VIRY.CZ

Zdravím, poprosil bych o kontrolu. S počítačem nemám problém, ale čistím ho nyní tak se chci ujistit jestli je vše okey.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-07-2021 01
Ran by David Hynek (administrator) on DESKTOP-KR0LJ7U (Gigabyte Technology Co., Ltd. Z390 GAMING X) (22-07-2021 15:28:09)
Running from C:\Users\David Hynek\Desktop
Loaded Profiles: David Hynek
Platform: Windows 10 Home Version 2004 19041.1083 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
() [File not signed] D:\TradeSkillMaster Application\app\TSMApplication.exe
(A FOUR TECH CO., LTD. -> ) C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\AvastUI.exe <5>
(Avast Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\wsc_proxy.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Battle.net\Battle.net.exe <3>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7380\Agent.exe
(Discord Inc. -> Discord Inc.) C:\Users\David Hynek\AppData\Local\Discord\app-1.0.9002\Discord.exe <6>
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <28>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler64.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) INTELND1820 -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Intel(R) System Usage Report -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\David Hynek\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) D:\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\NVDisplay.Container.exe <2>
(Open Source Developer, Phillip Gibbons -> Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
(Piriform Software Ltd -> Piriform Software Ltd) D:\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj\RtkUWP.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_69a2b93320d3df04\RtkAudUService64.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_69a2b93320d3df04\RtkAudUService64.exe [1203952 2020-11-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\AVAST Software\Avast\AvLaunch.exe [123672 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1684216 2020-05-13] (Open Source Developer, Phillip Gibbons -> Highresolution Enterprises)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288672 2021-05-21] (IDSA Production signing key 2021 -> Intel)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [CCleaner Smart Cleaning] => D:\CCleaner\CCleaner64.exe [35062912 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [TSMApplication] => D:\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2021-06-29] () [File not signed]
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [Discord] => C:\Users\David Hynek\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe [19841264 2020-02-13] (A FOUR TECH CO., LTD. -> )
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [Overwolf] => D:\\Overwolf\OverwolfLauncher.exe [1729368 2021-07-04] (Overwolf Ltd -> Overwolf Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.164\Installer\chrmstp.exe [2021-07-20] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00CE2B12-0D75-4680-8422-285B8F3DDD2E} - System32\Tasks\Avast Emergency Update => C:\AVAST Software\Avast\AvEmUpdate.exe [4903192 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
Task: {08E42A6B-FE72-451A-8390-AA90767EA53F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098912 2020-11-05] (Intel(R) System Usage Report -> Intel Corporation)
Task: {0EF9095E-67D6-4BF4-A1A4-9DC425A85C2E} - System32\Tasks\CCleanerSkipUAC => D:\CCleaner\CCleaner.exe [29136000 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {130A2970-E407-43B8-91D3-C1ED5CD716B6} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15792 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {155389FB-E8E4-4E78-9CF4-6D8CB97F6DAD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {166EF53C-1947-46E1-99D5-6322D19399FC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {2047841D-794D-4E7E-85EC-41B267073EA8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22A6EF24-BC50-4EFF-A268-68EE1C18DB36} - System32\Tasks\Overwolf Updater Task => D:\Overwolf\OverwolfUpdater.exe [2476376 2021-07-04] (Overwolf Ltd -> Overwolf LTD)
Task: {2389802F-510E-4881-9C40-934DF5D32B4A} - System32\Tasks\BlueStacksHelper => E:\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {245B2271-16E3-45CF-B86C-911FE05D184D} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [227328 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
Task: {290C0CDC-093F-4480-92BD-D7324651B9DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {2B805593-498F-43B6-AE0A-0C6AE971C650} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {31B7D73E-5AA4-4EE6-AF53-692DBC0DC2A6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3965840 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DC93168-BCD7-4209-AF59-1BB767C2BE8D} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
Task: {3F67976D-BEA4-43BA-BF93-F1E976F1EFD1} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {3FD93B6C-C2D9-44A9-9E2E-AB58A21DAE04} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [245760 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
Task: {4423BAE9-2C1E-4927-81F4-2877870940D5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118144 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {477E7250-3E5C-4500-9573-9F7139285900} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18352 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {4B7D89F0-A94F-4E1D-A318-EBA6CE82DE7C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118144 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {5FD3F38F-DE70-4A27-B189-1199C9881465} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
Task: {600EC7A9-E144-45DD-B692-76FBE914F3D9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23182224 2021-07-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C0D92FC-0AC8-44F9-B6B0-4DF265D17508} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {766D2D03-B90F-4A03-AD23-3C2BFF309B56} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253872 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {7A422491-FE71-4293-9913-FAE5A8A2504D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7B0F887D-B495-48A2-862E-6628027AD590} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {7D7FEF56-466D-48D9-BE98-28BCE92EA891} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {8DA50568-BDDB-42C2-B3AD-B95763F58DAE} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098912 2020-11-05] (Intel(R) System Usage Report -> Intel Corporation)
Task: {99396C68-2E8A-4DE6-8DA0-6D1E49AEA2E7} - System32\Tasks\MSIAfterburner => D:\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {99572517-3AF0-4940-9031-252D3830FBA8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3965840 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {B12E73FF-953A-4B42-A52E-BFC64CBB2421} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BA8D5D2E-7501-45C0-A096-72B248B720EA} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {C18015D8-E69F-468B-BA4D-B4C0E4BC1471} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C563C9D5-6486-4BE5-8323-E748CB49F908} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23182224 2021-07-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D44A89F3-F910-4ABF-83AB-6850A7FEDF35} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426416 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {DC139728-ED51-4FBE-8464-0DA382ADE346} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD55FDA2-6C3F-4D0A-9A4B-E7F8219131A0} - System32\Tasks\CCleaner Update => D:\CCleaner\CCUpdate.exe [684976 2021-07-16] (Piriform Software Ltd -> Piriform)
Task: {DD86B35D-01CB-47C3-B21F-3A20A7B61D65} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F16E0F1C-4A1E-47C0-827B-7F293103BADC} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {FCDF7697-3153-4941-8247-95784FC48D38} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{013838db-2b9b-489b-adc2-b1af1a53491a}: [DhcpNameServer] 10.0.0.138

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\David Hynek\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-22]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.11 -> D:\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> D:\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> D:\Java\bin\dtplugin\npDeployJava1.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> D:\Java\bin\plugin2\npjp2.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [No File]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-06-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default [2021-07-22]
CHR DownloadDir: D:\ChromeDownloads
CHR Notifications: Default -> hxxps://badoo.com; hxxps://discord.com; hxxps://www.escapefromtarkov.com; hxxps://www.facebook.com; hxxps://www.pathofexile.com; hxxps://www.tipsport.cz
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-28]
CHR Extension: (BetterTTV) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-07-20]
CHR Extension: (Dokumenty) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-28]
CHR Extension: (Disk Google) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-28]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-05-20]
CHR Extension: (Tampermonkey) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2021-06-03]
CHR Extension: (Tabulky) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-28]
CHR Extension: (Better PathOfExile Trading) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhlinfpmdlijegjlpgedcmglkakaghnk [2021-02-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-27]
CHR Extension: (Streamlabs Export To StreamElements) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\micpdieddpifbgnnlbelgamnfpeonkpe [2020-11-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-05]
CHR Profile: C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-07-22]
CHR Profile: C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\System Profile [2021-07-22]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe [411456 2019-04-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R3 aswbIDSAgent; C:\AVAST Software\Avast\aswidsagent.exe [8249936 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\AVAST Software\Avast\AvastSvc.exe [625432 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\AVAST Software\Avast\aswToolsSvc.exe [373528 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-20] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2021-03-26] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9056672 2021-07-08] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [143072 2019-12-05] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
S3 GalaxyClientService; D:\GOG Galaxy\GalaxyClientService.exe [1673288 2020-06-16] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-06-16] (GOG Sp. z o.o. -> GOG.com)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128944 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LMS; C:\Intel(R) Management Engine Components\LMS\LMS.exe [625240 2018-11-16] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [119808 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed]
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2556048 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3474584 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; D:\Overwolf\OverwolfUpdater.exe [2476376 2021-07-04] (Overwolf Ltd -> Overwolf LTD)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-11-12] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2019-04-30] (ASUSTeK Computer Inc. -> )
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216928 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [366616 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-05-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [182600 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [524400 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851192 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471920 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215384 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327536 2021-06-16] (Avast Software s.r.o. -> AVAST Software)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 gdrv; C:\Windows\gdrv.sys [26792 2019-04-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2019-07-29] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> )
R3 RTCore64; D:\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [74552 2019-12-05] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-22 15:28 - 2021-07-22 15:28 - 000030019 _____ C:\Users\David Hynek\Desktop\FRST.txt
2021-07-22 15:27 - 2021-07-22 15:26 - 002300416 _____ (Farbar) C:\Users\David Hynek\Desktop\FRST64.exe
2021-07-22 15:24 - 2021-07-22 15:24 - 000000000 ____D C:\WINDOWS\LastGood
2021-07-22 15:22 - 2021-07-13 19:07 - 001858664 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-07-22 15:22 - 2021-07-13 19:07 - 001858664 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-07-22 15:22 - 2021-07-13 19:07 - 001438824 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-07-22 15:22 - 2021-07-13 19:07 - 001438824 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-07-22 15:22 - 2021-07-13 19:07 - 001097856 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-07-22 15:22 - 2021-07-13 19:07 - 001097856 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-07-22 15:22 - 2021-07-13 19:07 - 000951936 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-07-22 15:22 - 2021-07-13 19:07 - 000951936 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-07-22 15:22 - 2021-07-13 19:06 - 001474704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-07-22 15:22 - 2021-07-13 19:06 - 001212560 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 001520776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 000716912 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 000676480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 000645232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 000577152 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-07-22 15:22 - 2021-07-13 19:02 - 000564352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-07-22 15:22 - 2021-07-13 19:01 - 002112128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-07-22 15:22 - 2021-07-13 19:01 - 001595520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-07-22 15:22 - 2021-07-13 19:01 - 001171072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-07-22 15:22 - 2021-07-13 19:01 - 000919168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-07-22 15:22 - 2021-07-13 19:01 - 000706176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-07-22 15:22 - 2021-07-13 19:00 - 008854144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-07-22 15:22 - 2021-07-13 19:00 - 007920768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-07-22 15:22 - 2021-07-13 19:00 - 005680760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-07-22 15:22 - 2021-07-13 19:00 - 004987520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-07-22 15:22 - 2021-07-13 19:00 - 002925696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-07-22 15:22 - 2021-07-13 19:00 - 000447104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-07-22 15:22 - 2021-07-13 18:59 - 000849008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-07-22 15:22 - 2021-07-12 13:32 - 000083062 _____ C:\WINDOWS\system32\nvinfo.pb
2021-07-22 15:18 - 2021-07-22 15:18 - 000094338 _____ C:\Users\David Hynek\Documents\cc_20210722_151835.reg
2021-07-22 15:18 - 2021-07-22 15:18 - 000006570 _____ C:\Users\David Hynek\Documents\cc_20210722_151851.reg
2021-07-21 00:53 - 2021-07-21 04:29 - 000000406 _____ C:\Users\David Hynek\Desktop\Patch notes.txt
2021-07-20 00:34 - 2021-07-20 03:29 - 000003053 _____ C:\Users\David Hynek\Desktop\Manifesto.txt
2021-07-16 03:04 - 2021-07-19 03:55 - 000002204 _____ C:\Users\David Hynek\Desktop\16.7 stream.txt
2021-07-15 19:28 - 2020-12-02 18:03 - 005968480 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2021-07-15 19:28 - 2020-12-02 17:52 - 043277665 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2021-07-15 19:25 - 2021-07-15 19:25 - 000000000 ____D C:\Program Files (x86)\Realtek
2021-07-09 19:15 - 2021-07-09 19:15 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-07-09 19:15 - 2021-07-09 19:15 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-07-09 19:15 - 2021-07-09 19:15 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-07-09 19:15 - 2021-07-09 19:15 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-07-09 19:14 - 2021-07-09 19:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-07-09 19:14 - 2021-07-09 19:14 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-07-09 19:14 - 2021-07-09 19:14 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-07-09 19:14 - 2021-07-09 19:14 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-07-09 19:14 - 2021-07-09 19:14 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-07-09 19:14 - 2021-07-09 19:14 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-07-09 19:14 - 2021-07-09 19:14 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-07-09 19:14 - 2021-07-09 19:14 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-07-09 19:14 - 2021-07-09 19:14 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-07-09 19:14 - 2021-07-09 19:14 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-07-09 19:14 - 2021-07-09 19:14 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-07-09 19:14 - 2021-07-09 19:14 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-07-09 19:14 - 2021-07-09 19:14 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-07-06 06:42 - 2021-07-06 06:42 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\twitch-desktop-electron-platform
2021-06-30 13:07 - 2021-06-30 13:07 - 000000000 ____D C:\WINDOWS\system32\lxss
2021-06-30 13:06 - 2021-06-21 10:43 - 000037664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-22 15:28 - 2019-04-28 09:51 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Discord
2021-07-22 15:27 - 2020-01-15 02:16 - 000000000 ____D C:\FRST
2021-07-22 15:25 - 2019-04-28 17:28 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Battle.net
2021-07-22 15:24 - 2020-08-21 19:58 - 000000000 ____D C:\Users\David Hynek\AppData\Local\NVIDIA
2021-07-22 15:24 - 2020-08-21 19:58 - 000000000 ____D C:\ProgramData\NVIDIA
2021-07-22 15:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-22 15:24 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-22 15:23 - 2020-08-21 19:58 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-07-22 15:18 - 2019-07-16 23:27 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\uTorrent
2021-07-22 15:17 - 2021-02-07 01:29 - 000000000 ___DC C:\WINDOWS\Panther
2021-07-22 15:17 - 2019-04-28 13:49 - 000000000 ____D C:\Users\David Hynek\AppData\Local\CrashDumps
2021-07-22 15:15 - 2021-05-10 08:24 - 000002940 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2021-07-22 15:15 - 2021-02-26 15:07 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6fe02431a7995
2021-07-22 15:15 - 2021-02-08 12:07 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-22 15:15 - 2021-02-08 12:07 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-07-22 15:15 - 2021-02-08 12:07 - 000003456 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineUA
2021-07-22 15:15 - 2021-02-08 12:07 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-07-22 15:15 - 2021-02-08 12:07 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-07-22 15:15 - 2021-02-08 12:07 - 000003232 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineCore
2021-07-22 15:15 - 2021-02-08 12:07 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-07-22 15:15 - 2021-02-08 12:07 - 000003164 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2021-07-22 15:15 - 2021-02-08 12:07 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000003042 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2021-07-22 15:15 - 2021-02-08 12:07 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002970 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2021-07-22 15:15 - 2021-02-08 12:07 - 000002960 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-07-22 15:15 - 2021-02-08 12:07 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-994775172-3552113607-2548991599-1001
2021-07-22 15:15 - 2021-02-08 12:07 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-22 15:15 - 2021-02-08 12:07 - 000002678 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2021-07-22 15:15 - 2021-02-08 12:07 - 000002604 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2021-07-22 15:15 - 2021-02-08 12:07 - 000002392 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2021-07-22 15:15 - 2021-02-08 12:07 - 000002208 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-07-22 15:13 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-22 15:07 - 2019-04-28 09:51 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Discord
2021-07-22 14:55 - 2021-02-08 12:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-07-22 14:47 - 2020-11-14 12:52 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\obs-studio
2021-07-22 14:37 - 2019-05-21 14:28 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\slobs-client
2021-07-22 14:10 - 2019-04-28 20:44 - 000000000 ____D C:\Program Files (x86)\Google
2021-07-22 14:07 - 2019-04-28 09:17 - 000000000 ___RD C:\Users\David Hynek\OneDrive
2021-07-22 03:15 - 2019-04-28 09:16 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Packages
2021-07-21 20:03 - 2019-04-28 19:26 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Spotify
2021-07-21 20:01 - 2019-04-28 19:15 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Spotify
2021-07-21 19:01 - 2021-02-08 12:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-21 13:25 - 2020-11-07 10:33 - 000001725 _____ C:\Users\David Hynek\Desktop\CurseForge.lnk
2021-07-21 13:25 - 2019-08-18 13:33 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Overwolf
2021-07-21 07:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-21 07:13 - 2020-06-10 15:09 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-21 07:13 - 2020-06-10 15:09 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-07-20 23:28 - 2019-05-06 18:23 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Origin
2021-07-20 23:28 - 2019-05-06 18:23 - 000000000 ____D C:\ProgramData\Origin
2021-07-20 23:17 - 2019-05-07 02:54 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-07-20 23:17 - 2019-05-06 18:23 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Origin
2021-07-20 20:58 - 2019-04-28 20:47 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-07-20 20:58 - 2019-04-28 20:47 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-07-20 20:37 - 2021-04-16 19:18 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Path of Exile
2021-07-20 19:03 - 2021-01-11 19:30 - 000000000 ____D C:\Path of Exile
2021-07-20 18:56 - 2020-11-14 12:52 - 000001696 _____ C:\Users\David Hynek\Desktop\StreamElements OBS.Live.lnk
2021-07-20 18:05 - 2019-08-17 18:04 - 000000000 ____D C:\ProgramData\Riot Games
2021-07-20 02:47 - 2021-04-13 14:08 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Sublime Text 3
2021-07-18 23:56 - 2019-04-28 20:24 - 000000000 ____D C:\Users\David Hynek\AppData\Local\BitTorrentHelper
2021-07-17 16:29 - 2019-04-28 09:51 - 000000000 ____D C:\Users\David Hynek\AppData\Local\PlaceholderTileLogoFolder
2021-07-16 22:16 - 2019-04-28 13:34 - 000000000 ____D C:\Users\David Hynek\AppData\Local\D3DSCache
2021-07-16 22:04 - 2021-01-11 19:30 - 000001633 _____ C:\Users\Public\Desktop\Path of Exile.lnk
2021-07-16 10:31 - 2019-04-28 17:26 - 000000000 ____D C:\Battle.net
2021-07-16 10:25 - 2019-05-07 16:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-07-15 19:33 - 2021-02-08 12:08 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-07-15 19:33 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2021-07-15 19:33 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2021-07-15 19:29 - 2021-02-08 12:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-07-15 19:29 - 2021-02-08 12:03 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-15 19:29 - 2019-04-28 10:33 - 000000000 ____D C:\ProgramData\AVAST Software
2021-07-15 19:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-07-15 19:28 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-07-15 19:28 - 2019-04-28 09:55 - 000000000 ___HD C:\Program Files (x86)\Temp
2021-07-15 19:28 - 2019-04-28 09:55 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-07-15 19:26 - 2021-02-08 12:03 - 000444160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-07-15 19:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-14 17:05 - 2019-04-29 13:29 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-07-13 19:01 - 2021-01-24 17:15 - 000750208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-07-13 18:57 - 2021-01-24 17:15 - 007280312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-07-13 18:57 - 2021-01-24 17:15 - 006215792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-07-10 04:50 - 2019-05-07 21:08 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\RaiderIO
2021-07-09 19:16 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-09 19:14 - 2019-04-28 09:58 - 000414044 __RSH C:\bootmgr
2021-07-09 19:10 - 2020-10-01 23:56 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-07-09 19:10 - 2019-04-28 10:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-07-09 19:08 - 2019-04-28 10:37 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-07-08 22:30 - 2020-02-01 20:04 - 000000625 _____ C:\Users\Public\Desktop\Urban Rivals.lnk
2021-07-08 22:30 - 2020-02-01 20:04 - 000000625 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Urban Rivals.lnk
2021-07-08 22:14 - 2021-02-07 23:37 - 000002395 _____ C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-07-07 05:43 - 2019-07-13 23:16 - 000002209 _____ C:\Users\David Hynek\Desktop\WoW TODOLIST.txt
2021-07-02 14:55 - 2019-04-28 22:12 - 000000975 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2021-07-02 14:39 - 2021-04-04 20:17 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HearthSim
2021-07-02 14:39 - 2021-04-04 20:17 - 000000000 ____D C:\Users\David Hynek\AppData\Local\HearthstoneDeckTracker
2021-07-01 03:37 - 2021-04-04 20:17 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\HearthstoneDeckTracker
2021-07-01 01:47 - 2019-04-28 09:51 - 000000000 ____D C:\Users\David Hynek\AppData\Local\SquirrelTemp
2021-06-30 13:07 - 2020-08-21 19:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-06-30 13:03 - 2020-08-21 19:58 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2021-06-30 13:02 - 2019-04-28 10:08 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-06-30 13:02 - 2019-04-28 10:06 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-06-22 03:20 - 2021-01-24 17:15 - 000748832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET81F3.tmp
2021-06-22 03:17 - 2021-01-24 17:15 - 007279232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SET807C.tmp
2021-06-22 03:17 - 2021-01-24 17:15 - 006215312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET8233.tmp

==================== Files in the root of some directories ========

2019-04-28 13:28 - 2019-04-28 13:28 - 000000017 _____ () C:\Users\David Hynek\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-07-2021 01
Ran by David Hynek (22-07-2021 15:28:54)
Running from C:\Users\David Hynek\Desktop
Windows 10 Home Version 2004 19041.1083 (X64) (2021-02-08 10:08:00)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-994775172-3552113607-2548991599-500 - Administrator - Disabled)
David Hynek (S-1-5-21-994775172-3552113607-2548991599-1001 - Administrator - Enabled) => C:\Users\David Hynek
DefaultAccount (S-1-5-21-994775172-3552113607-2548991599-503 - Limited - Disabled)
Guest (S-1-5-21-994775172-3552113607-2548991599-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-994775172-3552113607-2548991599-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.19.0917.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.19.0917.1 - GIGABYTE)
µTorrent (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\uTorrent) (Version: 3.5.5.46038 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.005.20058 - Adobe Systems Incorporated)
AIDA64 Extreme v6.25 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.25 - FinalWire Ltd.)
Amazon Games (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\{4DD10B06-78A4-4E6F-AA39-25E9C38FA568}) (Version: 1.7.172.1 - Amazon.com Services, Inc.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.7.2 - Electronic Arts, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0426.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0426.1 - GIGABYTE)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
ASUS GLCKIO2 Driver (HKLM-x32\...\{548dd834-70c5-4426-8065-fbeabdd2bb5d}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
AutoHotkey 1.1.33.02 (HKLM\...\AutoHotkey) (Version: 1.1.33.02 - Lexikos)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 21.5.2470 - Avast Software)
Awakened PoE Trade 2.10.1 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\2ea281da-028b-5d55-b26e-53163c89344a) (Version: 2.10.1 - Alexander Drozdov)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blitz (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Blitz) (Version: 1.6.26 - Blitz Inc.)
Bloody7 (HKLM-x32\...\Bloody3) (Version: 20.02.0002 - Bloody)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.1.1002 - BlueStack Systems, Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.75.1089 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.83 - Piriform)
CPUID HWMonitor 1.44 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.44 - CPUID, Inc.)
CurrencyCop 2.0.0-beta.16 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\ad9b865c-58dc-5b28-b27d-6ee8d988422e) (Version: 2.0.0-beta.16 - Nijiko Yonskai)
CurseForge (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.177.1.5 - Overwolf app)
Discord (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.18.1005.1 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.18.1005.1 - GIGABYTE)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.19.1205.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.19.1205.1 - GIGABYTE)
Epic Games Launcher (HKLM-x32\...\{19BC09B5-F319-4A61-A878-475E7F7054EA}) (Version: 1.1.195.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Exilence Next 0.4.8 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\58032b8c-4c17-5b0e-b3bc-74d53946ba55) (Version: 0.4.8 - )
G.SKILL AURA DRAM Component (HKLM\...\{46EEF4E1-2117-4D64-A953-F1DE092495EB}) (Version: 1.00.10 - G.SKILL International Enterprise) Hidden
G.SKILL AURA DRAM Component (HKLM-x32\...\{4961d0dd-74e6-4696-abce-8f69a5badc6a}) (Version: 1.00.10 - G.SKILL International Enterprise) Hidden
Geeks3D FurMark 1.24.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.24.1.0 - Geeks3D)
GigabyteFirmwareUpdateUtility (HKLM-x32\...\{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.18.0208.1 - GIGABYTE) Hidden
GigabyteFirmwareUpdateUtility (HKLM-x32\...\InstallShield_{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.18.0208.1 - GIGABYTE)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.164 - Google LLC)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.16.1202.1 - GIGABYTE)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Heroes of the Storm Public Test (HKLM-x32\...\Heroes of the Storm Public Test) (Version: - Blizzard Entertainment)
ICQ (verze 10.0.38922) (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\icq.desktop) (Version: 10.0.38922 - Mail.ru LLC)
Intel Driver && Support Assistant (HKLM-x32\...\{C38DE4F8-DF58-4B5D-9D4C-1F68773A2AE2}) (Version: 21.3.21.5 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{848F0123-CF5D-4192-90EC-A6574D8B1796}) (Version: 2.4.06522 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{6ad2f601-ab5f-47d5-bd6c-ef13a37b3a62}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{d2843be8-a475-45ad-a151-dc20a9696584}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{f3b1c211-1159-4262-bb97-84150cda9096}) (Version: 10.1.18243.8188 - Intel(R) Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1846.12.0.1177 - Intel Corporation)
Intel(R) Network Connections 23.5.0.0 (HKLM\...\PROSetDX) (Version: 23.5.0.0 - Intel)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1915.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel® Driver & Support Assistant (HKLM-x32\...\{9360c8cc-b617-469a-bb35-829c13e21d97}) (Version: 21.3.21.5 - Intel)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{7EBADAB6-B7AC-4560-85A7-FF345559F193}) (Version: 17.2.6.1027 - Intel Corporation)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
League of Legends PBE (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Riot Game league_of_legends.pbe) (Version: - Riot Games, Inc)
Legends of Runeterra (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Riot Game bacon.live) (Version: - Riot Games, Inc)
Locklizard Safeguard - PDF Viewer (HKLM-x32\...\Locklizard Safeguard - PDF Viewer_sf) (Version: 2.6.50 - Locklizard Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.71 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.14131.20320 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\OneDriveSetup.exe) (Version: 21.119.0613.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Minion Masters (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\448417850466762753) (Version: - )
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 471.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.41 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14131.20320 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20320 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.101.48500 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.174.0.10 - Overwolf Ltd.)
Path of Building version 1.4.137 (HKLM-x32\...\{72FA9AB7-189F-4BDE-8856-72DEB90C157B}_is1) (Version: 1.4.137 - Openarl)
Path of Exile (HKLM-x32\...\{4f1eb2c2-0a1e-4309-83cf-594ca2b8ebee}) (Version: 3.12.5.35377 - Grinding Gear Games)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 3.12.5.35377 - Grinding Gear Games) Hidden
PlatformPowerManagement (HKLM-x32\...\{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.18.0910.1 - GIGABYTE) Hidden
PlatformPowerManagement (HKLM-x32\...\InstallShield_{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.18.0910.1 - GIGABYTE)
Pokémon Trading Card Game Online (HKLM-x32\...\{8CD5CE22-F319-4556-9B19-FAAFF59C63A0}) (Version: 2.63.0 - The Pokémon Company International)
PUBG Lite (HKLM-x32\...\PUBG Lite_is1) (Version: 1.0.0.7 - )
RaiderIO 2.1.7 (HKLM\...\ea53c16d-4ef5-533f-83dc-5b0c5bb40cb2) (Version: 2.1.7 - jah@raider.io)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9075.1 - Realtek Semiconductor Corp.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.19.0402.1 - GIGABYTE)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.18.0918.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.18.0918.1 - GIGABYTE)
Spotify (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Spotify) (Version: 1.1.63.568.gda8cb5ac - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StreamElements OBS.Live (HKLM-x32\...\StreamElements OBS.Live) (Version: 21.6.23.745 - StreamElements)
Streamlabs Chatbot version 1.0.2.63 (HKLM-x32\...\{08D3C5BB-C492-4916-B111-725081845380}_is1) (Version: 1.0.2.63 - Streamlabs)
Streamlabs OBS 0.14.1 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.14.1 - General Workings, Inc.)
Sublime Text 3 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.5 - TeamSpeak Systems GmbH)
TFTactics (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Overwolf_delfmdadipjjmpajblkalfkbebcbldbknecigjpc) (Version: 1.2.5 - Overwolf app)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Twitch (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 86.0 - Ubisoft)
Urban Rivals version 7.8.2 (HKLM-x32\...\{515A2CF3-B276-4071-9A32-D0030E4D6E66}_is1) (Version: 7.8.2 - Acute Games)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Warcraft Logs Uploader 2.0.4 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\bcc11bd8-bf2f-5f00-925b-921594bc2ca4) (Version: 2.0.4 - warcraftlogs)
Warcraft Logs Uploader 4.4.7 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\{bcc11bd8-bf2f-5f00-925b-921594bc2ca4}) (Version: 4.4.7 - warcraftlogs)
WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft)
WeakAuras Companion 3.1.1 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\574e4d1e-05f6-5376-9898-b829d00eef2e) (Version: 3.1.1 - Buds)
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Public Test (HKLM-x32\...\World of Warcraft Public Test) (Version: - Blizzard Entertainment)
X-Mouse Button Control 2.19.2 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.19.2 - Highresolution Enterprises)

Packages:
=========
Code Writer -> C:\Program Files\WindowsApps\ActiproSoftwareLLC.562882FEEB491_4.2.42.0_x64__24pqs290vpjk0 [2021-02-26] (Actipro Software LLC)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-10-19] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-02-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-02-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-21] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-07-22] (NVIDIA Corp.)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3325.0_x64__8j3eq9eme6ctt [2021-05-07] (INTEL CORP) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj [2021-07-16] (Realtek Semiconductor Corp)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-994775172-3552113607-2548991599-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key 2021 -> Intel)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-19] () [File not signed] [File is in use]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2021-06-16] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2021-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2021-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2021-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-19] () [File not signed] [File is in use]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\nvshext.dll [2021-07-13] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2021-06-16] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-07-15 23:37 - 2021-07-15 23:37 - 104869376 _____ () [File not signed] C:\Battle.net\Battle.net.beta.13017\libcef.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000332288 _____ () [File not signed] C:\Battle.net\Battle.net.beta.13017\swiftshader\libegl.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 003011584 _____ () [File not signed] C:\Battle.net\Battle.net.beta.13017\swiftshader\libglesv2.dll
2020-05-04 01:00 - 2017-04-17 10:43 - 003852800 ____N () [File not signed] C:\Program Files (x86)\Bloody7\Bloody7\Data\Mouse\Forms\Internet_Advertisement\Internet_Advertisement_DLL.dll
2021-04-22 08:31 - 2021-04-22 08:31 - 005745664 _____ () [File not signed] C:\Program Files (x86)\Intel\Driver and Support Assistant\irmfuu_module.dll
2019-10-26 13:04 - 2019-10-26 13:04 - 000232960 _____ () [File not signed] D:\MSI Afterburner\RTCore.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000057344 _____ () [File not signed] D:\MSI Afterburner\RTFC.dll
2019-10-26 13:04 - 2019-10-26 13:04 - 000650240 _____ () [File not signed] D:\MSI Afterburner\RTHAL.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000074240 _____ () [File not signed] D:\MSI Afterburner\RTMUI.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000369664 _____ () [File not signed] D:\MSI Afterburner\RTUI.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000053760 _____ () [File not signed] D:\TradeSkillMaster Application\app\_bz2.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000084992 _____ () [File not signed] D:\TradeSkillMaster Application\app\_ctypes.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000783360 _____ () [File not signed] D:\TradeSkillMaster Application\app\_hashlib.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000137216 _____ () [File not signed] D:\TradeSkillMaster Application\app\_lzma.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000047104 _____ () [File not signed] D:\TradeSkillMaster Application\app\_socket.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000039424 _____ () [File not signed] D:\TradeSkillMaster Application\app\psutil._psutil_windows.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 001861120 _____ () [File not signed] D:\TradeSkillMaster Application\app\PyQt5.QtCore.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 002002944 _____ () [File not signed] D:\TradeSkillMaster Application\app\PyQt5.QtGui.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 004101120 _____ () [File not signed] D:\TradeSkillMaster Application\app\PyQt5.QtWidgets.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000009728 _____ () [File not signed] D:\TradeSkillMaster Application\app\select.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000075264 _____ () [File not signed] D:\TradeSkillMaster Application\app\sip.pyd
2021-06-29 16:18 - 2021-06-29 16:18 - 000758784 _____ () [File not signed] D:\TradeSkillMaster Application\app\unicodedata.pyd
2021-07-16 10:25 - 2021-07-16 10:25 - 000179200 _____ (Fortemedia) [File not signed] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj\FMAPOCTL.dll
2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-03-19 16:57 - 2019-03-19 16:57 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2018-10-29 11:25 - 2018-10-29 11:25 - 000372736 _____ (Intel(R) Corporation) [File not signed] C:\Windows\system32\NCS2Setp.dll
2018-01-20 10:34 - 2018-01-20 10:34 - 000373248 _____ (IntelleSoft) [File not signed] C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\BugTrapU-x64.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 002741248 _____ (Python Software Foundation) [File not signed] D:\TradeSkillMaster Application\app\python34.dll
2020-12-15 15:37 - 2020-12-15 15:37 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\SQLite.Interop.dll
2021-05-21 08:12 - 2021-05-21 08:12 - 000130048 _____ (Sam Grogan) [File not signed] [File is in use] C:\Program Files (x86)\Intel\Driver and Support Assistant\NotifyIconWin32.dll
2020-12-15 15:37 - 2020-12-15 15:37 - 001950208 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
2019-04-28 10:08 - 2019-04-28 10:08 - 000023040 _____ (Synaptics Incorporated.) [File not signed] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj\SynAudSrvDll.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000810496 _____ (The Chromium Authors) [File not signed] C:\Battle.net\Battle.net.beta.13017\chrome_elf.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000848896 _____ (The ICU Project) [File not signed] D:\TradeSkillMaster Application\app\icudt53.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 001580032 _____ (The ICU Project) [File not signed] D:\TradeSkillMaster Application\app\icuin53.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 001079296 _____ (The ICU Project) [File not signed] D:\TradeSkillMaster Application\app\icuuc53.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000036352 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qdds.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000022016 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qgif.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000029184 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qicns.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000022016 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qico.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000381952 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qjp2.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000206848 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qjpeg.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000218624 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qmng.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000016384 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qtga.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000308736 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qtiff.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000015360 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qwbmp.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000287232 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\imageformats\qwebp.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 000991744 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\platforms\qwindows.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 004182528 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\Qt5Core.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 004877312 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\Qt5Gui.dll
2021-06-29 16:18 - 2021-06-29 16:18 - 004490752 _____ (The Qt Company Ltd) [File not signed] D:\TradeSkillMaster Application\app\Qt5Widgets.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000048640 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\audio\qtaudio_windows.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qgif.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qico.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000351232 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qjpeg.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qsvg.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000343552 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qtiff.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000438784 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\imageformats\qwebp.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 001241088 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\platforms\qwindows.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 005518336 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Core.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 005799936 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Gui.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000643584 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Multimedia.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000968704 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Network.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 003301888 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Qml.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000370688 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5QmlModels.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 003730944 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Quick.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000265216 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Svg.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 004737024 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Widgets.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5WinExtras.dll
2021-07-15 23:37 - 2021-07-15 23:37 - 000172544 _____ (The Qt Company Ltd.) [File not signed] C:\Battle.net\Battle.net.beta.13017\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Java\bin\ssv.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Java\bin\jp2ssv.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-06] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\Control Panel\Desktop\\Wallpaper -> c:\users\david hynek\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\316696.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F9C0F8FA-EB06-445E-B9E6-932C1A1C8B93}] => (Allow) LPort=9009
FirewallRules: [{51A8EF46-A9A2-4653-9241-47CE7868373F}] => (Allow) LPort=9009
FirewallRules: [{F48C5379-96FF-4518-A295-5FB85FB103B5}] => (Allow) LPort=9009
FirewallRules: [{81B9AB4D-913A-4691-A921-9D5CA7C0502D}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{23A9B28A-388B-4B78-B837-A4FD2087D32C}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{73515907-DD42-4175-8F33-8B1C881D9D77}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{3A77B7CB-53C3-42F8-B7CD-7AA88FBCE9C1}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) System Usage Report -> )
FirewallRules: [{307DBAEA-E0D7-4DFB-A5B2-44F13C58B568}] => (Allow) LPort=9009
FirewallRules: [{27253FB8-8FB0-4170-9FA7-FCFA930A9022}] => (Allow) LPort=9009
FirewallRules: [{A4BA1D9A-BC5A-443C-8699-5E4437F790C3}] => (Allow) LPort=9009
FirewallRules: [{F4F16861-44F6-44AB-B684-8BB07F4BF784}] => (Allow) LPort=9009
FirewallRules: [{20FB25C9-6C25-4DCF-B7A2-F952D65F9D21}] => (Allow) LPort=9009
FirewallRules: [{232E418C-CBEC-4C28-9291-E277E854C9C3}] => (Allow) LPort=9009
FirewallRules: [{0BBDF53D-D1DA-4007-AE52-15355E9424D1}] => (Allow) LPort=9009
FirewallRules: [{E9C58008-27D1-48B7-993B-D77BB8E93620}] => (Allow) LPort=9009
FirewallRules: [{EA2E72D5-6CE0-47A6-A03E-68B2CCAE899B}] => (Allow) LPort=9009
FirewallRules: [{B452B736-4B14-4AB3-BFB7-CFEC816BF5CD}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{8B443EC0-DEBE-40FF-880A-8E93F740E73B}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{300CCBD6-14E1-426C-AB35-FD4C17FFE3E1}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{1FCCAE3A-8401-4F29-A2C2-A270A04EE39F}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{9A0EA718-B933-4278-B971-BD6029B27F89}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{DE641487-B88E-46FB-9AA1-C631ABE52042}] => (Allow) D:\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{E70D7272-00FA-4858-A4FA-8F98F5649FBD}] => (Allow) LPort=9009
FirewallRules: [{54EF31A6-8F55-4CDD-B94C-024A4D50349B}] => (Allow) LPort=9009
FirewallRules: [{9152F906-487D-4A5A-83C3-4B17BE6BD409}] => (Allow) LPort=9009
FirewallRules: [{36CEB36D-C483-4EA0-843B-05DB7D51EE03}] => (Allow) LPort=9009
FirewallRules: [{23A1A617-1C5B-40FC-B5A0-7EDB69DF14EE}] => (Allow) LPort=9009
FirewallRules: [{0A47E69F-2C6D-44C3-8D38-E0911400D19B}] => (Allow) LPort=9009
FirewallRules: [{EE3C6D14-1451-4ADA-8158-408E94A1EAD2}] => (Allow) LPort=9009
FirewallRules: [{779B5586-3E4E-497A-A3BE-3D3BC9D3DF46}] => (Allow) LPort=9009
FirewallRules: [{28BE76A8-CA6B-402B-A193-34A143031FFD}] => (Allow) E:\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{095F9DA1-4E06-45C0-8AE0-696B2F07D4B0}] => (Allow) E:\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{5EB961AB-4B1F-4173-99AE-856A5883ED15}] => (Allow) E:\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{61576EA6-6DD7-4E27-BEC9-C127CCAF4FB0}] => (Allow) E:\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{6B3C4702-5CE1-4683-9684-59EC34FBE3A9}] => (Allow) E:\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{407036D2-857B-4C1F-B8BF-99D303F1146A}] => (Allow) E:\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment)
FirewallRules: [{E2F8FFE9-E01C-4226-B1CE-08CA4C2A8BC4}] => (Allow) LPort=9009
FirewallRules: [{6811E81A-33BF-4864-BC81-F5DEB5ED3763}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{93A7E673-E9AC-4B51-BE2C-CE556577EED2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4930F54B-2A60-41BF-A52E-50E4CE53A86E}] => (Allow) LPort=9009
FirewallRules: [{D5161CAA-1FC5-4AA6-843E-904B69BB7136}] => (Allow) LPort=9009
FirewallRules: [{A8452055-D6DD-4936-8359-A94EF9E49916}] => (Allow) LPort=9009
FirewallRules: [{AD24691F-9A80-4AA5-89B4-9EA50FB9B3AC}] => (Allow) LPort=9009
FirewallRules: [{BCBF19C7-A9AE-4BD5-9686-C77C96977814}] => (Allow) LPort=9009
FirewallRules: [{D2AC0C6F-EF3A-4C62-B0B6-2315F0712E2F}] => (Allow) LPort=9009
FirewallRules: [{79DF6C7E-F682-4811-878C-2F595B25112C}] => (Allow) LPort=9009
FirewallRules: [{8066D563-782B-49EE-A4D0-FDE0E1998AF3}] => (Allow) LPort=9009
FirewallRules: [{82532A22-E5C3-4AA9-A3CF-1EA2C30D7A03}] => (Allow) LPort=9009
FirewallRules: [{CF9417E0-2BF2-4EC5-936E-8391AC8B2A25}] => (Allow) LPort=9009
FirewallRules: [{ACDB6144-78AF-4202-9E58-16E04DECDC6A}] => (Allow) LPort=9009
FirewallRules: [{4CCD37B2-9F1B-4793-8ABF-3574AAD360AC}] => (Allow) LPort=9009
FirewallRules: [{D08EEA4F-2FE5-42BF-929F-B79174F2FA63}] => (Allow) LPort=9009
FirewallRules: [{31127EF7-2C48-4121-908D-B4983B6A893C}] => (Allow) LPort=9009
FirewallRules: [{8CA70F23-9C66-47A2-8BB2-6E36335E52B3}] => (Allow) LPort=9009
FirewallRules: [{89FDA206-454C-4CD2-A4E2-2FAADE214C34}] => (Allow) LPort=9009
FirewallRules: [{3903AD9D-DDDE-404E-81F6-92B329B33D66}] => (Allow) LPort=9009
FirewallRules: [{30C5274B-15F9-497F-B4DA-86E008AA7DD7}] => (Allow) LPort=9009
FirewallRules: [{083C7740-8EF2-4836-A4C2-EF54AD12659C}] => (Allow) LPort=9009
FirewallRules: [{7375BFB8-D9BB-496E-9FFA-44909832325F}] => (Allow) LPort=9009
FirewallRules: [{6442B670-5AE4-411A-BF01-F1627755A6DD}] => (Allow) LPort=9009
FirewallRules: [{D8BA09BD-10FE-4B32-BDBC-DDFCD764AF07}] => (Allow) LPort=9009
FirewallRules: [{64108647-FB18-44E8-8909-F3E84D7DAC25}] => (Allow) LPort=9009
FirewallRules: [{086083E1-7FFC-44E7-BCED-12DB8CC08163}] => (Allow) LPort=9009
FirewallRules: [{25BC0E5C-F679-4DAB-A042-95C6D70ACC81}] => (Allow) LPort=9009
FirewallRules: [{DC30F233-FBB2-4FD1-A238-6C913E200C0B}] => (Allow) LPort=9009
FirewallRules: [{6A1EF1D3-B3A3-42CD-A725-05FA86A8B6DF}] => (Allow) LPort=9009
FirewallRules: [{0A4E7467-8157-4918-B243-30FCC2C1EE23}] => (Allow) LPort=9009
FirewallRules: [{482CC768-B244-4064-A5FB-75ABB50646B7}] => (Allow) LPort=9009
FirewallRules: [UDP Query User{DF4E23D8-CB98-4CE5-A173-F40DBDADE41C}C:\users\david hynek\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\david hynek\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{7235FC76-E0BF-49AC-8C7A-E6D70797A80D}C:\users\david hynek\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\david hynek\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F6828D6A-D7CC-440A-9C8E-2AFF3CCA64F2}] => (Allow) LPort=9009
FirewallRules: [{8949DDB2-AA37-43BF-A8AE-D61023DFE9CB}] => (Allow) LPort=9009
FirewallRules: [{AB0793AF-52F2-4C9B-957A-B985FCCF3320}] => (Allow) LPort=9009
FirewallRules: [{D045176C-3976-4C85-926F-47DADB08FD77}] => (Allow) LPort=9009
FirewallRules: [{AC340917-5AFC-4DCA-BAAC-B6E5C890A095}] => (Allow) LPort=9009
FirewallRules: [{4A01D655-7964-4141-B35F-D122DAD5E184}] => (Allow) LPort=9009
FirewallRules: [{D7E3D2C8-A495-4BCE-808E-B2D1B66D8949}] => (Allow) LPort=9009
FirewallRules: [{B2544B8D-14B0-4056-8ACA-41AB84233EF0}] => (Allow) LPort=9009
FirewallRules: [{A357F991-4A21-4FA1-AAE7-409F2D459024}] => (Allow) LPort=9009
FirewallRules: [{E32A452B-2902-4D9A-B647-A8C1F6AC199A}] => (Allow) LPort=9009
FirewallRules: [{14897974-4C58-4D84-861C-1D9F317BBBB4}] => (Allow) LPort=9009
FirewallRules: [{B9C65C64-5EC0-4BB7-BF83-5713B329E557}] => (Allow) LPort=9009
FirewallRules: [{52DA7319-D381-4FC2-86BA-0C0560C0190B}] => (Allow) LPort=9009
FirewallRules: [{936FDAB5-EB40-4901-BD29-99B67D7F3455}] => (Allow) LPort=9009
FirewallRules: [{E7948933-9E01-4607-AF74-37C1ED7E3775}] => (Allow) LPort=9009
FirewallRules: [{7C4F7B0B-F80B-41FF-BBCD-C7CCE29D6053}] => (Allow) LPort=9009
FirewallRules: [{86ED9F8F-D10C-4224-B336-BBA1E91CA0A1}] => (Allow) LPort=9009
FirewallRules: [{4AD9A521-370C-4F34-882B-7801F082955C}] => (Allow) LPort=9009
FirewallRules: [{B73E3972-4136-4471-A248-EAED24FE931F}] => (Allow) LPort=9009
FirewallRules: [{B8955B0D-3E6A-4830-A87F-6B4804DCB23D}] => (Allow) LPort=9009
FirewallRules: [{BE230922-8C9D-48A4-B8E6-9ED987CEE82F}] => (Allow) LPort=9009
FirewallRules: [{C4C5C2B3-4FC2-481B-995D-F74AA3B2083C}] => (Allow) LPort=9009
FirewallRules: [{5E4BF55B-DCC5-4715-B700-9966BF70ACD6}] => (Allow) LPort=9009
FirewallRules: [{08B2CF22-AEBB-4230-9861-3C564189E9E6}] => (Allow) LPort=9009
FirewallRules: [{345734AF-280D-446C-91EC-61ECC3E3F538}] => (Allow) LPort=9009
FirewallRules: [{B4B110F1-B13D-4CD8-9A72-0D66657EABC4}] => (Allow) LPort=9009
FirewallRules: [{714F6A0C-E56A-4604-899B-DEBD540F9DCA}] => (Allow) LPort=9009
FirewallRules: [{8C7519A9-7C6C-4DDE-9F87-763031A78BE8}] => (Allow) LPort=9009
FirewallRules: [{ADF1BBEA-36C1-44FD-B47B-2382F03915AB}] => (Allow) LPort=9009
FirewallRules: [{B9ADCA61-7FE6-4F98-ADDC-79CAC19E3A10}] => (Allow) LPort=9009
FirewallRules: [{9FA5BCF5-4E10-41B1-8E2B-C60EE54F002B}] => (Allow) LPort=9009
FirewallRules: [{0EA45853-5E5C-4FAD-AB2C-C725D494B57D}] => (Allow) LPort=9009
FirewallRules: [{B32E1A55-79AD-4FEE-AE14-E84DAF4C4914}] => (Allow) LPort=9009
FirewallRules: [{0A3849D0-A907-4758-BD9E-A88CEAB83427}] => (Allow) LPort=9009
FirewallRules: [{C50E0F5D-0A26-40AA-B0AB-411C355D13AD}] => (Allow) LPort=9009
FirewallRules: [{16A70DFB-6F41-4BAB-B005-66D017EA1D0D}] => (Allow) LPort=9009
FirewallRules: [{119E9EE6-30E7-40DB-A2EA-D9C508601178}] => (Allow) LPort=9009
FirewallRules: [{9C364577-34D4-4650-8D5E-4C91FC22AD99}] => (Allow) LPort=9009
FirewallRules: [{3D915885-8F6E-40E8-A346-E1D72BADB37F}] => (Allow) LPort=9009
FirewallRules: [{FF55362C-AD74-4134-A79C-68A383A82A12}] => (Allow) LPort=9009
FirewallRules: [{18588B67-2088-4BF6-B626-C67B4973A7FD}] => (Allow) LPort=9009
FirewallRules: [{4DEABBEC-7F5D-40F0-8E72-69FF82F049E1}] => (Allow) LPort=9009
FirewallRules: [{FBDEBA81-6FFC-4BE6-8309-D7D7C31FADB8}] => (Allow) LPort=9009
FirewallRules: [{DCD7183D-CE21-44A5-8A29-8C471D4525CA}] => (Allow) LPort=9009
FirewallRules: [{FAD8A572-F640-4C00-9A3C-4C2D052216FA}] => (Allow) LPort=9009
FirewallRules: [{823186F0-9043-4295-828D-5CB475722F68}] => (Allow) LPort=9009
FirewallRules: [{FD702372-4705-46FB-A2E9-B5382C6FEBB9}] => (Allow) LPort=9009
FirewallRules: [{7093C2C9-7012-4B83-BC04-A99BB1456626}] => (Allow) LPort=9009
FirewallRules: [{662DB37A-015C-42CA-938A-A7C310F57AF6}] => (Allow) LPort=9009
FirewallRules: [{7426A7D3-E611-45C4-884A-619AD1066B38}] => (Allow) LPort=9009
FirewallRules: [{009382F8-4277-4EC1-8D43-4CDD672552CB}] => (Allow) LPort=9009
FirewallRules: [{E940E38A-AE32-4F9F-89F2-395728D36EC5}] => (Allow) LPort=9009
FirewallRules: [{B84CF8AA-A3D2-4EC2-8C91-D048EA6A818D}] => (Allow) LPort=9009
FirewallRules: [{E84026FB-02D3-4052-8218-32B9E2EC97E1}] => (Allow) LPort=9009
FirewallRules: [{987401E5-4925-455B-87AF-9472F3B21D20}] => (Allow) LPort=9009
FirewallRules: [{A2DAE93D-8367-4FB5-9114-931DD5211CC2}] => (Allow) LPort=9009
FirewallRules: [{725BC548-1BA0-4D10-AD08-B8323036B6D8}] => (Allow) LPort=9009
FirewallRules: [{5EED229C-9ADE-42DD-9E48-1B647B8D8FB1}] => (Allow) LPort=9009
FirewallRules: [{11F97227-421D-4B1D-8914-DDC3F53C14E2}] => (Allow) LPort=9009
FirewallRules: [{EC0082C3-61F3-4962-831C-2F0E45C19CE2}] => (Allow) LPort=9009
FirewallRules: [{DF4C9EFA-AF49-4AE0-B915-78BED9FDCBA1}] => (Allow) LPort=9009
FirewallRules: [{90680ACD-DF12-4D37-98A7-9390217E1DBF}] => (Allow) LPort=9009
FirewallRules: [{701B399A-020F-4B96-B16F-094FCAC3B332}] => (Allow) LPort=9009
FirewallRules: [{01568145-C81C-44FA-9EA9-7652443C4816}] => (Allow) LPort=9009
FirewallRules: [{CAF4789A-1AD2-4D63-A35D-E0564A683017}] => (Allow) LPort=9009
FirewallRules: [{0C900158-D6CE-4EE2-BC9D-994C3F081D84}] => (Allow) LPort=9009
FirewallRules: [{E336B3C4-D8A0-41D2-B927-FB287F44831D}] => (Allow) LPort=9009
FirewallRules: [{31C89D48-DB56-4919-A584-3C8C6A631405}] => (Allow) LPort=9009
FirewallRules: [{29DE56BC-E807-4AFD-A5D9-87C3E3CA26D2}] => (Allow) LPort=9009
FirewallRules: [{F8F0DB90-5B19-4CD1-A092-C2C7A3471147}] => (Allow) LPort=9009
FirewallRules: [{DD33F035-4552-48A8-98B6-A77918441E29}] => (Allow) LPort=9009
FirewallRules: [{AFC3CF23-BF21-4A18-8763-E02FF61F6A18}] => (Allow) LPort=9009
FirewallRules: [{2C758816-E684-497F-AE90-1EC4F6BD9B7C}] => (Allow) LPort=9009
FirewallRules: [{EFC7FB60-48BF-4658-89D5-3233DD4E3B0F}] => (Allow) LPort=9009
FirewallRules: [{92429CCD-9CB8-4A0E-A743-B6AADB976676}] => (Allow) LPort=9009
FirewallRules: [{DCE172E1-0EB1-4866-BEB8-4A867F4A8091}] => (Allow) LPort=9009
FirewallRules: [{8B2282EF-8482-4E0E-AC71-A93C66B55C57}] => (Allow) LPort=9009
FirewallRules: [{1C98354A-3192-4FB5-9555-533E8F0F55F6}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{0738DE21-1378-4CE5-B818-24F3388CBFDF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{E03A5199-CFAD-4D9B-9724-E4976F926686}] => (Allow) LPort=9009
FirewallRules: [{2DCDFEC9-D5D9-47E9-A526-DCD66CE6BE0B}] => (Allow) LPort=9009
FirewallRules: [{15811EC0-129F-45F5-9EB2-43DD9AB758C8}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{B3FB4712-033F-45DF-AB43-58CA54097EFB}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [UDP Query User{83C7257D-9D49-4530-824C-AE7630FAAA0C}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [{0FC6BCEE-17E8-463F-8CA5-3FDBC4D1706A}] => (Allow) LPort=9009
FirewallRules: [{27B19139-D5F0-4453-8270-AB024AD25FE3}] => (Allow) LPort=9009
FirewallRules: [{A6AA4F33-1253-47CF-8994-74D855FAC4E3}] => (Allow) LPort=9009
FirewallRules: [{6A04AEAB-1C3C-4432-8268-AB7853776839}] => (Allow) LPort=9009
FirewallRules: [{0909E4A3-4720-4A3C-846E-D575A6ADA172}] => (Allow) LPort=9009
FirewallRules: [{37713443-23E7-40BB-AEBD-66270F21169E}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{4A163C9A-3CC5-4A19-B211-2DC0C4AF5711}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{187CDEBE-3D83-4FF6-96AC-1483E64BCC5A}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{68C838FC-7087-4FD6-8B79-14F6CAE8D6F9}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{DA5FA6ED-8E54-4D80-AA26-2DF29C1B88CE}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{49DA017E-727C-4805-9789-9F7F07D1FC52}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E76C79DF-2B96-40CF-8CA6-C19AD5C238D8}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{0855B462-3291-434D-952E-4EAA3D202EB4}C:\users\david hynek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david hynek\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{DF4ED434-670F-4ED1-91CB-98ADE1508B03}C:\users\david hynek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david hynek\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4B961E8C-3877-46AE-8CE7-DF285188DE46}] => (Allow) C:\Users\David Hynek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{BD32CB5D-629D-4A3F-AD88-E49B97B2998D}] => (Allow) C:\Users\David Hynek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D11EDE88-64B1-4462-9158-F2C97E083D88}] => (Allow) LPort=9009
FirewallRules: [{DF553598-E53A-4D0D-AA2B-0921C8B30FB8}] => (Allow) LPort=9009
FirewallRules: [{172DA29F-85E1-4AF0-AC3E-858E2367A56C}] => (Allow) LPort=9009
FirewallRules: [{EF7ACCAC-B90B-4355-A77A-D81F4C484F72}] => (Allow) LPort=9009
FirewallRules: [{BA65679B-05AE-40E2-893E-278C26C503FB}] => (Allow) LPort=9009
FirewallRules: [{DD9005A2-C444-4380-A43C-32DA897D123B}] => (Allow) LPort=9009
FirewallRules: [{45E6A2F0-52BC-416F-99C2-933B669D7B3F}] => (Allow) LPort=9009
FirewallRules: [{0A646DBE-0201-4170-8F1B-E5E8357B6F2A}] => (Allow) LPort=9009
FirewallRules: [{76F8FCF1-0163-46CA-BAA3-F5DD7FF1E467}] => (Allow) LPort=9009
FirewallRules: [{E9A47F5F-6E88-4B60-BC8D-24F47807D8D1}] => (Allow) LPort=9009
FirewallRules: [{143EFF28-A06A-4757-9A0D-ABC33F960729}] => (Allow) LPort=9009
FirewallRules: [{3CF4218A-3397-4152-B295-9416277F1FED}] => (Allow) LPort=9009
FirewallRules: [{C47EC4FC-29F0-4AC3-A227-3BC6AE40DACB}] => (Allow) LPort=9009
FirewallRules: [{1BEEEC29-FF83-4075-A7E2-E444557FF320}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8D3F99BD-34D2-44A8-9437-2002426444D8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A9618CA9-DC43-4E36-A49D-69261F636897}] => (Allow) LPort=9009
FirewallRules: [{83F9BE79-ECFB-405A-92BB-8911EBBEF598}] => (Allow) LPort=9009
FirewallRules: [{CEA272C0-9B56-47F6-B3AA-05E679DC4C58}] => (Allow) LPort=9009
FirewallRules: [{D35D5F3E-4F0C-41B4-BE3B-445E9C51F992}] => (Allow) LPort=9009
FirewallRules: [{B83A7325-3BFB-4898-A8CD-C97D29393F65}] => (Allow) LPort=9009
FirewallRules: [{56AF4973-A23B-4591-90E5-8030FB6006E4}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{3AB4FFEA-274E-4618-9FD2-9F71F84B0DE0}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{5931BB60-1E39-42FA-9630-DFA54952C993}] => (Allow) LPort=9009
FirewallRules: [{91CFCF52-FEAC-4A38-B4B3-F72443DC3007}] => (Allow) LPort=9009
FirewallRules: [{2FB8FB5E-4C61-462F-A7CD-D02F3F5141B9}] => (Allow) LPort=9009
FirewallRules: [{24630393-E746-4C58-B432-905C363C5387}] => (Allow) LPort=9009
FirewallRules: [{2E01E808-67B8-48B3-B414-C3379336F017}] => (Allow) LPort=9009
FirewallRules: [{959415FB-8F9E-4B09-88D5-017F332F8421}] => (Allow) LPort=9009
FirewallRules: [{85BD08D8-82AD-4BC4-ABB4-B0C0A4B2A1E5}] => (Allow) LPort=9009
FirewallRules: [{F8C617B0-E81B-4D03-A21E-EC87FCB44833}] => (Allow) LPort=9009
FirewallRules: [{0E2D956F-D52D-42A9-A82F-AD393882CC9A}] => (Allow) LPort=9009
FirewallRules: [{75E77101-129E-4770-B91C-5F3F7485A4D2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{1CFECDE2-BD8A-45A1-9FE3-A62DAAFBF7BA}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{13562350-2404-4723-A296-16433D5296E6}] => (Allow) LPort=9009
FirewallRules: [{F2B1713C-25A6-4BDB-B5AA-1F2890207E33}] => (Allow) LPort=9009
FirewallRules: [{DD92D7FA-06ED-43B2-9E42-55D73B30E66D}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{E62862F4-88AE-436B-9E3C-DF3D83D22996}D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{65D8107F-419F-4ADE-B7D3-C563C2281011}D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{7654ECA3-E827-48A8-91CF-29594F035E88}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{A0F78DFA-952A-40DA-ACAA-FDC389B0D7CA}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{6A284015-A5FE-451A-ACFD-C2A58300B3AF}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{11FEACA3-7B17-4C72-B9E7-F2DDB3EA1B15}] => (Allow) LPort=9009
FirewallRules: [{2626EE50-671D-4E2B-B251-D603C64A6113}] => (Allow) D:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{2E2D00BD-89AF-4DF7-AA30-C91AA5B94470}] => (Allow) D:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{C372174F-C6FC-4616-990F-DEE59BEFACD6}D:\riot games\league of legends\game\league of legends.exe] => (Allow) D:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{3685A82B-C8E1-42C5-9F27-1F0D91C8DBD6}D:\riot games\league of legends\game\league of legends.exe] => (Allow) D:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{79BCD827-B558-4709-AE3E-86B687C7A250}] => (Allow) LPort=9009
FirewallRules: [{31010383-C929-4102-B4CB-1EF71467932F}] => (Allow) LPort=9009
FirewallRules: [{D57AAB80-23B6-48FE-A0AD-D89BFB746C85}] => (Allow) LPort=9009
FirewallRules: [{D1EAAE3A-C629-4626-8998-67B4656E642B}] => (Allow) LPort=9009
FirewallRules: [{50A3B8CD-AAA4-4556-B3E0-1D7141CEBD69}] => (Allow) LPort=9009
FirewallRules: [{430B3BA8-C973-406D-B28F-124043774B66}] => (Allow) LPort=9009
FirewallRules: [{FDE263EF-D67A-4821-9511-D4BAEE17888E}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{9CE9D299-69EF-4715-BBF3-94074B4FA077}D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [UDP Query User{053A5613-DE54-411D-82A5-F4897ABCD923}D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [{4ECED490-BD68-4235-A5EB-C684BA7EB83F}] => (Allow) LPort=9009
FirewallRules: [{810F18A7-631F-422E-B140-FF8D88873526}] => (Allow) LPort=9009
FirewallRules: [{EA385262-161A-4BB0-AEF8-BDF4C630C996}] => (Allow) LPort=9009
FirewallRules: [{8202B220-A98E-4149-B2AC-FBA3028D8468}] => (Allow) LPort=9009
FirewallRules: [{47C0D660-7D88-4361-91D0-6BF14916CD5E}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{B96AD29C-FC47-46E3-890A-55C944871F4E}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{86A8832F-C937-4BE9-8FAE-D4CBDD64BB42}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{C82E0285-6E64-44B0-A2B2-C3CE3F737FD1}] => (Allow) LPort=9009
FirewallRules: [{A14876D4-9644-482C-BC59-3E41746AB2B9}] => (Allow) LPort=9009
FirewallRules: [{4A69E99A-9330-4BC4-A9CC-C1CECA9771A1}] => (Allow) LPort=9009
FirewallRules: [{D07953FD-4EFF-4B3A-B300-2CA3138769B8}] => (Allow) LPort=9009
FirewallRules: [{555DC1FF-E90D-4EE4-AB68-DB7F35AAAEB8}] => (Allow) LPort=9009
FirewallRules: [{FDF24605-7062-482A-9D82-3EDAA33B50CC}] => (Allow) LPort=9009
FirewallRules: [{8C4ACEB5-024C-4631-B52B-0BC5A78E6465}] => (Allow) LPort=9009
FirewallRules: [{23EECF9F-AD40-4DE9-A5D1-EEC29FE16537}] => (Allow) LPort=9009
FirewallRules: [{6E38216A-3FD3-43B4-9B2D-F0C45C893892}] => (Allow) LPort=9009
FirewallRules: [{D25BCC7D-142F-42B2-8BC6-1A3E31B35B72}] => (Allow) LPort=9009
FirewallRules: [{E4D57339-FF78-489D-9958-C414B0283074}] => (Allow) LPort=9009
FirewallRules: [{6EB9ABA9-D303-4C7E-94B3-3CB516D18229}] => (Allow) LPort=9009
FirewallRules: [{08DA8708-41B9-4980-B3B6-DAA609E929C5}] => (Allow) LPort=9009
FirewallRules: [{D4FB6D6D-1E9D-4769-9891-EA667F3C26D6}] => (Allow) LPort=9009
FirewallRules: [{80263C50-7A8B-4C66-A7A8-2EF2D5B705C8}] => (Allow) LPort=9009
FirewallRules: [{B904A514-B414-4856-8DF0-E70210168985}] => (Allow) LPort=9009
FirewallRules: [{697B1FD8-A825-40BA-921F-4657ED1379F4}] => (Allow) LPort=9009
FirewallRules: [{0EEB56F4-8240-4AA8-925A-5D66B09CC1AD}] => (Allow) LPort=9009
FirewallRules: [{A1F7600E-78C6-4660-8429-E7A2765C4A8C}] => (Allow) LPort=9009
FirewallRules: [{5CD7E608-B17E-46B2-81E5-9DDDF5CBB6B9}] => (Allow) LPort=9009
FirewallRules: [{6387AC2D-F16D-4EC3-BC46-20E2EC689133}] => (Allow) LPort=9009
FirewallRules: [{1A41F379-EEB8-4DB1-9400-773A18626446}] => (Allow) D:\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{9412639E-B277-48CD-82E6-5A5D5C94916F}] => (Allow) D:\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{65C9955A-828D-4AE9-9830-43F40F304E80}] => (Allow) D:\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{FAC89231-764B-4F1D-87E1-1225FE78890A}] => (Allow) D:\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{9C712ABE-060E-4E9E-BA2B-B646399B5E24}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{7162F4C4-092B-4E43-9917-C9AC9C1551AB}C:\users\david hynek\appdata\local\blitz\app-1.6.22\blitz.exe] => (Allow) C:\users\david hynek\appdata\local\blitz\app-1.6.22\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{E341F405-56D5-4CE2-A2C6-63587515DBC4}C:\users\david hynek\appdata\local\blitz\app-1.6.22\blitz.exe] => (Allow) C:\users\david hynek\appdata\local\blitz\app-1.6.22\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [{DB6249B8-CCCB-4E4E-AB9A-23BF5A43A202}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{CED9EB8B-CC0D-4C92-BBE1-7978B9FC9FE6}C:\users\david hynek\appdata\local\blitz\app-1.6.26\blitz.exe] => (Allow) C:\users\david hynek\appdata\local\blitz\app-1.6.26\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{FF07611C-2529-41D0-9A93-91EC069DAA14}C:\users\david hynek\appdata\local\blitz\app-1.6.26\blitz.exe] => (Allow) C:\users\david hynek\appdata\local\blitz\app-1.6.26\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [TCP Query User{B51E3B51-6A18-49B1-BE13-B84AD0E68F15}C:\users\david hynek\appdata\roaming\utorrent\updates\3.5.5_45608.exe] => (Allow) C:\users\david hynek\appdata\roaming\utorrent\updates\3.5.5_45608.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{1DC7E556-2147-46D9-B68E-5BB0FF4D5FB8}C:\users\david hynek\appdata\roaming\utorrent\updates\3.5.5_45608.exe] => (Allow) C:\users\david hynek\appdata\roaming\utorrent\updates\3.5.5_45608.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{593ABCD8-A407-4F03-A58E-88205FEA29FB}] => (Allow) LPort=9009
FirewallRules: [{A1E762F9-8AFA-45C0-8413-CFDE11DFCFA0}] => (Allow) LPort=9009
FirewallRules: [{9A04358B-BB68-44F2-88AA-E7E8FE098C69}] => (Allow) LPort=9009
FirewallRules: [{2B8B8C76-6B89-498C-8568-8AB133B985F8}] => (Allow) LPort=9009
FirewallRules: [{FAFE79B7-B559-45FC-AF67-E7A07AE97B9F}] => (Allow) LPort=9009
FirewallRules: [{F6D93EC1-BA69-47AD-AE30-AC6C33A67D06}] => (Allow) LPort=9009
FirewallRules: [{7CA71D9B-9081-4C2A-BC64-39D265A9DF68}] => (Allow) LPort=9009
FirewallRules: [{5CE9E866-8E45-416D-B850-945CBEA393E3}] => (Allow) LPort=9009
FirewallRules: [{1EABD611-FA1B-4564-AB4B-265233306FA4}] => (Allow) LPort=9009
FirewallRules: [{8E70DFF3-DEDA-4725-B841-F3068CCA7549}] => (Allow) LPort=9009
FirewallRules: [{9D9F7471-2461-43DA-8C23-1D638613C18B}] => (Allow) LPort=9009
FirewallRules: [{3F360D67-19E0-491A-9F2D-77F7065C1675}] => (Allow) LPort=9009
FirewallRules: [{26D15A49-64B4-4FF7-B55D-A8197CDEE4F8}] => (Allow) LPort=9009
FirewallRules: [{0BE9C742-4C83-438E-984E-2D5A4441FACC}] => (Allow) LPort=9009
FirewallRules: [{5C83ED01-4CD2-4182-8EA4-B97AAC5D351B}] => (Allow) LPort=9009
FirewallRules: [{1C141BBC-4A0D-454E-A056-2992273CE03B}] => (Allow) LPort=9009
FirewallRules: [{7F731FFE-665A-4401-8EC1-A547C0F3BC03}] => (Allow) LPort=9009
FirewallRules: [{FBCC8275-E58D-452F-9EB1-0FB422937C83}] => (Allow) LPort=9009
FirewallRules: [{51FD7412-93CB-4F00-8E26-8A74A77E2B1A}] => (Allow) LPort=9009
FirewallRules: [{16F2A893-31C6-47C8-A3F7-E025506B664F}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [TCP Query User{9FD39CB3-89E4-4041-ADB3-C62598917927}D:\heroes of the storm public test\versions\base84962\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base84962\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{CD067ABD-FFC1-4ABA-9630-47B27FE5C309}D:\heroes of the storm public test\versions\base84962\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base84962\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{C5D6D9F6-9EA7-4D62-A048-D0953A7CAE0C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{23194CDD-D5B0-45DE-B18D-F53FF9744EAF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C2001AD6-FABD-48D0-88C2-E2A96DAC1FF3}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{915E04AB-68FA-4E4E-B968-5185F97555BA}D:\videolan\vlc\vlc.exe] => (Allow) D:\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{291FA121-2DAE-402A-B8E2-7D010952614E}D:\videolan\vlc\vlc.exe] => (Allow) D:\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{83B5E2D7-BB9E-4783-8D1F-5872FE0B8CE5}] => (Allow) D:\Steam\steamapps\common\Lost Ark Live\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{A64661A1-ED71-4A79-B00F-F629401F586A}] => (Allow) D:\Steam\steamapps\common\Lost Ark Live\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{BE609FFC-8047-47C9-B502-5F56965176C5}] => (Allow) LPort=9009
FirewallRules: [{F39B441B-A430-447B-BEF1-E8592D88B1C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{89C0A37F-C3E6-4EAC-ACAA-D7D5F41A9378}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4D101E11-05C4-4FD3-BA4A-B8891A2E1655}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2081AD69-FFB8-4511-B44E-975382259055}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{63D7E887-A118-4D8A-B18D-AF35202D0580}] => (Allow) LPort=9009
FirewallRules: [{54E9A591-EFC9-4E8D-976D-E886E0FEE7F3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8BF319FB-13CD-437D-9282-2E71B6BF5435}] => (Allow) D:\Overwolf\0.174.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{D993BD5A-0A2A-4E53-B398-352DD1719782}] => (Allow) D:\Overwolf\0.174.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{D2271AE8-A1D6-45BE-B46D-EC4C92EE2877}] => (Block) D:\Overwolf\0.174.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{A2243E23-C624-4640-A0FE-0E6BDA2A2F5A}] => (Block) D:\Overwolf\0.174.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{C9DC837E-84A9-4C39-98A2-5B28C8E12017}] => (Allow) LPort=9009
FirewallRules: [{9EC04773-CBFC-4940-AFAF-F9B3D53A0B31}] => (Allow) E:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6B445CE7-8999-4EEC-9547-0F396F918E2B}] => (Allow) E:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{AA2598BD-537D-47F0-B91A-5CC4BC8F6E38}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

09-07-2021 19:10:29 Instalační služba modulů systému Windows
09-07-2021 19:10:48 Instalační služba modulů systému Windows
15-07-2021 19:22:27 Configured APP Center
19-07-2021 20:39:42 Nainstalováno rozhraní DirectX

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (07/22/2021 03:24:36 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (07/22/2021 02:30:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RtkUWP.exe, verze: 1.19.234.0, časové razítko: 0x5f7c226b
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1081, časové razítko: 0xde3fc775
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000010bd3e
ID chybujícího procesu: 0x107c
Čas spuštění chybující aplikace: 0x01d77ef55273b9f5
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj\RtkUWP.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 16312996-0a81-4142-b943-a5400f138da5
Úplný název chybujícího balíčku: RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj
ID aplikace související s chybujícím balíčkem: App

Error: (07/22/2021 02:11:09 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-KR0LJ7U)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (07/22/2021 03:30:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SnippingTool.exe, verze: 10.0.19041.746, časové razítko: 0xeb13aef9
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1081, časové razítko: 0x088bf621
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000008c57f
ID chybujícího procesu: 0x1a10
Čas spuštění chybující aplikace: 0x01d77e9923506ec5
Cesta k chybující aplikaci: C:\WINDOWS\system32\SnippingTool.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: e96866d4-2eb1-49f5-8ee9-2838ee446ab9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (07/21/2021 07:33:44 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-KR0LJ7U)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (07/21/2021 07:16:43 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-KR0LJ7U)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (07/20/2021 05:48:50 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-KR0LJ7U)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (07/19/2021 05:02:30 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-KR0LJ7U)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.


System errors:
=============
Error: (07/22/2021 03:24:27 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (07/22/2021 03:24:27 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba NVIDIA LocalSystem Container byla ukončena s následující chybou:
Obecný spustitelný příkaz vrátil výsledek označující selhání.

Error: (07/22/2021 03:17:49 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-KR0LJ7U)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (07/21/2021 11:21:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) SUR QC Software Asset Manager bylo dosaženo časového limitu (30000 ms).

Error: (07/20/2021 11:21:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) SUR QC Software Asset Manager bylo dosaženo časového limitu (30000 ms).

Error: (07/20/2021 05:45:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) SUR QC Software Asset Manager bylo dosaženo časového limitu (30000 ms).

Error: (07/19/2021 11:19:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) SUR QC Software Asset Manager bylo dosaženo časového limitu (30000 ms).

Error: (07/19/2021 03:56:03 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-KR0LJ7U)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===============
Date: 2021-07-22 14:08:03
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-07-22 01:13:11
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F10c 12/18/2019
Motherboard: Gigabyte Technology Co., Ltd. Z390 GAMING X-CF
Processor: Intel(R) Core(TM) i7-8700 CPU @ 3.20GHz
Percentage of memory in use: 42%
Total physical RAM: 16315.39 MB
Available physical RAM: 9378.6 MB
Total Virtual: 25531.39 MB
Available Virtual: 15121.07 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:231.84 GB) (Free:94.02 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:1863.01 GB) (Free:1359.06 GB) NTFS
Drive e: (SSD) (Fixed) (Total:465.76 GB) (Free:181.41 GB) NTFS

\\?\Volume{3b3ffe23-0000-0000-0000-30183a000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==================== End of Addition.txt =======================

Zdravím!

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {290C0CDC-093F-4480-92BD-D7324651B9DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {7D7FEF56-466D-48D9-BE98-28BCE92EA891} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 19-07-2021 01
Ran by David Hynek (23-07-2021 16:41:22) Run:3
Running from C:\Users\David Hynek\Desktop
Loaded Profiles: David Hynek
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {290C0CDC-093F-4480-92BD-D7324651B9DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {7D7FEF56-466D-48D9-BE98-28BCE92EA891} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{290C0CDC-093F-4480-92BD-D7324651B9DB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{290C0CDC-093F-4480-92BD-D7324651B9DB}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7D7FEF56-466D-48D9-BE98-28BCE92EA891}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7D7FEF56-466D-48D9-BE98-28BCE92EA891}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 28530517 B
Java, Flash, Steam htmlcache => 377276769 B
Windows/system/drivers => 2381326 B
Edge => 36352 B
Chrome => 423403949 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
David Hynek => 21697517 B

RecycleBin => 0 B
EmptyTemp: => 824.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:41:32 ====

Smazáno, log by již měl být OK.

Super, děkuji zase za skvělou práci a přeji hezký zbytek dne!
Můžete lock

Hezký den i vám a nemáte zač!