prosím o kontrolu logu, je to z počítače dětí, kde jsem zjistil, že je nainstalovaný cheater do Counter Strike 2. Většinou se u takových programů dají očekávat přibalené viry. Hlášený mám jeden problém, že jim to najednou chvílemi zamrzá a občas padá ve hře F1 24, ale to je jen v této jedné hře. Mimochodem za ten cheater dostaly okamžitě VAC ban, takže přišly o prémium účet, veškeré skiny, samolepky atd. atd. Jejich boj... Díky
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-05-2025
Ran by zeidl (administrator) on NASEGAMINGPC24 (ALZA a.s. AlzaPC) (23-05-2025 17:04:20)
Running from C:\Users\zeidl\Downloads\FRST64.exe
Loaded Profiles: zeidl
Platform: Microsoft Windows 11 Home Version 24H2 26100.4061 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.075.0420.0002\Microsoft.SharePoint.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25094.310.3616.953_x64__8wekyb3d8bbwe\ms-teams.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_4644c24027cfb2ed\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncHelper.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_adf5a840df867035\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5fb296660a9719a9\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25032.52.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.9.1.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.10401.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5fb296660a9719a9\RtkAudUService64.exe [3498408 2022-11-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2025-04-05] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4994352 2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4698720 2025-05-19] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Run: [Opera GX Stable] => C:\Users\zeidl\AppData\Local\Programs\Opera GX\opera.exe [1511304 2025-05-21] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Run: [Opera Browser Assistant] => C:\Users\zeidl\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4536216 2025-04-14] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Run: [Opera GX Browser Assistant] => C:\Users\zeidl\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\Microsoft.SharePoint.exe [1033024 2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Run: [MicrosoftEdgeAutoLaunch_219F34CB22E66253DABC19F0AF82B3AB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4045864 2025-05-15] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\136.0.7103.114\Installer\chrmstp.exe [2025-05-16] (Google LLC -> Google LLC)
Startup: C:\Users\zeidl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2025-04-12]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {6A5B300D-50DB-42D1-A9D7-ADB925842F33} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7156.2{73E04CC5-858F-477B-9080-57DB8B7E1025} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7156.2\updater.exe [7096416 2025-05-08] (Google LLC -> Google LLC)
Task: {5612D8D2-ED57-4814-A473-53CD5EA8E369} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [307432 2025-05-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {605C06BF-2736-48B0-ABF3-31D01CE682B9} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [307432 2025-05-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {05B6DBB4-0DFA-4D12-8F51-C75D5FF68E41} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29102272 2025-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {D488806D-5DFD-47B8-88F8-E8797BB288B3} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [68312 2025-05-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {F11DD9A2-642A-417B-A88C-48397589E35F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29102272 2025-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {EDCAC2C6-6545-44AD-8F1B-BFD506271A6B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [307432 2025-05-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {85EA043B-54F5-4D18-9B6A-D227264B011A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [307432 2025-05-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {E62EDB18-8252-4F73-9142-5506C248958C} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [213216 2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {E550F3F5-C4FB-4B76-8938-51A711E23A2C} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4545456 2025-04-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {42139D8D-8B4B-471F-B759-66A8291CEBF2} - System32\Tasks\Microsoft\Windows\WindowsAI\Recall\InitialConfiguration => {709FD5EF-7296-4154-BD3A-E9830FCFA60A} C:\Windows\system32\ShellConfigTask.dll [274432 2025-05-13] (Microsoft Windows -> Microsoft Corporation)
Task: {E8AEE954-4693-4EC9-8B18-23BA31273BA3} - System32\Tasks\Microsoft\Windows\WindowsAI\Recall\PolicyConfiguration => {0BE6820D-B667-4CB6-931B-C153A77DA895} C:\Windows\system32\ShellConfigTask.dll [274432 2025-05-13] (Microsoft Windows -> Microsoft Corporation)
Task: {DA4231BA-8957-419E-A962-D9CC98DD8AA6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {4E16031E-BF5D-4838-8C1B-86D1DC0642BC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E246A52F-D499-45E1-81D7-BCCAA198E204} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {369ABFF0-AFF6-4023-B140-CEB85B14AD20} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {550E8395-668D-4570-B512-21B8EF76302B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6FDEC7F7-0FB6-4A7E-864B-0E0A9045B4A4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {727EB667-168C-4F66-B65C-D95651680888} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E3A52042-14CE-4244-B109-726C0AA41A91} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B7675B89-2758-465E-B164-ACEA05B0C336} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6F8C22A0-04D8-453D-9E1C-16CE82CC1FF2} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4224296 2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {31E53257-2F7B-4724-8570-56CFB583DE2F} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1633276031-3013495308-3651701591-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4224296 2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {14EE206A-6E9E-4F2C-9186-7C5E4AC3C257} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1633276031-3013495308-3651701591-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (No File) <==== ATTENTION
Task: {CD3CE1C8-06CC-467C-AA5A-E57BEBB1FD88} - System32\Tasks\OneDrive Startup Task-S-1-5-21-1633276031-3013495308-3651701591-1003 => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\OneDriveLauncher.exe [679728 2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A913893-8017-4335-AF85-A28A899CCB70} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1745925501 => C:\Users\zeidl\AppData\Local\Programs\Opera GX\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\zeidl\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {8702D739-258A-4E52-A885-DA51413B50C0} - System32\Tasks\Opera GX scheduled Autoupdate 1745736286 => C:\Users\zeidl\AppData\Local\Programs\Opera GX\autoupdate\opera_autoupdate.exe [5981064 2025-05-19] (Opera Norway AS -> Opera Software)
Task: {C3454FFB-4449-4929-B793-34C461619883} - System32\Tasks\Opera scheduled assistant Autoupdate 1745737434 => C:\Users\zeidl\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5966744 2025-05-12] (Opera Norway AS -> Opera Software) -> --scheduledtask --productiscomponent --bypasslauncher --installdir="C:\Users\zeidl\AppData\Local\Programs\Opera\assistant" --producttype=assistant $(Arg0)
Task: {94A04519-341F-4891-BC01-F563F743E1E3} - System32\Tasks\Opera scheduled Autoupdate 1745737434 => C:\Users\zeidl\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5966744 2025-05-12] (Opera Norway AS -> Opera Software)
Task: {4672DB4C-7A8A-4709-B9B4-8F9D612AD072} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2397952 2025-05-07] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1dfe0d56-3411-4cea-b695-5ed77e66f94e}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8ed98904-9b67-40a0-a2c0-576b71e2c4ec}: [DhcpNameServer] 172.64.36.1 172.64.36.2
Tcpip\..\Interfaces\{8ed98904-9b67-40a0-a2c0-576b71e2c4ec}: [DhcpDomain] install.lcl
Edge:
=======
Edge Profile: C:\Users\zeidl\AppData\Local\Microsoft\Edge\User Data\Default [2025-05-23]
Edge Extension: (Dokumenty Google offline) - C:\Users\zeidl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-30]
Edge Extension: (Edge relevant text changes) - C:\Users\zeidl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-12-25]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.451.0 -> C:\Program Files\Java\jre1.8.0_451\bin\dtplugin\npDeployJava1.dll [2025-04-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.451.0 -> C:\Program Files\Java\jre1.8.0_451\bin\plugin2\npjp2.dll [2025-04-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-04-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.451.0 -> C:\Program Files (x86)\Java\jre1.8.0_451\bin\dtplugin\npDeployJava1.dll [2025-04-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.451.0 -> C:\Program Files (x86)\Java\jre1.8.0_451\bin\plugin2\npjp2.dll [2025-04-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2025-04-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-04-03] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\zeidl\AppData\Local\Google\Chrome\User Data\Default [2025-05-23]
CHR Notifications: Default -> hxxps://aternos.org
CHR Extension: (Dokumenty Google offline) - C:\Users\zeidl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zeidl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-12-25]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKU\S-1-5-21-1633276031-3013495308-3651701591-1003) Opera GXStable - "C:\Users\zeidl\AppData\Local\Programs\Opera GX\opera.exe"
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [840144 2025-05-23] (ASUSTeK COMPUTER INC. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18663720 2025-03-20] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13824240 2025-05-08] (Microsoft Corporation -> Microsoft Corporation)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [112174784 2025-05-16] (Electronic Arts, Inc. -> Electronic Arts)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [18917472 2025-05-21] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [965872 2024-12-30] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3065640 2025-05-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [367064 2024-11-23] (Epic Games Inc. -> Epic Games, Inc.)
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncHelper.exe [3601192 2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
S3 GalaxyClientService; \\?\C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2421584 2025-04-10] (GOG sp. z o.o -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7654224 2025-04-07] (GOG sp. z o.o -> GOG.com)
S2 Intel(R) Platform License Manager Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [945264 2025-05-23] (McAfee, LLC -> McAfee, LLC)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_adf5a840df867035\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-11-07] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.075.0420.0002\OneDriveUpdaterService.exe [3852608 2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2397952 2025-05-07] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [4919272 2025-04-02] (Rockstar Games, Inc. -> Rockstar Games)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 atvi-randgrid_sr; C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\randgrid.sys [8519984 2025-05-16] (Activision Publishing Inc -> Activision Blizzard, Inc.)
R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [140960 2022-06-22] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_1ebed6f33a1c1014\iaLPSS2_I2C_ADL.sys [210600 2022-06-22] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1605296 2022-07-12] (Intel Corporation -> Intel Corporation)
R3 KslD; C:\Windows\System32\drivers\wd\KslD.sys [331168 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt25cx21; C:\Windows\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_8e61b4ea25373168\rt25cx21x64.sys [887776 2024-10-21] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_feec7a9662e785f0\rtcx21x64.sys [539648 2024-03-28] (Microsoft Windows -> Realtek)
S3 ThermalFilter; C:\Windows\System32\DriverStore\FileRepository\c_thermal.inf_amd64_732a53ed1662b707\ThermalFilter.sys [75376 2025-04-09] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
U5 usbprint_f; C:\XONE\Resources\xee.sys [21056 2025-05-11] (Edgard Roberto Viera -> ) [File not signed]
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20016 2025-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [605576 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [100744 2025-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-23 17:04 - 2025-05-23 17:04 - 000025588 _____ C:\Users\zeidl\Downloads\FRST.txt
2025-05-23 17:03 - 2025-05-23 17:04 - 000000000 ____D C:\FRST
2025-05-23 17:03 - 2025-05-23 17:03 - 002405888 _____ (Farbar) C:\Users\zeidl\Downloads\FRST64.exe
2025-05-22 18:22 - 2025-05-22 18:22 - 000000000 ____D C:\Users\zeidl\AppData\Local\QZSim
2025-05-22 18:22 - 2025-05-22 18:22 - 000000000 ____D C:\Users\zeidl\AppData\Local\GameAnalytics
2025-05-22 18:20 - 2025-05-22 18:20 - 000000223 _____ C:\Users\zeidl\Desktop\Quarantine Zone The Last Check Demo.url
2025-05-21 10:19 - 2025-05-21 10:19 - 114922364 _____ C:\Users\zeidl\Downloads\bmw_5-series_e60_stef_pedro.zip
2025-05-21 10:16 - 2025-05-21 10:16 - 190198613 _____ C:\Users\zeidl\Downloads\BMW_M5_F90_Restyling.zip
2025-05-21 07:56 - 2025-05-23 16:59 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\Avast Software
2025-05-21 07:56 - 2025-05-23 16:59 - 000000000 ____D C:\Users\zeidl\AppData\Local\Avast Software
2025-05-21 07:54 - 2025-05-23 17:00 - 000000000 ____D C:\ProgramData\Avast Software
2025-05-20 20:39 - 2025-05-21 10:53 - 000000000 ____D C:\Program Files\ExLoader
2025-05-19 16:33 - 2025-05-19 16:33 - 000736036 _____ C:\Windows\system32\perfh015.dat
2025-05-19 16:33 - 2025-05-19 16:33 - 000696324 _____ C:\Windows\system32\perfh007.dat
2025-05-19 16:33 - 2025-05-19 16:33 - 000681980 _____ C:\Windows\system32\perfh00E.dat
2025-05-19 16:33 - 2025-05-19 16:33 - 000677108 _____ C:\Windows\system32\perfh005.dat
2025-05-19 16:33 - 2025-05-19 16:33 - 000161884 _____ C:\Windows\system32\perfc00E.dat
2025-05-19 16:33 - 2025-05-19 16:33 - 000151912 _____ C:\Windows\system32\perfc015.dat
2025-05-19 16:33 - 2025-05-19 16:33 - 000150276 _____ C:\Windows\system32\perfc007.dat
2025-05-19 16:33 - 2025-05-19 16:33 - 000144960 _____ C:\Windows\system32\perfc005.dat
2025-05-14 14:30 - 2025-05-23 14:20 - 000000000 ____D C:\Windows\CbsTemp
2025-05-13 21:07 - 2025-05-13 21:07 - 000030998 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-05-13 21:07 - 2025-05-13 21:07 - 000030998 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2025-05-11 12:37 - 2025-05-11 12:37 - 000000000 ____D C:\XONE
2025-05-11 12:37 - 2025-05-11 12:37 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\mptwbeilorvadgknquxcfjmpswbehlorvadgknq
2025-05-06 17:11 - 2025-05-06 17:11 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\OsirisCS2
2025-05-05 16:59 - 2025-05-05 16:59 - 000000000 ____D C:\Program Files (x86)\Java
2025-05-05 16:59 - 2025-04-05 03:41 - 000178816 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2025-05-01 08:28 - 2025-05-01 08:28 - 000000000 ____D C:\en1gma-tech
2025-04-29 13:18 - 2025-05-23 16:07 - 000003782 _____ C:\Windows\system32\Tasks\Opera GX scheduled assistant Autoupdate 1745925501
2025-04-27 13:11 - 2025-05-15 19:54 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\ExHack
2025-04-27 09:08 - 2025-05-19 14:32 - 000000000 ____D C:\SharkHack
2025-04-27 09:03 - 2025-05-23 16:07 - 000003942 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1745737434
2025-04-27 09:03 - 2025-05-23 16:07 - 000003660 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1745737434
2025-04-27 09:03 - 2025-05-20 20:29 - 000000986 _____ C:\Users\zeidl\Desktop\ExLoader.lnk
2025-04-27 09:03 - 2025-05-14 13:35 - 000001390 _____ C:\Users\zeidl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2025-04-27 09:03 - 2025-04-27 09:03 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\com.swiftsoft
2025-04-27 08:49 - 2025-04-27 08:49 - 000000000 ____D C:\Users\zeidl\Documents\Endorphin-Hack
2025-04-27 08:44 - 2025-05-23 16:07 - 000003582 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1745736286
2025-04-27 08:44 - 2025-05-21 17:18 - 000001419 _____ C:\Users\zeidl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera GX.lnk
2025-04-27 08:44 - 2025-04-27 09:03 - 000000000 ____D C:\Users\zeidl\AppData\Local\Opera Software
2025-04-27 08:43 - 2025-04-27 09:03 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\Opera Software
2025-04-24 13:57 - 2025-04-24 13:57 - 000000000 ____D C:\Users\zeidl\Documents\Call of Duty
2025-04-24 13:57 - 2025-04-24 13:57 - 000000000 ____D C:\Users\zeidl\AppData\Local\Activision
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-23 17:00 - 2025-02-17 15:53 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-05-23 17:00 - 2025-01-30 18:36 - 000000000 ___RD C:\Users\zeidl\OneDrive - Gymnázium Kolín
2025-05-23 17:00 - 2024-12-25 13:41 - 000000000 ____D C:\Program Files (x86)\Steam
2025-05-23 17:00 - 2024-11-23 01:43 - 000000000 ____D C:\ProgramData\NVIDIA
2025-05-23 17:00 - 2024-10-24 12:41 - 000005548 _____ C:\Windows\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-05-23 17:00 - 2024-10-24 12:38 - 000891752 _____ () C:\Windows\system32\wpbbin.exe
2025-05-23 17:00 - 2024-10-24 12:38 - 000012288 ___SH C:\DumpStack.log.tmp
2025-05-23 17:00 - 2024-10-24 12:38 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-05-23 17:00 - 2024-10-24 12:17 - 000840144 _____ C:\Windows\system32\AsusUpdateCheck.exe
2025-05-23 17:00 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\SystemTemp
2025-05-23 17:00 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\ServiceState
2025-05-23 17:00 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\AppReadiness
2025-05-23 17:00 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-05-23 16:59 - 2024-04-01 09:21 - 000786432 _____ C:\Windows\system32\config\BBI
2025-05-23 16:55 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-05-23 16:11 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\SecurityHealth
2025-05-23 16:07 - 2025-02-16 13:07 - 000002716 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-05-23 16:07 - 2025-02-13 16:41 - 000003082 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-1633276031-3013495308-3651701591-1003
2025-05-23 16:07 - 2025-01-28 21:43 - 000003270 _____ C:\Windows\system32\Tasks\Overwolf Updater Task
2025-05-23 16:07 - 2024-12-25 13:25 - 000003070 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1633276031-3013495308-3651701591-1003
2025-05-23 16:07 - 2024-11-23 02:08 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-05-23 16:07 - 2024-11-23 02:08 - 000003152 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-05-23 16:07 - 2024-11-23 02:08 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-05-23 16:07 - 2024-11-23 02:08 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-05-23 16:07 - 2024-11-23 02:08 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-05-23 16:07 - 2024-11-23 02:08 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-05-23 16:07 - 2024-11-23 02:08 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-05-23 16:07 - 2024-11-23 02:08 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-05-23 16:07 - 2024-11-23 02:08 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-05-23 16:07 - 2024-10-24 12:38 - 000003644 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{56A54318-EF54-4F92-8D9D-E76E4C316161}
2025-05-23 16:07 - 2024-10-24 12:38 - 000003418 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{1879C1C5-6E70-4734-89B0-1CFB3B430B95}
2025-05-23 16:07 - 2024-10-24 12:17 - 000003062 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1633276031-3013495308-3651701591-500
2025-05-23 14:48 - 2024-12-25 13:39 - 000000000 ____D C:\Users\zeidl\AppData\Local\Roblox
2025-05-23 12:32 - 2024-12-25 14:20 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-05-22 18:50 - 2025-01-12 15:15 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\obs-studio
2025-05-22 18:33 - 2024-12-25 14:57 - 000000000 ____D C:\ProgramData\Packer
2025-05-22 18:22 - 2024-12-28 14:03 - 000000000 ____D C:\Users\zeidl\AppData\Local\UnrealEngine
2025-05-22 18:22 - 2024-12-25 13:22 - 000000000 ____D C:\Users\zeidl\AppData\Local\D3DSCache
2025-05-22 06:47 - 2025-04-10 16:11 - 000001395 _____ C:\Users\zeidl\Desktop\Roblox Player.lnk
2025-05-22 06:47 - 2024-12-25 22:17 - 000000000 ____D C:\Users\zeidl\AppData\Local\CrashDumps
2025-05-22 06:47 - 2024-12-25 13:39 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2025-05-21 08:05 - 2025-01-12 15:37 - 000000000 ____D C:\ProgramData\EA Desktop
2025-05-21 07:54 - 2024-04-01 09:26 - 000000000 ___HD C:\Windows\ELAMBKUP
2025-05-20 16:41 - 2024-10-24 12:41 - 000000000 ____D C:\Program Files\Microsoft Office
2025-05-20 13:54 - 2024-12-25 13:39 - 000001395 _____ C:\Users\zeidl\Desktop\Roblox Studio.lnk
2025-05-19 16:33 - 2024-10-24 12:44 - 004181812 _____ C:\Windows\system32\PerfStringBackup.INI
2025-05-19 16:33 - 2024-04-01 09:24 - 000000000 ____D C:\Windows\INF
2025-05-17 09:24 - 2025-02-16 13:07 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-05-17 08:19 - 2024-10-24 12:38 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-05-17 08:19 - 2024-10-24 12:38 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-05-16 06:24 - 2024-12-25 13:33 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-05-16 06:24 - 2024-12-25 13:33 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-05-15 06:33 - 2024-12-31 20:47 - 000000000 ____D C:\Users\zeidl\Documents\SimHub
2025-05-15 06:23 - 2024-11-23 01:41 - 000000000 ____D C:\Windows\system32\MRT
2025-05-15 06:22 - 2024-11-23 01:41 - 214836568 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-05-14 20:14 - 2024-12-25 13:22 - 000000000 ____D C:\Users\zeidl\AppData\Local\Packages
2025-05-14 20:14 - 2024-10-24 12:40 - 000000000 ____D C:\ProgramData\Packages
2025-05-14 20:13 - 2024-10-24 12:18 - 000001623 _____ C:\Windows\system32\config\VSMIDK
2025-05-14 17:17 - 2024-10-24 12:38 - 000481448 _____ C:\Windows\system32\FNTCACHE.DAT
2025-05-14 17:17 - 2024-10-23 10:29 - 000000000 ____D C:\Windows\system32\Drivers\en-GB
2025-05-14 17:17 - 2024-09-06 06:10 - 000000000 ____D C:\Windows\InboxApps
2025-05-14 17:17 - 2024-04-01 10:08 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\UUS
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\SysWOW64\setup
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\SysWOW64\oobe
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\SystemResources
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\SystemApps
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\WinMetadata
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\ShellExperiences
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\setup
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\oobe
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\migwiz
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\HealthAttestationClient
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\Dism
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\DDFs
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\system32\appraiser
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\ShellExperiences
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\Provisioning
2025-05-14 17:17 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\bcastdvr
2025-05-13 21:07 - 2024-10-24 12:42 - 003369984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-05-13 14:06 - 2025-01-12 15:37 - 000000000 ____D C:\Users\zeidl\AppData\Local\Origin
2025-05-11 15:08 - 2024-10-24 12:38 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-05-11 14:49 - 2024-10-24 12:55 - 000000000 ____D C:\Windows\Minidump
2025-05-11 14:49 - 1601-01-01 02:00 - 004504945 ____N C:\Windows\Minidump\051125-6296-01.dmp
2025-05-10 00:42 - 2024-12-30 15:56 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\EasyAntiCheat
2025-05-09 09:43 - 2025-01-28 21:43 - 000000000 ____D C:\Program Files (x86)\Overwolf
2025-05-08 13:17 - 2025-01-28 21:43 - 000002321 _____ C:\Users\zeidl\Desktop\CurseForge.lnk
2025-05-08 13:17 - 2025-01-28 21:42 - 000000000 ____D C:\Users\zeidl\AppData\Local\Overwolf
2025-05-05 17:00 - 2025-01-28 14:30 - 000000000 ____D C:\Program Files\Java
2025-05-05 16:59 - 2025-03-26 16:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2025-05-05 16:59 - 2025-01-28 14:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2025-05-04 10:24 - 2025-02-10 16:29 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\.minecraft
2025-05-04 08:57 - 2025-02-16 10:58 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\Microsoft\UProof
2025-05-04 08:57 - 2025-02-16 10:57 - 000000000 ____D C:\Users\zeidl\AppData\Roaming\Microsoft\Office
2025-04-28 06:24 - 2024-12-25 13:41 - 000000000 ____D C:\Users\zeidl\AppData\Local\Steam
2025-04-27 09:07 - 2024-11-23 02:03 - 000000000 ____D C:\ProgramData\Package Cache
2025-04-24 14:04 - 2024-04-01 09:26 - 000000000 ____D C:\Windows\LiveKernelReports
==================== Files in the root of some directories ========
2025-01-28 14:37 - 2025-01-28 14:37 - 009564160 _____ () C:\Program Files (x86)\GUT8A2F.tmp
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-05-2025
Ran by zeidl (23-05-2025 17:05:22)
Running from C:\Users\zeidl\Downloads
Microsoft Windows 11 Home Version 24H2 26100.4061 (X64) (2024-12-25 11:15:09)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1633276031-3013495308-3651701591-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1633276031-3013495308-3651701591-503 - Limited - Disabled)
Guest (S-1-5-21-1633276031-3013495308-3651701591-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1633276031-3013495308-3651701591-504 - Limited - Disabled)
zeidl (S-1-5-21-1633276031-3013495308-3651701591-1003 - Administrator - Enabled) => C:\Users\zeidl
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Aplikácie Microsoft 365 pre veľké organizácie - sk-sk (HKLM\...\O365ProPlusRetail - sk-sk) (Version: 16.0.18730.20168 - Microsoft Corporation)
Aplikacje Microsoft 365 dla przedsiębiorstw - pl-pl (HKLM\...\O365ProPlusRetail - pl-pl) (Version: 16.0.18730.20168 - Microsoft Corporation)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1697.6 - AVAST Software) Hidden
BeamMP-Launcher verze 2.0.71 (HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\{4A233C59-AF33-417D-B19E-B49D67433455}_is1) (Version: 2.0.71 - BeamMP)
CapCut (HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\CapCut) (Version: 5.8.0.2216 - Bytedance Pte. Ltd.)
CurseForge (HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 1.276.4.5335 - Overwolf app)
Dynamic Application Loader Host Interface Service (HKLM\...\{B8F67CAD-D16A-4AC8-B4F1-3AE8A9FF22F5}) (Version: 1.0.0.0 - Intel Corporation) Hidden
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.468.0.5981 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{7bc38cea-7fb4-448f-afa1-f8b8366c227f}) (Version: 13.468.0.5981 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{C5C3EE71-4047-4144-946E-18D500510CB5}) (Version: 1.3.128.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{5122B8BC-D6DF-48FF-8D4E-15A63EEC5073}) (Version: 2.8.1 - Epic Games, Inc.)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: 2.0.83.4 - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 136.0.7103.114 - Google LLC)
Cheat Engine 7.6 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine)
Intel(R) Chipset Device Software (HKLM\...\{22987D97-5A46-4BD9-B1A5-2FFE44201081}) (Version: 10.1.19199.8340 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{e6ecf35a-b1bb-4e59-9d90-4c98fde2ffa8}) (Version: 10.1.19199.8340 - Intel(R) Corporation)
Intel(R) Management Engine Components (HKLM\...\{1B2B12B8-AE77-4104-97FE-904274D21B6C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{5F953BF8-C54E-4335-B7C9-873508D2CE1A}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME WMI Provider (HKLM\...\{2D7D4B84-FDD2-42BC-9B5B-ADAB4E31AC5E}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{8BB1B6E6-25C3-4B53-A8C4-4EB25E1FD1AB}) (Version: 30.100.2221.20 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2221.20 - Intel Corporation)
itch (HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\itch) (Version: 26.1.9 - itch corp.)
Java 8 Update 451 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180451F0}) (Version: 8.0.4510.10 - Oracle Corporation)
Java 8 Update 451 (HKLM-x32\...\{71024AE4-039E-4CA4-87B4-2F32180451F0}) (Version: 8.0.4510.10 - Oracle Corporation)
Java(TM) SE Development Kit 24 (64-bit) (HKLM\...\{4357E090-E02D-5CB2-9C32-639375983B2B}) (Version: 24.0.0.0 - Oracle Corporation)
Kinect for Windows Speech Recognition Language Pack (de-DE) (HKLM-x32\...\{898AA67F-99B8-4C7F-9611-B11F98EF6E78}) (Version: 11.0.7413.611 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (es-ES) (HKLM-x32\...\{F49AF755-A5C3-4252-A190-5772B2669C3B}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (es-MX) (HKLM-x32\...\{E8F3B154-03CE-4120-8B9D-9E83ED5F3AD7}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (fr-CA) (HKLM-x32\...\{7D179500-CA0C-4456-B624-C15876B15F39}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (fr-FR) (HKLM-x32\...\{4CC174AA-25BC-46FF-B1E2-13B24AFB6142}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (it-IT) (HKLM-x32\...\{969D900A-3481-4A77-B888-D24160D4D727}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (ja-JP) (HKLM-x32\...\{EDA8693D-9E82-4FD1-98C8-0DC4F9141E0F}) (Version: 11.0.7400.336 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft .NET Host - 6.0.36 (x64) (HKLM\...\{D6932D97-36F1-40B8-9CDC-CA8365B21000}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.36 (x64) (HKLM\...\{A9E32B25-994B-4856-A12B-0EBED3050410}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.36 (x64) (HKLM\...\{C912E33F-956A-4921-9F55-CC11AE8F09AF}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.36 (x64) (HKLM-x32\...\{9d3fc73f-1cf4-412c-a1c9-d2ad28ccbd62}) (Version: 6.0.36.34214 - Microsoft Corporation)
Microsoft 365 Apps for Enterprise - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.18730.20168 - Microsoft Corporation)
Microsoft 365 Apps for enterprise - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.18730.20168 - Microsoft Corporation)
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.18730.20168 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.76 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.76 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.075.0420.0002 - Microsoft Corporation)
Microsoft OneNote - cs-cz (HKLM\...\OneNoteFreeRetail - cs-cz) (Version: 16.0.18730.20168 - Microsoft Corporation)
Microsoft OneNote - de-de (HKLM\...\OneNoteFreeRetail - de-de) (Version: 16.0.18730.20168 - Microsoft Corporation)
Microsoft OneNote - en-us (HKLM\...\OneNoteFreeRetail - en-us) (Version: 16.0.18730.20168 - Microsoft Corporation)
Microsoft OneNote - hu-hu (HKLM\...\OneNoteFreeRetail - hu-hu) (Version: 16.0.18730.20168 - Microsoft Corporation)
Microsoft OneNote - pl-pl (HKLM\...\OneNoteFreeRetail - pl-pl) (Version: 16.0.18730.20168 - Microsoft Corporation)
Microsoft OneNote - sk-sk (HKLM\...\OneNoteFreeRetail - sk-sk) (Version: 16.0.18730.20168 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (nl-NL) (HKLM-x32\...\{2CBAB07E-4865-40F0-9D6A-EFA350420166}) (Version: 10.2.7300.97 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (pl-PL) (HKLM-x32\...\{BEFB9378-5E88-4266-8EB1-C92869449885}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (pt-BR) (HKLM-x32\...\{F6B5EB21-0ABF-487C-B9A9-D9DB259C4403}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (zh-CN) (HKLM-x32\...\{BAD2A75A-1708-47BA-A498-20890D2C78A7}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.25.08601 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Nagyvállalati Microsoft 365-alkalmazások - hu-hu (HKLM\...\O365ProPlusRetail - hu-hu) (Version: 16.0.18730.20168 - Microsoft Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.2.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.2.6 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 566.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 566.14 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 31.0.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18623.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18730.20168 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.18623.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0415-1000-0000000FF1CE}) (Version: 16.0.18623.20156 - Microsoft Corporation) Hidden
Opera GX Stable 118.0.5461.133 (HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Opera GX 118.0.5461.133) (Version: 118.0.5461.133 - Opera Software)
Opera Stable 118.0.5461.104 (HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\Opera 118.0.5461.104) (Version: 118.0.5461.104 - Opera Software)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.275.0.13 - Overwolf Ltd.)
playit (HKLM\...\{8C17366B-843B-49DC-AC1B-748DC264E06F}) (Version: 0.15.26 - Developed Methods LLC)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9381.1 - Realtek Semiconductor Corp.)
Roblox Player for zeidl (HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for zeidl (HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.102.2405 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.58 - Rockstar Games)
SimHub version 9.6.6 (HKLM-x32\...\{019253FE-5A17-42BE-A6B8-D71A729FA5DE}_is1) (Version: 9.6.6 - Wotever)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Terraria (HKLM-x32\...\1207665503_is1) (Version: v1.4.4.9 v4 - GOG.com)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.03 - Ghisler Software GmbH)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.1026 - McAfee, LLC)
Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-05-14] (Microsoft Windows)
Akce kliknutím (Preview) -> C:\Windows\SystemApps\MicrosoftWindows.Client.CoreAI_cw5n1h2txyewy [2025-05-14] (Microsoft Windows)
Auto Clicker for Windows -> C:\Program Files\WindowsApps\2420ShazApp.AutoClickerforWindows_1.0.2.0_neutral__1c69h7y6sr26m [2025-02-02] (ShazApp)
Balíček prostředí funkcí systému Windows -> C:\Windows\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-05-14] (Microsoft Windows)
Intel® Rapid Storage Technology Application -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_20.0.1021.0_x64__8j3eq9eme6ctt [2025-04-23] (INTEL CORP)
Journal -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJournal_1.23355.1356.0_x64__8wekyb3d8bbwe [2024-10-24] (Microsoft Corporation)
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2024-12-25] (Microsoft Corp.)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.9.1.0_x64__8wekyb3d8bbwe [2025-05-04] (Microsoft Corporation)
Minecraft Education -> C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.1000.0_x64__8wekyb3d8bbwe [2025-04-24] (Microsoft Studios)
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.8201.0_x64__8wekyb3d8bbwe [2025-05-20] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.2.2.0_x64__8wekyb3d8bbwe [2025-02-18] (Microsoft Studios)
Minecraft: Java Edition -> C:\Program Files\WindowsApps\Microsoft.MinecraftJavaEdition_1.0.5.0_x64__8wekyb3d8bbwe [2025-02-10] (Microsoft Studios)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2025-04-16] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2024-12-25] (NVIDIA Corp.)
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16 [2025-05-20] ()
OneNote Virtual Printer -> C:\Program Files\WindowsApps\Microsoft.Office.OneNoteVirtualPrinter_1.0.0.0_x64__8wekyb3d8bbwe [2025-04-12] (Microsoft Corporation)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.150.3125.0_x64__kzf8qxf38zg5c [2025-05-06] (Skype)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0 [2025-05-22] (Spotify AB) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm [2025-05-09] (WhatsApp Inc.) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1633276031-3013495308-3651701591-1003_Classes\CLSID\{04271989-C4D2-5C89-B50F-11AA1D2E7646} -> [OneDrive - Gymnázium Kolín] => C:\Users\zeidl\OneDrive - Gymnázium Kolín [2025-01-30 18:36]
CustomCLSID: HKU\S-1-5-21-1633276031-3013495308-3651701591-1003_Classes\CLSID\{EABAE40C-B27C-455A-B672-F234DD780948}\InprocServer32 -> C:\Users\zeidl\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.25.08601\x64\Microsoft.Teams.MeetingAddin.DLL (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.075.0420.0002\FileSyncShell64.dll [2025-05-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_adf5a840df867035\nvshext.dll [2024-11-07] (NVIDIA Corporation -> NVIDIA Corporation)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2024-10-24 12:46 - 2024-10-24 12:46 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2024-10-24 12:46 - 2024-10-24 12:46 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [6762]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_451\bin\ssv.dll [2025-04-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_451\bin\jp2ssv.dll [2025-04-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_451\bin\ssv.dll [2025-04-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2025-05-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_451\bin\jp2ssv.dll [2025-04-05] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\...\sharepoint.com -> hxxps://gkolin-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2024-04-01 09:26 - 2024-04-01 09:24 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\playit_gg\bin\;C:\Program Files\dotnet\
HKU\S-1-5-21-1633276031-3013495308-3651701591-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\zeidl\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\12288958802454912127\133923033746591957.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Wi-Fi: Intel(R) Wi-Fi 6 AX201 160MHz -> Netwtw14.sys
Ethernet 2: Realtek Gaming 2.5GbE Family Controller -> rt25cx21x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{9FEDFD13-2586-455E-9000-D37AB47ACA8D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8C69BB82-19E2-4F0A-A864-3F92E1AE1728}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{58DFB95B-3934-4AE2-B13E-79F970EB0BDD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{08616585-C117-416D-97D7-3E55B5083462}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F9578039-BD93-473A-BBD6-3D2DDF769428}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A633D349-41D7-4851-B089-E82FCA5B0132}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{48B3DE4F-EAC0-4C27-911F-E7055B14995F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{72ECEF37-A0CB-4EE8-AF6B-713998EE1A46}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B00F60AC-6B2A-4140-9108-4DFB3BA22C21}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{5D786F2F-3126-4C94-BF56-0293EE07DBA0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{5BAA0AD8-B647-44D3-9FBD-5176142CDB7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 24\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F0AB17D0-A548-4B6F-AC3E-A7D209DB000C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 24\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3DB331CF-310B-4EBE-A7A5-DB7723A0EA5D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [{46A73F89-14AB-41A2-BDC8-BD6BB23D8CC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [{2056F56B-B53B-4351-8988-7AD65BFA230E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wobbly Life\Wobbly Life.exe () [File not signed]
FirewallRules: [{0D41D4CF-5A34-4FD7-97AF-11EA292FD740}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wobbly Life\Wobbly Life.exe () [File not signed]
FirewallRules: [{8643216B-A7E6-48FF-9A25-E6BD6F22F555}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Satisfactory\FactoryGameSteam.exe (Coffee Stain Studios AB -> Epic Games, Inc.)
FirewallRules: [{28D8A86F-70AC-42CB-815E-9319D1A946DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Satisfactory\FactoryGameSteam.exe (Coffee Stain Studios AB -> Epic Games, Inc.)
FirewallRules: [{34FD263B-B92B-477F-8F46-BC7E5279BE49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed]
FirewallRules: [{61B186B9-CB8B-4292-ACCD-192FA746BD08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed]
FirewallRules: [{720BB50C-5736-48A6-ADF6-50BB1C93FC9E}] => (Allow) C:\Program Files (x86)\SimHub\SimHubWPF.exe (Nicolas Guilbert -> )
FirewallRules: [{D18D489F-9065-4C28-8511-0CEB6D446CCB}] => (Allow) C:\Program Files (x86)\SimHub\SimHub.PackageManager.Standalone.exe (Nicolas Guilbert -> )
FirewallRules: [TCP Query User{982776B3-DE7C-408E-92BA-FE33111E19BF}C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [UDP Query User{6E805BA4-8402-4874-A703-3F407425B4FA}C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{498EC4C9-0FBA-420A-BEA7-CF2E036482DA}C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe] => (Block) C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe () [File not signed]
FirewallRules: [UDP Query User{C428FA0D-0E0E-44A3-9051-1F90AA24360C}C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe] => (Block) C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe () [File not signed]
FirewallRules: [TCP Query User{57ABAF59-F4B3-4CAC-8EB4-9BCE63505DF0}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{23BF103D-C4E3-42E5-AB04-D33D21004ECB}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{33E5B699-AB79-4845-AFFB-32B62A4BCDDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E278D23D-F866-4C41-BF3D-E9B3C307CCE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{4592FB73-6106-488D-A3A8-CE861FEEE75C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{A3955286-AC04-4E7C-BDC2-17DAE1C4AAF2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [TCP Query User{B1ED277C-AD1C-4A10-8220-7903426CA061}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [UDP Query User{CF8968C8-F013-4B7B-9FEA-A095BD551416}C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [TCP Query User{ACAA30F9-818A-4DFA-B185-8AF5B5D13079}C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{E7BD69F2-E0FA-43B9-8EB4-9EE0812C85D8}C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [TCP Query User{B5FA72E7-30A2-4567-89E1-E1196BFF4E93}C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{0AC6710F-B17F-42FF-83C0-1DE1DF1E473C}C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{3A3A23F9-9D59-428C-9B5B-01AE82906D10}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{825F7F83-D833-4959-A3F9-29DF57037F7D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EAAF088D-AD32-4D0B-9527-CBE0B55123AA}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A798F8C9-1DEF-4306-AD46-7051CCD829E2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{5105CD83-4668-4E36-A248-96B7786D8EF5}C:\users\zeidl\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\zeidl\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{5080C567-5D7C-4D0A-98E0-AFE2D74D85ED}C:\users\zeidl\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\zeidl\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{52F6F5F4-9CEE-4FDF-AEE4-89F284A08C47}C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{E50FDF43-B07C-46F8-80D7-C8DF9E398860}C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Allow) C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [{E312C6EF-BAD8-4F57-A96E-117B4696E61C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FPS Chess\FPSChess.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{9E7B0539-0D50-44BD-9ECE-D6A96735646C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FPS Chess\FPSChess.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{2F1DDCEF-F9B2-47D5-A541-7BCDF0D09ECB}C:\program files\epic games\gtavenhanced\gta5_enhanced.exe] => (Allow) C:\program files\epic games\gtavenhanced\gta5_enhanced.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{A938A05B-3C7B-430D-A9E9-149488B93AC9}C:\program files\epic games\gtavenhanced\gta5_enhanced.exe] => (Allow) C:\program files\epic games\gtavenhanced\gta5_enhanced.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{DA484099-22E4-43A8-83CB-4C32153F8254}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Schedule I\Schedule I.exe () [File not signed]
FirewallRules: [{D4CFDBAA-2531-4A8B-A0D7-9DA294D81D6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Schedule I\Schedule I.exe () [File not signed]
FirewallRules: [TCP Query User{BDD7A564-3AA1-4A3A-AC71-D83CDAF1B08D}C:\program files\java\jdk-24\bin\javaw.exe] => (Allow) C:\program files\java\jdk-24\bin\javaw.exe
FirewallRules: [UDP Query User{18505AE1-473E-43BA-A3E1-F794257B59F6}C:\program files\java\jdk-24\bin\javaw.exe] => (Allow) C:\program files\java\jdk-24\bin\javaw.exe
FirewallRules: [TCP Query User{AF84CA3D-5D99-49EF-BB6C-A357FB4B86FB}C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{661667E0-3CC5-4BEF-AABB-D69CCE6456FD}C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{3898427F-D978-40F1-9B21-0B7CD4E2AF1D}C:\program files (x86)\gog galaxy\games\terraria\terrariaserver.exe] => (Block) C:\program files (x86)\gog galaxy\games\terraria\terrariaserver.exe (Re-Logic) [File not signed]
FirewallRules: [UDP Query User{173417DC-EBB2-4C2B-965C-64630F75B885}C:\program files (x86)\gog galaxy\games\terraria\terrariaserver.exe] => (Block) C:\program files (x86)\gog galaxy\games\terraria\terrariaserver.exe (Re-Logic) [File not signed]
FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\Windows\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\Windows\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\Windows\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{BBD465C1-B32F-4FBA-963F-941B96B93206}C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{825B3B68-6A6F-4A14-A950-D54BC8C82B29}C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\zeidl\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{B2628F34-9203-4EF5-8E2C-6F9DF070C69F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2018\F1_2018.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{C0D0BCFF-52C3-456B-85F1-C536425D175E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2018\F1_2018.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{25C4CD39-504A-4F54-B2F1-7A0327DF8030}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe () [File not signed]
FirewallRules: [{18E3711B-DDE9-47A5-945C-D2DF5C86ACC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BloonsTD6\BloonsTD6.exe () [File not signed]
FirewallRules: [TCP Query User{61FDE144-046C-413E-89B3-B4850F31E703}C:\users\zeidl\appdata\roaming\beammp-launcher\beammp-launcher.exe] => (Allow) C:\users\zeidl\appdata\roaming\beammp-launcher\beammp-launcher.exe (BeamMP Mod Team -> BeamMP Mod Team) [File not signed]
FirewallRules: [UDP Query User{1B0D31A4-452A-470C-9C31-B0BE62583572}C:\users\zeidl\appdata\roaming\beammp-launcher\beammp-launcher.exe] => (Allow) C:\users\zeidl\appdata\roaming\beammp-launcher\beammp-launcher.exe (BeamMP Mod Team -> BeamMP Mod Team) [File not signed]
FirewallRules: [{B0E82DDC-C794-4228-85B1-8BBEBE966988}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\bootstrapper.exe (Activision Publishing Inc -> )
FirewallRules: [{A1325ABC-97AE-416D-BEAA-142940BBD28F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\bootstrapper.exe (Activision Publishing Inc -> )
FirewallRules: [{A55CE86A-9B3F-4EF1-9E3E-944954BD3A0A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{9CA67480-B074-4CB4-A62D-310475C38C58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{793EFBD0-9240-41F1-930B-5E9235AB1399}] => (Allow) C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.1000.0_x64__8wekyb3d8bbwe\Minecraft.Windows.exe (Microsoft Corporation -> )
FirewallRules: [{6A529552-EDD4-4343-9CA7-B79034A5D04E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.MinecraftEducationEdition_1.21.1000.0_x64__8wekyb3d8bbwe\Minecraft.Windows.exe (Microsoft Corporation -> )
FirewallRules: [{84E43161-1A90-4900-91CE-B7F26C80FC08}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25094.310.3616.953_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1A057466-069F-43EA-A460-F60DD006F0A5}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25094.310.3616.953_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A8BA71B9-B56B-40F5-BD58-9F4BCB8CDD76}C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [UDP Query User{946530A6-91B3-4E64-81D8-CDD6071F1AE7}C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\zeidl\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [{1EB8B813-CAB9-4BCC-9A63-1D5F92B02A27}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DE45312-B0E5-4E5F-BCAD-141454B95303}] => (Allow) C:\Program Files (x86)\Overwolf\0.273.1.4\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{493A52A1-9B82-461D-AAFA-6FC5D5B20691}] => (Allow) C:\Program Files (x86)\Overwolf\0.273.1.4\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{75D69568-CA28-4EF6-8D30-5D3CEC14A0B7}] => (Block) C:\Program Files (x86)\Overwolf\0.273.1.4\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{21108793-9997-4F2F-BD2B-BFE474A02FEA}] => (Block) C:\Program Files (x86)\Overwolf\0.273.1.4\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{22FA0B78-E00C-4A09-ADDB-169390C69139}] => (Allow) C:\Program Files (x86)\Overwolf\0.275.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{E5DFE03A-6484-4500-A05B-B7A2CA39A4D5}] => (Allow) C:\Program Files (x86)\Overwolf\0.275.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{CF80795F-21BE-49FB-BF36-F6C6C05428D0}] => (Allow) C:\Users\zeidl\AppData\Local\Programs\Opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{E7EA6A48-A2B3-4A45-9F58-F883D00E8AE1}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6431DB67-5210-4F6D-A45F-1C2A2917543F}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.76\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DFBDED17-9196-477C-B0C4-33CC08B7D200}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{132BB2E1-8891-409A-AA83-84C8A9DA4F99}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{1653A777-EABE-4BF8-9201-4C0B068D5153}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{72525EFD-2BD2-4DB1-8571-7768CC286D6E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{B5EA3CE9-9757-44AD-AA08-0C1F1BA0D69C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{841DA402-4DFC-48BF-9911-240588874396}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{291ED677-7890-4E1A-9B1D-B487D335223E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8296568B-39E4-480D-9517-2C976F1FF78B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E0016CCD-11AC-429B-92F0-6059E3A82517}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8E3BC6C0-5ADD-4088-BFBA-5A80C6875A56}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{00BD987D-FFEB-4AF4-BE2E-83FAF775A32A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{09AD55B5-E97B-4316-8AFC-AD5D3D0EE5CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BC058889-6502-4B31-9188-1038BBC118D3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EFBBF197-165E-4017-9D02-C53F071D3379}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4C5A5E37-D58D-4E0C-B421-7987EFC170FE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{94E968E1-CE52-4260-A0A2-C2BE26373E52}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4DB4EA6A-8F25-4E63-92A0-7A19AE5ACF38}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C7A02A9C-FD38-4BFA-B0D9-B78236146F96}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{36BD137F-E6C8-4857-813D-34C8913813EE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9DAA6D28-E766-40B4-81BE-A3A0A6C9C205}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7829B1F7-A3FF-4808-BCCF-5A373BA89901}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.264.408.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{918E12E7-01BF-4879-84A4-E4C312677A5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Quarantine Zone The Last Check Demo\QZSim.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{25E0BDB9-81EE-4AF9-A286-7B2A36F05B0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Quarantine Zone The Last Check Demo\QZSim.exe (Epic Games, Inc.) [File not signed]
==================== Restore Points =========================
20-05-2025 08:42:07 Windows Update
20-05-2025 08:42:16 Windows Update
23-05-2025 16:55:32 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/23/2025 05:00:45 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Users\zeidl\AppData\Local\CapCut\Apps\CapCut.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.3912_none_85b4cd13f7b13c84.manifest.
Součást 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.3912_none_3e07963ce335137e.manifest.
Error: (05/23/2025 05:00:28 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Users\zeidl\AppData\Local\CapCut\Apps\CapCut.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.3912_none_85b4cd13f7b13c84.manifest.
Součást 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.3912_none_3e07963ce335137e.manifest.
Error: (05/23/2025 04:59:42 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]
Error: (05/23/2025 04:58:17 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/23/2025 04:58:17 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/23/2025 04:58:17 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/23/2025 04:58:17 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0
Error: (05/23/2025 04:56:21 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Users\zeidl\AppData\Local\CapCut\Apps\CapCut.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.3912_none_85b4cd13f7b13c84.manifest.
Součást 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.3912_none_3e07963ce335137e.manifest.
System errors:
=============
Error: (05/23/2025 05:05:08 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/23/2025 04:59:42 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: NT AUTHORITY)
Description: Služba přidružení zařízení zjistila chybu zjišťování koncového bodu.
Error: (05/23/2025 04:59:42 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: NT AUTHORITY)
Description: Služba přidružení zařízení zjistila chybu zjišťování koncového bodu.
Error: (05/23/2025 02:53:44 PM) (Source: DCOM) (EventID: 10010) (User: NASEGAMINGPC24)
Description: Server {F53321FA-34F8-4B7F-B9A3-361877CB94CF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/23/2025 12:20:09 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/23/2025 07:13:28 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (05/23/2025 07:07:09 AM) (Source: DCOM) (EventID: 10010) (User: NASEGAMINGPC24)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/22/2025 09:08:32 PM) (Source: DCOM) (EventID: 10010) (User: NASEGAMINGPC24)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2025-05-20 17:05:31
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/GameHack
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Windows\SystemTemp\Tmp3A17.tmp; file:_C:\Windows\SystemTemp\Tmp496C.tmp; file:_C:\Windows\SystemTemp\Tmp4B5C.tmp; file:_C:\Windows\SystemTemp\Tmp53F7.tmp; file:_C:\Windows\SystemTemp\Tmp6124.tmp; file:_C:\Windows\SystemTemp\Tmp65BD.tmp; file:_C:\Windows\SystemTemp\Tmp7B6A.tmp; file:_C:\Windows\SystemTemp\Tmp8263.tmp; file:_C:\Windows\SystemTemp\Tmp8297.tmp; file:_C:\Windows\SystemTemp\Tmp88AF.tmp; file:_C:\Windows\SystemTemp\Tmp89DF.tmp; file:_C:\Windows\SystemTemp\TmpA1FC.tmp; file:_C:\Windows\SystemTemp\TmpA9DC.tmp; file:_C:\Windows\SystemTemp\TmpB024.tmp; file:_C:\Windows\SystemTemp\TmpC643.tmp; file:_C:\Windows\SystemTemp\TmpD33E.tmp; file:_C:\Windows\SystemTemp\TmpDAED.tmp; file:_C:\Windows\SystemTemp\TmpFC14.tmp
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files (x86)\Common Files\Steam\steamservice.exe
Security intelligence Version: AV: 1.429.89.0, AS: 1.429.89.0, NIS: 1.429.89.0
Engine Version: AM: 1.1.25040.1, NIS: 1.1.25040.1
Date: 2025-05-20 16:50:04
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/GameHack
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Windows\SystemTemp\Tmp3A17.tmp; file:_C:\Windows\SystemTemp\Tmp496C.tmp; file:_C:\Windows\SystemTemp\Tmp4B5C.tmp; file:_C:\Windows\SystemTemp\Tmp53F7.tmp; file:_C:\Windows\SystemTemp\Tmp6124.tmp; file:_C:\Windows\SystemTemp\Tmp65BD.tmp; file:_C:\Windows\SystemTemp\Tmp7B6A.tmp; file:_C:\Windows\SystemTemp\Tmp8263.tmp; file:_C:\Windows\SystemTemp\Tmp8297.tmp; file:_C:\Windows\SystemTemp\Tmp89DF.tmp; file:_C:\Windows\SystemTemp\TmpA1FC.tmp; file:_C:\Windows\SystemTemp\TmpA9DC.tmp; file:_C:\Windows\SystemTemp\TmpB024.tmp; file:_C:\Windows\SystemTemp\TmpC643.tmp; file:_C:\Windows\SystemTemp\TmpD33E.tmp; file:_C:\Windows\SystemTemp\TmpDAED.tmp; file:_C:\Windows\SystemTemp\TmpFC14.tmp
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files (x86)\Common Files\Steam\steamservice.exe
Security intelligence Version: AV: 1.429.83.0, AS: 1.429.83.0, NIS: 1.429.83.0
Engine Version: AM: 1.1.25040.1, NIS: 1.1.25040.1
Date: 2025-05-20 16:34:24
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-20 13:07:08
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/GameHack
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Windows\SystemTemp\Tmp3A17.tmp; file:_C:\Windows\SystemTemp\Tmp496C.tmp; file:_C:\Windows\SystemTemp\Tmp4B5C.tmp; file:_C:\Windows\SystemTemp\Tmp53F7.tmp; file:_C:\Windows\SystemTemp\Tmp6124.tmp; file:_C:\Windows\SystemTemp\Tmp7B6A.tmp; file:_C:\Windows\SystemTemp\Tmp8263.tmp; file:_C:\Windows\SystemTemp\Tmp8297.tmp; file:_C:\Windows\SystemTemp\Tmp89DF.tmp; file:_C:\Windows\SystemTemp\TmpA1FC.tmp; file:_C:\Windows\SystemTemp\TmpA9DC.tmp; file:_C:\Windows\SystemTemp\TmpB024.tmp; file:_C:\Windows\SystemTemp\TmpC643.tmp; file:_C:\Windows\SystemTemp\TmpD33E.tmp; file:_C:\Windows\SystemTemp\TmpDAED.tmp; file:_C:\Windows\SystemTemp\TmpFC14.tmp
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files (x86)\Common Files\Steam\steamservice.exe
Security intelligence Version: AV: 1.429.83.0, AS: 1.429.83.0, NIS: 1.429.83.0
Engine Version: AM: 1.1.25040.1, NIS: 1.1.25040.1
Date: 2025-05-20 12:53:10
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/GameHack
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Windows\SystemTemp\Tmp3A17.tmp; file:_C:\Windows\SystemTemp\Tmp496C.tmp; file:_C:\Windows\SystemTemp\Tmp53F7.tmp; file:_C:\Windows\SystemTemp\Tmp6124.tmp; file:_C:\Windows\SystemTemp\Tmp7B6A.tmp; file:_C:\Windows\SystemTemp\Tmp8263.tmp; file:_C:\Windows\SystemTemp\Tmp8297.tmp; file:_C:\Windows\SystemTemp\Tmp89DF.tmp; file:_C:\Windows\SystemTemp\TmpA1FC.tmp; file:_C:\Windows\SystemTemp\TmpA9DC.tmp; file:_C:\Windows\SystemTemp\TmpB024.tmp; file:_C:\Windows\SystemTemp\TmpC643.tmp; file:_C:\Windows\SystemTemp\TmpD33E.tmp; file:_C:\Windows\SystemTemp\TmpDAED.tmp; file:_C:\Windows\SystemTemp\TmpFC14.tmp
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files (x86)\Common Files\Steam\steamservice.exe
Security intelligence Version: AV: 1.429.83.0, AS: 1.429.83.0, NIS: 1.429.83.0
Engine Version: AM: 1.1.25040.1, NIS: 1.1.25040.1
Event[0]
Date: 2025-03-12 06:45:21
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.423.337.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.25010.7
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
CodeIntegrity:
===============
Date: 2025-05-21 07:55:02
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Avast Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2025-05-17 18:29:33
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.76\msedgewebview2.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Microsoft signing level requirements.
Date: 2025-05-10 20:27:01
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.64\msedgewebview2.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1805 10/30/2024
Motherboard: ASUSTeK COMPUTER INC. PRIME B760M-A WIFI D4
Processor: 12th Gen Intel(R) Core(TM) i5-12400F
Percentage of memory in use: 22%
Total physical RAM: 32557.42 MB
Available physical RAM: 25133.05 MB
Total Virtual: 34605.42 MB
Available Virtual: 26410.87 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:953.04 GB) (Free:122.97 GB) (Model: KINGSTON SKC3000S1024G) NTFS
\\?\Volume{4847c94f-3b50-416e-8931-b0b0990e0b5e}\ () (Fixed) (Total:0.71 GB) (Free:0.1 GB) NTFS
\\?\Volume{055c67c8-9cfe-4c89-80b9-44c3c2775eb8}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Přispějete na provoz fóra?