Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-12-2022
Ran by dbube (10-12-2022 19:26:42)
Running from D:\Programy
Microsoft Windows 10 Home Version 22H2 19045.2311 (X64) (2020-09-06 11:45:50)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1558997955-55845073-2629518697-500 - Administrator - Disabled)
dbube (S-1-5-21-1558997955-55845073-2629518697-1001 - Administrator - Enabled) => C:\Users\dbube
DefaultAccount (S-1-5-21-1558997955-55845073-2629518697-503 - Limited - Disabled)
Guest (S-1-5-21-1558997955-55845073-2629518697-501 - Limited - Disabled)
Vlasta (S-1-5-21-1558997955-55845073-2629518697-1010 - Limited - Enabled) => C:\Users\Vlasta
WDAGUtilityAccount (S-1-5-21-1558997955-55845073-2629518697-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0) (Version: 19.0 - Adobe Systems Incorporated)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Auto Keys 1.0 (HKLM-x32\...\Auto Keys) (Version:  - )
BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Builder Simulator (HKLM-x32\...\DOGE_Builder_Simulator) (Version:  - )
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Enlisted Launcher 1.0.3.101 (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\{5fcad5a5-d0d8-4edf-a5ba-040b397eac31}}_is1) (Version:  - Gaijin Network)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
FiveM (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\CitizenFX_FiveM) (Version:  - Cfx.re)
GeeGeeClient (HKLM\...\{B5002408-65DD-4575-A611-6878FFB8220A}) (Version: 1.2.19.0 - WonderPeople)
Gif Your Game 6.0.11 (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\d4bdf6df-7a5c-51e4-b6d0-4309a13db14d) (Version: 6.0.11 - Bad Panda, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 108.0.5359.99 - Google LLC)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2372.2 - Rockstar Games)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 6.2.5.2 (HKLM\...\{207F3229-8AA5-4544-BDB7-7995538A5ED5}) (Version: 6.2.5.2 - The Document Foundation)
Microsoft .NET Host - 5.0.1 (x64) (HKLM\...\{1219DD98-A1A0-44BD-9ED1-B58F31F52F31}) (Version: 40.4.29525 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.1 (x64) (HKLM\...\{96EB5175-8755-4344-B5C1-3996EB58D8A4}) (Version: 40.4.29525 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.1 (x64) (HKLM\...\{0247081A-1F68-4F20-BC87-07F5A66E5CB9}) (Version: 40.4.29525 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 108.0.1462.46 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 108.0.1462.44 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{6BBE9278-659F-FA16-E4B8-C2D60DE0DCC7}) (Version: 10.1.22621.1863 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\OneDriveSetup.exe) (Version: 22.227.1030.0001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1558997955-55845073-2629518697-1010\...\OneDriveSetup.exe) (Version: 22.111.0522.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{80F1AF52-7AC0-42A3-9AF0-689BFB271D1D}) (Version: 3.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.1 (x64) (HKLM\...\{54424219-B505-485F-B3DA-9F1DA802FFC5}) (Version: 40.4.29530 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.1 (x64) (HKLM-x32\...\{ca778be6-9737-4a9d-a3e2-8d90ea0d5fec}) (Version: 5.0.1.29530 - Microsoft Corporation)
Native Instruments Kontakt (HKLM-x32\...\Native Instruments Kontakt) (Version: 6.2.2.51 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.12.1.129 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.3.2.30 - Native Instruments)
Novicorp WinToFlash Lite verze 1.13.0000 (HKLM-x32\...\{A1A1FF24-34C6-4B77-BDB7-A689979F018C}_is1) (Version: 1.13.0000 - Novicorp)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.154 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.154 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 527.56 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 527.56 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.115.51547 - Electronic Arts, Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.6 - Power Software Ltd)
qBittorrent 4.2.3 (HKLM-x32\...\qBittorrent) (Version: 4.2.3 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8668 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version:  - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.47.484 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.3.0 - TeamSpeak Systems GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 73.0 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VALORANT (HKU\S-1-5-21-1558997955-55845073-2629518697-1001\...\Riot Game valorant.live) (Version:  - Riot Games, Inc)
Way of the Hunter (HKLM-x32\...\1350104287_is1) (Version: 1.5 - GOG.com)
WG-GX38 (HKLM-x32\...\{232A7387-56A4-4142-9B7B-090B3488E3A8}) (Version: 1.00.0000 - WG-GX38)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)

Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.16.62.0_x86__kgqvnymyfvs32 [2022-03-14] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.74.2.0_x86__kgqvnymyfvs32 [2022-02-16] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.2200.4.0_x86__kgqvnymyfvs32 [2022-02-09] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-06-12] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-07-24] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-21] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-12-10] (NVIDIA Corp.)
RAR Opener -> C:\Program Files\WindowsApps\DeviceDoctor.RAROpener_1.3.48.0_x64__mkdtfchztkfbm [2020-07-01] (Tiny Opener)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\Programy\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\Programy\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f52c4b8723f8dd33\nvshext.dll [2022-12-06] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\Programy\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programy\WinRar\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\dbube\AppData\Roaming\Microsoft\Windows\Start Menu\Розыгрыш ключей Steam.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> url,OpenURL "hxxps://terra.im/gl/?cid=19349&oid=mZWZvCwR&v=3&utm_campaign=repacks2&utm_medium=cpi"&trash= <==== Cyrillic

==================== Loaded Modules (Whitelisted) =============

2022-02-18 14:38 - 2022-12-07 00:19 - 000309248 _____ () [File not signed] \\?\C:\Users\dbube\AppData\Local\Programs\badpanda-react\resources\app.asar.unpacked\node_modules\@gifyourgame\fastlist\build\Release\fastlist.node
2021-01-18 11:28 - 2022-12-07 00:19 - 000458752 _____ () [File not signed] \\?\C:\Users\dbube\AppData\Local\Programs\badpanda-react\resources\app.asar.unpacked\node_modules\nsfw\build\Release\nsfw.node
2021-01-18 11:28 - 2022-12-07 00:19 - 002823680 _____ () [File not signed] C:\Users\dbube\AppData\Local\Programs\badpanda-react\ffmpeg.dll
2021-01-18 11:28 - 2022-12-07 00:19 - 000449024 _____ () [File not signed] C:\Users\dbube\AppData\Local\Programs\badpanda-react\libegl.dll
2021-01-18 11:28 - 2022-12-07 00:19 - 007620096 _____ () [File not signed] C:\Users\dbube\AppData\Local\Programs\badpanda-react\libglesv2.dll
2022-10-04 17:30 - 2022-10-04 17:30 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2022-10-04 17:30 - 2022-10-04 17:30 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2022-10-04 17:30 - 2022-10-04 17:30 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2022-10-04 17:30 - 2022-10-04 17:30 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2022-10-04 17:30 - 2022-10-04 17:30 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2022-10-04 17:30 - 2022-10-04 17:30 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2022-10-04 17:30 - 2022-10-04 17:30 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2022-10-04 17:30 - 2022-10-04 17:30 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2022-10-04 17:30 - 2022-10-04 17:30 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-05-21 15:16 - 2022-06-19 18:48 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1558997955-55845073-2629518697-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dbube\Desktop\Chicago-Night-Ultra-HD-4K-Wallpaper.jpg
HKU\S-1-5-21-1558997955-55845073-2629518697-1010\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{6F1027CE-8DA9-42B0-9DBF-708982713D48}D:\hry\gta v\grand theft auto v\gta5.exe] => (Allow) D:\hry\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{5CBDE432-6C17-4828-B06D-A6E3E18500EA}D:\hry\gta v\grand theft auto v\gta5.exe] => (Allow) D:\hry\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{62B9B81B-4850-47E7-9B27-E8C5EC217FFD}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{41A9AB65-40EF-4A39-8E11-C07E3389FA08}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{906657C5-1A37-4A55-8923-60C4DDDF73D6}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{5D6715E2-D232-4745-93A6-3B97D4DE8341}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{F0EF74A3-704E-490F-B237-B5CA35C8467A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{656A6944-FA05-4E81-8E9B-3B7F867A1688}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{1FF47BF8-CA24-4450-BB9E-3BEDD10FFFDA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{B5B82461-1D3E-44ED-91E2-EA78BB305CAB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [UDP Query User{C84FAEBA-99FE-4154-81C9-0DF8578167A2}D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [TCP Query User{9B3ECFAE-B315-4C2A-B105-74F58F912EC1}D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{A58E956B-F463-4685-A3C0-752812D3B99E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E7413426-3073-4EA1-9B95-7F493B776FAE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DA22F86F-F0AF-4CC9-9F4B-FF99018B0984}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{362F35D2-870E-41C9-B4B4-F58E51FDB4F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{9C6B20A8-8F7A-4212-8E69-00DA9781089B}C:\users\dbube\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dbube\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{15637F6B-4B83-40C3-960C-E0C198322A71}C:\users\dbube\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dbube\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{1C6C1601-D79E-4C74-86F3-00DC335F1EEF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{149C46C4-381D-453B-9296-52D5A5E0BC80}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{9DE93AE4-91A4-49FE-AEA5-E894078E6EB5}C:\users\dbube\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dbube\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{6686FBC0-2D5F-43A1-9778-FD9CBFFAC320}C:\users\dbube\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\dbube\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{EC0A99D1-7C09-45F5-AC3C-4FEED5547E95}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [UDP Query User{C78E9613-00CC-421A-9AE4-9AC8E4856F95}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{74137B26-D78B-4065-8DD8-C68EF612F6B4}] => (Allow) D:\Hry\steamapps\common\Phasmophobia\Phasmophobia.exe (Unity Technologies ApS) [File not signed]
FirewallRules: [{BD5E418F-2D04-4012-904C-A86CCB4B12D9}] => (Allow) D:\Hry\steamapps\common\Phasmophobia\Phasmophobia.exe (Unity Technologies ApS) [File not signed]
FirewallRules: [TCP Query User{C70081E0-C108-4AF2-95F8-0A64DCDC2EED}D:\hry\gta v\grand theft auto v\gta5.exe] => (Allow) D:\hry\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{0049EB04-3AE9-45F8-9AB8-ABA733E3D784}D:\hry\gta v\grand theft auto v\gta5.exe] => (Allow) D:\hry\gta v\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{D7B85F29-D3D2-4056-A8F4-91D594BE617A}D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{AE621556-1D17-4015-8EFF-8A75D2A40912}D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\cod warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [TCP Query User{B6602F36-B824-492C-915B-0CB52CC3392A}D:\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) D:\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{EA1FFC6C-F116-49D3-B97B-E068DE0FFF15}D:\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) D:\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{459D91BB-50E5-4626-8997-52D1637C8647}D:\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe] => (Allow) D:\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{3442F657-5EF7-4E32-AC8F-2BFDB735B79B}D:\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe] => (Allow) D:\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{4162E1A2-34B2-4B09-A961-D820A88E6F19}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9AEBD65E-D9A8-4392-9066-0CC73783BB90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CE85AD1B-9FE2-4F56-9E33-BF9A3BD3B045}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4B8FE489-A362-4B4A-82A7-31CA9E7208E1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{1A9C1E0F-6E71-45C7-BFF6-9A8D6A71A189}D:\hry\rocket league smurf bubend\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\hry\rocket league smurf bubend\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC)
FirewallRules: [UDP Query User{912A2A9B-81BF-41B4-8C14-F1D08474AD0F}D:\hry\rocket league smurf bubend\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\hry\rocket league smurf bubend\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC)
FirewallRules: [{42B8D6FC-055B-457B-A9AD-3D95F920E9E4}] => (Allow) D:\Hry\steamapps\common\Raft\Raft.exe () [File not signed]
FirewallRules: [{FAE78589-77E5-4920-9A4B-7C278713565A}] => (Allow) D:\Hry\steamapps\common\Raft\Raft.exe () [File not signed]
FirewallRules: [{6EF05192-AC55-4BBD-8981-0785ED19DFBC}] => (Allow) D:\Hry\steamapps\common\The Forest\TheForest.exe () [File not signed]
FirewallRules: [{9403798F-215D-4001-AF0A-D463E7A0AA55}] => (Allow) D:\Hry\steamapps\common\The Forest\TheForest.exe () [File not signed]
FirewallRules: [{D52970A1-3061-41F7-BB9E-2635DC646F98}] => (Allow) D:\Hry\steamapps\common\The Forest\TheForestVR.exe () [File not signed]
FirewallRules: [{F56FAF72-3E76-4D8C-B193-B016E43C1769}] => (Allow) D:\Hry\steamapps\common\The Forest\TheForestVR.exe () [File not signed]
FirewallRules: [TCP Query User{4F186D3E-31A3-4B82-80D1-61D91C29B90B}D:\hry\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\hry\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B202293C-2C17-4F56-9735-E7D4ECDD2D25}D:\hry\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\hry\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{26871B30-FE60-4CAC-9EBE-CE2CBC896925}] => (Allow) D:\Hry\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe () [File not signed]
FirewallRules: [{EDCA334A-B1AE-4E16-8BC8-A6ED806B7004}] => (Allow) D:\Hry\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe () [File not signed]
FirewallRules: [{83C11D91-4E4B-4B6E-8A31-564FB6D217C3}] => (Allow) D:\Hry\steamapps\common\SlapshotRebound\Slapshot.exe () [File not signed]
FirewallRules: [{A80A7671-5F56-43C8-A21E-CEADEA7DB190}] => (Allow) D:\Hry\steamapps\common\SlapshotRebound\Slapshot.exe () [File not signed]
FirewallRules: [{49F3EE2F-922E-4B15-A146-903CB44ABF26}] => (Allow) D:\Hry\steamapps\common\Fishing Planet\FishingPlanet.exe (Unity Technologies ApS) [File not signed]
FirewallRules: [{A1DC332A-ABB6-43E8-8F5C-6B8620060BBC}] => (Allow) D:\Hry\steamapps\common\Fishing Planet\FishingPlanet.exe (Unity Technologies ApS) [File not signed]
FirewallRules: [{0D75932E-E7D1-458F-AE1F-C0453BC50D37}] => (Allow) D:\Hry\steamapps\common\theHunterCotW\theHunterCotW_F.exe () [File not signed]
FirewallRules: [{2BD20169-4A8F-4E54-AB21-D0516103C8FE}] => (Allow) D:\Hry\steamapps\common\theHunterCotW\theHunterCotW_F.exe () [File not signed]
FirewallRules: [{8ADA11FD-B009-4142-91C3-E61B0518AD83}] => (Allow) D:\Hry\steamapps\common\Treasure Hunter\TH.exe () [File not signed]
FirewallRules: [{E24878F5-B94E-4A46-9AD0-CEA21DE8200D}] => (Allow) D:\Hry\steamapps\common\Treasure Hunter\TH.exe () [File not signed]
FirewallRules: [TCP Query User{24E76258-241C-4278-A885-B04F69E28B1A}D:\hry\steamapps\common\treasure hunter\th\binaries\win64\th-win64-shipping.exe] => (Allow) D:\hry\steamapps\common\treasure hunter\th\binaries\win64\th-win64-shipping.exe (Drago Entertainment sp z o.o., PlayWay SA) [File not signed]
FirewallRules: [UDP Query User{D6482CF0-5508-4907-982A-9E099C853D2F}D:\hry\steamapps\common\treasure hunter\th\binaries\win64\th-win64-shipping.exe] => (Allow) D:\hry\steamapps\common\treasure hunter\th\binaries\win64\th-win64-shipping.exe (Drago Entertainment sp z o.o., PlayWay SA) [File not signed]
FirewallRules: [TCP Query User{8FE1F0A8-1C39-46CA-B968-603DB8CF3596}D:\hry instalačky\internet.cafe.simulator.2\windows_content\internet cafe simulator 2.exe] => (Allow) D:\hry instalačky\internet.cafe.simulator.2\windows_content\internet cafe simulator 2.exe () [File not signed]
FirewallRules: [UDP Query User{1C9291F9-E3C8-4F84-8246-56A0331FF8C5}D:\hry instalačky\internet.cafe.simulator.2\windows_content\internet cafe simulator 2.exe] => (Allow) D:\hry instalačky\internet.cafe.simulator.2\windows_content\internet cafe simulator 2.exe () [File not signed]
FirewallRules: [TCP Query User{43E36883-D325-4D1A-8B2F-870CA23951EC}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{E605D0DF-E9EF-4922-883B-13E9E77DB0FA}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{3E68C0BA-9DF7-48DE-BD9D-54E7B17FE847}D:\hry\steamapps\common\fifa 23\fifa23_trial.exe] => (Allow) D:\hry\steamapps\common\fifa 23\fifa23_trial.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [UDP Query User{326907AE-90AF-45BA-9C20-042CD7CAE6B9}D:\hry\steamapps\common\fifa 23\fifa23_trial.exe] => (Allow) D:\hry\steamapps\common\fifa 23\fifa23_trial.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{EB462907-82D3-41A3-B6C6-1455F4FF16F9}D:\hry\enlisted\launcher.exe] => (Allow) D:\hry\enlisted\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [UDP Query User{F90A632A-1E3A-46E7-A4E0-E6A4F12EF6FE}D:\hry\enlisted\launcher.exe] => (Allow) D:\hry\enlisted\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [TCP Query User{088CB4B6-A325-4AFF-BEB0-63AA9DD7CFA1}D:\hry\enlisted\win64\enlisted.exe] => (Allow) D:\hry\enlisted\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{4993A405-17F3-46D1-A876-61AC0B5478F0}D:\hry\enlisted\win64\enlisted.exe] => (Allow) D:\hry\enlisted\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{FE57FF0D-8EBA-4F28-A4E1-458F5F21BA27}] => (Allow) D:\Hry\steamapps\common\Ghost Watchers\Ghost Watchers.exe () [File not signed]
FirewallRules: [{B5AAF0CF-460F-470A-8BCC-88E94D69CE47}] => (Allow) D:\Hry\steamapps\common\Ghost Watchers\Ghost Watchers.exe () [File not signed]
FirewallRules: [{9CD6FF8E-DCCA-44DA-B835-79CC0EBC0F19}] => (Allow) D:\Hry\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{D52CEF5B-DADB-441A-B382-E7997B577716}] => (Allow) D:\Hry\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{F55A0777-7FBE-493D-B21E-7D4E1D5B8427}] => (Allow) D:\Hry\steamapps\common\SUPER PEOPLE\geegeerun.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd.)
FirewallRules: [{A2DF6E94-222E-49F4-8E4A-F4F16DC61A7C}] => (Allow) D:\Hry\steamapps\common\SUPER PEOPLE\geegeerun.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd.)
FirewallRules: [TCP Query User{9A8DA026-5CC1-4A99-82A9-73E6E99A3618}D:\hry instalačky\euro truck simulator 2 v.1.45.2.12s (2012)\euro truck simulator 2\bin\win_x86\eurotrucks2.exe] => (Allow) D:\hry instalačky\euro truck simulator 2 v.1.45.2.12s (2012)\euro truck simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) [File not signed]
FirewallRules: [UDP Query User{FBD27089-825F-4468-A2AD-36FA7A20A687}D:\hry instalačky\euro truck simulator 2 v.1.45.2.12s (2012)\euro truck simulator 2\bin\win_x86\eurotrucks2.exe] => (Allow) D:\hry instalačky\euro truck simulator 2 v.1.45.2.12s (2012)\euro truck simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) [File not signed]
FirewallRules: [TCP Query User{1B25866C-A60A-41B1-A3BF-AEBF40D28F2A}D:\hry\way of the hunter\wayofthehunter\binaries\win64\wayofthehunter-win64-shipping.exe] => (Allow) D:\hry\way of the hunter\wayofthehunter\binaries\win64\wayofthehunter-win64-shipping.exe (THQ Nordic) [File not signed]
FirewallRules: [UDP Query User{92BD359F-B016-46AF-B612-B2E41F38514B}D:\hry\way of the hunter\wayofthehunter\binaries\win64\wayofthehunter-win64-shipping.exe] => (Allow) D:\hry\way of the hunter\wayofthehunter\binaries\win64\wayofthehunter-win64-shipping.exe (THQ Nordic) [File not signed]
FirewallRules: [{9119AA3A-4695-46E9-9902-1E109BF1B6BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{2E2F8B85-501B-4CC4-AE86-03E987681C0B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [TCP Query User{16D9316A-5511-4C8D-9339-A8103E10EA98}D:\hry\steamapps\common\super people\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) D:\hry\steamapps\common\super people\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd)
FirewallRules: [UDP Query User{8E89B2E8-E61C-42B8-9902-701E73A457F3}D:\hry\steamapps\common\super people\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) D:\hry\steamapps\common\super people\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe (Wonder People Co., Ltd. -> Wonder People Co.,Ltd)
FirewallRules: [{528D80F7-EFD9-48DD-A14B-2F84462327FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{F4A7C391-1FAF-4820-9BC3-49E48DF9724C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{2B1502E2-6649-4E26-A979-DB62F1C7E3E0}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\108.0.1462.44\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{40DF9376-70F6-42BC-B09C-591AE7E47AAB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E29D8BCF-1056-4C11-BE9A-5C2D61899E56}] => (Allow) D:\Hry\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{B28E8F57-16DC-4713-BDFB-4B17E14E4BC5}] => (Allow) D:\Hry\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{085602C4-41E6-457C-912B-5D00F6C8833C}] => (Allow) D:\Hry\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{4ECB9313-B161-4F9D-84FA-E536A046784F}] => (Allow) D:\Hry\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{18A4F4AC-2169-470C-BA2F-27928914646D}] => (Allow) D:\Hry\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{68303EC5-9FAD-488F-8AB9-E0DA1FB11A4B}] => (Allow) D:\Hry\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{3BD2A658-C19A-4231-A470-77B6E713361A}] => (Allow) D:\Hry\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{18275C1F-4213-4D49-8FF2-73CED95C5C78}] => (Allow) D:\Hry\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{F0FA944E-16E5-4EB9-8512-90E93EB36C37}] => (Allow) D:\Hry\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{0EBC2B5F-81A9-4335-85BC-52EF826EE8FE}] => (Allow) D:\Hry\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{4F6A69F7-62AC-4FD2-91DC-B4D88E3175D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{FA55C3AD-0975-43B3-A48A-6331070B6A23}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{D5D7A506-F58E-4B42-8792-31AB78DE0392}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{E1F078E6-5A78-4674-9684-F3873A14BD99}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:111.08 GB) (Free:16.71 GB) (15%)

==================== Faulty Device Manager Devices ============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (12/10/2022 07:06:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vgtray.exe, verze: 1.12.0.177, časové razítko: 0x630e8449
Název chybujícího modulu: vgtray.exe, verze: 1.12.0.177, časové razítko: 0x630e8449
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000721e4
ID chybujícího procesu: 0x26b8
Čas spuštění chybující aplikace: 0x01d90cc21eb8d850
Cesta k chybující aplikaci: C:\Program Files\Riot Vanguard\vgtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Riot Vanguard\vgtray.exe
ID zprávy: 9c3b6d12-2b81-459d-96ea-9333ad810a92
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2022 12:05:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RocketLeague.exe, verze: 1.0.10897.0, časové razítko: 0x638a3a53
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000000000
ID chybujícího procesu: 0x2364
Čas spuštění chybující aplikace: 0x01d90c12e6cc5293
Cesta k chybující aplikaci: C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 931198e2-e6a3-47ef-907d-72dd9e8a5100
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2022 12:05:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RocketLeague.exe, verze: 1.0.10897.0, časové razítko: 0x638a3a53
Název chybujícího modulu: EOSSDK-Win64-Shipping.dll, verze: 1.13.0.0, časové razítko: 0x632212ba
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000024cb76
ID chybujícího procesu: 0x2364
Čas spuštění chybující aplikace: 0x01d90c12e6cc5293
Cesta k chybující aplikaci: C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\EOSSDK-Win64-Shipping.dll
ID zprávy: 3b9430f0-7cce-4417-a622-031b83c066d6
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (12/09/2022 10:11:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RocketLeague.exe, verze: 1.0.10897.0, časové razítko: 0x638a3a53
Název chybujícího modulu: bakkesmod.dll, verze: 0.0.0.0, časové razítko: 0x6390b430
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000cbd38
ID chybujícího procesu: 0x3ac8
Čas spuštění chybující aplikace: 0x01d90c12d051d0ee
Cesta k chybující aplikaci: C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe
Cesta k chybujícímu modulu: C:\Users\dbube\AppData\Roaming\bakkesmod\bakkesmod\dll\bakkesmod.dll
ID zprávy: 276559cf-098a-4235-80e8-bd1a016aa82e
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (12/09/2022 07:39:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vgtray.exe, verze: 1.12.0.177, časové razítko: 0x630e8449
Název chybujícího modulu: vgtray.exe, verze: 1.12.0.177, časové razítko: 0x630e8449
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000721e4
ID chybujícího procesu: 0x31ec
Čas spuštění chybující aplikace: 0x01d90bee38745af5
Cesta k chybující aplikaci: C:\Program Files\Riot Vanguard\vgtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Riot Vanguard\vgtray.exe
ID zprávy: 273eb032-cc6d-4ba5-90a8-3734f4749de0
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (12/09/2022 03:25:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vgtray.exe, verze: 1.12.0.177, časové razítko: 0x630e8449
Název chybujícího modulu: vgtray.exe, verze: 1.12.0.177, časové razítko: 0x630e8449
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000721e4
ID chybujícího procesu: 0x40a0
Čas spuštění chybující aplikace: 0x01d90bda0dbebe74
Cesta k chybující aplikaci: C:\Program Files\Riot Vanguard\vgtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Riot Vanguard\vgtray.exe
ID zprávy: 211de8a3-f084-4072-a065-e91fdfab8296
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (12/08/2022 04:41:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vgtray.exe, verze: 1.12.0.177, časové razítko: 0x630e8449
Název chybujícího modulu: vgtray.exe, verze: 1.12.0.177, časové razítko: 0x630e8449
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000721e4
ID chybujícího procesu: 0x5ebc
Čas spuštění chybující aplikace: 0x01d90b130e4068d5
Cesta k chybující aplikaci: C:\Program Files\Riot Vanguard\vgtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Riot Vanguard\vgtray.exe
ID zprávy: bf4e1188-6020-46bd-8aa1-b1ef50b81a4f
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (12/07/2022 04:38:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vgtray.exe, verze: 1.12.0.177, časové razítko: 0x630e8449
Název chybujícího modulu: vgtray.exe, verze: 1.12.0.177, časové razítko: 0x630e8449
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000721e4
ID chybujícího procesu: 0x2900
Čas spuštění chybující aplikace: 0x01d90a5140db3411
Cesta k chybující aplikaci: C:\Program Files\Riot Vanguard\vgtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Riot Vanguard\vgtray.exe
ID zprávy: 74fb54cd-8bbd-462b-ab7d-e14dc3fa3a29
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (12/10/2022 02:30:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (12/10/2022 02:30:41 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba NVIDIA LocalSystem Container byla ukončena s následující chybou: 
Obecný spustitelný příkaz vrátil výsledek označující selhání.

Error: (12/06/2022 04:33:49 PM) (Source: nvlddmkm) (EventID: 0) (User: )
Description: Event-ID 0

Error: (12/06/2022 04:33:49 PM) (Source: nvlddmkm) (EventID: 0) (User: )
Description: Event-ID 0

Error: (12/05/2022 10:07:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/05/2022 10:07:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/05/2022 10:07:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/05/2022 10:07:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-48MB1C3)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2022-12-10 10:51:37
Description: 
Řízený přístup ke složkám zablokoval pro C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe možnost upravit %userprofile%\Pictures.
Čas detekce: 2022-12-10T09:51:37.565Z
Uživatel: DESKTOP-48MB1C3\dbube
Cesta: %userprofile%\Pictures
Název procesu: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
Verze bezpečnostních informací: 1.381.173.0
Verze modulu: 1.1.19900.2
Verze produktu: 4.18.2211.5

Date: 2022-12-09 17:49:53
Description: 
Řízený přístup ke složkám zablokoval pro C:\Users\dbube\AppData\Local\Programs\badpanda-react\Gif Your Game.exe možnost upravit %userprofile%\Documents\My Games\Rocket League\TAGame\Demos\GYG\.
Čas detekce: 2022-12-09T16:49:53.325Z
Uživatel: DESKTOP-48MB1C3\dbube
Cesta: %userprofile%\Documents\My Games\Rocket League\TAGame\Demos\GYG\
Název procesu: C:\Users\dbube\AppData\Local\Programs\badpanda-react\Gif Your Game.exe
Verze bezpečnostních informací: 1.381.173.0
Verze modulu: 1.1.19900.2
Verze produktu: 4.18.2211.5

Date: 2022-12-09 15:25:29
Description: 
Řízený přístup ke složkám zablokoval pro C:\Users\dbube\AppData\Local\Programs\badpanda-react\Gif Your Game.exe možnost upravit %userprofile%\Documents\My Games\Rocket League\TAGame\Demos\GYG\.
Čas detekce: 2022-12-09T14:25:29.978Z
Uživatel: DESKTOP-48MB1C3\dbube
Cesta: %userprofile%\Documents\My Games\Rocket League\TAGame\Demos\GYG\
Název procesu: C:\Users\dbube\AppData\Local\Programs\badpanda-react\Gif Your Game.exe
Verze bezpečnostních informací: 1.381.137.0
Verze modulu: 1.1.19900.2
Verze produktu: 4.18.2210.6

Date: 2022-12-08 18:50:25
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0269D94E-42B3-4AF3-B047-6461A252AC9F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-12-08 17:01:26
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A30A32AB-F377-4CF9-834C-BD4E4AB168B5}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
﻿
==================== Memory info =========================== 

BIOS: American Megatrends Inc. 2304 05/26/2015
Motherboard: ASUSTeK COMPUTER INC. H81M-D PLUS
Processor: Intel(R) Core(TM) i5-4430 CPU @ 3.00GHz
Percentage of memory in use: 34%
Total physical RAM: 16319.71 MB
Available physical RAM: 10750.57 MB
Total Virtual: 17599.71 MB
Available Virtual: 9373.32 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.08 GB) (Free:16.71 GB) (Model: KINGSTON SV300S37A120G) NTFS
Drive d: (Disk D) (Fixed) (Total:1863.01 GB) (Free:820.78 GB) (Model: ST2000DM008-2FR102) NTFS

\\?\Volume{b2b6ce9f-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS
\\?\Volume{b2b6ce9f-0000-0000-0000-c0d11b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 4A7FA3EF)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: B2B6CE9F)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=524 MB) - (Type=27)

==================== End of Addition.txt =======================