Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Simicek
Návštěvník
Návštěvník
Příspěvky: 166
Registrován: 23 črc 2008 19:09

Prosím o kontrolu

#1 Příspěvek od Simicek »

Zdravím, poprosil bych o kontrolu. S počítačem nemám problém, ale čistím ho nyní tak se chci ujistit jestli je vše okey.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-07-2021 01
Ran by David Hynek (administrator) on DESKTOP-KR0LJ7U (Gigabyte Technology Co., Ltd. Z390 GAMING X) (22-07-2021 15:28:09)
Running from C:\Users\David Hynek\Desktop
Loaded Profiles: David Hynek
Platform: Windows 10 Home Version 2004 19041.1083 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
() [File not signed] D:\TradeSkillMaster Application\app\TSMApplication.exe
(A FOUR TECH CO., LTD. -> ) C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\AvastUI.exe <5>
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\wsc_proxy.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Battle.net\Battle.net.exe <3>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7380\Agent.exe
(Discord Inc. -> Discord Inc.) C:\Users\David Hynek\AppData\Local\Discord\app-1.0.9002\Discord.exe <6>
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <28>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler64.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) INTELND1820 -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Intel(R) System Usage Report -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\David Hynek\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) D:\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\NVDisplay.Container.exe <2>
(Open Source Developer, Phillip Gibbons -> Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
(Piriform Software Ltd -> Piriform Software Ltd) D:\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj\RtkUWP.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_69a2b93320d3df04\RtkAudUService64.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_69a2b93320d3df04\RtkAudUService64.exe [1203952 2020-11-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\AVAST Software\Avast\AvLaunch.exe [123672 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1684216 2020-05-13] (Open Source Developer, Phillip Gibbons -> Highresolution Enterprises)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288672 2021-05-21] (IDSA Production signing key 2021 -> Intel)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [CCleaner Smart Cleaning] => D:\CCleaner\CCleaner64.exe [35062912 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [TSMApplication] => D:\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2021-06-29] () [File not signed]
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [Discord] => C:\Users\David Hynek\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe [19841264 2020-02-13] (A FOUR TECH CO., LTD. -> )
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [Overwolf] => D:\\Overwolf\OverwolfLauncher.exe [1729368 2021-07-04] (Overwolf Ltd -> Overwolf Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.164\Installer\chrmstp.exe [2021-07-20] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00CE2B12-0D75-4680-8422-285B8F3DDD2E} - System32\Tasks\Avast Emergency Update => C:\AVAST Software\Avast\AvEmUpdate.exe [4903192 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
Task: {08E42A6B-FE72-451A-8390-AA90767EA53F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098912 2020-11-05] (Intel(R) System Usage Report -> Intel Corporation)
Task: {0EF9095E-67D6-4BF4-A1A4-9DC425A85C2E} - System32\Tasks\CCleanerSkipUAC => D:\CCleaner\CCleaner.exe [29136000 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {130A2970-E407-43B8-91D3-C1ED5CD716B6} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15792 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {155389FB-E8E4-4E78-9CF4-6D8CB97F6DAD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {166EF53C-1947-46E1-99D5-6322D19399FC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {2047841D-794D-4E7E-85EC-41B267073EA8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22A6EF24-BC50-4EFF-A268-68EE1C18DB36} - System32\Tasks\Overwolf Updater Task => D:\Overwolf\OverwolfUpdater.exe [2476376 2021-07-04] (Overwolf Ltd -> Overwolf LTD)
Task: {2389802F-510E-4881-9C40-934DF5D32B4A} - System32\Tasks\BlueStacksHelper => E:\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {245B2271-16E3-45CF-B86C-911FE05D184D} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [227328 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
Task: {290C0CDC-093F-4480-92BD-D7324651B9DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {2B805593-498F-43B6-AE0A-0C6AE971C650} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {31B7D73E-5AA4-4EE6-AF53-692DBC0DC2A6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3965840 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DC93168-BCD7-4209-AF59-1BB767C2BE8D} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
Task: {3F67976D-BEA4-43BA-BF93-F1E976F1EFD1} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {3FD93B6C-C2D9-44A9-9E2E-AB58A21DAE04} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [245760 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
Task: {4423BAE9-2C1E-4927-81F4-2877870940D5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118144 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {477E7250-3E5C-4500-9573-9F7139285900} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18352 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {4B7D89F0-A94F-4E1D-A318-EBA6CE82DE7C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118144 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {5FD3F38F-DE70-4A27-B189-1199C9881465} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
Task: {600EC7A9-E144-45DD-B692-76FBE914F3D9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23182224 2021-07-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C0D92FC-0AC8-44F9-B6B0-4DF265D17508} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {766D2D03-B90F-4A03-AD23-3C2BFF309B56} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253872 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {7A422491-FE71-4293-9913-FAE5A8A2504D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7B0F887D-B495-48A2-862E-6628027AD590} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {7D7FEF56-466D-48D9-BE98-28BCE92EA891} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {8DA50568-BDDB-42C2-B3AD-B95763F58DAE} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098912 2020-11-05] (Intel(R) System Usage Report -> Intel Corporation)
Task: {99396C68-2E8A-4DE6-8DA0-6D1E49AEA2E7} - System32\Tasks\MSIAfterburner => D:\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {99572517-3AF0-4940-9031-252D3830FBA8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3965840 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {B12E73FF-953A-4B42-A52E-BFC64CBB2421} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BA8D5D2E-7501-45C0-A096-72B248B720EA} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {C18015D8-E69F-468B-BA4D-B4C0E4BC1471} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C563C9D5-6486-4BE5-8323-E748CB49F908} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23182224 2021-07-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D44A89F3-F910-4ABF-83AB-6850A7FEDF35} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426416 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {DC139728-ED51-4FBE-8464-0DA382ADE346} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD55FDA2-6C3F-4D0A-9A4B-E7F8219131A0} - System32\Tasks\CCleaner Update => D:\CCleaner\CCUpdate.exe [684976 2021-07-16] (Piriform Software Ltd -> Piriform)
Task: {DD86B35D-01CB-47C3-B21F-3A20A7B61D65} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F16E0F1C-4A1E-47C0-827B-7F293103BADC} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {FCDF7697-3153-4941-8247-95784FC48D38} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{013838db-2b9b-489b-adc2-b1af1a53491a}: [DhcpNameServer] 10.0.0.138

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\David Hynek\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-22]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.11 -> D:\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> D:\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> D:\Java\bin\dtplugin\npDeployJava1.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> D:\Java\bin\plugin2\npjp2.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [No File]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-06-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default [2021-07-22]
CHR DownloadDir: D:\ChromeDownloads
CHR Notifications: Default -> hxxps://badoo.com; hxxps://discord.com; hxxps://www.escapefromtarkov.com; hxxps://www.facebook.com; hxxps://www.pathofexile.com; hxxps://www.tipsport.cz
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-28]
CHR Extension: (BetterTTV) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-07-20]
CHR Extension: (Dokumenty) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-28]
CHR Extension: (Disk Google) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-28]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-05-20]
CHR Extension: (Tampermonkey) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2021-06-03]
CHR Extension: (Tabulky) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-28]
CHR Extension: (Better PathOfExile Trading) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhlinfpmdlijegjlpgedcmglkakaghnk [2021-02-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-27]
CHR Extension: (Streamlabs Export To StreamElements) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\micpdieddpifbgnnlbelgamnfpeonkpe [2020-11-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-05]
CHR Profile: C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-07-22]
CHR Profile: C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\System Profile [2021-07-22]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe [411456 2019-04-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R3 aswbIDSAgent; C:\AVAST Software\Avast\aswidsagent.exe [8249936 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\AVAST Software\Avast\AvastSvc.exe [625432 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\AVAST Software\Avast\aswToolsSvc.exe [373528 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-20] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2021-03-26] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9056672 2021-07-08] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [143072 2019-12-05] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
S3 GalaxyClientService; D:\GOG Galaxy\GalaxyClientService.exe [1673288 2020-06-16] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-06-16] (GOG Sp. z o.o. -> GOG.com)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128944 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LMS; C:\Intel(R) Management Engine Components\LMS\LMS.exe [625240 2018-11-16] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [119808 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2556048 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3474584 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; D:\Overwolf\OverwolfUpdater.exe [2476376 2021-07-04] (Overwolf Ltd -> Overwolf LTD)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-11-12] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2019-04-30] (ASUSTeK Computer Inc. -> )
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216928 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [366616 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-05-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [182600 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [524400 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851192 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471920 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215384 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327536 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 gdrv; C:\Windows\gdrv.sys [26792 2019-04-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2019-07-29] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> )
R3 RTCore64; D:\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [74552 2019-12-05] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-22 15:28 - 2021-07-22 15:28 - 000030019 _____ C:\Users\David Hynek\Desktop\FRST.txt
2021-07-22 15:27 - 2021-07-22 15:26 - 002300416 _____ (Farbar) C:\Users\David Hynek\Desktop\FRST64.exe
2021-07-22 15:24 - 2021-07-22 15:24 - 000000000 ____D C:\WINDOWS\LastGood
2021-07-22 15:22 - 2021-07-13 19:07 - 001858664 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-07-22 15:22 - 2021-07-13 19:07 - 001858664 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-07-22 15:22 - 2021-07-13 19:07 - 001438824 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-07-22 15:22 - 2021-07-13 19:07 - 001438824 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-07-22 15:22 - 2021-07-13 19:07 - 001097856 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-07-22 15:22 - 2021-07-13 19:07 - 001097856 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-07-22 15:22 - 2021-07-13 19:07 - 000951936 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-07-22 15:22 - 2021-07-13 19:07 - 000951936 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-07-22 15:22 - 2021-07-13 19:06 - 001474704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-07-22 15:22 - 2021-07-13 19:06 - 001212560 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 001520776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 000716912 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 000676480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 000645232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 000577152 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 000564352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-07-22 15:22 - 2021-07-13 19:01 - 002112128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-07-22 15:22 - 2021-07-13 19:01 - 001595520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-07-22 15:22 - 2021-07-13 19:01 - 001171072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-07-22 15:22 - 2021-07-13 19:01 - 000919168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-07-22 15:22 - 2021-07-13 19:01 - 000706176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-07-22 15:22 - 2021-07-13 19:00 - 008854144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-07-22 15:22 - 2021-07-13 19:00 - 007920768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-07-22 15:22 - 2021-07-13 19:00 - 005680760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-07-22 15:22 - 2021-07-13 19:00 - 004987520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-07-22 15:22 - 2021-07-13 19:00 - 002925696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-07-22 15:22 - 2021-07-13 19:00 - 000447104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-07-22 15:22 - 2021-07-13 18:59 - 000849008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-07-22 15:22 - 2021-07-12 13:32 - 000083062 _____ C:\WINDOWS\system32\nvinfo.pb
2021-07-22 15:18 - 2021-07-22 15:18 - 000094338 _____ C:\Users\David Hynek\Documents\cc_20210722_151835.reg
2021-07-22 15:18 - 2021-07-22 15:18 - 000006570 _____ C:\Users\David Hynek\Documents\cc_20210722_151851.reg
2021-07-21 00:53 - 2021-07-21 04:29 - 000000406 _____ C:\Users\David Hynek\Desktop\Patch notes.txt
2021-07-20 00:34 - 2021-07-20 03:29 - 000003053 _____ C:\Users\David Hynek\Desktop\Manifesto.txt
2021-07-16 03:04 - 2021-07-19 03:55 - 000002204 _____ C:\Users\David Hynek\Desktop\16.7 stream.txt
2021-07-15 19:28 - 2020-12-02 18:03 - 005968480 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2021-07-15 19:28 - 2020-12-02 17:52 - 043277665 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2021-07-15 19:25 - 2021-07-15 19:25 - 000000000 ____D C:\Program Files (x86)\Realtek
2021-07-09 19:15 - 2021-07-09 19:15 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-07-09 19:15 - 2021-07-09 19:15 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-07-09 19:15 - 2021-07-09 19:15 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-07-09 19:15 - 2021-07-09 19:15 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-07-09 19:14 - 2021-07-09 19:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-07-09 19:14 - 2021-07-09 19:14 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-07-09 19:14 - 2021-07-09 19:14 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-07-09 19:14 - 2021-07-09 19:14 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-07-09 19:14 - 2021-07-09 19:14 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-07-09 19:14 - 2021-07-09 19:14 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-07-09 19:14 - 2021-07-09 19:14 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-07-09 19:14 - 2021-07-09 19:14 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-07-09 19:14 - 2021-07-09 19:14 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-07-09 19:14 - 2021-07-09 19:14 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-07-09 19:14 - 2021-07-09 19:14 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-07-09 19:14 - 2021-07-09 19:14 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-07-06 06:42 - 2021-07-06 06:42 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\twitch-desktop-electron-platform
2021-06-30 13:07 - 2021-06-30 13:07 - 000000000 ____D C:\WINDOWS\system32\lxss
2021-06-30 13:06 - 2021-06-21 10:43 - 000037664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-22 15:28 - 2019-04-28 09:51 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Discord
2021-07-22 15:27 - 2020-01-15 02:16 - 000000000 ____D C:\FRST
2021-07-22 15:25 - 2019-04-28 17:28 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Battle.net
2021-07-22 15:24 - 2020-08-21 19:58 - 000000000 ____D C:\Users\David Hynek\AppData\Local\NVIDIA
2021-07-22 15:24 - 2020-08-21 19:58 - 000000000 ____D C:\ProgramData\NVIDIA
2021-07-22 15:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-22 15:24 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-22 15:23 - 2020-08-21 19:58 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-07-22 15:18 - 2019-07-16 23:27 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\uTorrent
2021-07-22 15:17 - 2021-02-07 01:29 - 000000000 ___DC C:\WINDOWS\Panther
2021-07-22 15:17 - 2019-04-28 13:49 - 000000000 ____D C:\Users\David Hynek\AppData\Local\CrashDumps
2021-07-22 15:15 - 2021-05-10 08:24 - 000002940 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2021-07-22 15:15 - 2021-02-26 15:07 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6fe02431a7995
2021-07-22 15:15 - 2021-02-08 12:07 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-22 15:15 - 2021-02-08 12:07 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-07-22 15:15 - 2021-02-08 12:07 - 000003456 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineUA
2021-07-22 15:15 - 2021-02-08 12:07 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-07-22 15:15 - 2021-02-08 12:07 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-07-22 15:15 - 2021-02-08 12:07 - 000003232 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineCore
2021-07-22 15:15 - 2021-02-08 12:07 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-07-22 15:15 - 2021-02-08 12:07 - 000003164 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2021-07-22 15:15 - 2021-02-08 12:07 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000003042 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2021-07-22 15:15 - 2021-02-08 12:07 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002970 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2021-07-22 15:15 - 2021-02-08 12:07 - 000002960 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-07-22 15:15 - 2021-02-08 12:07 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-994775172-3552113607-2548991599-1001
2021-07-22 15:15 - 2021-02-08 12:07 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002678 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2021-07-22 15:15 - 2021-02-08 12:07 - 000002604 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2021-07-22 15:15 - 2021-02-08 12:07 - 000002392 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2021-07-22 15:15 - 2021-02-08 12:07 - 000002208 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-07-22 15:13 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-22 15:07 - 2019-04-28 09:51 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Discord
2021-07-22 14:55 - 2021-02-08 12:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-07-22 14:47 - 2020-11-14 12:52 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\obs-studio
2021-07-22 14:37 - 2019-05-21 14:28 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\slobs-client
2021-07-22 14:10 - 2019-04-28 20:44 - 000000000 ____D C:\Program Files (x86)\Google
2021-07-22 14:07 - 2019-04-28 09:17 - 000000000 ___RD C:\Users\David Hynek\OneDrive
2021-07-22 03:15 - 2019-04-28 09:16 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Packages
2021-07-21 20:03 - 2019-04-28 19:26 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Spotify
2021-07-21 20:01 - 2019-04-28 19:15 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Spotify
2021-07-21 19:01 - 2021-02-08 12:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-21 13:25 - 2020-11-07 10:33 - 000001725 _____ C:\Users\David Hynek\Desktop\CurseForge.lnk
2021-07-21 13:25 - 2019-08-18 13:33 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Overwolf
2021-07-21 07:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-21 07:13 - 2020-06-10 15:09 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-21 07:13 - 2020-06-10 15:09 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-07-20 23:28 - 2019-05-06 18:23 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Origin
2021-07-20 23:28 - 2019-05-06 18:23 - 000000000 ____D C:\ProgramData\Origin
2021-07-20 23:17 - 2019-05-07 02:54 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-07-20 23:17 - 2019-05-06 18:23 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Origin
2021-07-20 20:58 - 2019-04-28 20:47 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-07-20 20:58 - 2019-04-28 20:47 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-07-20 20:37 - 2021-04-16 19:18 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Path of Exile
2021-07-20 19:03 - 2021-01-11 19:30 - 000000000 ____D C:\Path of Exile
2021-07-20 18:56 - 2020-11-14 12:52 - 000001696 _____ C:\Users\David Hynek\Desktop\StreamElements OBS.Live.lnk
2021-07-20 18:05 - 2019-08-17 18:04 - 000000000 ____D C:\ProgramData\Riot Games
2021-07-20 02:47 - 2021-04-13 14:08 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Sublime Text 3
2021-07-18 23:56 - 2019-04-28 20:24 - 000000000 ____D C:\Users\David Hynek\AppData\Local\BitTorrentHelper
2021-07-17 16:29 - 2019-04-28 09:51 - 000000000 ____D C:\Users\David Hynek\AppData\Local\PlaceholderTileLogoFolder
2021-07-16 22:16 - 2019-04-28 13:34 - 000000000 ____D C:\Users\David Hynek\AppData\Local\D3DSCache
2021-07-16 22:04 - 2021-01-11 19:30 - 000001633 _____ C:\Users\Public\Desktop\Path of Exile.lnk
2021-07-16 10:31 - 2019-04-28 17:26 - 000000000 ____D C:\Battle.net
2021-07-16 10:25 - 2019-05-07 16:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-07-15 19:33 - 2021-02-08 12:08 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-07-15 19:33 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2021-07-15 19:33 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2021-07-15 19:29 - 2021-02-08 12:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-07-15 19:29 - 2021-02-08 12:03 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-15 19:29 - 2019-04-28 10:33 - 000000000 ____D C:\ProgramData\AVAST Software
2021-07-15 19:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-07-15 19:28 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-07-15 19:28 - 2019-04-28 09:55 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-07-15 19:28 - 2019-04-28 09:55 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-07-15 19:26 - 2021-02-08 12:03 - 000444160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-14 17:05 - 2019-04-29 13:29 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-07-13 19:01 - 2021-01-24 17:15 - 000750208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-07-13 18:57 - 2021-01-24 17:15 - 007280312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-07-13 18:57 - 2021-01-24 17:15 - 006215792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-07-10 04:50 - 2019-05-07 21:08 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\RaiderIO
2021-07-09 19:16 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-09 19:14 - 2019-04-28 09:58 - 000414044 __RSH C:\bootmgr
2021-07-09 19:10 - 2020-10-01 23:56 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-07-09 19:10 - 2019-04-28 10:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-07-09 19:08 - 2019-04-28 10:37 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-07-08 22:30 - 2020-02-01 20:04 - 000000625 _____ C:\Users\Public\Desktop\Urban Rivals.lnk
2021-07-08 22:30 - 2020-02-01 20:04 - 000000625 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Urban Rivals.lnk
2021-07-08 22:14 - 2021-02-07 23:37 - 000002395 _____ C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-07-07 05:43 - 2019-07-13 23:16 - 000002209 _____ C:\Users\David Hynek\Desktop\WoW TODOLIST.txt
2021-07-02 14:55 - 2019-04-28 22:12 - 000000975 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2021-07-02 14:39 - 2021-04-04 20:17 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HearthSim
2021-07-02 14:39 - 2021-04-04 20:17 - 000000000 ____D C:\Users\David Hynek\AppData\Local\HearthstoneDeckTracker
2021-07-01 03:37 - 2021-04-04 20:17 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\HearthstoneDeckTracker
2021-07-01 01:47 - 2019-04-28 09:51 - 000000000 ____D C:\Users\David Hynek\AppData\Local\SquirrelTemp
2021-06-30 13:07 - 2020-08-21 19:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-06-30 13:03 - 2020-08-21 19:58 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2021-06-30 13:02 - 2019-04-28 10:08 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-06-30 13:02 - 2019-04-28 10:06 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-06-22 03:20 - 2021-01-24 17:15 - 000748832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET81F3.tmp
2021-06-22 03:17 - 2021-01-24 17:15 - 007279232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SET807C.tmp
2021-06-22 03:17 - 2021-01-24 17:15 - 006215312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET8233.tmp

==================== Files in the root of some directories ========

2019-04-28 13:28 - 2019-04-28 13:28 - 000000017 _____ () C:\Users\David Hynek\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-07-2021 01
Ran by David Hynek (22-07-2021 15:28:54)
Running from C:\Users\David Hynek\Desktop
Windows 10 Home Version 2004 19041.1083 (X64) (2021-02-08 10:08:00)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-994775172-3552113607-2548991599-500 - Administrator - Disabled)
David Hynek (S-1-5-21-994775172-3552113607-2548991599-1001 - Administrator - Enabled) => C:\Users\David Hynek
DefaultAccount (S-1-5-21-994775172-3552113607-2548991599-503 - Limited - Disabled)
Guest (S-1-5-21-994775172-3552113607-2548991599-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-994775172-3552113607-2548991599-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.19.0917.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.19.0917.1 - GIGABYTE)
µTorrent (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\uTorrent) (Version: 3.5.5.46038 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.005.20058 - Adobe Systems Incorporated)
AIDA64 Extreme v6.25 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.25 - FinalWire Ltd.)
Amazon Games (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\{4DD10B06-78A4-4E6F-AA39-25E9C38FA568}) (Version: 1.7.172.1 - Amazon.com Services, Inc.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.7.2 - Electronic Arts, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0426.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0426.1 - GIGABYTE)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
ASUS GLCKIO2 Driver (HKLM-x32\...\{548dd834-70c5-4426-8065-fbeabdd2bb5d}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
AutoHotkey 1.1.33.02 (HKLM\...\AutoHotkey) (Version: 1.1.33.02 - Lexikos)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 21.5.2470 - Avast Software)
Awakened PoE Trade 2.10.1 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\2ea281da-028b-5d55-b26e-53163c89344a) (Version: 2.10.1 - Alexander Drozdov)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blitz (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Blitz) (Version: 1.6.26 - Blitz Inc.)
Bloody7 (HKLM-x32\...\Bloody3) (Version: 20.02.0002 - Bloody)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.1.1002 - BlueStack Systems, Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.75.1089 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.83 - Piriform)
CPUID HWMonitor 1.44 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.44 - CPUID, Inc.)
CurrencyCop 2.0.0-beta.16 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\ad9b865c-58dc-5b28-b27d-6ee8d988422e) (Version: 2.0.0-beta.16 - Nijiko Yonskai)
CurseForge (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.177.1.5 - Overwolf app)
Discord (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.18.1005.1 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.18.1005.1 - GIGABYTE)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.19.1205.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.19.1205.1 - GIGABYTE)
Epic Games Launcher (HKLM-x32\...\{19BC09B5-F319-4A61-A878-475E7F7054EA}) (Version: 1.1.195.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Exilence Next 0.4.8 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\58032b8c-4c17-5b0e-b3bc-74d53946ba55) (Version: 0.4.8 - )
G.SKILL AURA DRAM Component (HKLM\...\{46EEF4E1-2117-4D64-A953-F1DE092495EB}) (Version: 1.00.10 - G.SKILL International Enterprise) Hidden
G.SKILL AURA DRAM Component (HKLM-x32\...\{4961d0dd-74e6-4696-abce-8f69a5badc6a}) (Version: 1.00.10 - G.SKILL International Enterprise) Hidden
Geeks3D FurMark 1.24.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.24.1.0 - Geeks3D)
GigabyteFirmwareUpdateUtility (HKLM-x32\...\{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.18.0208.1 - GIGABYTE) Hidden
GigabyteFirmwareUpdateUtility (HKLM-x32\...\InstallShield_{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.18.0208.1 - GIGABYTE)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.164 - Google LLC)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.16.1202.1 - GIGABYTE)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Heroes of the Storm Public Test (HKLM-x32\...\Heroes of the Storm Public Test) (Version: - Blizzard Entertainment)
ICQ (verze 10.0.38922) (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\icq.desktop) (Version: 10.0.38922 - Mail.ru LLC)
Intel Driver && Support Assistant (HKLM-x32\...\{C38DE4F8-DF58-4B5D-9D4C-1F68773A2AE2}) (Version: 21.3.21.5 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{848F0123-CF5D-4192-90EC-A6574D8B1796}) (Version: 2.4.06522 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{6ad2f601-ab5f-47d5-bd6c-ef13a37b3a62}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{d2843be8-a475-45ad-a151-dc20a9696584}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{f3b1c211-1159-4262-bb97-84150cda9096}) (Version: 10.1.18243.8188 - Intel(R) Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1846.12.0.1177 - Intel Corporation)
Intel(R) Network Connections 23.5.0.0 (HKLM\...\PROSetDX) (Version: 23.5.0.0 - Intel)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1915.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel® Driver & Support Assistant (HKLM-x32\...\{9360c8cc-b617-469a-bb35-829c13e21d97}) (Version: 21.3.21.5 - Intel)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{7EBADAB6-B7AC-4560-85A7-FF345559F193}) (Version: 17.2.6.1027 - Intel Corporation)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
League of Legends PBE (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Riot Game league_of_legends.pbe) (Version: - Riot Games, Inc)
Legends of Runeterra (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Riot Game bacon.live) (Version: - Riot Games, Inc)
Locklizard Safeguard - PDF Viewer (HKLM-x32\...\Locklizard Safeguard - PDF Viewer_sf) (Version: 2.6.50 - Locklizard Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.71 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.14131.20320 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\OneDriveSetup.exe) (Version: 21.119.0613.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Minion Masters (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\448417850466762753) (Version: - )
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 471.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.41 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14131.20320 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20320 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.101.48500 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.174.0.10 - Overwolf Ltd.)
Path of Building version 1.4.137 (HKLM-x32\...\{72FA9AB7-189F-4BDE-8856-72DEB90C157B}_is1) (Version: 1.4.137 - Openarl)
Path of Exile (HKLM-x32\...\{4f1eb2c2-0a1e-4309-83cf-594ca2b8ebee}) (Version: 3.12.5.35377 - Grinding Gear Games)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 3.12.5.35377 - Grinding Gear Games) Hidden
PlatformPowerManagement (HKLM-x32\...\{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.18.0910.1 - GIGABYTE) Hidden
PlatformPowerManagement (HKLM-x32\...\InstallShield_{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.18.0910.1 - GIGABYTE)
Pokémon Trading Card Game Online (HKLM-x32\...\{8CD5CE22-F319-4556-9B19-FAAFF59C63A0}) (Version: 2.63.0 - The Pokémon Company International)
PUBG Lite (HKLM-x32\...\PUBG Lite_is1) (Version: 1.0.0.7 - )
RaiderIO 2.1.7 (HKLM\...\ea53c16d-4ef5-533f-83dc-5b0c5bb40cb2) (Version: 2.1.7 - jah@raider.io)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9075.1 - Realtek Semiconductor Corp.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.19.0402.1 - GIGABYTE)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.18.0918.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.18.0918.1 - GIGABYTE)
Spotify (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Spotify) (Version: 1.1.63.568.gda8cb5ac - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StreamElements OBS.Live (HKLM-x32\...\StreamElements OBS.Live) (Version: 21.6.23.745 - StreamElements)
Streamlabs Chatbot version 1.0.2.63 (HKLM-x32\...\{08D3C5BB-C492-4916-B111-725081845380}_is1) (Version: 1.0.2.63 - Streamlabs)
Streamlabs OBS 0.14.1 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.14.1 - General Workings, Inc.)
Sublime Text 3 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.5 - TeamSpeak Systems GmbH)
TFTactics (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Overwolf_delfmdadipjjmpajblkalfkbebcbldbknecigjpc) (Version: 1.2.5 - Overwolf app)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Twitch (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 86.0 - Ubisoft)
Urban Rivals version 7.8.2 (HKLM-x32\...\{515A2CF3-B276-4071-9A32-D0030E4D6E66}_is1) (Version: 7.8.2 - Acute Games)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Warcraft Logs Uploader 2.0.4 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\bcc11bd8-bf2f-5f00-925b-921594bc2ca4) (Version: 2.0.4 - warcraftlogs)
Warcraft Logs Uploader 4.4.7 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\{bcc11bd8-bf2f-5f00-925b-921594bc2ca4}) (Version: 4.4.7 - warcraftlogs)
WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft)
WeakAuras Companion 3.1.1 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\574e4d1e-05f6-5376-9898-b829d00eef2e) (Version: 3.1.1 - Buds)
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Public Test (HKLM-x32\...\World of Warcraft Public Test) (Version: - Blizzard Entertainment)
X-Mouse Button Control 2.19.2 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.19.2 - Highresolution Enterprises)

Packages:
=========
Code Writer -> C:\Program Files\WindowsApps\ActiproSoftwareLLC.562882FEEB491_4.2.42.0_x64__24pqs290vpjk0 [2021-02-26] (Actipro Software LLC)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-10-19] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-02-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-02-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-21] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-07-22] (NVIDIA Corp.)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3325.0_x64__8j3eq9eme6ctt [2021-05-07] (INTEL CORP) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj [2021-07-16] (Realtek Semiconductor Corp)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-994775172-3552113607-2548991599-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key 2021 -> Intel)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-19] () [File not signed] [File is in use]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2021-06-16] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2021-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2021-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2021-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-19] () [File not signed] [File is in use]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\nvshext.dll [2021-07-13] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2021-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-07-15 23:37 - 2021-07-15 23:37 - 104869376 _____ () [File not signed] C:\Battle.net\Battle.net.beta.13017\libcef.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000332288 _____ () [File not signed] C:\Battle.net\Battle.net.beta.13017\swiftshader\libegl.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 003011584 _____ () [File not signed] C:\Battle.net\Battle.net.beta.13017\swiftshader\libglesv2.dll
2020-05-04 01:00 - 2017-04-17 10:43 - 003852800 ____N () [File not signed] C:\Program Files (x86)\Bloody7\Bloody7\Data\Mouse\Forms\Internet_Advertisement\Internet_Advertisement_DLL.dll
2021-04-22 08:31 - 2021-04-22 08:31 - 005745664 _____ () [File not signed] C:\Program Files (x86)\Intel\Driver and Support Assistant\irmfuu_module.dll
2019-10-26 13:04 - 2019-10-26 13:04 - 000232960 _____ () [File not signed] D:\MSI Afterburner\RTCore.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000057344 _____ () [File not signed] D:\MSI Afterburner\RTFC.dll
2019-10-26 13:04 - 2019-10-26 13:04 - 000650240 _____ () [File not signed] D:\MSI Afterburner\RTHAL.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000074240 _____ () [File not signed] D:\MSI Afterburner\RTMUI.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000369664 _____ () [File not signed] D:\MSI Afterburner\RTUI.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000053760 _____ () [File not signed] D:\TradeSkillMaster Application\app\_bz2.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000084992 _____ () [File not signed] D:\TradeSkillMaster Application\app\_ctypes.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000783360 _____ () [File not signed] D:\TradeSkillMaster Application\app\_hashlib.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000137216 _____ () [File not signed] D:\TradeSkillMaster Application\app\_lzma.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000047104 _____ () [File not signed] D:\TradeSkillMaster Application\app\_socket.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000039424 _____ () [File not signed] D:\TradeSkillMaster Application\app\psutil._psutil_windows.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 001861120 _____ () [File not signed] D:\TradeSkillMaster Application\app\PyQt5.QtCore.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 002002944 _____ () [File not signed] D:\TradeSkillMaster Application\app\PyQt5.QtGui.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 004101120 _____ () [File not signed] D:\TradeSkillMaster Application\app\PyQt5.QtWidgets.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000009728 _____ () [File not signed] D:\TradeSkillMaster Application\app\select.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000075264 _____ () [File not signed] D:\TradeSkillMaster Application\app\sip.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000758784 _____ () [File not signed] D:\TradeSkillMaster Application\app\unicodedata.pyd
2021-07-16 10:25 - 2021-07-16 10:25 - 000179200 _____ (Fortemedia) [File not signed] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj\FMAPOCTL.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-03-19 16:57 - 2019-03-19 16:57 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2018-10-29 11:25 - 2018-10-29 11:25 - 000372736 _____ (Intel(R) Corporation) [File not signed] C:\Windows\system32\NCS2Setp.dll
2018-01-20 10:34 - 2018-01-20 10:34 - 000373248 _____ (IntelleSoft) [File not signed] C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\BugTrapU-x64.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 002741248 _____ (Python Software Foundation) [File not signed] D:\TradeSkillMaster Application\app\python34.dll
2020-12-15 15:37 - 2020-12-15 15:37 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\SQLite.Interop.dll
2021-05-21 08:12 - 2021-05-21 08:12 - 000130048 _____ (Sam Grogan) [File not signed] [File is in use] C:\Program Files (x86)\Intel\Driver and Support Assistant\NotifyIconWin32.dll
2020-12-15 15:37 - 2020-12-15 15:37 - 001950208 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
2019-04-28 10:08 - 2019-04-28 10:08 - 000023040 _____ (Synaptics Incorporated.) [File not signed] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj\SynAudSrvDll.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000810496 _____ (The Chromium Authors) [File not signed] C:\Battle.net\Battle.net.beta.13017\chrome_elf.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000848896 _____ (The ICU Project) [File not signed] D:\TradeSkillMaster Application\app\icudt53.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 001580032 _____ (The ICU Project) [File not signed] D:\TradeSkillMaster Application\app\icuin53.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 001079296 _____ (The ICU Project) [File not signed] D:\TradeSkillMaster Application\app\icuuc53.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000036352 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qdds.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000022016 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qgif.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000029184 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qicns.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000022016 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qico.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000381952 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qjp2.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000206848 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qjpeg.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000218624 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qmng.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000016384 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qtga.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000308736 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qtiff.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000015360 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qwbmp.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000287232 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qwebp.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000991744 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\platforms\qwindows.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 004182528 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\Qt5Core.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 004877312 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\Qt5Gui.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 004490752 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\Qt5Widgets.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000048640 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\audio\qtaudio_windows.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qgif.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qico.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000351232 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qjpeg.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qsvg.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000343552 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qtiff.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000438784 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qwebp.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 001241088 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\platforms\qwindows.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 005518336 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Core.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 005799936 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Gui.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000643584 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Multimedia.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000968704 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Network.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 003301888 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Qml.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000370688 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5QmlModels.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 003730944 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Quick.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000265216 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Svg.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 004737024 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Widgets.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5WinExtras.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000172544 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Java\bin\ssv.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Java\bin\jp2ssv.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-06] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\Control Panel\Desktop\\Wallpaper -> c:\users\david hynek\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\316696.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F9C0F8FA-EB06-445E-B9E6-932C1A1C8B93}] => (Allow) LPort=9009
FirewallRules: [{51A8EF46-A9A2-4653-9241-47CE7868373F}] => (Allow) LPort=9009
FirewallRules: [{F48C5379-96FF-4518-A295-5FB85FB103B5}] => (Allow) LPort=9009
FirewallRules: [{81B9AB4D-913A-4691-A921-9D5CA7C0502D}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{23A9B28A-388B-4B78-B837-A4FD2087D32C}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{73515907-DD42-4175-8F33-8B1C881D9D77}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{3A77B7CB-53C3-42F8-B7CD-7AA88FBCE9C1}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{307DBAEA-E0D7-4DFB-A5B2-44F13C58B568}] => (Allow) LPort=9009
FirewallRules: [{27253FB8-8FB0-4170-9FA7-FCFA930A9022}] => (Allow) LPort=9009
FirewallRules: [{A4BA1D9A-BC5A-443C-8699-5E4437F790C3}] => (Allow) LPort=9009
FirewallRules: [{F4F16861-44F6-44AB-B684-8BB07F4BF784}] => (Allow) LPort=9009
FirewallRules: [{20FB25C9-6C25-4DCF-B7A2-F952D65F9D21}] => (Allow) LPort=9009
FirewallRules: [{232E418C-CBEC-4C28-9291-E277E854C9C3}] => (Allow) LPort=9009
FirewallRules: [{0BBDF53D-D1DA-4007-AE52-15355E9424D1}] => (Allow) LPort=9009
FirewallRules: [{E9C58008-27D1-48B7-993B-D77BB8E93620}] => (Allow) LPort=9009
FirewallRules: [{EA2E72D5-6CE0-47A6-A03E-68B2CCAE899B}] => (Allow) LPort=9009
FirewallRules: [{B452B736-4B14-4AB3-BFB7-CFEC816BF5CD}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{8B443EC0-DEBE-40FF-880A-8E93F740E73B}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{300CCBD6-14E1-426C-AB35-FD4C17FFE3E1}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{1FCCAE3A-8401-4F29-A2C2-A270A04EE39F}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{9A0EA718-B933-4278-B971-BD6029B27F89}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{DE641487-B88E-46FB-9AA1-C631ABE52042}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{E70D7272-00FA-4858-A4FA-8F98F5649FBD}] => (Allow) LPort=9009
FirewallRules: [{54EF31A6-8F55-4CDD-B94C-024A4D50349B}] => (Allow) LPort=9009
FirewallRules: [{9152F906-487D-4A5A-83C3-4B17BE6BD409}] => (Allow) LPort=9009
FirewallRules: [{36CEB36D-C483-4EA0-843B-05DB7D51EE03}] => (Allow) LPort=9009
FirewallRules: [{23A1A617-1C5B-40FC-B5A0-7EDB69DF14EE}] => (Allow) LPort=9009
FirewallRules: [{0A47E69F-2C6D-44C3-8D38-E0911400D19B}] => (Allow) LPort=9009
FirewallRules: [{EE3C6D14-1451-4ADA-8158-408E94A1EAD2}] => (Allow) LPort=9009
FirewallRules: [{779B5586-3E4E-497A-A3BE-3D3BC9D3DF46}] => (Allow) LPort=9009
FirewallRules: [{28BE76A8-CA6B-402B-A193-34A143031FFD}] => (Allow) E:\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{095F9DA1-4E06-45C0-8AE0-696B2F07D4B0}] => (Allow) E:\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{5EB961AB-4B1F-4173-99AE-856A5883ED15}] => (Allow) E:\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{61576EA6-6DD7-4E27-BEC9-C127CCAF4FB0}] => (Allow) E:\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{6B3C4702-5CE1-4683-9684-59EC34FBE3A9}] => (Allow) E:\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{407036D2-857B-4C1F-B8BF-99D303F1146A}] => (Allow) E:\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{E2F8FFE9-E01C-4226-B1CE-08CA4C2A8BC4}] => (Allow) LPort=9009
FirewallRules: [{6811E81A-33BF-4864-BC81-F5DEB5ED3763}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{93A7E673-E9AC-4B51-BE2C-CE556577EED2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4930F54B-2A60-41BF-A52E-50E4CE53A86E}] => (Allow) LPort=9009
FirewallRules: [{D5161CAA-1FC5-4AA6-843E-904B69BB7136}] => (Allow) LPort=9009
FirewallRules: [{A8452055-D6DD-4936-8359-A94EF9E49916}] => (Allow) LPort=9009
FirewallRules: [{AD24691F-9A80-4AA5-89B4-9EA50FB9B3AC}] => (Allow) LPort=9009
FirewallRules: [{BCBF19C7-A9AE-4BD5-9686-C77C96977814}] => (Allow) LPort=9009
FirewallRules: [{D2AC0C6F-EF3A-4C62-B0B6-2315F0712E2F}] => (Allow) LPort=9009
FirewallRules: [{79DF6C7E-F682-4811-878C-2F595B25112C}] => (Allow) LPort=9009
FirewallRules: [{8066D563-782B-49EE-A4D0-FDE0E1998AF3}] => (Allow) LPort=9009
FirewallRules: [{82532A22-E5C3-4AA9-A3CF-1EA2C30D7A03}] => (Allow) LPort=9009
FirewallRules: [{CF9417E0-2BF2-4EC5-936E-8391AC8B2A25}] => (Allow) LPort=9009
FirewallRules: [{ACDB6144-78AF-4202-9E58-16E04DECDC6A}] => (Allow) LPort=9009
FirewallRules: [{4CCD37B2-9F1B-4793-8ABF-3574AAD360AC}] => (Allow) LPort=9009
FirewallRules: [{D08EEA4F-2FE5-42BF-929F-B79174F2FA63}] => (Allow) LPort=9009
FirewallRules: [{31127EF7-2C48-4121-908D-B4983B6A893C}] => (Allow) LPort=9009
FirewallRules: [{8CA70F23-9C66-47A2-8BB2-6E36335E52B3}] => (Allow) LPort=9009
FirewallRules: [{89FDA206-454C-4CD2-A4E2-2FAADE214C34}] => (Allow) LPort=9009
FirewallRules: [{3903AD9D-DDDE-404E-81F6-92B329B33D66}] => (Allow) LPort=9009
FirewallRules: [{30C5274B-15F9-497F-B4DA-86E008AA7DD7}] => (Allow) LPort=9009
FirewallRules: [{083C7740-8EF2-4836-A4C2-EF54AD12659C}] => (Allow) LPort=9009
FirewallRules: [{7375BFB8-D9BB-496E-9FFA-44909832325F}] => (Allow) LPort=9009
FirewallRules: [{6442B670-5AE4-411A-BF01-F1627755A6DD}] => (Allow) LPort=9009
FirewallRules: [{D8BA09BD-10FE-4B32-BDBC-DDFCD764AF07}] => (Allow) LPort=9009
FirewallRules: [{64108647-FB18-44E8-8909-F3E84D7DAC25}] => (Allow) LPort=9009
FirewallRules: [{086083E1-7FFC-44E7-BCED-12DB8CC08163}] => (Allow) LPort=9009
FirewallRules: [{25BC0E5C-F679-4DAB-A042-95C6D70ACC81}] => (Allow) LPort=9009
FirewallRules: [{DC30F233-FBB2-4FD1-A238-6C913E200C0B}] => (Allow) LPort=9009
FirewallRules: [{6A1EF1D3-B3A3-42CD-A725-05FA86A8B6DF}] => (Allow) LPort=9009
FirewallRules: [{0A4E7467-8157-4918-B243-30FCC2C1EE23}] => (Allow) LPort=9009
FirewallRules: [{482CC768-B244-4064-A5FB-75ABB50646B7}] => (Allow) LPort=9009
FirewallRules: [UDP Query User{DF4E23D8-CB98-4CE5-A173-F40DBDADE41C}C:\users\david hynek\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\david hynek\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{7235FC76-E0BF-49AC-8C7A-E6D70797A80D}C:\users\david hynek\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\david hynek\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F6828D6A-D7CC-440A-9C8E-2AFF3CCA64F2}] => (Allow) LPort=9009
FirewallRules: [{8949DDB2-AA37-43BF-A8AE-D61023DFE9CB}] => (Allow) LPort=9009
FirewallRules: [{AB0793AF-52F2-4C9B-957A-B985FCCF3320}] => (Allow) LPort=9009
FirewallRules: [{D045176C-3976-4C85-926F-47DADB08FD77}] => (Allow) LPort=9009
FirewallRules: [{AC340917-5AFC-4DCA-BAAC-B6E5C890A095}] => (Allow) LPort=9009
FirewallRules: [{4A01D655-7964-4141-B35F-D122DAD5E184}] => (Allow) LPort=9009
FirewallRules: [{D7E3D2C8-A495-4BCE-808E-B2D1B66D8949}] => (Allow) LPort=9009
FirewallRules: [{B2544B8D-14B0-4056-8ACA-41AB84233EF0}] => (Allow) LPort=9009
FirewallRules: [{A357F991-4A21-4FA1-AAE7-409F2D459024}] => (Allow) LPort=9009
FirewallRules: [{E32A452B-2902-4D9A-B647-A8C1F6AC199A}] => (Allow) LPort=9009
FirewallRules: [{14897974-4C58-4D84-861C-1D9F317BBBB4}] => (Allow) LPort=9009
FirewallRules: [{B9C65C64-5EC0-4BB7-BF83-5713B329E557}] => (Allow) LPort=9009
FirewallRules: [{52DA7319-D381-4FC2-86BA-0C0560C0190B}] => (Allow) LPort=9009
FirewallRules: [{936FDAB5-EB40-4901-BD29-99B67D7F3455}] => (Allow) LPort=9009
FirewallRules: [{E7948933-9E01-4607-AF74-37C1ED7E3775}] => (Allow) LPort=9009
FirewallRules: [{7C4F7B0B-F80B-41FF-BBCD-C7CCE29D6053}] => (Allow) LPort=9009
FirewallRules: [{86ED9F8F-D10C-4224-B336-BBA1E91CA0A1}] => (Allow) LPort=9009
FirewallRules: [{4AD9A521-370C-4F34-882B-7801F082955C}] => (Allow) LPort=9009
FirewallRules: [{B73E3972-4136-4471-A248-EAED24FE931F}] => (Allow) LPort=9009
FirewallRules: [{B8955B0D-3E6A-4830-A87F-6B4804DCB23D}] => (Allow) LPort=9009
FirewallRules: [{BE230922-8C9D-48A4-B8E6-9ED987CEE82F}] => (Allow) LPort=9009
FirewallRules: [{C4C5C2B3-4FC2-481B-995D-F74AA3B2083C}] => (Allow) LPort=9009
FirewallRules: [{5E4BF55B-DCC5-4715-B700-9966BF70ACD6}] => (Allow) LPort=9009
FirewallRules: [{08B2CF22-AEBB-4230-9861-3C564189E9E6}] => (Allow) LPort=9009
FirewallRules: [{345734AF-280D-446C-91EC-61ECC3E3F538}] => (Allow) LPort=9009
FirewallRules: [{B4B110F1-B13D-4CD8-9A72-0D66657EABC4}] => (Allow) LPort=9009
FirewallRules: [{714F6A0C-E56A-4604-899B-DEBD540F9DCA}] => (Allow) LPort=9009
FirewallRules: [{8C7519A9-7C6C-4DDE-9F87-763031A78BE8}] => (Allow) LPort=9009
FirewallRules: [{ADF1BBEA-36C1-44FD-B47B-2382F03915AB}] => (Allow) LPort=9009
FirewallRules: [{B9ADCA61-7FE6-4F98-ADDC-79CAC19E3A10}] => (Allow) LPort=9009
FirewallRules: [{9FA5BCF5-4E10-41B1-8E2B-C60EE54F002B}] => (Allow) LPort=9009
FirewallRules: [{0EA45853-5E5C-4FAD-AB2C-C725D494B57D}] => (Allow) LPort=9009
FirewallRules: [{B32E1A55-79AD-4FEE-AE14-E84DAF4C4914}] => (Allow) LPort=9009
FirewallRules: [{0A3849D0-A907-4758-BD9E-A88CEAB83427}] => (Allow) LPort=9009
FirewallRules: [{C50E0F5D-0A26-40AA-B0AB-411C355D13AD}] => (Allow) LPort=9009
FirewallRules: [{16A70DFB-6F41-4BAB-B005-66D017EA1D0D}] => (Allow) LPort=9009
FirewallRules: [{119E9EE6-30E7-40DB-A2EA-D9C508601178}] => (Allow) LPort=9009
FirewallRules: [{9C364577-34D4-4650-8D5E-4C91FC22AD99}] => (Allow) LPort=9009
FirewallRules: [{3D915885-8F6E-40E8-A346-E1D72BADB37F}] => (Allow) LPort=9009
FirewallRules: [{FF55362C-AD74-4134-A79C-68A383A82A12}] => (Allow) LPort=9009
FirewallRules: [{18588B67-2088-4BF6-B626-C67B4973A7FD}] => (Allow) LPort=9009
FirewallRules: [{4DEABBEC-7F5D-40F0-8E72-69FF82F049E1}] => (Allow) LPort=9009
FirewallRules: [{FBDEBA81-6FFC-4BE6-8309-D7D7C31FADB8}] => (Allow) LPort=9009
FirewallRules: [{DCD7183D-CE21-44A5-8A29-8C471D4525CA}] => (Allow) LPort=9009
FirewallRules: [{FAD8A572-F640-4C00-9A3C-4C2D052216FA}] => (Allow) LPort=9009
FirewallRules: [{823186F0-9043-4295-828D-5CB475722F68}] => (Allow) LPort=9009
FirewallRules: [{FD702372-4705-46FB-A2E9-B5382C6FEBB9}] => (Allow) LPort=9009
FirewallRules: [{7093C2C9-7012-4B83-BC04-A99BB1456626}] => (Allow) LPort=9009
FirewallRules: [{662DB37A-015C-42CA-938A-A7C310F57AF6}] => (Allow) LPort=9009
FirewallRules: [{7426A7D3-E611-45C4-884A-619AD1066B38}] => (Allow) LPort=9009
FirewallRules: [{009382F8-4277-4EC1-8D43-4CDD672552CB}] => (Allow) LPort=9009
FirewallRules: [{E940E38A-AE32-4F9F-89F2-395728D36EC5}] => (Allow) LPort=9009
FirewallRules: [{B84CF8AA-A3D2-4EC2-8C91-D048EA6A818D}] => (Allow) LPort=9009
FirewallRules: [{E84026FB-02D3-4052-8218-32B9E2EC97E1}] => (Allow) LPort=9009
FirewallRules: [{987401E5-4925-455B-87AF-9472F3B21D20}] => (Allow) LPort=9009
FirewallRules: [{A2DAE93D-8367-4FB5-9114-931DD5211CC2}] => (Allow) LPort=9009
FirewallRules: [{725BC548-1BA0-4D10-AD08-B8323036B6D8}] => (Allow) LPort=9009
FirewallRules: [{5EED229C-9ADE-42DD-9E48-1B647B8D8FB1}] => (Allow) LPort=9009
FirewallRules: [{11F97227-421D-4B1D-8914-DDC3F53C14E2}] => (Allow) LPort=9009
FirewallRules: [{EC0082C3-61F3-4962-831C-2F0E45C19CE2}] => (Allow) LPort=9009
FirewallRules: [{DF4C9EFA-AF49-4AE0-B915-78BED9FDCBA1}] => (Allow) LPort=9009
FirewallRules: [{90680ACD-DF12-4D37-98A7-9390217E1DBF}] => (Allow) LPort=9009
FirewallRules: [{701B399A-020F-4B96-B16F-094FCAC3B332}] => (Allow) LPort=9009
FirewallRules: [{01568145-C81C-44FA-9EA9-7652443C4816}] => (Allow) LPort=9009
FirewallRules: [{CAF4789A-1AD2-4D63-A35D-E0564A683017}] => (Allow) LPort=9009
FirewallRules: [{0C900158-D6CE-4EE2-BC9D-994C3F081D84}] => (Allow) LPort=9009
FirewallRules: [{E336B3C4-D8A0-41D2-B927-FB287F44831D}] => (Allow) LPort=9009
FirewallRules: [{31C89D48-DB56-4919-A584-3C8C6A631405}] => (Allow) LPort=9009
FirewallRules: [{29DE56BC-E807-4AFD-A5D9-87C3E3CA26D2}] => (Allow) LPort=9009
FirewallRules: [{F8F0DB90-5B19-4CD1-A092-C2C7A3471147}] => (Allow) LPort=9009
FirewallRules: [{DD33F035-4552-48A8-98B6-A77918441E29}] => (Allow) LPort=9009
FirewallRules: [{AFC3CF23-BF21-4A18-8763-E02FF61F6A18}] => (Allow) LPort=9009
FirewallRules: [{2C758816-E684-497F-AE90-1EC4F6BD9B7C}] => (Allow) LPort=9009
FirewallRules: [{EFC7FB60-48BF-4658-89D5-3233DD4E3B0F}] => (Allow) LPort=9009
FirewallRules: [{92429CCD-9CB8-4A0E-A743-B6AADB976676}] => (Allow) LPort=9009
FirewallRules: [{DCE172E1-0EB1-4866-BEB8-4A867F4A8091}] => (Allow) LPort=9009
FirewallRules: [{8B2282EF-8482-4E0E-AC71-A93C66B55C57}] => (Allow) LPort=9009
FirewallRules: [{1C98354A-3192-4FB5-9555-533E8F0F55F6}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{0738DE21-1378-4CE5-B818-24F3388CBFDF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{E03A5199-CFAD-4D9B-9724-E4976F926686}] => (Allow) LPort=9009
FirewallRules: [{2DCDFEC9-D5D9-47E9-A526-DCD66CE6BE0B}] => (Allow) LPort=9009
FirewallRules: [{15811EC0-129F-45F5-9EB2-43DD9AB758C8}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{B3FB4712-033F-45DF-AB43-58CA54097EFB}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [UDP Query User{83C7257D-9D49-4530-824C-AE7630FAAA0C}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [{0FC6BCEE-17E8-463F-8CA5-3FDBC4D1706A}] => (Allow) LPort=9009
FirewallRules: [{27B19139-D5F0-4453-8270-AB024AD25FE3}] => (Allow) LPort=9009
FirewallRules: [{A6AA4F33-1253-47CF-8994-74D855FAC4E3}] => (Allow) LPort=9009
FirewallRules: [{6A04AEAB-1C3C-4432-8268-AB7853776839}] => (Allow) LPort=9009
FirewallRules: [{0909E4A3-4720-4A3C-846E-D575A6ADA172}] => (Allow) LPort=9009
FirewallRules: [{37713443-23E7-40BB-AEBD-66270F21169E}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{4A163C9A-3CC5-4A19-B211-2DC0C4AF5711}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{187CDEBE-3D83-4FF6-96AC-1483E64BCC5A}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{68C838FC-7087-4FD6-8B79-14F6CAE8D6F9}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{DA5FA6ED-8E54-4D80-AA26-2DF29C1B88CE}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{49DA017E-727C-4805-9789-9F7F07D1FC52}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E76C79DF-2B96-40CF-8CA6-C19AD5C238D8}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{0855B462-3291-434D-952E-4EAA3D202EB4}C:\users\david hynek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david hynek\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{DF4ED434-670F-4ED1-91CB-98ADE1508B03}C:\users\david hynek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david hynek\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4B961E8C-3877-46AE-8CE7-DF285188DE46}] => (Allow) C:\Users\David Hynek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{BD32CB5D-629D-4A3F-AD88-E49B97B2998D}] => (Allow) C:\Users\David Hynek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D11EDE88-64B1-4462-9158-F2C97E083D88}] => (Allow) LPort=9009
FirewallRules: [{DF553598-E53A-4D0D-AA2B-0921C8B30FB8}] => (Allow) LPort=9009
FirewallRules: [{172DA29F-85E1-4AF0-AC3E-858E2367A56C}] => (Allow) LPort=9009
FirewallRules: [{EF7ACCAC-B90B-4355-A77A-D81F4C484F72}] => (Allow) LPort=9009
FirewallRules: [{BA65679B-05AE-40E2-893E-278C26C503FB}] => (Allow) LPort=9009
FirewallRules: [{DD9005A2-C444-4380-A43C-32DA897D123B}] => (Allow) LPort=9009
FirewallRules: [{45E6A2F0-52BC-416F-99C2-933B669D7B3F}] => (Allow) LPort=9009
FirewallRules: [{0A646DBE-0201-4170-8F1B-E5E8357B6F2A}] => (Allow) LPort=9009
FirewallRules: [{76F8FCF1-0163-46CA-BAA3-F5DD7FF1E467}] => (Allow) LPort=9009
FirewallRules: [{E9A47F5F-6E88-4B60-BC8D-24F47807D8D1}] => (Allow) LPort=9009
FirewallRules: [{143EFF28-A06A-4757-9A0D-ABC33F960729}] => (Allow) LPort=9009
FirewallRules: [{3CF4218A-3397-4152-B295-9416277F1FED}] => (Allow) LPort=9009
FirewallRules: [{C47EC4FC-29F0-4AC3-A227-3BC6AE40DACB}] => (Allow) LPort=9009
FirewallRules: [{1BEEEC29-FF83-4075-A7E2-E444557FF320}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8D3F99BD-34D2-44A8-9437-2002426444D8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A9618CA9-DC43-4E36-A49D-69261F636897}] => (Allow) LPort=9009
FirewallRules: [{83F9BE79-ECFB-405A-92BB-8911EBBEF598}] => (Allow) LPort=9009
FirewallRules: [{CEA272C0-9B56-47F6-B3AA-05E679DC4C58}] => (Allow) LPort=9009
FirewallRules: [{D35D5F3E-4F0C-41B4-BE3B-445E9C51F992}] => (Allow) LPort=9009
FirewallRules: [{B83A7325-3BFB-4898-A8CD-C97D29393F65}] => (Allow) LPort=9009
FirewallRules: [{56AF4973-A23B-4591-90E5-8030FB6006E4}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{3AB4FFEA-274E-4618-9FD2-9F71F84B0DE0}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{5931BB60-1E39-42FA-9630-DFA54952C993}] => (Allow) LPort=9009
FirewallRules: [{91CFCF52-FEAC-4A38-B4B3-F72443DC3007}] => (Allow) LPort=9009
FirewallRules: [{2FB8FB5E-4C61-462F-A7CD-D02F3F5141B9}] => (Allow) LPort=9009
FirewallRules: [{24630393-E746-4C58-B432-905C363C5387}] => (Allow) LPort=9009
FirewallRules: [{2E01E808-67B8-48B3-B414-C3379336F017}] => (Allow) LPort=9009
FirewallRules: [{959415FB-8F9E-4B09-88D5-017F332F8421}] => (Allow) LPort=9009
FirewallRules: [{85BD08D8-82AD-4BC4-ABB4-B0C0A4B2A1E5}] => (Allow) LPort=9009
FirewallRules: [{F8C617B0-E81B-4D03-A21E-EC87FCB44833}] => (Allow) LPort=9009
FirewallRules: [{0E2D956F-D52D-42A9-A82F-AD393882CC9A}] => (Allow) LPort=9009
FirewallRules: [{75E77101-129E-4770-B91C-5F3F7485A4D2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{1CFECDE2-BD8A-45A1-9FE3-A62DAAFBF7BA}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{13562350-2404-4723-A296-16433D5296E6}] => (Allow) LPort=9009
FirewallRules: [{F2B1713C-25A6-4BDB-B5AA-1F2890207E33}] => (Allow) LPort=9009
FirewallRules: [{DD92D7FA-06ED-43B2-9E42-55D73B30E66D}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{E62862F4-88AE-436B-9E3C-DF3D83D22996}D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{65D8107F-419F-4ADE-B7D3-C563C2281011}D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{7654ECA3-E827-48A8-91CF-29594F035E88}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{A0F78DFA-952A-40DA-ACAA-FDC389B0D7CA}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{6A284015-A5FE-451A-ACFD-C2A58300B3AF}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{11FEACA3-7B17-4C72-B9E7-F2DDB3EA1B15}] => (Allow) LPort=9009
FirewallRules: [{2626EE50-671D-4E2B-B251-D603C64A6113}] => (Allow) D:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{2E2D00BD-89AF-4DF7-AA30-C91AA5B94470}] => (Allow) D:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{C372174F-C6FC-4616-990F-DEE59BEFACD6}D:\riot games\league of legends\game\league of legends.exe] => (Allow) D:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{3685A82B-C8E1-42C5-9F27-1F0D91C8DBD6}D:\riot games\league of legends\game\league of legends.exe] => (Allow) D:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{79BCD827-B558-4709-AE3E-86B687C7A250}] => (Allow) LPort=9009
FirewallRules: [{31010383-C929-4102-B4CB-1EF71467932F}] => (Allow) LPort=9009
FirewallRules: [{D57AAB80-23B6-48FE-A0AD-D89BFB746C85}] => (Allow) LPort=9009
FirewallRules: [{D1EAAE3A-C629-4626-8998-67B4656E642B}] => (Allow) LPort=9009
FirewallRules: [{50A3B8CD-AAA4-4556-B3E0-1D7141CEBD69}] => (Allow) LPort=9009
FirewallRules: [{430B3BA8-C973-406D-B28F-124043774B66}] => (Allow) LPort=9009
FirewallRules: [{FDE263EF-D67A-4821-9511-D4BAEE17888E}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{9CE9D299-69EF-4715-BBF3-94074B4FA077}D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [UDP Query User{053A5613-DE54-411D-82A5-F4897ABCD923}D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [{4ECED490-BD68-4235-A5EB-C684BA7EB83F}] => (Allow) LPort=9009
FirewallRules: [{810F18A7-631F-422E-B140-FF8D88873526}] => (Allow) LPort=9009
FirewallRules: [{EA385262-161A-4BB0-AEF8-BDF4C630C996}] => (Allow) LPort=9009
FirewallRules: [{8202B220-A98E-4149-B2AC-FBA3028D8468}] => (Allow) LPort=9009
FirewallRules: [{47C0D660-7D88-4361-91D0-6BF14916CD5E}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{B96AD29C-FC47-46E3-890A-55C944871F4E}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{86A8832F-C937-4BE9-8FAE-D4CBDD64BB42}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{C82E0285-6E64-44B0-A2B2-C3CE3F737FD1}] => (Allow) LPort=9009
FirewallRules: [{A14876D4-9644-482C-BC59-3E41746AB2B9}] => (Allow) LPort=9009
FirewallRules: [{4A69E99A-9330-4BC4-A9CC-C1CECA9771A1}] => (Allow) LPort=9009
FirewallRules: [{D07953FD-4EFF-4B3A-B300-2CA3138769B8}] => (Allow) LPort=9009
FirewallRules: [{555DC1FF-E90D-4EE4-AB68-DB7F35AAAEB8}] => (Allow) LPort=9009
FirewallRules: [{FDF24605-7062-482A-9D82-3EDAA33B50CC}] => (Allow) LPort=9009
FirewallRules: [{8C4ACEB5-024C-4631-B52B-0BC5A78E6465}] => (Allow) LPort=9009
FirewallRules: [{23EECF9F-AD40-4DE9-A5D1-EEC29FE16537}] => (Allow) LPort=9009
FirewallRules: [{6E38216A-3FD3-43B4-9B2D-F0C45C893892}] => (Allow) LPort=9009
FirewallRules: [{D25BCC7D-142F-42B2-8BC6-1A3E31B35B72}] => (Allow) LPort=9009
FirewallRules: [{E4D57339-FF78-489D-9958-C414B0283074}] => (Allow) LPort=9009
FirewallRules: [{6EB9ABA9-D303-4C7E-94B3-3CB516D18229}] => (Allow) LPort=9009
FirewallRules: [{08DA8708-41B9-4980-B3B6-DAA609E929C5}] => (Allow) LPort=9009
FirewallRules: [{D4FB6D6D-1E9D-4769-9891-EA667F3C26D6}] => (Allow) LPort=9009
FirewallRules: [{80263C50-7A8B-4C66-A7A8-2EF2D5B705C8}] => (Allow) LPort=9009
FirewallRules: [{B904A514-B414-4856-8DF0-E70210168985}] => (Allow) LPort=9009
FirewallRules: [{697B1FD8-A825-40BA-921F-4657ED1379F4}] => (Allow) LPort=9009
FirewallRules: [{0EEB56F4-8240-4AA8-925A-5D66B09CC1AD}] => (Allow) LPort=9009
FirewallRules: [{A1F7600E-78C6-4660-8429-E7A2765C4A8C}] => (Allow) LPort=9009
FirewallRules: [{5CD7E608-B17E-46B2-81E5-9DDDF5CBB6B9}] => (Allow) LPort=9009
FirewallRules: [{6387AC2D-F16D-4EC3-BC46-20E2EC689133}] => (Allow) LPort=9009
FirewallRules: [{1A41F379-EEB8-4DB1-9400-773A18626446}] => (Allow) D:\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{9412639E-B277-48CD-82E6-5A5D5C94916F}] => (Allow) D:\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{65C9955A-828D-4AE9-9830-43F40F304E80}] => (Allow) D:\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{FAC89231-764B-4F1D-87E1-1225FE78890A}] => (Allow) D:\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{9C712ABE-060E-4E9E-BA2B-B646399B5E24}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{7162F4C4-092B-4E43-9917-C9AC9C1551AB}C:\users\david hynek\appdata\local\blitz\app-1.6.22\blitz.exe] => (Allow) C:\users\david hynek\appdata\local\blitz\app-1.6.22\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{E341F405-56D5-4CE2-A2C6-63587515DBC4}C:\users\david hynek\appdata\local\blitz\app-1.6.22\blitz.exe] => (Allow) C:\users\david hynek\appdata\local\blitz\app-1.6.22\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [{DB6249B8-CCCB-4E4E-AB9A-23BF5A43A202}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{CED9EB8B-CC0D-4C92-BBE1-7978B9FC9FE6}C:\users\david hynek\appdata\local\blitz\app-1.6.26\blitz.exe] => (Allow) C:\users\david hynek\appdata\local\blitz\app-1.6.26\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{FF07611C-2529-41D0-9A93-91EC069DAA14}C:\users\david hynek\appdata\local\blitz\app-1.6.26\blitz.exe] => (Allow) C:\users\david hynek\appdata\local\blitz\app-1.6.26\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [TCP Query User{B51E3B51-6A18-49B1-BE13-B84AD0E68F15}C:\users\david hynek\appdata\roaming\utorrent\updates\3.5.5_45608.exe] => (Allow) C:\users\david hynek\appdata\roaming\utorrent\updates\3.5.5_45608.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{1DC7E556-2147-46D9-B68E-5BB0FF4D5FB8}C:\users\david hynek\appdata\roaming\utorrent\updates\3.5.5_45608.exe] => (Allow) C:\users\david hynek\appdata\roaming\utorrent\updates\3.5.5_45608.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{593ABCD8-A407-4F03-A58E-88205FEA29FB}] => (Allow) LPort=9009
FirewallRules: [{A1E762F9-8AFA-45C0-8413-CFDE11DFCFA0}] => (Allow) LPort=9009
FirewallRules: [{9A04358B-BB68-44F2-88AA-E7E8FE098C69}] => (Allow) LPort=9009
FirewallRules: [{2B8B8C76-6B89-498C-8568-8AB133B985F8}] => (Allow) LPort=9009
FirewallRules: [{FAFE79B7-B559-45FC-AF67-E7A07AE97B9F}] => (Allow) LPort=9009
FirewallRules: [{F6D93EC1-BA69-47AD-AE30-AC6C33A67D06}] => (Allow) LPort=9009
FirewallRules: [{7CA71D9B-9081-4C2A-BC64-39D265A9DF68}] => (Allow) LPort=9009
FirewallRules: [{5CE9E866-8E45-416D-B850-945CBEA393E3}] => (Allow) LPort=9009
FirewallRules: [{1EABD611-FA1B-4564-AB4B-265233306FA4}] => (Allow) LPort=9009
FirewallRules: [{8E70DFF3-DEDA-4725-B841-F3068CCA7549}] => (Allow) LPort=9009
FirewallRules: [{9D9F7471-2461-43DA-8C23-1D638613C18B}] => (Allow) LPort=9009
FirewallRules: [{3F360D67-19E0-491A-9F2D-77F7065C1675}] => (Allow) LPort=9009
FirewallRules: [{26D15A49-64B4-4FF7-B55D-A8197CDEE4F8}] => (Allow) LPort=9009
FirewallRules: [{0BE9C742-4C83-438E-984E-2D5A4441FACC}] => (Allow) LPort=9009
FirewallRules: [{5C83ED01-4CD2-4182-8EA4-B97AAC5D351B}] => (Allow) LPort=9009
FirewallRules: [{1C141BBC-4A0D-454E-A056-2992273CE03B}] => (Allow) LPort=9009
FirewallRules: [{7F731FFE-665A-4401-8EC1-A547C0F3BC03}] => (Allow) LPort=9009
FirewallRules: [{FBCC8275-E58D-452F-9EB1-0FB422937C83}] => (Allow) LPort=9009
FirewallRules: [{51FD7412-93CB-4F00-8E26-8A74A77E2B1A}] => (Allow) LPort=9009
FirewallRules: [{16F2A893-31C6-47C8-A3F7-E025506B664F}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [TCP Query User{9FD39CB3-89E4-4041-ADB3-C62598917927}D:\heroes of the storm public test\versions\base84962\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base84962\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{CD067ABD-FFC1-4ABA-9630-47B27FE5C309}D:\heroes of the storm public test\versions\base84962\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base84962\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{C5D6D9F6-9EA7-4D62-A048-D0953A7CAE0C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{23194CDD-D5B0-45DE-B18D-F53FF9744EAF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C2001AD6-FABD-48D0-88C2-E2A96DAC1FF3}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{915E04AB-68FA-4E4E-B968-5185F97555BA}D:\videolan\vlc\vlc.exe] => (Allow) D:\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{291FA121-2DAE-402A-B8E2-7D010952614E}D:\videolan\vlc\vlc.exe] => (Allow) D:\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{83B5E2D7-BB9E-4783-8D1F-5872FE0B8CE5}] => (Allow) D:\Steam\steamapps\common\Lost Ark Live\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{A64661A1-ED71-4A79-B00F-F629401F586A}] => (Allow) D:\Steam\steamapps\common\Lost Ark Live\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{BE609FFC-8047-47C9-B502-5F56965176C5}] => (Allow) LPort=9009
FirewallRules: [{F39B441B-A430-447B-BEF1-E8592D88B1C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{89C0A37F-C3E6-4EAC-ACAA-D7D5F41A9378}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4D101E11-05C4-4FD3-BA4A-B8891A2E1655}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2081AD69-FFB8-4511-B44E-975382259055}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{63D7E887-A118-4D8A-B18D-AF35202D0580}] => (Allow) LPort=9009
FirewallRules: [{54E9A591-EFC9-4E8D-976D-E886E0FEE7F3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8BF319FB-13CD-437D-9282-2E71B6BF5435}] => (Allow) D:\Overwolf\0.174.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{D993BD5A-0A2A-4E53-B398-352DD1719782}] => (Allow) D:\Overwolf\0.174.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{D2271AE8-A1D6-45BE-B46D-EC4C92EE2877}] => (Block) D:\Overwolf\0.174.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{A2243E23-C624-4640-A0FE-0E6BDA2A2F5A}] => (Block) D:\Overwolf\0.174.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{C9DC837E-84A9-4C39-98A2-5B28C8E12017}] => (Allow) LPort=9009
FirewallRules: [{9EC04773-CBFC-4940-AFAF-F9B3D53A0B31}] => (Allow) E:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6B445CE7-8999-4EEC-9547-0F396F918E2B}] => (Allow) E:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{AA2598BD-537D-47F0-B91A-5CC4BC8F6E38}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

09-07-2021 19:10:29 Instalační služba modulů systému Windows
09-07-2021 19:10:48 Instalační služba modulů systému Windows
15-07-2021 19:22:27 Configured APP Center
19-07-2021 20:39:42 Nainstalováno rozhraní DirectX

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (07/22/2021 03:24:36 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (07/22/2021 02:30:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RtkUWP.exe, verze: 1.19.234.0, časové razítko: 0x5f7c226b
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1081, časové razítko: 0xde3fc775
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000010bd3e
ID chybujícího procesu: 0x107c
Čas spuštění chybující aplikace: 0x01d77ef55273b9f5
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj\RtkUWP.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 16312996-0a81-4142-b943-a5400f138da5
Úplný název chybujícího balíčku: RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj
ID aplikace související s chybujícím balíčkem: App

Error: (07/22/2021 02:11:09 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-KR0LJ7U)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (07/22/2021 03:30:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SnippingTool.exe, verze: 10.0.19041.746, časové razítko: 0xeb13aef9
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1081, časové razítko: 0x088bf621
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000008c57f
ID chybujícího procesu: 0x1a10
Čas spuštění chybující aplikace: 0x01d77e9923506ec5
Cesta k chybující aplikaci: C:\WINDOWS\system32\SnippingTool.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: e96866d4-2eb1-49f5-8ee9-2838ee446ab9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (07/21/2021 07:33:44 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-KR0LJ7U)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (07/21/2021 07:16:43 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-KR0LJ7U)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (07/20/2021 05:48:50 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-KR0LJ7U)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (07/19/2021 05:02:30 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-KR0LJ7U)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.


System errors:
=============
Error: (07/22/2021 03:24:27 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (07/22/2021 03:24:27 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba NVIDIA LocalSystem Container byla ukončena s následující chybou:
Obecný spustitelný příkaz vrátil výsledek označující selhání.

Error: (07/22/2021 03:17:49 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-KR0LJ7U)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (07/21/2021 11:21:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) SUR QC Software Asset Manager bylo dosaženo časového limitu (30000 ms).

Error: (07/20/2021 11:21:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) SUR QC Software Asset Manager bylo dosaženo časového limitu (30000 ms).

Error: (07/20/2021 05:45:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) SUR QC Software Asset Manager bylo dosaženo časového limitu (30000 ms).

Error: (07/19/2021 11:19:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) SUR QC Software Asset Manager bylo dosaženo časového limitu (30000 ms).

Error: (07/19/2021 03:56:03 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-KR0LJ7U)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===============
Date: 2021-07-22 14:08:03
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-07-22 01:13:11
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F10c 12/18/2019
Motherboard: Gigabyte Technology Co., Ltd. Z390 GAMING X-CF
Processor: Intel(R) Core(TM) i7-8700 CPU @ 3.20GHz
Percentage of memory in use: 42%
Total physical RAM: 16315.39 MB
Available physical RAM: 9378.6 MB
Total Virtual: 25531.39 MB
Available Virtual: 15121.07 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:231.84 GB) (Free:94.02 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:1863.01 GB) (Free:1359.06 GB) NTFS
Drive e: (SSD) (Fixed) (Total:465.76 GB) (Free:181.41 GB) NTFS

\\?\Volume{3b3ffe23-0000-0000-0000-30183a000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114283
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu

#2 Příspěvek od Rudy »

Zdravím!

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {290C0CDC-093F-4480-92BD-D7324651B9DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {7D7FEF56-466D-48D9-BE98-28BCE92EA891} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Simicek
Návštěvník
Návštěvník
Příspěvky: 166
Registrován: 23 črc 2008 19:09

Re: Prosím o kontrolu

#3 Příspěvek od Simicek »

Fix result of Farbar Recovery Scan Tool (x64) Version: 19-07-2021 01
Ran by David Hynek (23-07-2021 16:41:22) Run:3
Running from C:\Users\David Hynek\Desktop
Loaded Profiles: David Hynek
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {290C0CDC-093F-4480-92BD-D7324651B9DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {7D7FEF56-466D-48D9-BE98-28BCE92EA891} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{290C0CDC-093F-4480-92BD-D7324651B9DB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{290C0CDC-093F-4480-92BD-D7324651B9DB}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7D7FEF56-466D-48D9-BE98-28BCE92EA891}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7D7FEF56-466D-48D9-BE98-28BCE92EA891}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 28530517 B
Java, Flash, Steam htmlcache => 377276769 B
Windows/system/drivers => 2381326 B
Edge => 36352 B
Chrome => 423403949 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
David Hynek => 21697517 B

RecycleBin => 0 B
EmptyTemp: => 824.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:41:32 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114283
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu

#4 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Simicek
Návštěvník
Návštěvník
Příspěvky: 166
Registrován: 23 črc 2008 19:09

Re: Prosím o kontrolu

#5 Příspěvek od Simicek »

Super, děkuji zase za skvělou práci a přeji hezký zbytek dne!
Můžete lock

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114283
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu

#6 Příspěvek od Rudy »

Hezký den i vám a nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno