) C:\users\šimon\appdata\local\enlisted\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{BD8B1834-284A-437A-A275-64293BD7B33F}C:\users\šimon\appdata\local\fivem\fivem.app\citizenfx_subprocess_game_2189.bin] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\citizenfx_subprocess_game_2189.bin (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{4FB8F1D0-CCFD-428D-AB45-9AE3F96AF960}C:\users\šimon\appdata\local\fivem\fivem.app\citizenfx_subprocess_game_2189.bin] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\citizenfx_subprocess_game_2189.bin (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{102ED4D9-F679-473E-A770-9604FC08F5EE}] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\citizenfx_subprocess_game_2189.bin (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{A0BA714F-A6A6-4440-9533-9321D18928CF}C:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{1686F886-8EB2-4F00-89D3-45DA43D37A30}C:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{5CD5984C-6C9A-4BD5-A923-D176B632532B}C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_b2189_gameruntime.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_b2189_gameruntime.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{2C65D41E-8D48-4F8C-B03A-DC1413577977}C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_b2189_gameruntime.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_b2189_gameruntime.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{B0B42CE9-51F1-4C4A-B584-8D0FF08C6559}] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_b2189_gameruntime.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{D751BD2E-972F-4281-BE10-003FD7D8FC9C}] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_b2189_gameruntime.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{70DC181A-26AA-41F9-8941-01B62BA2A482}C:\users\šimon\appdata\local\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\users\šimon\appdata\local\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [UDP Query User{080F6843-B099-46FB-9730-9982B4841846}C:\users\šimon\appdata\local\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\users\šimon\appdata\local\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [{532F8F18-EFD9-422E-ACF1-FCD6D02D3DE1}] => (Block) C:\users\šimon\appdata\local\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [{3A9CA909-ECF4-4DC1-BB3D-30B077299A63}] => (Block) C:\users\šimon\appdata\local\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [TCP Query User{6D4AA521-F3D8-4D36-A1CE-864F6920544A}C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{B14DAA85-89BF-44D0-80FD-70F90AF03273}C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{769F8B3D-ABAF-45BC-8BF0-F4ADF95F0735}] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{E44C84E4-F7C1-4EEB-9148-9ACAC7F08898}] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{39C60396-8D09-41A3-B887-7B79172C7D87}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{E02875C5-51CF-450C-998D-F5889CC5FF7E}C:\users\šimon\downloads\flashing.lights.v12.21.2020\flashing.lights.v12.21.2020\flashing lights\flashinglights.exe] => (Allow) C:\users\šimon\downloads\flashing.lights.v12.21.2020\flashing.lights.v12.21.2020\flashing lights\flashinglights.exe () [File not signed]
FirewallRules: [UDP Query User{5049172B-BFFF-46C6-BC3E-BEB0EEF53E23}C:\users\šimon\downloads\flashing.lights.v12.21.2020\flashing.lights.v12.21.2020\flashing lights\flashinglights.exe] => (Allow) C:\users\šimon\downloads\flashing.lights.v12.21.2020\flashing.lights.v12.21.2020\flashing lights\flashinglights.exe () [File not signed]
FirewallRules: [{E4BD0DA8-BA83-41E4-920A-C31447D89DA2}] => (Block) C:\users\šimon\downloads\flashing.lights.v12.21.2020\flashing.lights.v12.21.2020\flashing lights\flashinglights.exe () [File not signed]
FirewallRules: [{D2D9F996-E147-4F25-9FD2-3CE39FDEFEB3}] => (Block) C:\users\šimon\downloads\flashing.lights.v12.21.2020\flashing.lights.v12.21.2020\flashing lights\flashinglights.exe () [File not signed]
FirewallRules: [{3646C403-322A-4B72-871E-FCBC39ABEE61}] => (Allow) C:\Users\šimon\AppData\Local\Programs\Opera\77.0.4054.172\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{6B6A8EDD-0363-4F02-A94F-D82C35FE09BB}C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_gameruntime.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_gameruntime.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{623F29D1-BA9E-4767-A6C6-DAFC0522CA88}C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_gameruntime.exe] => (Allow) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_gameruntime.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{EA0380B7-1C81-451A-A521-693FDEA25F5D}] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_gameruntime.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{8F0FDB6F-2270-4379-A142-61BC4148326D}] => (Block) C:\users\šimon\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_fxdk_gameruntime.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{FF0ABF28-4C15-4098-89B9-2FBE59575D4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{17D0C4F4-FC10-49B9-A020-2581CA5FED3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F30CA801-1D01-4C8E-9A6F-2DBC08A989B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{0E327285-5D47-4EE3-BC64-37689C38838D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{542D5CDC-24EE-40E7-90C1-217514D00D66}] => (Allow) C:\Users\šimon\AppData\Local\Programs\Opera\77.0.4054.203\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{0ECD90B8-3B4D-4435-AB9E-4E2EDEA01703}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{EB0C0FDE-89CF-40DC-8D08-B5CD2A327B4F}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{2B6A9F58-3DF2-404C-9B49-1B7F4988CFA0}] => (Block) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{025B4ADD-7FC6-4188-ADA3-FD97632508B5}] => (Block) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{752946DF-F941-4EB4-AA41-406330111A21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Motorcycle Mechanic Simulator 2021 Prologue\plw-launcher\playway-launcher.exe (Piotr "Xeno" Adamczyk) [File not signed]
FirewallRules: [{E427F15C-4695-4B20-B89E-7A2E0CADC87D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Motorcycle Mechanic Simulator 2021 Prologue\plw-launcher\playway-launcher.exe (Piotr "Xeno" Adamczyk) [File not signed]

==================== Restore Points =========================

14-07-2021 17:06:36 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (07/14/2021 05:17:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Blitz.exe, verze: 1.14.30.1109, časové razítko: 0x60d0d927
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1110, časové razítko: 0x8a32a22a
Kód výjimky: 0xc0000005
Posun chyby: 0x0005f563
ID chybujícího procesu: 0x289c
Čas spuštění chybující aplikace: 0x01d778c35194fa6a
Cesta k chybující aplikaci: C:\Users\šimon\AppData\Local\Programs\Blitz\Blitz.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: f4efec39-bcb4-4929-9670-ac39fd87eee9
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (07/14/2021 05:15:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mDNSResponder.exe, verze: 2.0.4.0, časové razítko: 0x4cae1be1
Název chybujícího modulu: mDNSResponder.exe, verze: 2.0.4.0, časové razítko: 0x4cae1be1
Kód výjimky: 0xc0000005
Posun chyby: 0x0000110a
ID chybujícího procesu: 0x1094
Čas spuštění chybující aplikace: 0x01d778c322dad033
Cesta k chybující aplikaci: C:\Program Files (x86)\Bonjour\mDNSResponder.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Bonjour\mDNSResponder.exe
ID zprávy: ec41ce2a-3c70-409a-b3cc-a1ff80ec9a91
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (07/14/2021 04:28:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FortniteClient-Win64-Shipping_BE.exe, verze: 1.0.0.0, časové razítko: 0xb81cbc69
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1081, časové razítko: 0xde3fc775
Kód výjimky: 0xe0434352
Posun chyby: 0x0000000000034ed9
ID chybujícího procesu: 0x1bd0
Čas spuštění chybující aplikace: 0x01d778bc929be1f8
Cesta k chybující aplikaci: C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping_BE.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: d0aa08e1-1072-4a6e-8b0f-162e56496a52
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (07/14/2021 04:28:54 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FortniteClient-Win64-Shipping_BE.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ComponentModel.Win32Exception
   na System.Diagnostics.Process.StartWithShellExecuteEx(System.Diagnostics.ProcessStartInfo)
   na FNAntiCheat.Program.Restore()
   na FNAntiCheat.Program.Main(System.String[])

Error: (07/14/2021 04:28:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FortniteClient-Win64-Shipping_BE.exe, verze: 1.0.0.0, časové razítko: 0xb81cbc69
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1081, časové razítko: 0xde3fc775
Kód výjimky: 0xe0434352
Posun chyby: 0x0000000000034ed9
ID chybujícího procesu: 0x3754
Čas spuštění chybující aplikace: 0x01d778bc80a7b5b2
Cesta k chybující aplikaci: C:\Program Files\Epic Games\Fortnite\FortniteGame\Binaries\Win64\FortniteClient-Win64-Shipping_BE.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 1b0631a3-57eb-4a42-8ba7-06ee868e7f6d
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (07/14/2021 04:28:24 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FortniteClient-Win64-Shipping_BE.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ComponentModel.Win32Exception
   na System.Diagnostics.Process.StartWithShellExecuteEx(System.Diagnostics.ProcessStartInfo)
   na FNAntiCheat.Program.Restore()
   na FNAntiCheat.Program.Main(System.String[])

Error: (07/14/2021 04:24:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 5.621.4222.0, časové razítko: 0x60818071
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1081, časové razítko: 0xde3fc775
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000010bd3e
ID chybujícího procesu: 0x2f18
Čas spuštění chybující aplikace: 0x01d778bb353e9f83
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 64a795df-e94d-4ab5-b6c8-8a9739da72bc
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App

Error: (07/14/2021 04:24:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.1081 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 210

Čas spuštění: 01d778999acf800b

Čas ukončení: 7540

Cesta k aplikaci: C:\Windows\explorer.exe

ID hlášení: e6388f8b-6742-47ec-bf63-8f0fd10f7e89

Úplný název balíčku s chybou: 

ID aplikace relativní podle balíčku s chybou: 

Typ zablokování: Unknown


System errors:
=============
Error: (07/14/2021 05:15:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Bonjour Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/14/2021 05:15:12 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba AppXSvc závisí na službě StateRepository, která neuspěla při spuštění v důsledku následující chyby: 
Operace byla dokončena úspěšně.

Error: (07/14/2021 05:15:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Audiosrv neuspěla při spuštění v důsledku následující chyby: 
Služba nebyla zahájena, protože se nepodařilo přihlásit.

Error: (07/14/2021 05:15:12 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba Audiosrv se nemohla přihlásit jako NT AUTHORITY\LocalService s aktuálně konfigurovaným heslem z důvodu následující chyby:
Požadavek není podporován.


Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (07/14/2021 05:15:10 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:55:52, ‎14.‎07.‎2021) bylo neočekávané.

Error: (07/14/2021 04:19:33 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: Ve struktuře systému souborů na svazku C: bylo zjištěno poškození.

Hlavní tabulka souborů (MFT) obsahuje poškozený záznam souboru. Referenční číslo souboru je 0x200000001edaa. Název souboru je <nelze určit název souboru>.

Error: (07/14/2021 04:19:33 PM) (Source: volsnap) (EventID: 23) (User: )
Description: Na svazku \\?\Volume{2c465027-9881-4065-9a3e-fc8321d509fe} není dostatek místa na disku pro vytvoření stínové kopie svazku C:. Vytvoření úložiště stínové kopie se nezdařilo.

Error: (07/14/2021 04:19:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Protokol událostí systému Windows byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.


Windows Defender:
================
Date: 2021-04-22 20:02:23
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Phonzy.A!ml&threatid=2147772962&enterprise=0
Název: Trojan:Win32/Phonzy.A!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\šimon\Downloads\CheatSquad_Injector_V1.1.rar; webfile:_C:\Users\šimon\Downloads\CheatSquad_Injector_V1.1.rar|https://cdn.discordapp.com/attachments/819669199470723102/827500869309300746/CheatSquad_Injector_V1.1.rar|pid:15172,ProcessStart:132635881433336174
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: HERNI-PC1\šimon
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.335.1422.0, AS: 1.335.1422.0, NIS: 1.335.1422.0
Verze modulu: AM: 1.1.18000.5, NIS: 1.1.18000.5

Date: 2021-04-22 20:00:48
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Phonzy.A!ml&threatid=2147772962&enterprise=0
Název: Trojan:Win32/Phonzy.A!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\šimon\Downloads\CheatSquad_Injector_V1.1.rar; webfile:_C:\Users\šimon\Downloads\CheatSquad_Injector_V1.1.rar|https://cdn.discordapp.com/attachments/819669199470723102/827500869309300746/CheatSquad_Injector_V1.1.rar|pid:9128,ProcessStart:132635880479247315
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: HERNI-PC1\šimon
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.335.1422.0, AS: 1.335.1422.0, NIS: 1.335.1422.0
Verze modulu: AM: 1.1.18000.5, NIS: 1.1.18000.5

Date: 2021-04-22 19:59:47
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Phonzy.A!ml&threatid=2147772962&enterprise=0
Název: Trojan:Win32/Phonzy.A!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\šimon\Downloads\CheatSquad_Injector_V1.1.rar; webfile:_C:\Users\šimon\Downloads\CheatSquad_Injector_V1.1.rar|https://cdn.discordapp.com/attachments/819669199470723102/827500869309300746/CheatSquad_Injector_V1.1.rar|pid:14844,ProcessStart:132635879870880853
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: HERNI-PC1\šimon
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.335.1422.0, AS: 1.335.1422.0, NIS: 1.335.1422.0
Verze modulu: AM: 1.1.18000.5, NIS: 1.1.18000.5

Date: 2021-04-22 19:59:20
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4332B86A-4C98-4BE7-8416-B5194EF47663}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: HERNI-PC1\šimon

Date: 2021-04-22 19:59:07
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Phonzy.A!ml&threatid=2147772962&enterprise=0
Název: Trojan:Win32/Phonzy.A!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\šimon\Downloads\CheatSquad_Injector_V1.1.rar; webfile:_C:\Users\šimon\Downloads\CheatSquad_Injector_V1.1.rar|https://cdn.discordapp.com/attachments/819669199470723102/827500869309300746/CheatSquad_Injector_V1.1.rar|pid:14060,ProcessStart:132635879478248414
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: HERNI-PC1\šimon
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.335.1422.0, AS: 1.335.1422.0, NIS: 1.335.1422.0
Verze modulu: AM: 1.1.18000.5, NIS: 1.1.18000.5
﻿
CodeIntegrity:
===============
Date: 2021-07-14 17:24:44
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Avast Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-07-14 17:22:07
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswidsagent.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

BIOS: American Megatrends Inc. 1.30 06/05/2020
Motherboard: Micro-Star International Co., Ltd. MAG B365M MORTAR(MS-7C67)
Processor: Intel(R) Core(TM) i5-9400F CPU @ 2.90GHz
Percentage of memory in use: 33%
Total physical RAM: 16326.25 MB
Available physical RAM: 10864.32 MB
Total Virtual: 26054.25 MB
Available Virtual: 18405.54 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:953.1 GB) (Free:121.9 GB) NTFS
Drive e: () (Removable) (Total:7.53 GB) (Free:7.5 GB) FAT32

\\?\Volume{2c465027-9881-4065-9a3e-fc8321d509fe}\ (Recovery tools) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{5ec39a1c-ba77-4f9f-93b2-57d8aa6185fe}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: 6F3CF448)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 7.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================