z ničeho nic mi přestalo fungovat připojení na FTP servery. Řešil jsem to hodiny různým nastavením v routeru, PC, výměny PC, routerů atp... a nakonec jsem kontaktoval svého ISP a dostal následující odpověď:
Chtěl bych tedy zkontrolovat odborníky svůj osobní Windows PC. Logy přikládám do příloh k tomuto příspěvku.Dobrý den, problém bude nejspíše v tom, že máte doma nějaké napadené zařízení, poté se dostanete na blacklist, který omezí možnost útočit přes tyto služby do internetu.
Z listu jsem Vás odstranil, ale je nutné zkontrolovat všechna zařízení nebo do něj spadnete opět.
Omlouváme se, že k tomu došlo takto bez varování, ale začal se u klientů množit virus či nějaký botnet, který se snažil nejen napadat zařízení v internetu, ale i naší infrastrukturu což nás donutilo k těmto krokům.
Hezký den
Log FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-02-2021
Ran by bazim (administrator) on BAZIM-PC (MSI MS-7885) (16-02-2021 19:44:15)
Running from C:\Users\bazim\Desktop\VIRY.cz
Loaded Profiles: bazim
Platform: Windows 10 Pro Version 20H2 19042.804 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7269\Agent.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) E:\Battle.net\Battle.net.exe <3>
(Discord Inc. -> Discord Inc.) C:\Users\bazim\AppData\Local\Discord\app-0.0.309\Discord.exe <6>
(eM Client, s.r.o. -> eM Client s.r.o.) C:\Program Files (x86)\eM Client\MailClient.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <34>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2012.21.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_a871a754b978bc7f\Display.NvContainer\NVDisplay.Container.exe <2>
(philandro Software GmbH -> philandro Software GmbH) D:\Programy\AnyDesk\AnyDesk.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) D:\Programy\Steam\steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270560 2019-05-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\bazim\AppData\Local\Microsoft\Teams\Update.exe [2347880 2020-07-31] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default
HKLM-x32\...\Run: [Remote Control Editor] => C:\Program Files (x86)\Common Files\TerraTec\Remote\TTTVRC.exe
HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\Run: [Steam] => D:\Programy\Steam\steam.exe [3412696 2021-02-13] (Valve -> Valve Corporation)
HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\Run: [Discord] => C:\Users\bazim\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\Run: [electron.app.Guilded] => C:\Users\bazim\AppData\Local\Programs\Guilded\Guilded.exe
HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\Run: [Samsung DeX] => D:\Programy\Samsung DeX\SamsungDeX.exe [10262696 2020-09-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\Run: [Battle.net] => E:\Battle.net\Battle.net.exe [1090464 2021-02-12] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\Installer\chrmstp.exe [2021-02-08] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2020-08-01]
ShortcutTarget: AnyDesk.lnk -> D:\Programy\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0F6A8A71-8B6F-4A61-9576-DBB58543A049} - System32\Tasks\eM Client Database Backup (S-1-5-21-1539569530-1701166445-3880768379-1001) => C:\Program Files (x86)\eM Client\MailClient.exe [278632 2021-01-27] (eM Client, s.r.o. -> eM Client s.r.o.)
Task: {1D870EA2-6E67-469F-AC37-2B1504934AD9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142216 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {1F9505D1-06CB-40EE-A3FF-33E897AC9192} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-22] (Google LLC -> Google LLC)
Task: {20E916CD-1BAD-466D-B45A-35C1017BA097} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2E17AA25-621F-4905-83B5-DCCE456C343A} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {315368BF-2DCE-45A4-A9E8-2981FD70E6EF} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {3FA4FDEE-A3E4-4835-BEE8-FCFA2D1ECECA} - System32\Tasks\Overwolf Updater Task => D:\Programy\Overwolf\OverwolfUpdater.exe [2488664 2021-01-11] (Overwolf Ltd -> Overwolf LTD)
Task: {46B03F8D-7ED1-475C-9478-E849137E2765} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5A398E48-E2E5-4F6F-AB95-DB486F688226} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {5CC29B6A-FA2F-4CB9-8199-2118229513FC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F979932-F055-4296-9FCF-0682F6ABFE79} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {63BC5888-8899-41B2-A7E6-15B1A6EAEC5C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199792 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {65476587-7DD7-4265-85EA-FA88AFA4E47A} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [3047944 2020-10-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {66439F24-E750-41C7-9ED5-8B11D7C4AE73} - System32\Tasks\Opera GX scheduled Autoupdate 1598120789 => D:\Programy\OperaGX\launcher.exe [1720472 2021-02-09] (Opera Software AS -> Opera Software)
Task: {686907C9-91F7-4DFD-83C2-72E5DFA6AB6A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142216 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {727CF1B2-82D5-441D-AE4E-B6E09258A1A6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {76B7E744-05CF-424E-86D5-C24A6DB38385} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8324C4B3-EAD4-4AC2-BDDC-A18FDCA53E72} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C7963933-1C9C-4FF9-AAA7-D6E73ECCE474} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199792 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {C81817D5-6B28-4221-A85C-3FF9213FA7F8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-22] (Google LLC -> Google LLC)
Task: {D2414B1E-8938-4DBB-A61D-6BDE8D281C60} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D3553926-E577-48FC-8262-CA50072099D9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {D715DAD2-DADF-4FF7-860D-BC375716321F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E6AE84C2-05DD-41C2-92F4-8BE2A062F84C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EAB60C44-8951-4BA4-BA3D-71E676789B0A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EC8C50F4-56EA-41B4-8394-1A9F6E53B187} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1539569530-1701166445-3880768379-1003 => C:\Users\bazim\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {EF21267D-D42B-4366-B58D-326F1F975051} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FE294D0E-DB50-41CF-B04C-8C054426723C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{aa577469-efd2-4816-9c4f-2ac786971e4c}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-15]
Edge Notifications: Default -> hxxps://web.whatsapp.com
Edge HomePage: Default -> hxxp://seznam.cz/
Edge StartupUrls: Default -> "hxxp://search.babylon.com/?affID=112555&babsrc=HP_ss&mntrId=44c875c0000000000000001fd08bdf0c","hxxp://websearch.searchrocket.info/?pid=658&r=2013/05/23&hid=2639412194&lg=EN&cc=CZ&unqvl=16","hxxps://www.google.com/"
Edge Session Restore: Default -> is enabled.
Edge Extension: (Překladač Google) - C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-07-31]
Edge Extension: (Honey) - C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\amnbcmdbanbkjhnfoeceemmmdiepnbpp [2020-11-16]
Edge Extension: (LastPass: Free Password Manager) - C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2021-02-04]
Edge Extension: (Stylus) - C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\clngdbkpkpeebahjckkjfobafhncgmne [2021-02-04]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2021-02-01]
Edge Extension: (Reddit Enhancement Suite) - C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jlhgedjpndhblehblebhncfmkkpngiep [2021-01-05]
Edge Extension: (AdBlock — best ad blocker) - C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-01-16]
Edge Extension: (Don't Fuck With Paste) - C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nkgllhigpcljnhoakjkgaieabnkmgdkb [2020-07-31]
Edge Extension: (uBlock Origin) - C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-02-04]
Edge Extension: (Chrome Media Router) - C:\Users\bazim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-25]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> D:\Programy\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default [2021-02-16]
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://search.babylon.com/?affID=112555&babsrc=HP_ss&mntrId=44c875c0000000000000001fd08bdf0c","hxxp://websearch.searchrocket.info/?pid=658&r=2013/05/23&hid=2639412194&lg=EN&cc=CZ&unqvl=16","hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/chromoting/chromoting_logo_512.png
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-08-22]
CHR Extension: (BetterTTV) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-02-04]
CHR Extension: (Dokumenty) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-08-22]
CHR Extension: (Disk Google) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-06]
CHR Extension: (YouTube) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-22]
CHR Extension: (Honey) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2021-02-04]
CHR Extension: (uBlock Origin) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-02-08]
CHR Extension: (Chrome Remote Desktop) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2020-08-22]
CHR Extension: (Tabulky) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-08-22]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-02-11]
CHR Extension: (Don't Fuck With Paste) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkgllhigpcljnhoakjkgaieabnkmgdkb [2020-08-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04]
CHR Extension: (Gmail) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-06]
CHR Extension: (Chrome Media Router) - C:\Users\bazim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-04]
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-1539569530-1701166445-3880768379-1001) Opera GXStable - "D:\Programy\OperaGX\Launcher.exe"
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AnyDesk; D:\Programy\AnyDesk\AnyDesk.exe [3668944 2020-08-01] (philandro Software GmbH -> philandro Software GmbH)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8895512 2020-12-03] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8905608 2021-02-03] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-02-06] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [553264 2020-12-11] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 OverwolfUpdater; D:\Programy\Overwolf\OverwolfUpdater.exe [2488664 2021-01-11] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; D:\Programy\Rockstar Games Launcher\RockstarService.exe [1382016 2020-11-26] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_a871a754b978bc7f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_a871a754b978bc7f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 CYDTV_SRV; C:\Windows\system32\drivers\cydtv.sys [2174080 2018-04-10] (Shenzhen Geniatech Technology LTD. -> )
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 OCULUSUDSVR; C:\Windows\System32\drivers\OCULUSUD.sys [3867552 2020-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Oculus VR, LLC.)
S3 sshid; C:\Windows\system32\DRIVERS\sshid.sys [57440 2020-10-09] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166768 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-06-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
U5 vsock; C:\Windows\System32\Drivers\vsock.sys [103224 2019-08-14] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49552 2021-02-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [419040 2021-02-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-12] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-16 19:43 - 2021-02-16 19:44 - 000000000 ____D C:\Users\bazim\Desktop\VIRY.cz
2021-02-16 19:43 - 2021-02-16 19:44 - 000000000 ____D C:\FRST
2021-02-16 19:04 - 2021-02-16 19:04 - 000000000 ____D C:\Users\bazim\AppData\Roaming\iterate_GmbH
2021-02-16 18:16 - 2021-02-16 18:16 - 000000000 ____D C:\Users\bazim\AppData\Roaming\Cyberduck
2021-02-16 15:47 - 2021-02-16 15:47 - 000000319 _____ C:\Users\bazim\Desktop\11.txt
2021-02-15 16:53 - 2021-02-15 19:14 - 000000000 ____D C:\Users\bazim\AppData\Roaming\FileZilla
2021-02-15 16:53 - 2021-02-15 16:55 - 000000000 ____D C:\Users\bazim\AppData\Local\FileZilla
2021-02-13 18:37 - 2021-02-13 18:37 - 000000000 ____D C:\Users\bazim\AppData\Roaming\Ecru
2021-02-12 20:37 - 2021-02-12 20:37 - 000130946 _____ C:\Users\bazim\Desktop\Valheim Dedicated Server Manual (1).pdf
2021-02-12 20:36 - 2021-02-12 20:36 - 000006344 _____ C:\Users\bazim\Desktop\valheim_server.x86_64
2021-02-12 20:29 - 2021-02-12 20:29 - 000000000 ____D C:\Users\bazim\AppData\LocalLow\IronGate
2021-02-12 20:27 - 2021-02-12 20:27 - 000000211 _____ C:\Users\bazim\Desktop\Valheim.url
2021-02-12 16:04 - 2021-02-12 16:04 - 000009778 _____ C:\Users\bazim\Desktop\whmcs-master.zip
2021-02-12 16:04 - 2021-02-12 16:04 - 000000000 ____D C:\Users\bazim\Desktop\whmcs-master
2021-02-12 15:33 - 2021-02-12 15:33 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-02-12 15:33 - 2021-02-12 15:33 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-02-12 15:33 - 2021-02-12 15:33 - 001314112 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-12 15:33 - 2021-02-12 15:33 - 000231232 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-12 15:33 - 2021-02-12 15:33 - 000010892 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-02-10 20:57 - 2021-02-10 20:57 - 000130946 _____ C:\Users\bazim\Desktop\Valheim Dedicated Server Manual.pdf
2021-02-10 20:34 - 2021-02-12 16:47 - 000004911 _____ C:\Users\bazim\Desktop\egg-valheim.json
2021-02-07 11:18 - 2021-02-07 19:04 - 000000000 ____D C:\Users\bazim\Downloads\MEmu Download
2021-02-07 11:17 - 2021-02-07 11:19 - 000000000 ____D C:\Users\bazim\.android
2021-02-07 11:17 - 2021-02-07 11:18 - 000000000 ____D C:\Users\bazim\AppData\Local\Microvirt
2021-02-07 11:10 - 2021-02-07 11:18 - 000000000 ____D C:\Users\bazim\AppData\Local\Bluestacks
2021-02-07 09:39 - 2021-02-07 09:39 - 000001855 _____ C:\Users\bazim\Desktop\76561198081065193.bin
2021-02-07 09:38 - 2021-02-07 09:38 - 000077824 _____ C:\Users\bazim\Desktop\player.blueprints.4.db
2021-02-06 18:07 - 2021-02-06 18:07 - 000000000 ____D C:\Users\bazim\AppData\Local\Insurgency
2021-02-06 17:22 - 2021-02-06 17:22 - 000000211 _____ C:\Users\bazim\Desktop\Insurgency Sandstorm.url
2021-01-31 21:56 - 2021-01-31 21:56 - 000000005 _____ C:\Users\bazim\Desktop\render.txt
2021-01-31 21:44 - 2021-01-31 21:44 - 000000000 ____D C:\Users\bazim\AppData\Roaming\MAGIX Computer Products Intl. Co
2021-01-26 19:27 - 2021-01-23 09:12 - 000613536 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-01-26 19:26 - 2021-01-23 09:15 - 001435864 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-01-26 19:26 - 2021-01-23 09:15 - 001435864 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-01-26 19:26 - 2021-01-23 09:14 - 001855192 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-01-26 19:26 - 2021-01-23 09:14 - 001855192 _____ C:\Windows\system32\vulkaninfo.exe
2021-01-26 19:26 - 2021-01-23 09:14 - 001453728 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-01-26 19:26 - 2021-01-23 09:14 - 001193120 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-01-26 19:26 - 2021-01-23 09:14 - 001094880 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-01-26 19:26 - 2021-01-23 09:14 - 001094880 _____ C:\Windows\system32\vulkan-1.dll
2021-01-26 19:26 - 2021-01-23 09:14 - 000948952 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-01-26 19:26 - 2021-01-23 09:14 - 000948952 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-01-26 19:26 - 2021-01-23 09:12 - 001512096 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-01-26 19:26 - 2021-01-23 09:12 - 001164960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-01-26 19:26 - 2021-01-23 09:12 - 000689312 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-01-26 19:26 - 2021-01-23 09:12 - 000680096 _____ C:\Windows\system32\nvofapi64.dll
2021-01-26 19:26 - 2021-01-23 09:12 - 000672928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-01-26 19:26 - 2021-01-23 09:12 - 000558240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-01-26 19:26 - 2021-01-23 09:12 - 000547488 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-01-26 19:26 - 2021-01-23 09:11 - 008262304 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-01-26 19:26 - 2021-01-23 09:11 - 007392928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-01-26 19:26 - 2021-01-23 09:11 - 004611744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-01-26 19:26 - 2021-01-23 09:11 - 002731168 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-01-26 19:26 - 2021-01-23 09:11 - 002103456 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-01-26 19:26 - 2021-01-23 09:11 - 001589408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-01-26 19:26 - 2021-01-23 09:11 - 000813216 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-01-26 19:26 - 2021-01-23 09:11 - 000446624 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-01-26 19:26 - 2021-01-23 09:10 - 006070848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-01-26 19:26 - 2021-01-23 09:10 - 000850080 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-01-26 19:26 - 2021-01-22 23:59 - 000084264 _____ C:\Windows\system32\nvinfo.pb
2021-01-23 19:22 - 2021-01-23 19:22 - 000000000 ____D C:\Users\bazim\AppData\Local\NewBlue
2021-01-22 21:38 - 2021-01-22 21:38 - 000000000 ____D C:\Users\bazim\AppData\LocalLow\Adobe
2021-01-22 20:26 - 2021-02-01 19:02 - 000000000 ____D C:\Users\bazim\Desktop\2
2021-01-22 20:03 - 2021-01-31 21:30 - 000000000 ____D C:\Users\bazim\AppData\Roaming\VEGAS
2021-01-22 20:03 - 2021-01-22 20:03 - 000000000 ____D C:\Users\bazim\AppData\Roaming\Movie Studio Platinum
2021-01-22 20:03 - 2021-01-22 20:03 - 000000000 ____D C:\Users\bazim\AppData\Local\Plugin.OfxStitch
2021-01-22 20:03 - 2021-01-22 20:03 - 000000000 ____D C:\Users\bazim\AppData\Local\Plugin.ofx360Stabilizer
2021-01-22 20:03 - 2021-01-22 20:03 - 000000000 ____D C:\Users\bazim\AppData\Local\Plugin.MxOfxRotation
2021-01-22 20:03 - 2021-01-22 20:03 - 000000000 ____D C:\Users\bazim\AppData\Local\Movie Studio Platinum
2021-01-22 20:03 - 2021-01-22 20:03 - 000000000 ____D C:\Users\bazim\AppData\Local\MAGIX
2021-01-22 20:02 - 2021-01-22 20:02 - 000000000 ____D C:\Users\bazim\.QtWebEngineProcess
2021-01-22 20:02 - 2021-01-22 20:02 - 000000000 ____D C:\Users\bazim\.ApplicationManager
2021-01-22 20:01 - 2021-01-22 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
2021-01-22 20:01 - 2021-01-22 20:01 - 000000000 ____D C:\Program Files\NewBlueFX
2021-01-22 20:01 - 2021-01-22 20:01 - 000000000 ____D C:\Program Files\CyberLink
2021-01-22 20:01 - 2021-01-22 20:01 - 000000000 ____D C:\Program Files\Adobe
2021-01-22 20:01 - 2021-01-22 20:01 - 000000000 ____D C:\Program Files (x86)\NewBlueFX
2021-01-22 20:00 - 2021-01-22 20:00 - 000000000 ____D C:\ProgramData\Magix
2021-01-22 19:59 - 2021-01-22 19:59 - 000000000 ____D C:\Users\bazim\AppData\Local\VEGAS
2021-01-22 19:59 - 2021-01-22 19:59 - 000000000 ____D C:\ProgramData\VEGAS
2021-01-22 19:59 - 2021-01-22 19:59 - 000000000 ____D C:\ProgramData\Movie Studio Platinum
2021-01-22 19:59 - 2021-01-22 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS
2021-01-22 19:59 - 2021-01-22 19:59 - 000000000 ____D C:\Program Files\Common Files\OFX
2021-01-22 19:59 - 2021-01-22 19:59 - 000000000 ____D C:\Program Files (x86)\VEGAS
2021-01-22 19:56 - 2021-01-22 19:59 - 000000000 ____D C:\Users\bazim\AppData\Roaming\Sony
2021-01-22 19:54 - 2021-01-22 20:03 - 000000000 ____D C:\Users\bazim\AppData\Roaming\MAGIX
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-16 19:43 - 2020-07-31 21:07 - 000000000 ____D C:\Users\bazim\AppData\Roaming\discord
2021-02-16 19:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-16 19:42 - 2020-08-01 07:11 - 000000000 ____D C:\Users\bazim\AppData\Local\Battle.net
2021-02-16 19:35 - 2020-08-01 07:29 - 000000128 _____ C:\Users\bazim\AppData\Roaming\winscp.rnd
2021-02-16 19:34 - 2020-08-01 15:37 - 000000000 ____D C:\Users\bazim\AppData\Roaming\eM Client
2021-02-16 19:04 - 2020-07-31 19:59 - 000000000 ____D C:\ProgramData\Package Cache
2021-02-16 18:31 - 2020-07-31 19:34 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-02-16 17:58 - 2020-07-31 19:39 - 001693140 _____ C:\Windows\system32\PerfStringBackup.INI
2021-02-16 17:58 - 2019-12-07 15:41 - 000716770 _____ C:\Windows\system32\perfh005.dat
2021-02-16 17:58 - 2019-12-07 15:41 - 000144948 _____ C:\Windows\system32\perfc005.dat
2021-02-16 17:58 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-02-16 17:53 - 2020-07-31 19:59 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-16 17:51 - 2020-07-31 19:34 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-16 17:51 - 2020-07-31 19:34 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-02-16 17:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2021-02-16 17:51 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2021-02-16 17:22 - 2020-08-01 07:24 - 000000128 _____ C:\Users\bazim\AppData\Local\PUTTY.RND
2021-02-16 17:08 - 2020-08-29 20:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK
2021-02-16 17:08 - 2020-07-31 21:03 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-02-15 20:56 - 2020-07-31 20:16 - 000000000 ____D C:\Users\bazim\AppData\Local\CrashDumps
2021-02-15 18:16 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\schemas
2021-02-15 18:16 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-02-15 18:15 - 2020-09-03 17:29 - 000000625 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2021-02-15 18:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2021-02-15 18:12 - 2020-07-31 19:37 - 000000000 ____D C:\Users\bazim
2021-02-15 15:16 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-15 15:16 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-02-14 18:36 - 2020-12-23 20:47 - 000001813 _____ C:\Users\bazim\Desktop\CurseForge.lnk
2021-02-14 18:36 - 2020-12-23 20:46 - 000000000 ____D C:\Users\bazim\AppData\Local\Overwolf
2021-02-13 18:48 - 2020-08-22 06:00 - 000000000 ____D C:\Users\bazim\AppData\Roaming\qBittorrent
2021-02-13 17:43 - 2020-07-31 19:48 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-13 16:52 - 2020-08-08 05:58 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1539569530-1701166445-3880768379-1003
2021-02-13 16:52 - 2020-08-08 05:58 - 000002389 _____ C:\Users\GameArea.cz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-13 16:52 - 2020-08-08 05:58 - 000000000 ___RD C:\Users\GameArea.cz\OneDrive
2021-02-13 13:18 - 2020-08-21 06:05 - 000000000 ____D C:\Users\bazim\AppData\Roaming\vlc
2021-02-13 13:04 - 2020-08-01 07:24 - 000000128 _____ C:\Users\bazim\AppData\Roaming\PUTTY.RND
2021-02-12 22:52 - 2020-07-31 19:34 - 000438944 _____ C:\Windows\system32\FNTCACHE.DAT
2021-02-12 22:51 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-12 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords
2021-02-12 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-02-12 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-02-12 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Keywords
2021-02-12 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-02-12 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-12 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-02-12 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-12 22:51 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2021-02-12 21:55 - 2020-07-31 20:24 - 000000000 ____D C:\Program Files\Microsoft Office
2021-02-12 15:35 - 2020-07-31 19:34 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-02-12 15:29 - 2020-08-22 19:26 - 000004122 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1598120789
2021-02-12 15:29 - 2020-08-22 19:26 - 000000858 _____ C:\Users\bazim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera GX.lnk
2021-02-11 15:37 - 2020-07-31 19:47 - 000003584 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-11 15:37 - 2020-07-31 19:47 - 000003460 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-10 15:25 - 2020-07-31 19:41 - 000000000 ____D C:\Windows\system32\MRT
2021-02-10 15:22 - 2020-07-31 19:41 - 130141752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-02-08 15:45 - 2020-08-22 19:22 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-06 18:07 - 2020-12-31 14:21 - 000000000 ____D C:\Users\bazim\AppData\Roaming\EasyAntiCheat
2021-02-06 13:38 - 2020-08-08 05:56 - 000000000 ____D C:\Users\GameArea.cz\AppData\Local\Packages
2021-02-05 16:27 - 2020-08-09 11:22 - 000000000 ____D C:\Users\bazim\AppData\Roaming\obs-studio
2021-02-05 15:38 - 2020-08-22 19:22 - 000003472 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 15:38 - 2020-08-22 19:22 - 000003348 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-05 15:13 - 2020-07-31 19:40 - 000000000 ____D C:\Users\bazim\AppData\Local\PlaceholderTileLogoFolder
2021-01-31 13:58 - 2020-08-01 07:29 - 000000745 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2021-01-31 12:03 - 2020-08-22 19:22 - 000000000 ____D C:\Users\bazim\AppData\Local\Google
2021-01-30 20:42 - 2020-07-31 20:00 - 000000000 ____D C:\Users\bazim\AppData\Local\NVIDIA
2021-01-30 19:42 - 2020-07-31 19:38 - 000000000 ____D C:\Users\bazim\AppData\Local\Packages
2021-01-29 14:58 - 2020-07-31 20:13 - 000000000 ____D C:\Users\bazim\AppData\Local\D3DSCache
2021-01-28 15:36 - 2020-08-01 15:37 - 000001110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eM Client.lnk
2021-01-28 15:36 - 2020-08-01 15:37 - 000000000 ____D C:\Program Files (x86)\eM Client
2021-01-24 10:57 - 2021-01-07 18:52 - 000000034 _____ C:\Users\bazim\simc-apitoken
2021-01-24 10:57 - 2021-01-07 18:45 - 000000000 ____D C:\Users\bazim\AppData\Roaming\SimulationCraft
2021-01-23 09:11 - 2020-07-31 19:57 - 000657056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-01-23 09:10 - 2020-07-31 19:38 - 007116680 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-01-22 22:31 - 2020-08-08 05:58 - 000000000 ____D C:\Users\GameArea.cz\AppData\Local\PlaceholderTileLogoFolder
2021-01-22 14:55 - 2020-07-31 19:41 - 000799104 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
==================== Files in the root of some directories ========
2020-08-01 07:24 - 2021-02-13 13:04 - 000000128 _____ () C:\Users\bazim\AppData\Roaming\PUTTY.RND
2020-08-01 07:29 - 2021-02-16 19:35 - 000000128 _____ () C:\Users\bazim\AppData\Roaming\winscp.rnd
2020-08-01 07:24 - 2021-02-16 17:22 - 000000128 _____ () C:\Users\bazim\AppData\Local\PUTTY.RND
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Log Addition
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-02-2021
Ran by bazim (16-02-2021 19:45:20)
Running from C:\Users\bazim\Desktop\VIRY.cz
Windows 10 Pro Version 20H2 19042.804 (X64) (2020-07-31 18:36:11)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1539569530-1701166445-3880768379-500 - Administrator - Disabled)
bazim (S-1-5-21-1539569530-1701166445-3880768379-1001 - Administrator - Enabled) => C:\Users\bazim
DefaultAccount (S-1-5-21-1539569530-1701166445-3880768379-503 - Limited - Disabled)
GameArea.cz (S-1-5-21-1539569530-1701166445-3880768379-1003 - Administrator - Enabled) => C:\Users\GameArea.cz
Guest (S-1-5-21-1539569530-1701166445-3880768379-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1539569530-1701166445-3880768379-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_0) (Version: 22.0.0.35 - Adobe Inc.)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 6.0.7 - philandro Software GmbH)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.36.1 - Asmedia Technology)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlestate Games Launcher 10.4.4.1239 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 10.4.4.1239 - Battlestate Games)
CurseForge (HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.167.2.4 - Overwolf app)
Cyberpunk 2077 (HKLM-x32\...\Cyberpunk 2077_is1) (Version: - )
Discord (HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DZSALauncher version 0.0.4.8 (HKLM-x32\...\DZSALauncher_is1) (Version: 0.0.4.8 - Maca134)
Easy Smart Configuration Utility (HKLM-x32\...\{2E6F915E-1948-49D0-B660-0F17C768E511}) (Version: 1.3.1.0 - TP-LINK)
eM Client (HKLM-x32\...\{D1A4EE66-AD4A-4EBB-91B2-19B5BCEB82B1}) (Version: 8.1.1054.0 - eM Client Inc.)
Epic Games Launcher (HKLM-x32\...\{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 - Epic Games, Inc.)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.9.10423 - Battlestate Games)
EyeTV Netstream for Windows Media Center (HKLM-x32\...\EyeTV Netstream Service) (Version: 1.01.00.16 - Elgato Systems GmbH)
G-Menu (HKLM-x32\...\{D80BD271-5FD8-48BE-9BEE-83557B2A0BDA}) (Version: 1.0.11 - TPVAOC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.150 - Google LLC)
Hyper Scape (HKLM-x32\...\Uplay Install 11957) (Version: - Ubisoft)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{2523CCCE-D2FA-47F7-B4DF-54C122222E6A}) (Version: 6.5.2.40 - Intel Corporation) Hidden
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{de963bf0-619d-461f-b689-7f4079c4ac42}) (Version: 6.5.2.40 - Intel Corporation)
iVMS-4200 Lite(v1.0.0.4) (HKLM-x32\...\{DB03E757-F619-463F-9370-28D16DB168C2}) (Version: 1.0.0.4 - hikvision)
Kingston SSD Manager version 1.1.2.6 (HKLM-x32\...\{9A5DD901-0B98-4F2B-9421-B5975014184F}_is1) (Version: 1.1.2.6 - Kingston Digital, Inc)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.13628.20380 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.68 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft OneDrive (HKU\S-1-5-21-1539569530-1701166445-3880768379-1003\...\OneDriveSetup.exe) (Version: 21.002.0104.0005 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x86) (HKLM-x32\...\{22CB8ED7-DF57-4864-BD04-F63B9CE4B494}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-US) (HKLM-x32\...\{66D57636-BD4B-402F-9E7D-5E89C28C8136}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{56F27690-F6EA-3356-980A-02BA379506EE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{1b103cea-f037-4504-81de-956057b442c3}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
MobaXterm (HKLM-x32\...\{E3A3E2A8-DA1B-4697-9562-A393F98B4A41}) (Version: 20.3.0.4396 - Mobatek)
Movie Studio 16.0 Platinum (HKLM\...\{661AE070-1B81-11EA-8676-9431242A7F22}) (Version: 16.0.175 - VEGAS)
NewBlue Transitions 5 Ultimate (HKLM-x32\...\NewBlue Transitions 5 Ultimate) (Version: 5.0.180730 - NewBlue)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.9.1 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 461.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.40 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
Oculus Tray Tool v0.86.0 (HKLM-x32\...\Oculus Tray Tool_is1) (Version: - )
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13628.20380 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Opera GX Stable 73.0.3856.396 (HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\Opera GX 73.0.3856.396) (Version: 73.0.3856.396 - Opera Software)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.162.0.13 - Overwolf Ltd.)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8703.1 - Realtek Semiconductor Corp.)
Red Dead Redemption 2 (HKLM-x32\...\Red Dead Redemption 2) (Version: 1.0.1311.27 - Rockstar Games)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.32.316 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games)
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 6.2.1.260 - Samsung Electronics)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TotalTV Player (HKLM-x32\...\{63B9BAB5-F36A-4A3B-9E5C-68A7F212BFB9}) (Version: 6.32.4 - )
Tukui Client (HKLM\...\{8ED42F67-EEEA-402D-ABCF-83BA85F55FFA}) (Version: 3.2.8 - Tukui)
Twitch (HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 85.0 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
Ulož.to FileManager 2.82 (64-bit) (HKLM\...\3f2e2cd28b0e4e4396c2402fbc85a0f0_is1) (Version: 2.82 - Uloz.to cloud a.s.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinSCP 5.17.10 (HKLM-x32\...\winscp3_is1) (Version: 5.17.10 - Martin Prikryl)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-02] (Microsoft Corporation) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.37.4392.0_x64__8wekyb3d8bbwe [2021-02-09] (Microsoft Corporation) [Startup Task]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-08-22] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.960.0_x64__56jybvy8sckqj [2021-01-26] (NVIDIA Corp.)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2020-08-31] (Samsung Electronics Co. Ltd.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1539569530-1701166445-3880768379-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\bazim\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1539569530-1701166445-3880768379-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\bazim\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1539569530-1701166445-3880768379-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\bazim\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1539569530-1701166445-3880768379-1001_Classes\CLSID\{9486aaf1-0930-362a-962d-8e6908739c817}\InprocServer32 -> 0x95686B17A26DD601A3DD6B17A26DD601010000000E00000000000000 => No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Programy\Notepad++\NppShell_06.dll [2020-11-02] (Notepad++ -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programy\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programy\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_a871a754b978bc7f\nvshext.dll [2021-01-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programy\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programy\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2021-01-27 05:00 - 2021-01-27 05:00 - 000011264 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Accounts.resources.dll
2021-01-27 05:00 - 2021-01-27 05:00 - 000003584 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Commands.resources.dll
2021-01-27 05:00 - 2021-01-27 05:00 - 000009216 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Common.UI.resources.dll
2021-01-27 05:00 - 2021-01-27 05:00 - 000004608 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Imap.Base.resources.dll
2021-01-27 05:00 - 2021-01-27 05:00 - 000007680 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Protocols.resources.dll
2021-01-27 05:00 - 2021-01-27 05:00 - 000006656 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Protocols.Smtp.resources.dll
2021-01-27 05:00 - 2021-01-27 05:00 - 000794624 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.resources.dll
2021-01-27 05:00 - 2021-01-27 05:00 - 093837824 _____ () [File not signed] C:\Program Files (x86)\eM Client\libcef\libcef.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 104873984 _____ () [File not signed] E:\Battle.net\Battle.net.12679\libcef.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000112128 _____ () [File not signed] E:\Battle.net\Battle.net.12679\libEGL.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 006227456 _____ () [File not signed] E:\Battle.net\Battle.net.12679\libGLESv2.dll
2021-01-27 05:00 - 2021-01-27 05:00 - 000944840 _____ (SQLite Development Team) [File not signed] C:\Program Files (x86)\eM Client\win-x86\sqlite3.native.dll
2021-01-27 05:00 - 2021-01-27 05:00 - 000729600 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\eM Client\libcef\chrome_elf.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000810496 _____ (The Chromium Authors) [File not signed] E:\Battle.net\Battle.net.12679\chrome_elf.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000047104 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\audio\qtaudio_windows.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000026112 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\imageformats\qgif.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000027136 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\imageformats\qico.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000243712 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\imageformats\qjpeg.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000223744 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\imageformats\qmng.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000020992 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\imageformats\qsvg.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000332288 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\imageformats\qtiff.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 001140224 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\platforms\qwindows.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000041984 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000014848 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000014848 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\qml\QtQml\Models.2\modelsplugin.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000014848 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\qml\QtQuick.2\qtquick2plugin.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000084480 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000267776 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000071680 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000211456 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000014848 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\qml\QtQuick\Window.2\windowplugin.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 004943360 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5Core.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 005022208 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5Gui.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000626176 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5Multimedia.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000877056 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5Network.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 002908672 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5Qml.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 003078656 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5Quick.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000096256 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5QuickControls2.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000681472 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5QuickTemplates2.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000259072 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5Svg.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 004718080 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5Widgets.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000439296 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5WinExtras.dll
2021-02-12 15:26 - 2021-02-12 15:26 - 000159232 _____ (The Qt Company Ltd.) [File not signed] E:\Battle.net\Battle.net.12679\Qt5Xml.dll
2021-01-27 05:00 - 2021-01-27 05:00 - 000442368 _____ (Thomas Maierhofer) [File not signed] C:\Program Files (x86)\eM Client\Hunspellx86.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-1539569530-1701166445-3880768379-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-31] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\sharepoint.com -> hxxps://kiekert-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-1539569530-1701166445-3880768379-1003\...\sharepoint.com -> hxxps://kiekert-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2020-09-01 15:22 - 000000872 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 ibattle.org
127.0.0.1 www.ibattle.org
2020-09-03 17:29 - 2021-02-15 18:15 - 000000625 _____ C:\Windows\system32\drivers\etc\hosts.ics
192.168.0.1 Bazim-PC.mshome.net # 2026 2 6 14 17 15 44 187
172.17.245.114 linux.mshome.net # 2020 9 6 19 17 49 30 597
172.17.246.127 ubuntu-server.mshome.net # 2020 9 0 20 10 5 32 106
106
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\bazim\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\wallpaper 1.jpg
HKU\S-1-5-21-1539569530-1701166445-3880768379-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\GameArea.cz\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\wallpaper 1.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKU\S-1-5-21-1539569530-1701166445-3880768379-1001\...\StartupApproved\Run: => "Samsung DeX"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{5E73E2D6-B244-48C9-B86E-7517AB1E640E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{48DF5AF0-59F6-48D0-93EE-C2B41F33196B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{73A902DB-B6A6-417C-B5C8-CBF97514335E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0A671650-86E5-492C-9C70-026280B7B754}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CFC7CBEB-1AAB-434E-90A6-437F84E904F6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7A213997-571E-4FD0-A11A-1EB7E55FEFE6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DE215564-3BB6-4768-B96B-A290FD57F827}] => (Allow) D:\Programy\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7D67D792-68F6-4CC1-8DFD-EED2E3D1557C}] => (Allow) D:\Programy\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EA370497-7323-47F3-9B3A-FEBA4E6279B0}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{B5D838D4-4CD8-47F1-A392-DB0F65C2170D}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{07260BC8-204D-4D94-802C-8BB6E1F4AB5C}] => (Allow) E:\SteamHry\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc)
FirewallRules: [{B919EE97-E621-474D-BF66-FD19B45224A9}] => (Allow) E:\SteamHry\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc)
FirewallRules: [TCP Query User{96FA73BE-B990-4155-9838-F66EC07C6A57}D:\dokumenty\mobaxterm\slash\bin\xwin_mobax.exe] => (Block) D:\dokumenty\mobaxterm\slash\bin\xwin_mobax.exe (Mobatek -> )
FirewallRules: [UDP Query User{CC0D1567-514A-4DA0-BD41-72A766F53D2A}D:\dokumenty\mobaxterm\slash\bin\xwin_mobax.exe] => (Block) D:\dokumenty\mobaxterm\slash\bin\xwin_mobax.exe (Mobatek -> )
FirewallRules: [TCP Query User{359AC858-4791-412A-BDA8-21C225813DA0}D:\dokumenty\mobaxterm\slash\bin\xwin_mobax.exe] => (Allow) D:\dokumenty\mobaxterm\slash\bin\xwin_mobax.exe (Mobatek -> )
FirewallRules: [UDP Query User{A975AC6A-4678-4B51-A096-5F28EB48DC3B}D:\dokumenty\mobaxterm\slash\bin\xwin_mobax.exe] => (Allow) D:\dokumenty\mobaxterm\slash\bin\xwin_mobax.exe (Mobatek -> )
FirewallRules: [{AD3CDA76-80F9-43B7-8A29-066FE88B1082}] => (Allow) E:\SteamHry\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{CA16E12C-9BA8-46BD-96D7-AE3624F78E73}] => (Allow) E:\SteamHry\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{B57A9FF1-08E5-49DD-80CA-C4B7538826BE}E:\steamhry\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) E:\steamhry\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{298B8E96-4870-4311-B2DA-A1F488C166EC}E:\steamhry\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) E:\steamhry\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{FAB40B34-1B66-4D62-BE3A-0436D35B45E7}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{A7D7131A-CF9D-4B27-91D5-8AB8C053FCA6}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{54495A22-AADA-4AE0-B84F-C4BB62FB4991}E:\roguecompany\roguecompany\binaries\win64\roguecompany.exe] => (Allow) E:\roguecompany\roguecompany\binaries\win64\roguecompany.exe (Hi-Rez Studios, Inc.) [File not signed]
FirewallRules: [UDP Query User{D319A4E2-D4F0-45D2-8F70-A25EA10FBD03}E:\roguecompany\roguecompany\binaries\win64\roguecompany.exe] => (Allow) E:\roguecompany\roguecompany\binaries\win64\roguecompany.exe (Hi-Rez Studios, Inc.) [File not signed]
FirewallRules: [{01AA3FB6-BEA1-49AE-90B3-CB52ECF6205D}] => (Allow) E:\SteamHry\steamapps\common\Project Winter\ProjectWinter.exe () [File not signed]
FirewallRules: [{0D1B5C21-49A1-44FA-9D54-BE91ED64A376}] => (Allow) E:\SteamHry\steamapps\common\Project Winter\ProjectWinter.exe () [File not signed]
FirewallRules: [{9A735A1E-0F73-4498-9345-47EA36BF6D15}] => (Allow) E:\SteamHry\steamapps\common\rocketleague\Binaries\RocketLeague.exe => No File
FirewallRules: [{E7B09F34-0AF5-441C-83DD-8ABEF92B24CA}] => (Allow) E:\SteamHry\steamapps\common\rocketleague\Binaries\RocketLeague.exe => No File
FirewallRules: [{DE476994-72C9-4779-940C-07F4A8D112B2}] => (Allow) E:\SteamHry\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => No File
FirewallRules: [{371928B7-3FB1-4AFF-B550-2A4AF1DFFAD9}] => (Allow) E:\SteamHry\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => No File
FirewallRules: [{F186E037-DEC1-40D8-A129-3E8FB6420E31}] => (Allow) E:\SteamHry\steamapps\common\Fall Guys\FallGuys_client.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{6E0C0A12-AA38-4B81-9DD0-B2E783346FAB}] => (Allow) E:\SteamHry\steamapps\common\Fall Guys\FallGuys_client.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{32F7FAF7-4D15-448F-A4E1-24251A71D238}] => (Allow) D:\Programy\TotalTV Player\InstTool.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{9E206EB9-0973-4C2F-BE8D-A966BDE3C2CF}] => (Allow) D:\Programy\TotalTV Player\InstTool.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{D0927E34-8AA7-405C-932A-F137CC1DFE7E}] => (Allow) D:\Programy\TotalTV Player\CinergyDvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{F3DCC4D4-FD44-4242-97D7-BC28850B1C46}] => (Allow) D:\Programy\TotalTV Player\CinergyDvr.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{6D743207-1AE7-42F2-9840-8750CE3D9FA3}] => (Allow) D:\Programy\TotalTV Player\VersionCheck\VersionCheck.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [{F8A86867-79AC-4620-88B8-8971090B83DB}] => (Allow) D:\Programy\TotalTV Player\VersionCheck\VersionCheck.exe (GENIATECH INC.,LTD) [File not signed]
FirewallRules: [TCP Query User{5C7E80B1-41F5-4AD1-BE06-031434E2273F}C:\users\gamearea.cz\documents\mobaxterm\slash\bin\xwin_mobax.exe] => (Allow) C:\users\gamearea.cz\documents\mobaxterm\slash\bin\xwin_mobax.exe (Mobatek -> )
FirewallRules: [UDP Query User{A4077A29-1C93-4F7F-890D-02342DD63408}C:\users\gamearea.cz\documents\mobaxterm\slash\bin\xwin_mobax.exe] => (Allow) C:\users\gamearea.cz\documents\mobaxterm\slash\bin\xwin_mobax.exe (Mobatek -> )
FirewallRules: [TCP Query User{44176B19-01AA-4234-86AA-114AC3262256}D:\programy\rustserver\rustdedicated.exe] => (Allow) D:\programy\rustserver\rustdedicated.exe => No File
FirewallRules: [UDP Query User{BAA721C2-AB0F-48D3-A630-8ED0CFECB93C}D:\programy\rustserver\rustdedicated.exe] => (Allow) D:\programy\rustserver\rustdedicated.exe => No File
FirewallRules: [{7F915F29-60D7-4DD7-99C9-48A20CAD4EC1}] => (Allow) E:\SteamHry\steamapps\common\Deadside\Deadside.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{A7278240-9147-4E6B-ABE6-6D8FF9E73E72}] => (Allow) E:\SteamHry\steamapps\common\Deadside\Deadside.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{AA44575B-1321-45E9-A5BA-76BE033418BF}] => (Allow) E:\SteamHry\steamapps\common\Deadside\Deadside\Binaries\Win64\Deadside-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{BAD57394-0EE5-4678-A237-586E0974AEA8}] => (Allow) E:\SteamHry\steamapps\common\Deadside\Deadside\Binaries\Win64\Deadside-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{5C215C98-DD79-483F-A68C-BAA0EEE4C1D0}] => (Allow) E:\SteamHry\steamapps\common\Deadside\EasyAntiCheat\EasyAntiCheat_x64.dll (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{E349E399-4C1E-4025-A1E7-8CA0EEED1826}] => (Allow) E:\SteamHry\steamapps\common\Deadside\EasyAntiCheat\EasyAntiCheat_x64.dll (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{53263162-DB2D-4874-9925-0F2EB3EBE1C3}] => (Allow) E:\SteamHry\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{65B90121-6E43-4C35-A79D-5B2C4F0B5EB3}] => (Allow) E:\SteamHry\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{330D2FBE-E0CC-42E4-9AA9-141398F93801}] => (Allow) E:\SteamHry\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{85A4928F-C5BE-4F1A-9344-C26026123C9B}] => (Allow) E:\SteamHry\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{A2CC9AF3-D26A-40D3-B7C2-9FCC59FC5E1F}] => (Allow) E:\SteamHry\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{833E22F4-7258-40C4-B1F9-4444EE95C34D}] => (Allow) E:\SteamHry\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{9CDB47B9-A517-4CC7-999F-4C4C62D8A6BC}] => (Allow) D:\Programy\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{DD02CA84-AE65-463A-AACC-2D3FA7814218}] => (Allow) D:\Programy\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{C156C0B4-BCCF-4CAC-ACE7-D0F4A05BBED8}E:\dead matter\deadmatter\binaries\win64\deadmatter-win64-shipping.exe] => (Block) E:\dead matter\deadmatter\binaries\win64\deadmatter-win64-shipping.exe => No File
FirewallRules: [UDP Query User{4D4BC331-B281-44D1-A16C-E9E7D06FB99D}E:\dead matter\deadmatter\binaries\win64\deadmatter-win64-shipping.exe] => (Block) E:\dead matter\deadmatter\binaries\win64\deadmatter-win64-shipping.exe => No File
FirewallRules: [{79EC55AB-E49D-46AE-84F0-637EB9E85F51}] => (Allow) D:\Programy\BsgLauncher\BsgLauncher.exe (Battlestate Games Ltd -> Battlestate Games)
FirewallRules: [{8B091545-FD7E-4C5E-8D94-5E5E5352C0F2}] => (Allow) D:\Programy\BsgLauncher\BsgLauncher.exe (Battlestate Games Ltd -> Battlestate Games)
FirewallRules: [{A6B077B7-2C79-4E7A-843B-E6AA3A0E4A25}] => (Allow) E:\SteamHry\steamapps\common\Dead Matter\deadmatter.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{ED658CC3-43DD-4F3C-B518-A6A9392B7401}] => (Allow) E:\SteamHry\steamapps\common\Dead Matter\deadmatter.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{424F89F1-6D8B-4595-9A7B-668774A584FF}F:\dm_server\deadmatter\binaries\win64\deadmatterserver-win64-test.exe] => (Allow) F:\dm_server\deadmatter\binaries\win64\deadmatterserver-win64-test.exe => No File
FirewallRules: [UDP Query User{20F785D9-20A0-4336-B6C5-BE94B114C38F}F:\dm_server\deadmatter\binaries\win64\deadmatterserver-win64-test.exe] => (Allow) F:\dm_server\deadmatter\binaries\win64\deadmatterserver-win64-test.exe => No File
FirewallRules: [{7BA18CCC-BF21-4D0F-B09F-C8460C85E0CD}] => (Allow) E:\SteamHry\steamapps\common\Dead Matter Dedicated Server\deadmatterServer.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{F13224B4-670E-451E-B710-B3CE2278445D}] => (Allow) E:\SteamHry\steamapps\common\Dead Matter Dedicated Server\deadmatterServer.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{08ED1293-499E-432A-BE32-0F6FD036B02F}D:\programy\switch\jre\bin\javaw.exe] => (Allow) D:\programy\switch\jre\bin\javaw.exe => No File
FirewallRules: [UDP Query User{3795BD74-0539-44D2-82B5-BF9E36C6D906}D:\programy\switch\jre\bin\javaw.exe] => (Allow) D:\programy\switch\jre\bin\javaw.exe => No File
FirewallRules: [{F62BBCB7-2AC2-473A-9803-9652EEF85F0E}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{C5D5921D-41FF-476E-89AF-3DF06A674AB6}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7F525529-33EA-4B90-AB6E-307E6AE86DD1}] => (Allow) D:\Stažené soubory\Programy\bin\steamcmd\steamcmd.exe => No File
FirewallRules: [{5EED5148-3949-4DD5-AEC4-F9D395AA0342}] => (Allow) D:\Stažené soubory\Programy\bin\steamcmd\steamcmd.exe => No File
FirewallRules: [{56FF8727-9F78-44F9-8439-3CEAA4AA3F03}] => (Allow) D:\Stažené soubory\Programy\servers\1\serverfiles\deadmatterServer.exe => No File
FirewallRules: [{C9D9E11F-A57D-4062-961A-4199813FD1F7}] => (Allow) D:\Stažené soubory\Programy\servers\1\serverfiles\deadmatterServer.exe => No File
FirewallRules: [{AED7E18C-DA3D-4DFE-B3B7-4973D164DDC8}] => (Allow) C:\Users\bazim\Desktop\1\bin\steamcmd\steamcmd.exe => No File
FirewallRules: [{5ED6DD4C-5EB4-46E7-8723-3E2AB3A86932}] => (Allow) C:\Users\bazim\Desktop\1\bin\steamcmd\steamcmd.exe => No File
FirewallRules: [{58F7B62D-A70D-44D9-9061-F5AD5D5DCD4B}] => (Allow) C:\Users\bazim\Desktop\1\servers\1\serverfiles\deadmatterServer.exe => No File
FirewallRules: [{6FEA2E30-66B3-4460-8F02-46FB37BE423A}] => (Allow) C:\Users\bazim\Desktop\1\servers\1\serverfiles\deadmatterServer.exe => No File
FirewallRules: [TCP Query User{E9D18832-DB6E-4513-A57F-21200045A7BE}F:\dm_server2\deadmatter\binaries\win64\deadmatterserver-win64-shipping.exe] => (Allow) F:\dm_server2\deadmatter\binaries\win64\deadmatterserver-win64-shipping.exe => No File
FirewallRules: [UDP Query User{8179EEE7-DB31-4FEF-9654-5B4288EAD5D4}F:\dm_server2\deadmatter\binaries\win64\deadmatterserver-win64-shipping.exe] => (Allow) F:\dm_server2\deadmatter\binaries\win64\deadmatterserver-win64-shipping.exe => No File
FirewallRules: [{555D2096-38D6-4609-83EF-63750B87BAF1}] => (Allow) D:\Programy\WindowsGSM\bin\steamcmd\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [{F1FAE136-313B-46E5-9E34-F93D49ADBD26}] => (Allow) D:\Programy\WindowsGSM\bin\steamcmd\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [{2C39D79C-EC34-4AA2-9E0E-71B4937EDE01}] => (Allow) D:\Programy\WindowsGSM\servers\1\serverfiles\DayZServer_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{09BB0556-35B2-484C-AA8D-0BA60C6966CA}] => (Allow) D:\Programy\WindowsGSM\servers\1\serverfiles\DayZServer_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{D751B58D-E06F-40B2-99E6-A5A482936768}] => (Allow) D:\Programy\WindowsGSM\servers\1\serverfiles\DZSALModServer.exe (Matthew McConnell -> Maca134)
FirewallRules: [{87C4E273-B5DB-430D-8F81-FA520FB747E3}] => (Allow) D:\Programy\WindowsGSM\servers\1\serverfiles\DZSALModServer.exe (Matthew McConnell -> Maca134)
FirewallRules: [TCP Query User{135400A2-C7E0-40EF-A97E-8265E1803241}D:\programy\steamcmd\steamcmd.exe] => (Allow) D:\programy\steamcmd\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{7F0EA18D-1F19-4902-B283-7CC9B035D615}D:\programy\steamcmd\steamcmd.exe] => (Allow) D:\programy\steamcmd\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{46E6B493-3EF2-47BF-A07C-B2517AFECBEF}D:\servery\dayz\dzsalmodserver.exe] => (Allow) D:\servery\dayz\dzsalmodserver.exe (Matthew McConnell -> Maca134)
FirewallRules: [UDP Query User{BA2D0E44-E65E-468D-A655-AC554D89C544}D:\servery\dayz\dzsalmodserver.exe] => (Allow) D:\servery\dayz\dzsalmodserver.exe (Matthew McConnell -> Maca134)
FirewallRules: [TCP Query User{F787739C-81D7-46FF-845C-44CAF04C032A}D:\servery\dayz\dayzserver_x64.exe] => (Allow) D:\servery\dayz\dayzserver_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [UDP Query User{85542845-2377-4BBA-A9E4-E53D8BF695A1}D:\servery\dayz\dayzserver_x64.exe] => (Allow) D:\servery\dayz\dayzserver_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [TCP Query User{45C14617-F56E-4F12-A8AB-EDF2BF167CC7}D:\programy\rust admin 1\rustadmin.exe] => (Allow) D:\programy\rust admin 1\rustadmin.exe () [File not signed]
FirewallRules: [UDP Query User{4D2B65F8-90D2-4504-8733-1D2726078844}D:\programy\rust admin 1\rustadmin.exe] => (Allow) D:\programy\rust admin 1\rustadmin.exe () [File not signed]
FirewallRules: [{2888605B-10A6-4717-AF66-8BC5E489000E}] => (Block) D:\programy\rust admin 1\rustadmin.exe () [File not signed]
FirewallRules: [{E7067365-D654-46C6-9A16-768964D01750}] => (Block) D:\programy\rust admin 1\rustadmin.exe () [File not signed]
FirewallRules: [{9BAC03BB-E35F-40BE-B9D7-10C812863870}] => (Allow) E:\SteamHry\steamapps\common\SCUM\SCUM_Launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{A3457226-71AD-4E6B-A54C-220F65923A22}] => (Allow) E:\SteamHry\steamapps\common\SCUM\SCUM_Launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{9702B37A-A6C3-4AFA-9479-A3D5BA16E2B6}E:\steamhry\steamapps\common\scum\scum\binaries\win64\scum.exe] => (Allow) E:\steamhry\steamapps\common\scum\scum\binaries\win64\scum.exe (Gamepires) [File not signed]
FirewallRules: [UDP Query User{1DC50666-44D9-4D6F-B687-EE5AA3CB0D93}E:\steamhry\steamapps\common\scum\scum\binaries\win64\scum.exe] => (Allow) E:\steamhry\steamapps\common\scum\scum\binaries\win64\scum.exe (Gamepires) [File not signed]
FirewallRules: [{14D835E2-C12B-4A72-AD12-E2D2D676CE7A}] => (Allow) E:\SteamHry\steamapps\common\Pummel Party\PummelParty.exe () [File not signed]
FirewallRules: [{1B21B4FE-2405-4291-B031-F9D45B5302CC}] => (Allow) E:\SteamHry\steamapps\common\Pummel Party\PummelParty.exe () [File not signed]
FirewallRules: [{35BAACD3-5FC0-4CEC-A34F-F84F4B66457A}] => (Allow) E:\Watch Dogs 2\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{9142215C-A421-4E19-AC1B-9BA9795EA3FA}] => (Allow) E:\Watch Dogs 2\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{AD906A5B-A55E-452B-AFD3-6CE254149A37}] => (Allow) E:\Watch Dogs 2\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{E9FF1B83-9577-40FD-A662-F007359AC9A3}] => (Allow) E:\Watch Dogs 2\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{D93196D2-8A17-4BD9-B1D5-D0AA4468B8A4}] => (Allow) E:\Watch Dogs 2\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{D48084E9-FC57-4312-B6EB-3F3F52BCE7FE}] => (Allow) E:\Watch Dogs 2\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{451E381E-E56A-4841-9E78-B67A310EE784}] => (Allow) F:\SteamHry\steamapps\common\Phasmophobia\Phasmophobia.exe () [File not signed]
FirewallRules: [{8E25D52B-247C-4E11-8CA0-A9169694C683}] => (Allow) F:\SteamHry\steamapps\common\Phasmophobia\Phasmophobia.exe () [File not signed]
FirewallRules: [{CE783D95-A96E-44DF-B9B3-E17829A086FB}] => (Allow) D:\Programy\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> Valve Corporation)
FirewallRules: [{45FC65DF-D554-4585-AB10-1A3EBF8AE990}] => (Allow) D:\Programy\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> Valve Corporation)
FirewallRules: [{DCC07D12-06FE-4779-BE26-BFDC2048CB90}] => (Allow) D:\Programy\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{F5216BA7-1942-48A8-8109-B626A9D13F2A}] => (Allow) D:\Programy\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{91C5871D-DCD5-4D00-BCC6-01FB341BDE22}] => (Allow) D:\Programy\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )
FirewallRules: [{EAC96398-32B3-4682-8720-CB3F2D511F9A}] => (Allow) D:\Programy\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )
FirewallRules: [TCP Query User{06B3A172-DD91-41C1-8B95-9E5FF9C959C1}D:\programy\operagx\71.0.3770.234\opera.exe] => (Allow) D:\programy\operagx\71.0.3770.234\opera.exe => No File
FirewallRules: [UDP Query User{F07EB026-3892-40B6-A9CD-2BBA739E1229}D:\programy\operagx\71.0.3770.234\opera.exe] => (Allow) D:\programy\operagx\71.0.3770.234\opera.exe => No File
FirewallRules: [{362D57F8-444C-48E8-925B-0ECF8CE3F50D}] => (Block) D:\programy\operagx\71.0.3770.234\opera.exe => No File
FirewallRules: [{8E63BA39-30AD-4B7C-AAF5-DEFCD0A2C769}] => (Block) D:\programy\operagx\71.0.3770.234\opera.exe => No File
FirewallRules: [{6869C87A-2155-4B42-B280-B6372352615F}] => (Allow) F:\SteamHry\steamapps\common\In Silence\In Silence.exe () [File not signed]
FirewallRules: [{9B7E7D0D-ED08-40A0-9A3A-1A74798ACFB7}] => (Allow) F:\SteamHry\steamapps\common\In Silence\In Silence.exe () [File not signed]
FirewallRules: [{823B1F02-5E81-4044-9E5B-B2AE040C8131}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{491DD6C7-569C-4A9C-ABD6-58DD71E3CD52}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7ED987D8-9221-4AC6-BB3A-B1F7003943FF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1C73BC15-BCC7-4D5C-9914-818DB8161DE0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{D06FB0E2-0C87-45B3-88F2-8DDD712C802F}D:\programy\vlc\vlc.exe] => (Allow) D:\programy\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{B85D3CF9-122E-416A-8591-4C8DF5071B4E}D:\programy\vlc\vlc.exe] => (Allow) D:\programy\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{8B0285E6-04F4-43B1-8E17-311E5A0B9E89}] => (Block) D:\programy\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{1163DD88-3DE2-4540-97F3-78A10AD3D6E2}] => (Block) D:\programy\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{8FE2713D-41D5-4B36-8FDD-8296E2055A77}] => (Allow) E:\SteamHry\steamapps\common\Fall Guys\FallGuys_client_game.exe () [File not signed]
FirewallRules: [{B271616B-62C0-482C-AAD7-7C102664539A}] => (Allow) E:\SteamHry\steamapps\common\Fall Guys\FallGuys_client_game.exe () [File not signed]
FirewallRules: [TCP Query User{8448A96F-C3E4-4284-887E-E5B9C3B07411}D:\programy\samsung dex\samsungdex.exe] => (Allow) D:\programy\samsung dex\samsungdex.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [UDP Query User{286C2F8A-A067-44CD-B27C-EB655AF02477}D:\programy\samsung dex\samsungdex.exe] => (Allow) D:\programy\samsung dex\samsungdex.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{682BDB2D-D6A9-4CCF-AD7A-360939CF55A4}] => (Block) D:\programy\samsung dex\samsungdex.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{6405E86C-C7E2-485A-8D30-2D675AFF58AC}] => (Block) D:\programy\samsung dex\samsungdex.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [TCP Query User{753BA976-0DFF-4CB4-B507-2F7D4C67DFF4}F:\red dead redemption 2\rdr2.exe] => (Allow) F:\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{FCD54A1F-D94F-4E7F-B573-79BD438DEDEF}F:\red dead redemption 2\rdr2.exe] => (Allow) F:\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{D93830C3-CD94-437B-B604-A09B61BF75B8}] => (Block) F:\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{72810B49-12E3-422D-BB5D-424FDE22CF62}] => (Block) F:\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{023748B0-7D74-4841-B5F3-2A9180D18F23}F:\hyper scape\hyperscape.exe] => (Allow) F:\hyper scape\hyperscape.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [UDP Query User{DC780E9A-B73C-46B3-B076-1B6A356CECA1}F:\hyper scape\hyperscape.exe] => (Allow) F:\hyper scape\hyperscape.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{3B627AC3-E1CF-4FF9-BF3E-BE0F348B957D}] => (Block) F:\hyper scape\hyperscape.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{8CECA4DC-FB85-4BAA-B7FB-F38BB46F9270}] => (Block) F:\hyper scape\hyperscape.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{EA6070EB-BB1F-47F1-BA5E-48A18A27702C}] => (Allow) F:\SteamHry\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{0C4BB4AD-EFAE-4EEF-81D1-AC7F6BFE386A}] => (Allow) F:\SteamHry\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{062CD04F-4F7C-4FEA-B39D-FA6A7753EAC6}D:\programy\ivms-4200\ivms-4200 client\ivms-4200.exe] => (Allow) D:\programy\ivms-4200\ivms-4200 client\ivms-4200.exe => No File
FirewallRules: [UDP Query User{35E91AAD-051B-4FD5-A741-5479B5CA0A5C}D:\programy\ivms-4200\ivms-4200 client\ivms-4200.exe] => (Allow) D:\programy\ivms-4200\ivms-4200 client\ivms-4200.exe => No File
FirewallRules: [{8204CDBD-12D7-48ED-9CF1-E5CD90BD6817}] => (Block) D:\programy\ivms-4200\ivms-4200 client\ivms-4200.exe => No File
FirewallRules: [{0F13F2E9-2E20-4F3C-BD06-F76B16AECF43}] => (Block) D:\programy\ivms-4200\ivms-4200 client\ivms-4200.exe => No File
FirewallRules: [TCP Query User{E19473EE-AF5F-4938-9FDD-A768FA2B037E}D:\programy\ivms 4200 lite\ivms-4200 lite\ivms-4200 lite.exe] => (Allow) D:\programy\ivms 4200 lite\ivms-4200 lite\ivms-4200 lite.exe (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
FirewallRules: [UDP Query User{BE32824B-6D54-41C1-AC57-1652680E1042}D:\programy\ivms 4200 lite\ivms-4200 lite\ivms-4200 lite.exe] => (Allow) D:\programy\ivms 4200 lite\ivms-4200 lite\ivms-4200 lite.exe (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
FirewallRules: [{A48F91C1-1990-460D-961D-294834D70FE4}] => (Block) D:\programy\ivms 4200 lite\ivms-4200 lite\ivms-4200 lite.exe (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
FirewallRules: [{2D9F6EE5-EFCF-4C60-BAE5-799EB66C67C8}] => (Block) D:\programy\ivms 4200 lite\ivms-4200 lite\ivms-4200 lite.exe (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
FirewallRules: [{1746A8D5-A79D-4FA0-A60F-400DD964C95F}] => (Allow) E:\SteamHry\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [{D54C4775-3DF6-4B04-AA2B-85F34A762E1F}] => (Allow) E:\SteamHry\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [TCP Query User{07964DC5-1925-4867-A344-C74AE1CBBB72}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{CD6D8BB2-2AB5-4159-924B-E86B62B403BB}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{977B37AA-6970-4DFA-9D66-4BCD6338C387}] => (Allow) E:\SteamHry\steamapps\common\Scavengers Alpha\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{672B009C-2FC4-4E64-B196-9A380ADDBE86}] => (Allow) E:\SteamHry\steamapps\common\Scavengers Alpha\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [TCP Query User{C0A962F0-2DA9-461F-800A-EC2F1E3A8B2E}F:\cyberpunk\bin\x64\cyberpunk2077.exe] => (Allow) F:\cyberpunk\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.)
FirewallRules: [UDP Query User{148655B7-9495-4AD7-AE13-802B858E6002}F:\cyberpunk\bin\x64\cyberpunk2077.exe] => (Allow) F:\cyberpunk\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.)
FirewallRules: [{D4C2E4C4-F49B-4F97-98E5-462EB382E0B3}] => (Block) F:\cyberpunk\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.)
FirewallRules: [{5B80001A-B9C0-40C4-B497-DF154CD6272C}] => (Block) F:\cyberpunk\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.)
FirewallRules: [{A4506F79-CC23-42AD-B54D-5DD92F93CAFF}] => (Allow) D:\Programy\BsgLauncher\BsgLauncher.exe (Battlestate Games Ltd -> Battlestate Games)
FirewallRules: [{B534B093-4AA6-41F8-97AB-603F362420C2}] => (Allow) D:\Programy\BsgLauncher\BsgLauncher.exe (Battlestate Games Ltd -> Battlestate Games)
FirewallRules: [{AB67F80B-19B9-4291-83C7-103CEA5CC439}] => (Allow) F:\SteamHry\steamapps\common\ATLAS\ShooterGame\Binaries\Win64\AtlasGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{324929E9-B95E-4B0F-939F-E1A56880AF36}] => (Allow) F:\SteamHry\steamapps\common\ATLAS\ShooterGame\Binaries\Win64\AtlasGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{19E0D1E5-CF10-4A44-95D1-AC0B450191CD}] => (Allow) F:\SteamHry\steamapps\common\ATLAS\ShooterGame\Binaries\Win64\AtlasGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{238A70F3-59AA-430F-BB06-50880E94224D}] => (Allow) F:\SteamHry\steamapps\common\ATLAS\ShooterGame\Binaries\Win64\AtlasGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{B4D79A39-1282-443F-8ADD-ECBADAA3502A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{324E8E25-4AA8-4A81-90BB-1640E4300AAB}] => (Allow) E:\SteamHry\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{2D2DC7B7-15C0-4C4A-9167-2CEA2948D02C}] => (Allow) E:\SteamHry\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{3CD4DFEC-0CF4-4C35-8208-9E82AD41C552}] => (Allow) D:\Programy\Overwolf\0.162.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{63063CD6-7209-4D98-9671-906798C97083}] => (Allow) D:\Programy\Overwolf\0.162.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{FFF153F2-6F1A-4D66-AC16-2B4235953F35}] => (Allow) D:\Programy\Overwolf\0.162.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{8D9DDAA4-DC66-4487-954D-E8D3BBDBA842}] => (Allow) D:\Programy\Overwolf\0.162.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{F70E4B20-5D58-440C-8656-513E53D02DAD}] => (Block) D:\Programy\Overwolf\0.162.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{309F8A97-F1AF-4524-A7C7-553231F2126C}] => (Block) D:\Programy\Overwolf\0.162.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{9F57E076-E0B9-49C9-91B7-EE03CE8A7581}] => (Block) D:\Programy\Overwolf\0.162.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{9BC0EA78-94E4-47B5-B1C1-C1597E33F5F1}] => (Block) D:\Programy\Overwolf\0.162.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{13B62A5B-2F5B-4FDD-A871-71B46AE3337E}] => (Block) D:\Programy\Overwolf\0.162.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{DF073A66-FC44-4F90-A67A-5FC252CF2B9A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8CBE7B30-F35D-4881-9D9A-DEC327B153DA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2E69BB3E-FC70-44B1-92DD-7B0F2DAE8678}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E8225050-6991-4A54-8E10-1E9B59BABB2D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2350D72E-332F-43BE-B960-D63881A750AA}] => (Allow) E:\SteamHry\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{427648EE-8AD1-4EC2-BD5C-4B045F62908B}] => (Allow) E:\SteamHry\steamapps\common\sandstorm\InsurgencyEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{01914559-1D1D-46C0-9934-EE425122BD27}] => (Allow) E:\SteamHry\steamapps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)
FirewallRules: [{C7390888-5DAA-4357-8D6D-6A9D1FD7F416}] => (Allow) E:\SteamHry\steamapps\common\sandstorm\Insurgency.exe (New World Interactive LLC -> Epic Games, Inc.)
FirewallRules: [TCP Query User{91E3712F-D131-4D26-B090-1233069301FD}E:\steamhry\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) E:\steamhry\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
FirewallRules: [UDP Query User{00F89480-1F6A-41F7-9F77-59D9B657C2D6}E:\steamhry\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) E:\steamhry\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe (New World Interactive LLC -> New World Interactive)
FirewallRules: [{B120052C-C5F7-4F82-8096-D47A9E07EB7B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4DFD467E-8F71-400C-B4A2-93D648C2C590}] => (Allow) E:\SteamHry\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{77102C0C-AFF4-4BFD-A53A-4B7213DE9A5C}] => (Allow) E:\SteamHry\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{9DD95612-BA5B-4801-B573-F6094733E5A8}] => (Allow) F:\SteamHry\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{C79EE5F0-B72F-48D4-87EA-983C36FDB3F0}] => (Allow) F:\SteamHry\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [TCP Query User{08A969CB-5989-496E-8EAE-36AF93996B89}D:\stažené soubory\programy\rbs-v1.3.0_windows-amd64.exe] => (Allow) D:\stažené soubory\programy\rbs-v1.3.0_windows-amd64.exe () [File not signed]
FirewallRules: [UDP Query User{94321057-17C3-48F9-AC1B-8B066D926933}D:\stažené soubory\programy\rbs-v1.3.0_windows-amd64.exe] => (Allow) D:\stažené soubory\programy\rbs-v1.3.0_windows-amd64.exe () [File not signed]
FirewallRules: [{6EA8513B-07D7-49EF-9565-A7982A4C0228}] => (Allow) D:\Programy\WinSCP\WinSCP.exe (Martin Prikryl -> Martin Prikryl)
FirewallRules: [{11DD4DBB-868A-4B8E-AA7A-2843BFEF6E98}] => (Allow) LPort=20
FirewallRules: [{C5FC3675-3698-4E65-945C-422E64D2D215}] => (Allow) LPort=20
FirewallRules: [{766B3D38-9929-4E6B-8CD9-F5147264D379}] => (Allow) D:\Programy\WinSCP\WinSCP.exe (Martin Prikryl -> Martin Prikryl)
FirewallRules: [{04ACAF0C-58C0-4E1A-A425-EBC54B6058F7}] => (Allow) LPort=21
FirewallRules: [{75D6C8D1-C13A-4FAF-81A6-302B3B5D7A4E}] => (Allow) D:\Programy\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{C5401020-A062-4C90-BAC9-EA317019A3E2}] => (Allow) D:\Programy\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [TCP Query User{A82B8743-CADF-445B-9B1A-ACC49F08B95B}D:\programy\switch\jre\bin\javaw.exe] => (Allow) D:\programy\switch\jre\bin\javaw.exe => No File
FirewallRules: [UDP Query User{05202853-DF37-43D5-AB50-083DBAEE4044}D:\programy\switch\jre\bin\javaw.exe] => (Allow) D:\programy\switch\jre\bin\javaw.exe => No File
FirewallRules: [{088071BC-5A9C-49FE-A5ED-B91641D64114}] => (Allow) D:\Programy\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{00B831DE-E673-4649-80A0-464EE125EEFF}] => (Allow) D:\Programy\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{47919A82-8DF2-47FC-BFEF-C86B67306CD7}] => (Allow) D:\Programy\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{34A2C087-DA70-4638-9B39-A44E568D24DC}] => (Allow) D:\Programy\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
==================== Restore Points =========================
07-02-2021 11:19:05 Instalační služba modulů systému Windows
12-02-2021 15:28:55 Instalační služba modulů systému Windows
13-02-2021 18:37:38 Nainstalováno: PRO100
15-02-2021 17:53:25 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/16/2021 07:04:57 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (02/16/2021 06:05:54 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (02/15/2021 08:56:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Todo.exe, verze: 2.37.2102.8002, časové razítko: 0x60218955
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.804, časové razítko: 0x0e9c5eae
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000010bd5c
ID chybujícího procesu: 0x2564
Čas spuštění chybující aplikace: 0x01d703d4b33c837e
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.Todos_2.37.4392.0_x64__8wekyb3d8bbwe\Todo.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 66c6ae2b-ef6f-4145-b94a-033e9ebd8039
Úplný název chybujícího balíčku: Microsoft.Todos_2.37.4392.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (02/15/2021 05:54:41 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (02/15/2021 05:54:41 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (02/15/2021 05:54:41 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (02/15/2021 05:54:41 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (02/15/2021 05:54:41 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
System errors:
=============
Error: (02/15/2021 06:12:31 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MEmuSVC byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/15/2021 05:55:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba VMSP neuspěla při spuštění v důsledku následující chyby:
K dokončení požadované služby není k dispozici dostatek prostředků.
Error: (02/15/2021 05:55:18 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba hns závisí na službě VfpExt, která neuspěla při spuštění v důsledku následující chyby:
Zařízení připojené k systému nefunguje.
Error: (02/14/2021 10:26:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (02/14/2021 10:26:21 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).
Error: (02/12/2021 10:53:36 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Optimalizace doručení se po přijetí pokynu pro vypnutí neukončila správně.
Error: (02/12/2021 04:45:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): INTEL - USB - 10/3/2016 12:00:00 AM - 10.1.1.38.
Error: (02/10/2021 03:18:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
================
Date: 2021-02-15 17:15:48
Description:
Prohled�v�n� Antivirov� ochrana v programu Microsoft Defender bylo zastaveno p�ed dokon�en�m.
ID prohled�v�n�: {C3724381-9142-437F-94A0-07B5D697820A}
Typ prohled�v�n�: Antimalwarov� program
Parametry prohled�v�n�: Rychl� prohled�v�n�
U�ivatel: NT AUTHORITY\SYSTEM
Date: 2021-02-14 16:59:49
Description:
Prohled�v�n� Antivirov� ochrana v programu Microsoft Defender bylo zastaveno p�ed dokon�en�m.
ID prohled�v�n�: {E25DD69A-4332-4314-A07B-F2AB5FEF8334}
Typ prohled�v�n�: Antimalwarov� program
Parametry prohled�v�n�: Rychl� prohled�v�n�
U�ivatel: NT AUTHORITY\SYSTEM
Date: 2021-02-11 17:00:03
Description:
Prohled�v�n� Antivirov� ochrana v programu Microsoft Defender bylo zastaveno p�ed dokon�en�m.
ID prohled�v�n�: {2B6A8336-AF2B-4285-BD6C-52A10C552777}
Typ prohled�v�n�: Antimalwarov� program
Parametry prohled�v�n�: Rychl� prohled�v�n�
U�ivatel: NT AUTHORITY\SYSTEM
Date: 2021-02-10 15:36:58
Description:
Prohled�v�n� Antivirov� ochrana v programu Microsoft Defender bylo zastaveno p�ed dokon�en�m.
ID prohled�v�n�: {631F2C82-0BF8-48B9-ADE2-DBBD4C432F14}
Typ prohled�v�n�: Antimalwarov� program
Parametry prohled�v�n�: Rychl� prohled�v�n�
U�ivatel: NT AUTHORITY\SYSTEM
Date: 2021-02-09 15:50:09
Description:
Prohled�v�n� Antivirov� ochrana v programu Microsoft Defender bylo zastaveno p�ed dokon�en�m.
ID prohled�v�n�: {B584174A-8412-4750-9D96-2041CBEDE0E4}
Typ prohled�v�n�: Antimalwarov� program
Parametry prohled�v�n�: Rychl� prohled�v�n�
U�ivatel: NT AUTHORITY\SYSTEM
Date: 2021-02-07 09:22:17
Description:
Prohled�v�n� Antivirov� ochrana v programu Microsoft Defender bylo zastaveno p�ed dokon�en�m.
ID prohled�v�n�: {B591E9B3-F040-4783-BA11-AFE5FF8CD10D}
Typ prohled�v�n�: Antimalwarov� program
Parametry prohled�v�n�: Rychl� prohled�v�n�
U�ivatel: NT AUTHORITY\SYSTEM
Date: 2021-02-06 08:08:59
Description:
Prohled�v�n� Antivirov� ochrana v programu Microsoft Defender bylo zastaveno p�ed dokon�en�m.
ID prohled�v�n�: {F6F29F6F-F871-4909-BEE0-AA2E02317D37}
Typ prohled�v�n�: Antimalwarov� program
Parametry prohled�v�n�: Rychl� prohled�v�n�
U�ivatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2021-02-16 18:50:17
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.E0 06/15/2018
Motherboard: MSI X99A SLI PLUS(MS-7885)
Processor: Intel(R) Core(TM) i7-5820K CPU @ 3.30GHz
Percentage of memory in use: 22%
Total physical RAM: 32667.96 MB
Available physical RAM: 25183.91 MB
Total Virtual: 37531.96 MB
Available Virtual: 27091.66 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:222.96 GB) (Free:138.57 GB) NTFS
Drive d: (Sklad) (Fixed) (Total:1863.02 GB) (Free:1410.71 GB) NTFS
Drive e: (SSD 1) (Fixed) (Total:465.76 GB) (Free:24.23 GB) NTFS
Drive f: (SSD 2) (Fixed) (Total:447.13 GB) (Free:66.51 GB) NTFS
Drive g: (SSD 3) (Fixed) (Total:111.79 GB) (Free:110.6 GB) NTFS
\\?\Volume{24e3c345-3d2a-406e-87f7-b6dc92afb37c}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{e54dcc34-0a35-4ccc-9f69-4e63b7b4f2f3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 111.8 GB) (Disk ID: FBE6D796)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (Size: 447.1 GB) (Disk ID: E3FED145)
Partition: GPT.
==========================================================
Disk: 3 (Size: 1863 GB) (Disk ID: E3FED140)
Partition: GPT.
==========================================================
Disk: 4 (Size: 223.6 GB) (Disk ID: E3FED14E)
Partition: GPT.
==================== End of Addition.txt =======================
Přispějete na provoz fóra?