VIRY.CZ

V pc se mi vypnul defender a nekde zapnout. Když se ho pokusím zapnout tak se vypne a ani se nic nevypise...​A ještě když chci něco stáhnout tak mi to napíše že to obsahuje virus a když se mi to náhodou podaří stáhnout tak se to pokusim spustit ale ono to prostě jen zmizí a nic se nestane :// dekuji za odpoved

=====================================================================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-02-2020
Ran by Kolaček Petr (administrator) on DESKTOP-V9N1Q60 (02-03-2020 15:24:34)
Running from D:\RŮZNÉ
Loaded Profiles: Kolaček Petr (Available Profiles: Kolaček Petr)
Platform: Windows 10 Home Version 1803 17134.1130 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Discord Inc. -> Discord Inc.) C:\Users\Kolaček Petr\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Kolaček Petr\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Kolaček Petr\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Kolaček Petr\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Kolaček Petr\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Kolaček Petr\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Kolaček Petr\AppData\Local\Discord\app-0.0.306\Discord.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(LogMeIn, Inc. -> LogMeIn Inc.) D:\Hamachi\x64\hamachi-2.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_1.15.1001.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\Steam.exe
(YENKEE) [File not signed] C:\Program Files\Gaming\YMS 3017\YMS 3017.EXE

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8903176 2016-09-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [61370712 2019-09-11] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [97089184 2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-03-11] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Run: [CZC_startovac] => [X]
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Run: [Discord] => C:\Users\Kolaček Petr\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Run: [Gaijin.Net Agent] => C:\Users\Kolaček Petr\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2125384 2018-09-25] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Run: [Steam] => D:\Steam\steam.exe [3365840 2020-02-11] (Valve -> Valve Corporation)
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Run: [Medal] => C:\Users\Kolaček Petr\AppData\Local\Medal\update.exe [1845072 2020-01-28] (Ferox Games B.V. -> )
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\MountPoints2: {9e90df39-ee7a-11e9-abbf-1831bf2d6d92} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\MountPoints2: {fa67cabc-f228-11e9-abc5-027c314b4554} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.122\Installer\chrmstp.exe [2020-02-27] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\Users\Kolaček Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2019-12-01]
ShortcutTarget: Twitch.lnk -> D:\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-583211017-4179701285-1130646269-1002\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03E33CEB-1201-45A1-9E1E-11D9A3ADB942} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24568696 2020-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {059A5EF0-EF6A-4748-9719-70D456547FDF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158760 2020-02-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {0B03D1FF-97C1-4F11-B04E-CF13788BA45B} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\Schedule created by enrollment client for renewal of certificate warning => C:\Windows\system32\deviceenroller.exe [361472 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {0CF8575A-962C-4DD4-92C0-28C3A58CDCCA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {10D1FC68-E121-4B03-8486-008CADB8A283} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-10-26] (Google Inc -> Google Inc.)
Task: {1ABCE7EB-0A6A-471F-A0F2-9A7AAB182E25} - System32\Tasks\EOSv3 Scheduler onLogOn
Task: {1BF1E497-32AB-42C4-9997-998DAAB0B13A} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\Schedule to run OMADMClient by server => C:\Windows\system32\omadmclient.exe [315904 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
Task: {1C876AB3-0DA1-4A26-B7BD-2692683D43FD} - System32\Tasks\One System Care Monitor
Task: {1DD173A9-0A60-4262-B625-D5C8355D60E0} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1134752 2014-03-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
Task: {286CB091-2DE1-494F-BB64-B14692CFA806} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\Schedule to run OMADMClient by client => C:\Windows\system32\omadmclient.exe [315904 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
Task: {2BED7D19-76C3-460D-ABF6-019080B34B0C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2FFA2230-4AED-4702-83F4-5B5C03418294} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158760 2020-02-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {378B8344-758F-4A4D-9A8F-79A9F54B0BCF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128024 2020-02-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E8EFFD4-A928-4E5F-8459-546A7AB39935} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {409C29A5-855C-41F7-8C6D-75A234548BAB} - System32\Tasks\EOSv3 Scheduler onTime
Task: {48E7EDA7-95DC-4816-9F75-F351B056E277} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654136 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4B46F779-C0AB-45FC-BAE2-BE7BF8EAD358} - System32\Tasks\Sstt2-TaskPlan => C:\Program Files\Gaming\YMS 3017\YMS 3017.EXE [896000 2016-07-15] (YENKEE) [File not signed]
Task: {4C248487-A829-42D4-AC98-D805F7696852} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\PushRenewal => C:\Windows\system32\deviceenroller.exe [361472 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {5C37D823-F19E-44D4-BA2E-7AB3FFD4FF36} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5C6AC1BB-D207-4793-8DA2-26DC338088B3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018616 2020-02-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {66A43AE2-60E1-435F-8914-800A29A54426} - System32\Tasks\AMD Updater
Task: {69E31161-E9D7-4871-A662-FD565EFD5BEF} - System32\Tasks\Overwolf Updater Task
Task: {6D09B505-59E6-4CA9-A37B-83B2EE2AD040} - System32\Tasks\ScheduledUpdate
Task: {6F3C6C25-230B-41F0-9412-CA24BC33500D} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\PushLaunch => C:\Windows\system32\deviceenroller.exe [361472 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {6FB02B5D-AA5F-47E8-8CB7-36B84D18050F} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7087F37F-C288-46BC-9B92-F4AF9EB67FEF} - System32\Tasks\{099A689E-7640-4B7A-B473-FCCD4AF93244}
Task: {7BCEB3F9-B672-4C06-AD7C-32DA82396307} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8276798C-F8D8-43E8-89C7-AC2427E177F0} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2046040 2020-02-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {8880E633-1F5B-4663-AF00-7BA39958254F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302384 2019-08-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8CDF05ED-ECA2-4485-8C29-724559E4C58C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24568696 2020-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9293D842-E228-458F-AE73-5C23B9DECDC7} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [64920 2020-02-04] (Microsoft Corporation -> Microsoft)
Task: {980A5870-6577-4DB6-B322-FCE25FA1CBD9} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-583211017-4179701285-1130646269-500
Task: {9A884DB4-3D10-4C44-9C08-D9B251FFE6F4} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\Schedule #3 created by enrollment client => C:\Windows\system32\deviceenroller.exe [361472 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {9C01F118-995B-4B9B-9F17-0D30C0B94AD9} - System32\Tasks\One System Care Delayed
Task: {A1EE5D2A-21BB-48DB-B98E-9416849C6EE9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A2036F02-9A91-4295-9795-B26E0479A703} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A71986E0-00CF-46C9-9CF4-73D3C00A7B99} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\Passport for Work alert created by enrollment client => C:\Windows\system32\deviceenroller.exe [361472 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {ACF37A07-D528-4CD4-A4D4-9689A8AEB3A6} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AFC15B0D-652B-4E9A-AFCD-24F88033255C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B2B3D775-2577-47F2-AC6F-2CCE41414DB7} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C5C425C9-E6BD-49C9-8D59-9EB08BDDB489} - System32\Tasks\One System CarePeriod
Task: {CC48BEA6-49C1-4085-81A9-8061481C263B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-10-26] (Google Inc -> Google Inc.)
Task: {D3C3F56E-0BAC-4042-9537-12D065DF4D05} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\Provisioning initiated session => C:\Windows\system32\deviceenroller.exe [361472 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {D45A2635-C7C1-43B9-A221-49F728180C6F} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\Schedule #1 created by enrollment client => C:\Windows\system32\deviceenroller.exe [361472 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {D5AA7825-0E52-47AD-B8C6-508506DF5100} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [489272 2019-08-07] (Bitdefender SRL -> Bitdefender)
Task: {D79488CE-BD4D-444E-A4ED-D7D024AD9974} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018616 2020-02-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {DF8395B3-031E-4455-AD9F-A1EBCC583D03} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\Schedule #2 created by enrollment client => C:\Windows\system32\deviceenroller.exe [361472 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {E9D01372-A645-4FD1-92F1-959264BDAA5A} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-583211017-4179701285-1130646269-1002
Task: {EBCCCBFA-FE4F-4996-86E8-09CFEF1F7FB8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128024 2020-02-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {EE626833-51A5-4D4E-9C1D-5583D120F7DD} - System32\Tasks\60322C06-AC95-A2D8-EE13-8A4E8CD3995C
Task: {F2550C12-2802-411F-92A0-498D702F74C4} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\DF322BAC-CA8D-46E1-8AC0-99A915FD6C5C\OS Edition Upgrade event listener created by enrollment client => C:\Windows\system32\deviceenroller.exe [361472 2019-12-14] (Microsoft Windows -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\Windows\Tasks\One System CarePeriod.job => C:\Program Files (x86)\OneSystemCare\OneSystemCare.exe <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\Parameters: [NameServer] 82.163.142.9 95.211.158.137
Tcpip\..\Interfaces\{01612697-d91d-11e8-ab26-806e6f6e6963}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{463e7a60-9ddc-453d-b461-5f5b8fd65353}: [NameServer] 82.163.142.9 95.211.158.137
Tcpip\..\Interfaces\{58793cf3-944d-463d-aeb4-f85710a1cf63}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{5d357913-9912-4645-a079-caf5246878be}: [NameServer] 82.163.142.9 95.211.158.137
Tcpip\..\Interfaces\{5d357913-9912-4645-a079-caf5246878be}: [DhcpNameServer] 82.163.142.9
Tcpip\..\Interfaces\{75c0e067-00c8-4453-ab97-5531ff8efa2e}: [NameServer] 82.163.142.9 95.211.158.137
Tcpip\..\Interfaces\{75c0e067-00c8-4453-ab97-5531ff8efa2e}: [DhcpNameServer] 82.163.142.9
Tcpip\..\Interfaces\{79a40691-adac-4041-beaa-9e29b5e1a8d9}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{8f466427-90f9-48d9-a90d-9cd07ae8b8cf}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{d3ea854b-cb49-47f2-a0ab-c2fd51e87dc4}: [NameServer] 82.163.142.9 95.211.158.137
Tcpip\..\Interfaces\{d3ea854b-cb49-47f2-a0ab-c2fd51e87dc4}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{fd9fad13-58ce-4dd3-a792-7c0dc209c60f}: [NameServer] 8.8.8.8

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2020-01-31] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2020-01-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2019-01-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2019-01-05] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-10] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge Notifications: HKU\S-1-5-21-583211017-4179701285-1130646269-1002 -> hxxps://ag1o.renseddowntinti.info

FireFox:
========
FF DefaultProfile: w0qmc91b.default
FF ProfilePath: C:\Users\Kolaček Petr\AppData\Roaming\Mozilla\Firefox\Profiles\w0qmc91b.default [2019-05-25]
FF Notifications: Mozilla\Firefox\Profiles\w0qmc91b.default -> hxxps://mail-notification.info
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2020-01-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2020-01-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2019-01-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2019-01-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-08-21] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-08-21] (NVIDIA Corporation -> NVIDIA Corporation)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-12-04]
CHR Profile: C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-03-02]
CHR DownloadDir: D:\RŮZNÉ
CHR Notifications: Profile 1 -> hxxps://75.wordorion.com; hxxps://www.faceit.com; hxxps://www1.sherwoodsutton.pro
CHR HomePage: Profile 1 -> hxxp://google.com/
CHR StartupUrls: Profile 1 -> "hxxp://www.seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-09]
CHR Extension: (Dokumenty) - C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-09]
CHR Extension: (Disk Google) - C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-09]
CHR Extension: (YouTube) - C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-09]
CHR Extension: (Tabulky) - C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-09]
CHR Extension: (Dokumenty Google offline) - C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-28]
CHR Extension: (Chrome Media Router) - C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-28]
CHR Profile: C:\Users\Kolaček Petr\AppData\Local\Google\Chrome\User Data\System Profile [2019-06-29]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8444360 2020-02-06] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11096648 2020-02-12] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-12-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FACEITService; D:\Games\FACEIT AC\faceitservice.exe [20718944 2020-02-29] (FACE IT LIMITED -> )
R2 Hamachi2Svc; D:\Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [399296 2019-11-28] (Canon Inc. -> )
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2436936 2020-01-12] (Overwolf Ltd -> Overwolf LTD)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1296560 2019-08-07] (Bitdefender SRL -> Bitdefender)
S3 ProtonVPN Service; D:\VPN\ProtonVPNService.exe [101096 2020-01-08] (ProtonVPN AG -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2020-02-04] (Rockstar Games, Inc. -> Rockstar Games)
S2 symsrv; C:\Program Files\windows nt\symsrv.exe [145168 2019-04-01] (Microsoft Corporation -> Microsoft Corporation)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 MBAMService; "C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
S2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
S2 rcdll; C:\Users\KOLAEK~1\AppData\Local\Temp\rcdll.exe [X] <==== ATTENTION

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [34664 2018-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [33120 2018-04-25] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\Windows\System32\drivers\amdpsp.sys [145792 2018-04-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2016-11-18] (ASUSTeK Computer Inc. -> )
R3 athur; C:\Windows\System32\drivers\athurx.sys [1847296 2010-01-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R1 ESEADriver2; C:\Users\Kolaček Petr\AppData\Local\Temp\ESEADriver2.sys [3374608 2020-02-15] (Microsoft Windows Hardware Compatibility Publisher -> ) <==== ATTENTION
R0 FACEIT; C:\Windows\System32\Drivers\FACEIT.sys [19253856 2020-02-29] (FACE IT LIMITED -> )
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
S1 jqqqkrol; C:\Windows\system32\drivers\jqqqkrol.sys [72816 2020-03-02] (Microsoft Corporation -> Microsoft Corporation)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R1 MpKslDrv; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A9E03F3A-1141-40BC-9059-CA239112813C}\MpKslDrv.sys [43232 2020-03-01] (Microsoft Windows -> Microsoft Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f5be1f8d25335236\nvlddmkm.sys [17212744 2018-08-22] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ProtonVPNSplitTunnelCalloutDriver; D:\VPN\Resources\64-bit\win10\ProtonVPNSplitTunnelCalloutDriver.Sys [48664 2020-01-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [947712 2017-02-20] (Realtek Semiconductor Corp. -> Realtek )
R3 SteamStreamingMicrophone; C:\Windows\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\Windows\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
R3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [44976 2019-07-02] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 TKCtrl; C:\Windows\system32\TKCtrl2k64.sys [147240 2018-01-29] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATTENTION
S3 TKFsAvM; C:\Windows\system32\TKFsAv64.sys [198808 2018-03-07] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATTENTION
S3 TKFsFtM; C:\Windows\system32\TKFsFt64.sys [28824 2018-03-07] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATTENTION
S3 TKPcFt; C:\Windows\system32\TKPcFtCb64.sys [54504 2018-01-30] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATTENTION
S3 TKRgAc; C:\Windows\system32\TKRgAc2k64.sys [115760 2018-01-29] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATTENTION
S3 TKRgFt; C:\Windows\system32\TKRgFtXp64.sys [68848 2018-02-04] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATTENTION
S3 TKSP; C:\Windows\system32\TKSPxp64.sys [80824 2018-01-29] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) <==== ATTENTION
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [22016 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
S1 wdgklxga; C:\Windows\system32\drivers\wdgklxga.sys [72816 2020-03-02] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
S3 MBAMSwissArmy; \SystemRoot\System32\Drivers\mbamswissarmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-02 15:24 - 2020-03-02 15:24 - 000000000 ____D C:\FRST
2020-03-02 14:34 - 2020-03-02 14:34 - 000003802 _____ C:\Windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2020-03-02 14:32 - 2020-03-02 14:32 - 000070804 _____ C:\ProgramData\agent.update.1583155903.bdinstall.v2.bin
2020-03-02 14:31 - 2020-03-02 14:33 - 000000000 ____D C:\Program Files\Bitdefender Agent
2020-03-02 14:31 - 2020-03-02 14:31 - 000102672 _____ C:\ProgramData\agent.1583155898.bdinstall.v2.bin
2020-03-02 14:31 - 2020-03-02 14:31 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2020-03-02 14:04 - 2020-03-02 14:04 - 000072816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\jqqqkrol.sys
2020-03-02 13:58 - 2020-03-02 13:58 - 000072816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wdgklxga.sys
2020-02-27 17:38 - 2020-02-27 17:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-27 17:38 - 2020-02-27 17:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-27 17:38 - 2020-02-27 17:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-27 17:38 - 2020-02-27 17:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-27 17:38 - 2020-02-27 17:38 - 000000000 ____D C:\Windows\LastGood
2020-02-24 16:33 - 2020-02-24 16:33 - 000004489 _____ C:\Users\Kolaček Petr\Desktop\excel.jfif
2020-02-22 16:03 - 2020-02-22 16:03 - 000010381 _____ C:\Users\Kolaček Petr\Desktop\stažený soubor.jfif
2020-02-16 13:48 - 2020-02-16 13:48 - 000819226 _____ C:\Users\Kolaček Petr\Desktop\Jan Zahradníček.pptx
2020-02-15 14:51 - 2020-02-15 14:51 - 000000000 _____ C:\Windows\cd_127
2020-02-15 14:48 - 2020-02-15 14:48 - 000000663 _____ C:\Users\Kolaček Petr\Desktop\ESEA Client.lnk
2020-02-15 14:48 - 2020-02-15 14:48 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESEA
2020-02-14 09:51 - 2020-02-14 09:51 - 000000202 _____ C:\Users\Kolaček Petr\Desktop\ESEA.url
2020-02-13 09:12 - 2020-02-29 12:03 - 019253856 _____ C:\Windows\system32\Drivers\FACEIT.sys
2020-02-13 08:52 - 2020-02-13 08:52 - 000000956 _____ C:\Users\Kolaček Petr\Desktop\Videa – zástupce.lnk
2020-02-11 15:36 - 2020-02-11 15:36 - 000000198 _____ C:\Users\Kolaček Petr\Desktop\Counter-Strike.url
2020-02-06 19:12 - 2020-02-06 19:12 - 000000020 _____ C:\Users\Kolaček Petr\Desktop\tsko.txt
2020-02-05 16:44 - 2020-02-05 17:37 - 000001843 _____ C:\Users\Kolaček\OverwolfBenchmarking_02-05-20_16-44-35.Game.html
2020-02-04 19:05 - 2020-02-04 19:28 - 000001843 _____ C:\Users\Kolaček\OverwolfBenchmarking_02-04-20_19-05-27.Game.html
2020-02-04 15:11 - 2020-02-04 15:11 - 000000779 _____ C:\Users\Kolaček Petr\Desktop\Cheat Engine.lnk
2020-02-04 15:11 - 2020-02-04 15:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 7.0
2020-02-04 14:19 - 2020-02-04 14:20 - 000000000 ____D C:\ProgramData\ProtonVPN
2020-02-04 14:16 - 2020-02-04 14:16 - 013743080 _____ (ProtonVPN AG) C:\Users\Kolaček Petr\Desktop\ProtonVPN_win_v1.12.0.exe
2020-02-04 14:16 - 2020-02-04 14:16 - 000000555 _____ C:\Users\Public\Desktop\ProtonVPN.lnk
2020-02-04 14:16 - 2020-02-04 14:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProtonVPN
2020-02-04 10:56 - 2020-02-04 10:56 - 000001065 _____ C:\Users\Kolaček Petr\Desktop\Rockstar Games Launcher.lnk
2020-02-02 10:45 - 2020-02-02 10:45 - 000000000 ____D C:\Users\Kolaček Petr\Documents\Medal

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-02 15:22 - 2019-01-04 19:30 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\discord
2020-03-02 15:21 - 2019-04-28 11:06 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\.IdentityService
2020-03-02 15:18 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-02 14:07 - 2020-01-18 12:59 - 000000000 ____D C:\Users\Kolaček Petr\Desktop\Obrazky -)
2020-03-02 13:29 - 2018-10-26 13:05 - 000000000 ____D C:\ProgramData\NVIDIA
2020-03-01 15:13 - 2018-12-25 19:02 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\.minecraft
2020-03-01 14:19 - 2018-11-06 18:11 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\CrashDumps
2020-03-01 11:32 - 2018-10-26 12:45 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-02-29 21:38 - 2019-10-30 15:36 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\FACEIT
2020-02-28 18:22 - 2018-12-24 18:38 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\D3DSCache
2020-02-27 17:42 - 2018-10-26 13:04 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-02-27 17:42 - 2018-10-26 12:53 - 001689054 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-27 17:42 - 2018-04-12 16:50 - 000715202 _____ C:\Windows\system32\perfh005.dat
2020-02-27 17:42 - 2018-04-12 16:50 - 000144496 _____ C:\Windows\system32\perfc005.dat
2020-02-27 17:42 - 2018-04-12 00:36 - 000000000 ____D C:\Windows\INF
2020-02-27 17:39 - 2018-10-26 13:06 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-27 17:39 - 2018-10-26 13:06 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-27 17:39 - 2018-10-26 13:05 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-02-27 17:38 - 2018-11-06 17:31 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\NVIDIA Corporation
2020-02-27 17:38 - 2018-10-26 13:06 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-27 17:38 - 2018-10-26 13:06 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-27 17:38 - 2018-10-26 13:06 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-27 17:38 - 2018-10-26 13:06 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-27 17:38 - 2018-10-26 13:03 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-02-27 17:09 - 2019-07-21 12:14 - 000000635 _____ C:\Users\Kolaček Petr\Desktop\Minecraft.lnk
2020-02-27 13:52 - 2019-01-04 19:30 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\Discord
2020-02-27 13:51 - 2019-12-24 19:45 - 000002268 _____ C:\Users\Kolaček Petr\Desktop\Discord.lnk
2020-02-27 13:51 - 2019-01-04 19:30 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-02-27 13:50 - 2018-10-26 12:58 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-26 18:13 - 2020-01-07 15:35 - 000000000 ____D C:\Program Files\Microsoft Office
2020-02-25 16:12 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\NDF
2020-02-23 12:39 - 2019-09-11 16:43 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\obs-studio
2020-02-19 16:06 - 2020-01-30 19:23 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\LogMeIn Hamachi
2020-02-18 16:50 - 2020-01-18 08:58 - 000002186 _____ C:\Users\Kolaček Petr\Desktop\CS_GO Companion.lnk
2020-02-18 16:50 - 2020-01-18 08:57 - 000002186 _____ C:\Users\Kolaček Petr\Desktop\CS_GO Indicator.lnk
2020-02-18 16:50 - 2020-01-18 08:56 - 000002186 _____ C:\Users\Kolaček Petr\Desktop\CS_GO Strike.lnk
2020-02-18 16:50 - 2020-01-18 08:55 - 000002186 _____ C:\Users\Kolaček Petr\Desktop\CS_GO Stats.lnk
2020-02-18 16:50 - 2019-12-22 20:29 - 000002186 _____ C:\Users\Kolaček Petr\Desktop\TeamSpeak Overlay.lnk
2020-02-18 16:50 - 2019-04-19 09:51 - 000002186 _____ C:\Users\Kolaček Petr\Desktop\Facecheck.lnk
2020-02-18 16:50 - 2019-04-19 09:50 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\Overwolf
2020-02-16 12:27 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-02-15 14:51 - 2018-10-26 12:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-15 14:50 - 2018-04-11 22:04 - 000786432 _____ C:\Windows\system32\config\BBI
2020-02-14 15:59 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\LiveKernelReports
2020-02-14 09:51 - 2018-12-31 15:23 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-02-13 13:16 - 2020-01-28 21:22 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\ftblauncher
2020-02-09 09:42 - 2020-01-28 18:19 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\Medal
2020-02-08 18:14 - 2019-02-11 18:16 - 000000000 ____D C:\ProgramData\Origin
2020-02-08 18:13 - 2020-01-28 18:19 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Medal B.V
2020-02-08 08:57 - 2020-01-28 18:21 - 000000002 _____ C:\Users\Kolaček Petr\.babel.json
2020-02-08 08:57 - 2020-01-28 18:19 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\Medal
2020-02-07 11:55 - 2019-01-12 22:06 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\Ubisoft Game Launcher
2020-02-07 08:15 - 2020-01-28 20:38 - 000000010 _____ C:\Users\Kolaček Petr\Desktop\Nový textový dokument.txt
2020-02-06 19:09 - 2018-10-26 12:45 - 000412472 _____ C:\Windows\system32\FNTCACHE.DAT
2020-02-06 19:08 - 2019-08-03 08:43 - 000000000 ____D C:\Program Files (x86)\TACHYON
2020-02-05 17:40 - 2018-12-25 16:23 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Local\Roblox
2020-02-05 17:39 - 2019-12-24 19:46 - 000001448 _____ C:\Users\Kolaček Petr\Desktop\Roblox Studio.lnk
2020-02-05 17:39 - 2018-12-25 16:24 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2020-02-05 17:39 - 2018-12-25 16:23 - 000000252 _____ C:\Users\Kolaček Petr\AppData\LocalLow\rbxcsettings.rbx
2020-02-05 16:44 - 2019-10-19 06:02 - 000000000 ____D C:\Users\Kolaček
2020-02-04 15:06 - 2019-04-28 07:50 - 000000000 ____D C:\Users\Kolaček Petr\AppData\Roaming\Visual Studio Setup
2020-02-04 15:05 - 2019-04-28 07:50 - 000001355 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2020-02-04 15:05 - 2019-04-28 07:50 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2020-02-04 15:00 - 2018-12-25 09:12 - 000000000 ____D C:\Users\Kolaček Petr\Desktop\Hry
2020-02-04 10:57 - 2019-10-31 21:06 - 000000000 ____D C:\Program Files\Rockstar Games
2020-02-04 10:57 - 2019-10-31 21:06 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-02-04 10:56 - 2018-10-26 12:45 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-02-04 07:49 - 2018-10-26 12:58 - 000003474 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-04 07:49 - 2018-10-26 12:58 - 000003350 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

==================== Files in the root of some directories ========

2019-04-13 20:36 - 2019-04-13 20:36 - 000221566 _____ () C:\Users\Kolaček Petr\AppData\Roaming\09h_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2019-06-28 11:12 - 2019-06-28 11:12 - 000000063 _____ () C:\Users\Kolaček Petr\AppData\Roaming\acc.txt
2019-07-05 08:34 - 2019-07-05 08:34 - 000011568 _____ () C:\Users\Kolaček Petr\AppData\Local\InstallationConfiguration.xml
2019-03-03 13:36 - 2019-03-03 13:36 - 000140800 _____ () C:\Users\Kolaček Petr\AppData\Local\installer.dat
2019-03-03 13:36 - 2019-07-05 08:34 - 000722944 _____ () C:\Users\Kolaček Petr\AppData\Local\sha.db
2019-08-12 06:14 - 2019-08-12 06:14 - 000000000 _____ () C:\Users\Kolaček Petr\AppData\Local\{01F9C0CE-103B-497C-B6C7-0BE8E782187A}
2019-09-18 14:40 - 2019-09-18 14:40 - 000000000 _____ () C:\Users\Kolaček Petr\AppData\Local\{CB93DF76-D517-46D9-A494-E95F7DB8184E}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


BCD (recoveryenabled=No -> recoveryenabled=Yes) <==== restored successfully
==================== End of FRST.txt ========================














Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-02-2020
Ran by Kolaček Petr (02-03-2020 15:29:51)
Running from D:\RŮZNÉ
Windows 10 Home Version 1803 17134.1130 (X64) (2018-11-05 16:00:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

7J0nPFTYqvCO (S-1-5-21-583211017-4179701285-1130646269-1003 - Administrator - Enabled)
Administrator (S-1-5-21-583211017-4179701285-1130646269-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-583211017-4179701285-1130646269-503 - Limited - Disabled)
Guest (S-1-5-21-583211017-4179701285-1130646269-501 - Limited - Disabled)
Kolaček Petr (S-1-5-21-583211017-4179701285-1130646269-1002 - Administrator - Enabled) => C:\Users\Kolaček Petr
WDAGUtilityAccount (S-1-5-21-583211017-4179701285-1130646269-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aktualizace NVIDIA 38.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.0.0 - NVIDIA Corporation) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Application Verifier x64 External Package (HKLM\...\{B27BC1FC-8474-9E32-73C2-6F7CD58AD1E3}) (Version: 10.1.17763.132 - Microsoft) Hidden
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.38.1 - Asmedia Technology)
Assassin's Creed Odyssey (HKLM-x32\...\Uplay Install 5059) (Version: - Ubisoft)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.026 - ASUSTek Computer Inc.)
Balanced (HKLM-x32\...\{EFD0705E-598B-46D4-8D5B-4539431764B8}) (Version: 2.02.0000 - Název společnosti:) Hidden
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 1.0.1 - Bitdefender)
Blackmagic RAW Common Components (HKLM\...\{8F57BC8F-7DAC-4E4B-BD13-A55B1AC0DF43}) (Version: 1.6 - Blackmagic Design)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.3.1.4 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.2.0 - Canon Inc.)
Canon MG3000 series Elektronická příručka (HKLM-x32\...\Canon MG3000 series Elektronická příručka) (Version: 1.3.0 - Canon Inc.)
Canon MG3000 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3000_series) (Version: 1.03 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.5.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.5.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.7.0 - Canon Inc.)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{5FD1DF50-FBB1-4888-8F8F-4ECDC78909C4}) (Version: 4.8.03928 - Microsoft Corporation) Hidden
CS:GO Companion (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Overwolf_ahjojolclafgkeibkpkkimoppjgfhkobikgcfamh) (Version: 1.0.2 - Overwolf app)
CS:GO Indicator (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Overwolf_aegjkckddebpgiomdddgenhdmbghddpkpidjfdfh) (Version: 1.0.4 - Overwolf app)
CS:GO Stats (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Overwolf_jdegahkkdbjbcgkklfibepphggjbjdeognaeiaol) (Version: 1.0.5 - Overwolf app)
CS:GO Strike (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Overwolf_hbcbcicomkcoflodiilphcanpngphbibhjjegjbf) (Version: 0.99 - Overwolf app)
CZC startovač (HKLM-x32\...\CZC_startovac) (Version: 1.0.0 - CZC.cz)
DaVinci Resolve (HKLM\...\{5913037B-95C8-4A27-8F37-026BBC7B5AF1}) (Version: 16.1.2026 - Blackmagic Design)
DaVinci Resolve Keyboards (HKLM\...\{04F776FB-37A2-4116-84F2-6CF3D731999D}) (Version: 1.0.0.0 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{567706B7-1501-43BC-81AB-C7E306B40C73}) (Version: 1.3.2.0 - Blackmagic Design)
DiagnosticsHub_CollectionService (HKLM\...\{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 - Microsoft Corporation) Hidden
Discord (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Discord) (Version: 0.0.306 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.07 - NVIDIA Corporation) Hidden
Entity Framework 6.2.0 Tools for Visual Studio 2019 (HKLM-x32\...\{C4105EB5-5C16-40C4-93DF-66DE6584D26E}) (Version: 6.2.0.0 - Microsoft Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
ESEA Client (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\ESEA) (Version: 6.0.0.0 - ESL Gaming Online, Inc.)
Facecheck (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Overwolf_fiekjlgoffmlmgfmggnoeoljkmfkcapcdmcgcfgm) (Version: 0.8.4.21 - Overwolf app)
FACEIT (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\FACEITApp) (Version: 1.23.0 - FACEIT Ltd.)
FACEIT AC version 2.0 (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 2.0 - FACEIT LTD)
FiveM (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Game Summary (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Overwolf_nafihghfcpikebhfhdhljejkcifgbdahdhngepfb) (Version: 215.4.33 - Overwolf app)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.122 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.165 - Riot Games, Inc.)
Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version: - Cheat Engine)
icecap_collection_neutral (HKLM-x32\...\{7BB0BF1D-3021-45DC-912E-9DAB74F486C0}) (Version: 16.3.29110 - Microsoft Corporation) Hidden
icecap_collection_neutral (HKLM-x32\...\{A3B4D258-74E1-49D6-9A86-2DFEFEE48DEC}) (Version: 15.8.27906 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{0B880F5C-ECD4-4FC6-81A7-46C40ECA0B8C}) (Version: 16.3.29110 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{E524832A-C567-499A-8872-0D79596E4DEE}) (Version: 15.8.27906 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{5F584D04-17CF-442B-8CBC-3FF9ABBF74A6}) (Version: 16.3.29110 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{7F104712-BE1D-4359-B8EA-8003E9721001}) (Version: 15.8.27924 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{0E9D093A-16D9-4572-953D-2881C7DA945C}) (Version: 16.1.28829 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{99A768BB-C508-44E5-AE78-72ABE55728CF}) (Version: 15.8.27924 - Microsoft Corporation) Hidden
IntelliTraceProfilerProxy (HKLM-x32\...\{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 - Microsoft Corporation) Hidden
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Kits Configuration Installer (HKLM-x32\...\{29B915AE-013F-151F-3E61-67F7363C3A09}) (Version: 10.1.17763.132 - Microsoft) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
Microsoft .NET Core SDK 3.0.100 (x64) from Visual Studio (HKLM\...\{C52DB3F0-440B-4A83-B795-B1180D70BBFF}) (Version: 3.0.100.014277 - Microsoft Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.12430.20288 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM\...\{8D7CE3B0-5379-46FE-9F4B-A65D9F4CC1F1}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM-x32\...\{725CC962-98BD-42C7-87D8-51C680FB1779}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Teams) (Version: 1.2.00.32462 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.4.1080.1113 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{2D1ED4EA-B59D-4665-ACB3-9325872A300D}) (Version: 1.0.4.0 - Mojang)
MSI Development Tools (HKLM-x32\...\{6C961B30-A670-8A05-3BFE-3947E84DD4E4}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
NativeDesktopMediaService (HKLM-x32\...\{4A91D8B3-712F-4815-B29B-E610008C4704}) (Version: 3.6.1 - Jetmedia) <==== ATTENTION
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.1 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.0.105 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.105 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 399.07 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.07 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 24.0.3 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20288 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20184 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.12430.20288 - Microsoft Corporation) Hidden
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.141.0.13 - Overwolf Ltd.)
Ovládací panel NVIDIA 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 399.07 - NVIDIA Corporation) Hidden
PBE (HKLM-x32\...\PBE 1.0) (Version: 1.0 - Riot Games, Inc)
ProtonVPN (HKLM-x32\...\{E8DF3EB9-0C4D-42CB-ACCA-928CBBFE0693}) (Version: 1.12.0 - ProtonVPN AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.12.0) (Version: 1.12.0 - ProtonVPN AG)
ProtonVPNTap (HKLM-x32\...\{C23BCE3A-FD25-48BA-948E-2CE94576F983}) (Version: 1.0.1 - ProtonVPN AG)
R6 Tracker (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Overwolf_ekhcackbfanheaceicpfmhmmeojplojfgkmfnpjo) (Version: 1.4.9 - Overwolf app)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.13.1223.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7940 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG3000 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG3000 series) (Version: - ‭Canon Inc.)
Roblox Player for Kolaček Petr (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for Kolaček Petr (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.16.196 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
SDK ARM Additions (HKLM-x32\...\{0B5D6FB7-05A5-271B-5B99-82384219A471}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{4A5F6E94-7967-A333-8231-CA9AF35E03BD}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
STAR WARS Jedi - Fallen Order™ (HKLM-x32\...\{D00A89F1-2D8C-4589-B1D1-73A6544E3B1F}) (Version: 1.0.5.0 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.32462 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.3.2 - TeamSpeak Systems GmbH)
TeamSpeak Overlay (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\Overwolf_jnabojaampcpfclojlbildognlnebnhfhibiielh) (Version: 1.0.0.2 - Overwolf app)
Twitch (HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Universal CRT Extension SDK (HKLM-x32\...\{1FBCBC17-4527-2340-0832-B1D49C41FF67}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (HKLM-x32\...\{7D225043-6CC5-7B56-11DD-AFF90E4C1C0C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{8BFBEC30-33CC-13B4-849F-3B036F27466A}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{CB19DBA2-C210-5646-9522-695A1317CD34}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{5F577A45-3C65-352B-061D-D6A57F05402C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{3B588BBE-EB02-D1B2-5CD5-7DB85AD8A3E7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{D2DC1EDF-EE04-9B5F-BDD7-06645D859EC3}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{CE83D0BD-418A-F3D1-D6CE-687E96D1EBD0}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 73.0 - Ubisoft)
vcpp_crt.redist.clickonce (HKLM-x32\...\{6070460A-FB5E-4D92-8C99-0944C19C2ACA}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
vcpp_crt.redist.clickonce (HKLM-x32\...\{F20AEB7F-10E0-4FA1-BEAE-4E9C237EF051}) (Version: 14.16.27012 - Microsoft Corporation) Hidden
Visual Studio Community 2017 (HKLM-x32\...\a948658e) (Version: 15.9.28307.858 - Microsoft Corporation)
Visual Studio Community 2019 (HKLM-x32\...\921788c3) (Version: 16.3.29326.143 - Microsoft Corporation)
VS Immersive Activate Helper (HKLM-x32\...\{78500789-0EBE-4490-BE43-F9EF8250BF42}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{4137D3AB-5B44-4AC9-83A4-5273F2E2547E}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM\...\{8B657335-3813-4CF4-A6FE-2AA44BE23F94}) (Version: 16.0.95.0 - Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32\...\{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32\...\{BAF91847-0A64-405E-98EC-A0BA6FB4BC4E}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32\...\{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32\...\{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{D19BAD98-BFDD-4C70-B66C-EE75F851B9BC}) (Version: 16.3.29311 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{72E86320-AFF2-44F8-9C8B-0BD51E5B14DE}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{DBA97C17-13F0-407B-8BC4-0C2E01A298A5}) (Version: 16.3.29209 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{AD3B73B9-D5C8-4FF9-AB73-7A1DC39F3E02}) (Version: 16.3.29209 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{692A0FB3-E6A2-4D41-AC03-4136B4312DC0}) (Version: 16.3.29209 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx64 (HKLM\...\{B6BAC9A6-A70D-4E4D-B90A-7EE2B336E090}) (Version: 15.8.27729 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx86 (HKLM-x32\...\{3161DA68-DD37-4798-82DB-B3A0BD6BA233}) (Version: 15.8.27729 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{68B8AD33-CE97-4C3D-9583-669C39D21BA5}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{6B065DCD-E730-4FCE-905D-2B3F30A91110}) (Version: 16.3.29230 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{DA2B1838-3B2E-4220-8B2E-796F4624D463}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{92B3118C-3214-4BFA-89A0-5FF5EDFA2AEA}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
WinAppDeploy (HKLM-x32\...\{716AE8F2-1BE3-7657-DF6B-F23DEEC75AF9}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Windows SDK AddOn (HKLM-x32\...\{1E76DFA7-96F3-4281-8E41-8A226C3E42EE}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.17763.132 (HKLM-x32\...\{5fe95b9d-9219-4d8b-a031-71323ae48a81}) (Version: 10.1.17763.132 - Microsoft Corporation)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{00B12DF9-5428-9406-DE2C-8E8A1A062B05}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{E82A4A6C-C21C-35FE-B805-3E44318F6D63}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{7E898893-9C42-A572-7F57-FDE55CE812F7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E8B1CB29-5C24-D882-3CEF-F8A7263BC63D}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{F6F11150-93DE-0507-FCA0-F746E0207017}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{8329C3A0-8582-D1C2-67FF-800654BFDF45}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{771C9DEF-7C0B-85DA-6426-7A20F06BEC94}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{B047C746-63E8-41C7-A5C0-7ABD390CF3E6}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{0063AF94-397B-9C64-1C71-D404B27C5D96}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
YMS 3017 AMBUSH Gaming mouse (HKLM-x32\...\{A53D8141-1FAB-4EA5-8630-52BFC0170AB3}}_is1) (Version: 1.0 - )

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.2.11280.0_x86__8wekyb3d8bbwe [2018-12-24] (Microsoft Studios) [MS Ad]
Microsoft Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.28.3242.0_x64__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.3242.0_x64__8wekyb3d8bbwe [2018-12-24] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.89.355.0_x64__mcm4njqhnhss8 [2018-12-24] (Netflix, Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-583211017-4179701285-1130646269-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Kolaček Petr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19296.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-583211017-4179701285-1130646269-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Kolaček Petr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19296.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Epic Games\Notepad++\NppShell_06.dll [2019-10-27] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ixcShellExt] -> {A7047D3E-09F3-11D4-8F6D-1081AD87DD41} => C:\Program Files (x86)\TACHYON\T5\ixShellExt6.dll -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-08-21] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ixcShellExt] -> {A7047D3E-09F3-11D4-8F6D-1081AD87DD41} => C:\Program Files (x86)\TACHYON\T5\ixShellExt6.dll -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2018-09-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2018-09-26] (Beepa P/L) [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============


==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\system32\Drivers\jqqqkrol.sys:changelist [530]
AlternateDataStreams: C:\Windows\system32\Drivers\wdgklxga.sys:changelist [514]
AlternateDataStreams: C:\Users\Kolaček Petr\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [118]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TKFsAvM => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TKFsFtM => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TKPcFt => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TKRgAc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TKRgFt => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TKFsAvM => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TKFsFtM => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TKPcFt => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TKRgAc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TKRgFt => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\sharepoint.com -> hxxps://vspssu-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Kolaček Petr\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 82.163.142.9 - 95.211.158.137
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Discord"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\Run: => "Gaijin.Net Agent"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\Run: => "OPLJTQ4NO67YEQV"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\Run: => "App"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\Run: => "CloudNet"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\Run: => "SilentSun"
HKU\S-1-5-21-583211017-4179701285-1130646269-1002\...\StartupApproved\Run: => "Medal"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D92B2F29-2976-44CA-832B-704E085C2ADA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{397C86B8-C0AA-4F99-B1FD-64EDC20B9618}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{42195343-35D3-4DC1-BEB5-A60CA03FE8FC}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{9394F37F-BD42-4531-972A-3B416A6D041E}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{1BDEF5A7-4D99-4A8E-9D69-291398DA17E1}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe No File
FirewallRules: [UDP Query User{22886A7B-5413-401D-8904-E798D834E7AB}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe No File
FirewallRules: [TCP Query User{C112FA7B-2F25-4ABB-A453-04E8918EDDCB}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [UDP Query User{DC9A73FE-AEC0-4577-BC54-5F8107754C23}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [TCP Query User{DCE90EB3-F55F-4689-B921-9C99B64D2EAF}D:\world of tanks\world_of_tanks_eu\worldoftanks.exe] => (Allow) D:\world of tanks\world_of_tanks_eu\worldoftanks.exe No File
FirewallRules: [UDP Query User{A1C8ECB9-B25F-4173-AB5D-F6A14A0306A2}D:\world of tanks\world_of_tanks_eu\worldoftanks.exe] => (Allow) D:\world of tanks\world_of_tanks_eu\worldoftanks.exe No File
FirewallRules: [TCP Query User{84E335BE-8BD5-45E0-8C95-6C63BAFB11A7}D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe No File
FirewallRules: [UDP Query User{8021D7F0-BD1B-45CB-BA82-7FE9FB298A9A}D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe No File
FirewallRules: [TCP Query User{455D9211-B81F-4AAB-BC3E-F99AC90CD826}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{1E5452D5-BFA9-43AC-912D-AE135A13788F}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{FDD99236-4B1F-441A-88E6-0F23B51A5EF2}D:\world of tanks\world_of_tanks_eu\worldoftanks.exe] => (Block) D:\world of tanks\world_of_tanks_eu\worldoftanks.exe No File
FirewallRules: [UDP Query User{65EE5E5B-B775-482A-AE02-33619FA3BD5D}D:\world of tanks\world_of_tanks_eu\worldoftanks.exe] => (Block) D:\world of tanks\world_of_tanks_eu\worldoftanks.exe No File
FirewallRules: [TCP Query User{DB52D495-EA3A-4D39-9DE7-4C5481B31F90}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [UDP Query User{C2355FA4-FCB0-4595-80F5-8BF06062BD1F}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [TCP Query User{C992B737-46E2-4222-93E8-F7ADE3AA7F0B}D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe No File
FirewallRules: [UDP Query User{8F20B206-8240-4674-963C-ECEF45F80590}D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe No File
FirewallRules: [TCP Query User{8942434A-31DA-4461-BD78-D46E493B9672}D:\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{7DB9650E-335D-4A9F-98A4-B4EF0C2EDA93}D:\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{03827AD1-A3B5-469B-9DAC-3EC8E2CE6BD8}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe No File
FirewallRules: [UDP Query User{D681D96B-A45B-4FB7-915C-6C1CF757A3B7}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe No File
FirewallRules: [TCP Query User{1A29C0C4-0F9F-45F4-8027-0A5377C096F5}D:\fortnite\subnautica\subnautica.exe] => (Allow) D:\fortnite\subnautica\subnautica.exe No File
FirewallRules: [UDP Query User{B38C57F6-D94D-43BC-A7A4-D342C501F984}D:\fortnite\subnautica\subnautica.exe] => (Allow) D:\fortnite\subnautica\subnautica.exe No File
FirewallRules: [TCP Query User{D50E546C-450D-4E3F-8BD7-E7AD58AA3A71}D:\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{2F7C531E-9598-4170-807D-2B490E6B6562}D:\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{A93EE318-96E7-4E91-A225-601B56F3FE58}D:\fortnite\subnautica\subnautica.exe] => (Allow) D:\fortnite\subnautica\subnautica.exe No File
FirewallRules: [UDP Query User{B4E0EC97-2F89-4655-9112-6AB4A04FE22B}D:\fortnite\subnautica\subnautica.exe] => (Allow) D:\fortnite\subnautica\subnautica.exe No File
FirewallRules: [TCP Query User{8616B1C0-F273-4050-B4A9-B66F01A1C4AC}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{CA797E29-66F4-41AC-B30F-33C986EFEE2A}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [{24A914E0-ACBA-4608-9A7D-8E57B266ABD7}] => (Allow) D:\Epic Games\counter strike\Steam.exe No File
FirewallRules: [{490B72EA-DF12-4B1E-A45E-A24CA4C94846}] => (Allow) D:\Epic Games\counter strike\Steam.exe No File
FirewallRules: [{CCEA64D3-653B-490F-A3C8-5F1B73ADFE44}] => (Allow) D:\Epic Games\counter strike\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{DCC32A33-D42D-49B3-83AF-AA02CFAEE23A}] => (Allow) D:\Epic Games\counter strike\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [TCP Query User{CD39F38B-968B-43C6-9574-26F5DF2704BA}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{FFD7A4D8-F772-4A2D-AD1F-A801EDF099EE}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [{7B49B1DA-1961-4A7E-8C6A-2D016B1D3C03}] => (Allow) D:\Epic Games\counter strike\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [{D056D814-AD4E-4A83-B760-0490A498AD0C}] => (Allow) D:\Epic Games\counter strike\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [TCP Query User{29099E92-FFEE-4F7A-A38D-2FBA08D21A11}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C6C928DD-23D3-4266-BEF8-11B9B9EF5464}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{9ED13AC3-A907-4BAB-A773-1E1D3EE2EAC5}D:\epic games\crossout\launcher.exe] => (Allow) D:\epic games\crossout\launcher.exe No File
FirewallRules: [UDP Query User{38E2B497-5DF6-4F02-A103-BA43D6B93435}D:\epic games\crossout\launcher.exe] => (Allow) D:\epic games\crossout\launcher.exe No File
FirewallRules: [TCP Query User{A3232C7B-0769-4CD3-9565-BD1561487F6B}D:\epic games\counter strike\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe] => (Allow) D:\epic games\counter strike\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe No File
FirewallRules: [UDP Query User{4BDDAFA0-1881-4BAC-8E0D-D74559540402}D:\epic games\counter strike\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe] => (Allow) D:\epic games\counter strike\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe No File
FirewallRules: [TCP Query User{8BDEB8D5-C947-43DB-A285-E8766E6082D7}D:\epic games\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\epic games\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{8ABC0CB5-321F-4F0D-BB38-F66F6A1A317D}D:\epic games\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\epic games\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{2CB7DF9D-255E-490D-ABF1-071BFD4BF248}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{99D362BE-BF67-40F8-8406-E1DC33C3228C}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{EA7F581B-7359-40C8-9A52-60F7463350D5}D:\fortnite\pixark_modkit\engine\binaries\win64\ue4editor.exe] => (Allow) D:\fortnite\pixark_modkit\engine\binaries\win64\ue4editor.exe No File
FirewallRules: [UDP Query User{3EE7F24C-A0D6-4809-B798-1AE23D2F54A4}D:\fortnite\pixark_modkit\engine\binaries\win64\ue4editor.exe] => (Allow) D:\fortnite\pixark_modkit\engine\binaries\win64\ue4editor.exe No File
FirewallRules: [TCP Query User{07DB1F44-575D-448F-BEFB-1A5D02F604A7}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe No File
FirewallRules: [UDP Query User{2D98B605-2689-44E7-80BC-FC70F84CC283}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe No File
FirewallRules: [TCP Query User{58F5B8AA-23F7-4E38-90E2-397199F7B143}D:\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{2BEE893F-FDA1-4932-84D2-40B7D76F4699}D:\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{9B2D8BC4-B4FD-47B7-992D-816302FFB2B5}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D31D29AD-0757-4ED1-A208-534ABD51DA69}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{3A0192D1-0DD8-49C2-8155-7E899803F606}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.191\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.191\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{F2DF9D09-469C-40CA-A969-C351A64508E3}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.191\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.191\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{CBA35519-BB70-4C0B-B97B-F0BB6C488831}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{F9210BE3-3030-4FDD-BD2B-13B7F8C0BE5F}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{F5B76144-F83A-446F-B8ED-BA172FA01033}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{9A646893-319F-438B-A788-8A2510E027FE}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{7CD1FB3C-D299-4061-8899-F379061DD0F9}C:\users\kolaček petr\appdata\local\temp\download\minithunderplatform.exe] => (Block) C:\users\kolaček petr\appdata\local\temp\download\minithunderplatform.exe No File
FirewallRules: [UDP Query User{BC1F9F1F-7974-4375-BF3F-1ACD8FB41EC5}C:\users\kolaček petr\appdata\local\temp\download\minithunderplatform.exe] => (Block) C:\users\kolaček petr\appdata\local\temp\download\minithunderplatform.exe No File
FirewallRules: [TCP Query User{E1B1529B-0915-420A-B542-424F80DFF3CA}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{0878757F-18BB-4106-B6D9-4DBC51F12D8D}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{5E064A6F-02AF-4C6F-857D-5E706394D4FB}D:\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{19387574-9096-4CB0-B6FB-5A2D76A6636A}D:\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{BE475632-B1C2-4B10-A4C2-7DB2DD2C756C}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{71A7977F-8AB1-468F-B76C-1C5593CAED1A}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{45B94C8A-34A7-4378-BA2B-898428AE4077}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{05CBC058-FDAB-4954-8AA0-C6E806F4A1B4}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{96FD3886-14A2-48CB-8FA8-1853887CBE44}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{3C8A91B4-314F-4141-B8A9-C4B73A9A73E6}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{CD67EBCF-80D5-4129-AA00-4A76B7185A4B}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Block) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{27C05AD8-9A0C-4F85-8306-421A9C82B4DB}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Block) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{A841A044-F44A-41F4-BA08-78377B33D920}C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [UDP Query User{D45A512C-803D-4FF1-A462-29E90231327F}C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [TCP Query User{F8B6303E-3530-4EC5-BC2C-F62366881504}D:\fortnite\ue_4.21\engine\binaries\win64\ue4editor.exe] => (Allow) D:\fortnite\ue_4.21\engine\binaries\win64\ue4editor.exe No File
FirewallRules: [UDP Query User{9856CEB3-4200-4C0B-BE9E-925A01777FFC}D:\fortnite\ue_4.21\engine\binaries\win64\ue4editor.exe] => (Allow) D:\fortnite\ue_4.21\engine\binaries\win64\ue4editor.exe No File
FirewallRules: [TCP Query User{B83201F4-34C9-4068-9BA8-8DE281F36924}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{8C302D88-33C0-4120-80B5-E7413E508C5B}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{6EB7A0A5-5406-41A0-AA67-F394A69D0F39}D:\fortnite\ue_4.21\engine\binaries\win64\ue4editor.exe] => (Block) D:\fortnite\ue_4.21\engine\binaries\win64\ue4editor.exe No File
FirewallRules: [UDP Query User{5DA623AC-8CA3-4CDD-AC65-9B7619C4DEAA}D:\fortnite\ue_4.21\engine\binaries\win64\ue4editor.exe] => (Block) D:\fortnite\ue_4.21\engine\binaries\win64\ue4editor.exe No File
FirewallRules: [TCP Query User{A4789913-C836-431F-B4EE-A3CDD8FCF47F}C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [UDP Query User{B32B1271-B443-496E-9015-18FF680E0F8D}C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [TCP Query User{5E76021D-F4C9-42FB-8A0D-323A668122D7}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{B4CB172C-F078-429F-9997-391734A27CAA}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{175BC10B-2FAE-4EF0-B6D7-36D66D9151D9}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{A70A4AE0-57D3-4368-8877-8D42DE000D6E}D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) D:\epic games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe No File
FirewallRules: [{1C1DE4D4-A99A-4D35-87C2-AC45C3D8AA72}] => (Allow) C:\Users\Kolaček Petr\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe No File
FirewallRules: [TCP Query User{28CF2B0F-33A5-4524-9E7D-96661F3635A0}D:\epic games\crossout\launcher.exe] => (Allow) D:\epic games\crossout\launcher.exe No File
FirewallRules: [UDP Query User{D0749EB1-C590-4C98-A64D-3EF4B03EC396}D:\epic games\crossout\launcher.exe] => (Allow) D:\epic games\crossout\launcher.exe No File
FirewallRules: [TCP Query User{8EFB3759-FEEF-415C-ADC5-C462D0B6348C}D:\fortnite\ue_4.21\engine\binaries\dotnet\swarmagent.exe] => (Allow) D:\fortnite\ue_4.21\engine\binaries\dotnet\swarmagent.exe No File
FirewallRules: [UDP Query User{AFB1BB65-FA40-4CE6-B2B0-BDA9A0204950}D:\fortnite\ue_4.21\engine\binaries\dotnet\swarmagent.exe] => (Allow) D:\fortnite\ue_4.21\engine\binaries\dotnet\swarmagent.exe No File
FirewallRules: [{B1237AAD-DBA5-4B35-945C-E8681CA06251}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe No File
FirewallRules: [{70C41835-761E-40E0-B197-8D983302A56C}] => (Allow) D:\Epic Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{085FA3CE-2C2D-4B0F-B2C6-43907E5B8C04}] => (Allow) D:\Epic Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{FEC5DA00-BE36-4450-BBE7-E991E939123A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe No File
FirewallRules: [{7852AF3F-2234-4CE3-88BD-EF8034C77622}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe No File
FirewallRules: [{DC5A75CB-4C6F-4E06-AEA3-B76F893462FF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{EC42EF49-3E09-4CAF-BF9C-0FAB2CCF9269}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{149B5AEB-C2EE-486C-B27C-067DFF3748BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe No File
FirewallRules: [{046030B2-3A29-4AF9-8490-482C97B578F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe No File
FirewallRules: [{8A3DBC3A-4508-4A2A-963D-06E83EA3A9FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe No File
FirewallRules: [{811877C9-92B3-4258-B21D-4E193F5EBAD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe No File
FirewallRules: [{798FC711-4ADC-4C0D-81A5-ABD99F5EE8C4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [{839CEC17-62ED-4F95-A554-129BD3BA2271}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [TCP Query User{2E3FE464-5D65-46BF-AA94-1B1A456496F6}C:\program files (x86)\common files\oracle\java\javapath_target_864280593\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_864280593\java.exe
FirewallRules: [UDP Query User{A0D0AC3F-C48A-4BE2-9C6D-FB43C8FDC5C2}C:\program files (x86)\common files\oracle\java\javapath_target_864280593\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_864280593\java.exe
FirewallRules: [{7BD1022A-CCBD-47FC-AB34-CD52BDFF5CB0}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4ECD0304-2E8A-4677-9072-31E1A019A1EC}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{856B9C8B-21FB-45D4-A8D6-BE4A170C2C12}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6705A50C-81D6-4A2D-A2E5-A00A2EC2424F}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{EDDC1020-21EF-47D7-8BC9-E31EE2C79127}C:\users\kolaček petr\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\users\kolaček petr\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{7773C20B-D756-4E2E-AF3A-0EC94490A11E}C:\users\kolaček petr\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\users\kolaček petr\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{C6D4917D-8B8B-4649-B652-99664B365CC5}D:\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steam\steamapps\common\counter-strike global offensive\csgo.exe (Valve -> )
FirewallRules: [UDP Query User{54D104E8-BD4E-450C-9223-C538E6A47141}D:\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steam\steamapps\common\counter-strike global offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{2E0159EC-30B0-49B4-878F-0B4C503C2DEA}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe No File
FirewallRules: [UDP Query User{1D66D5E8-0A63-4868-91DE-07B1FE0DF4FB}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe No File
FirewallRules: [{B85EF056-3027-45A9-B016-F2C7973D4441}] => (Allow) C:\ProgramData\1511914395314946463\desktop_media_service.exe No File
FirewallRules: [{223A9820-06DC-43D1-A76C-7E0A015D147C}] => (Allow) C:\Windows\SysWOW64\TCPSVCS.EXE (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{10A76980-5973-47EE-A204-84187961B258}D:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) D:\games\world_of_tanks_eu\worldoftanks.exe No File
FirewallRules: [UDP Query User{824FA3EB-43C8-4135-86ED-BD6D4EAA1F29}D:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) D:\games\world_of_tanks_eu\worldoftanks.exe No File
FirewallRules: [TCP Query User{0AD4BA29-B849-495B-B0AD-094892765C9C}D:\epic games\league of legends\game\league of legends.exe] => (Allow) D:\epic games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{B7ACA805-58D2-4D6C-A961-FDF809E3D44F}D:\epic games\league of legends\game\league of legends.exe] => (Allow) D:\epic games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{C893DAA3-953E-42F4-8ED3-D82B6EA63979}] => (Allow) D:\Steam\steamapps\common\Colony Survival\colonyclient.exe () [File not signed]
FirewallRules: [{35FDEBE7-9771-4114-98AF-D35AB4671EF2}] => (Allow) D:\Steam\steamapps\common\Colony Survival\colonyclient.exe () [File not signed]
FirewallRules: [{6EFE47D4-245B-498F-9EEC-48A0E1B23DBF}] => (Allow) C:\Riot Games\PBE\LeagueClient.exe No File
FirewallRules: [{06324F04-09CB-4349-8133-3FE56B030869}] => (Allow) C:\Riot Games\PBE\LeagueClient.exe No File
FirewallRules: [TCP Query User{E693D6B0-FD67-45CA-82E3-3C8B5ED6910C}C:\riot games\pbe\game\league of legends.exe] => (Allow) C:\riot games\pbe\game\league of legends.exe No File
FirewallRules: [UDP Query User{E0D2AFA8-5327-4F32-A18D-A3567E805F31}C:\riot games\pbe\game\league of legends.exe] => (Allow) C:\riot games\pbe\game\league of legends.exe No File
FirewallRules: [TCP Query User{CABE79B6-3676-4EB5-B715-38D71303C125}C:\program files (x86)\microsoft visual studio\2019\community\common7\ide\devenv.exe] => (Allow) C:\program files (x86)\microsoft visual studio\2019\community\common7\ide\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{302A7A9B-EE16-4813-A07F-175AD5B78A5B}C:\program files (x86)\microsoft visual studio\2019\community\common7\ide\devenv.exe] => (Allow) C:\program files (x86)\microsoft visual studio\2019\community\common7\ide\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{50D95025-CCA9-42D4-AB35-94157A26B8D3}D:\epic games\league of legends\game\league of legends.exe] => (Allow) D:\epic games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{709DAD51-530C-4556-BF31-23D9175C5CDB}D:\epic games\league of legends\game\league of legends.exe] => (Allow) D:\epic games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{F3292B79-A354-4258-9C09-7A7E64C6468F}] => (Allow) D:\Steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7F4C01AC-9A2A-4C83-A4C8-4C3E773D9CEF}] => (Allow) D:\Steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{912865D6-ABA7-46F0-88C1-DD77C6129D7D}C:\users\kolaček petr\downloads\anydesk (3).exe] => (Block) C:\users\kolaček petr\downloads\anydesk (3).exe No File
FirewallRules: [UDP Query User{2A36B320-3266-4088-A9C8-59B9C3973B4B}C:\users\kolaček petr\downloads\anydesk (3).exe] => (Block) C:\users\kolaček petr\downloads\anydesk (3).exe No File
FirewallRules: [{1F51FB5B-13BC-4A2B-82DF-2B301C458FE6}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{F624450B-37D7-4AA3-B05F-E7CBD23EE4F1}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{B6FA15AB-D8D4-4F4F-A745-B43AF87E2A4E}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{472F0FC6-D4E3-44A9-B918-4B8FC15E4DBB}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{A3A7EB1F-9E12-432E-B645-34060DCDA5E6}C:\users\kolaček petr\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\kolaček petr\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [UDP Query User{0F56B5C6-2CA1-47C3-8BA1-CFF3E3C75AFC}C:\users\kolaček petr\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\kolaček petr\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [TCP Query User{8900B0C1-F499-4920-86D2-6159C2B771BC}C:\users\kolaček petr\appdata\local\fivem\fivem.exe] => (Allow) C:\users\kolaček petr\appdata\local\fivem\fivem.exe (cfx-collective) [File not signed]
FirewallRules: [UDP Query User{870F5C61-D0D4-4EA0-A012-66D5EA023E8D}C:\users\kolaček petr\appdata\local\fivem\fivem.exe] => (Allow) C:\users\kolaček petr\appdata\local\fivem\fivem.exe (cfx-collective) [File not signed]
FirewallRules: [TCP Query User{4D9AF1E0-B78F-4FC7-8AFD-F1580F9D25CE}C:\users\kolaček petr\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\users\kolaček petr\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{2276D81C-7B91-47F4-846D-D9B41812CCAC}C:\users\kolaček petr\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\users\kolaček petr\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{3EB19475-E59D-452F-AF12-271214D2D3E6}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{C13F5A06-0167-4835-9E66-34B9E013052C}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{E4E2164A-1AD6-4A90-8C38-4077F6B287E6}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{680E73CD-AEEF-4CC8-A136-BC9360BE5291}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{33181D72-EBAC-4FF2-AA15-8F25B8FFDB56}D:\obs\streamlabs obs\streamlabs obs.exe] => (Allow) D:\obs\streamlabs obs\streamlabs obs.exe No File
FirewallRules: [UDP Query User{5C80FC9D-61DA-4708-8B38-0ED53F9FBDC4}D:\obs\streamlabs obs\streamlabs obs.exe] => (Allow) D:\obs\streamlabs obs\streamlabs obs.exe No File
FirewallRules: [{2299E078-2E74-4830-B05A-3315B82A41A4}] => (Allow) D:\DaVinciResolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{77A88E93-1D02-4C92-A440-2E211ADDB87E}] => (Allow) D:\DaVinciResolve\bmdpaneld.exe () [File not signed]
FirewallRules: [{0F9389A1-A1E5-4CE5-A9D7-D052F62CE01F}] => (Allow) D:\DaVinciResolve\DaVinciPanelDaemon.exe () [File not signed]
FirewallRules: [{D388EBEA-CF1E-48CE-AAA2-3356F9AFEDC2}] => (Allow) D:\DaVinciResolve\JLCooperPanelDaemon.exe () [File not signed]
FirewallRules: [{30CF418A-F941-4664-BC5A-8BAC437769C0}] => (Allow) D:\DaVinciResolve\EuphonixPanelDaemon.exe () [File not signed]
FirewallRules: [{F1706495-C5AF-461F-9DF3-A99BB957182C}] => (Allow) D:\DaVinciResolve\TangentPanelDaemon.exe () [File not signed]
FirewallRules: [{935355FF-2498-4646-B1D7-B2AC4C9BE886}] => (Allow) D:\DaVinciResolve\ElementsPanelDaemon.exe No File
FirewallRules: [{332E3F32-BE37-4897-A514-E4371400096D}] => (Allow) D:\DaVinciResolve\OxygenPanelDaemon.exe No File
FirewallRules: [{3434155A-46E8-4392-8CC9-0320C98B1ADD}] => (Allow) D:\DaVinciResolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{937F182A-C30A-44F3-9C42-124DDD77472F}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe No File
FirewallRules: [TCP Query User{9544C8EA-603D-4C28-B2AF-BE5337A2E404}D:\davinciresolve\fuscript.exe] => (Allow) D:\davinciresolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [UDP Query User{24FAC19E-A33D-400F-81B4-DC95C2EBE303}D:\davinciresolve\fuscript.exe] => (Allow) D:\davinciresolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [{295FB222-8BC5-4787-9CC6-F8AE1768FD7E}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\Assassin's Creed Odyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{7F21AC7F-873C-4D76-868D-65D03AD6FE2D}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\Assassin's Creed Odyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{F0D2DA65-7B9B-4A99-819A-1AEB548862DB}] => (Allow) D:\StarWars\Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{15F2CD8E-1CD4-4EE0-AE9D-8B100BEFE35E}] => (Allow) D:\StarWars\Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{12B9D360-D954-4738-9041-015637472E6C}] => (Allow) D:\Steam\steamapps\common\Super Lucky's Tale\SLT.exe () [File not signed]
FirewallRules: [{FF801A02-DFBD-43A8-8D2C-C4EE5F9DBA6D}] => (Allow) D:\Steam\steamapps\common\Super Lucky's Tale\SLT.exe () [File not signed]
FirewallRules: [{EDCF1AC1-2BB7-4B9C-AE6C-1E45640B2822}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [{1D79564B-152E-42D8-9027-80E5EB2DF46F}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [TCP Query User{39E057E7-5518-4A97-9B93-AA54A66F3BD7}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [UDP Query User{53B51671-4CAD-49FA-B652-B93F981EA01B}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [{5C7A24C7-3D04-4644-B996-9F47E41F56F2}] => (Allow) D:\Steam\steamapps\common\Blender\blender.exe (Stichting Blender Foundation -> Blender Foundation)
FirewallRules: [{74FC8348-2BA7-45C6-9EFC-EE782D804D29}] => (Allow) D:\Steam\steamapps\common\Blender\blender.exe (Stichting Blender Foundation -> Blender Foundation)
FirewallRules: [{0DB8376D-A34E-4894-9F0D-2C12C907DB54}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0C4C781F-CDF0-4A67-9C21-433D58CB4EB0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{223B35E2-62BE-4206-BF81-E9C305692940}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8D161D24-3FF9-4480-B42C-175ADBEFD20D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A5F85882-91B5-4B78-A430-654541B19448}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0B2D5588-399F-4A4D-8FC9-1A981C384DA1}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{FA0DCBC9-2C8E-4DD8-9B21-DDEF60EE19D1}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{446497C0-1768-49C1-97A7-C0DCC6E54313}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{E2CDF93D-759E-498F-A117-E79B8CC4B7FC}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{55C56047-26B6-44F4-B04D-9E4D66419DD9}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{540E7603-A355-415F-BFAB-C4913F154787}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{0BF5ADED-8279-4E6F-B786-0A976A3AF205}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{43DC0CBE-D9C4-40C6-A362-92D9CD6A234A}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{F6461DA4-8A59-4A97-A931-CC0A6A8EBCCC}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, Inc. -> Psyonix LLC)
FirewallRules: [{3FF7A475-D0B5-42BF-9676-047F880469DD}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, Inc. -> Psyonix LLC)
FirewallRules: [{FB9BBB17-67F9-42E2-A83E-58B4EB2E4DCB}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{8553767E-0E07-403B-93FD-98DF4F468F74}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{F5DBC1B0-2B29-4986-9377-2610AA438817}] => (Allow) D:\Steam\steamapps\common\ESEA Premium\eseaclientsteam.exe (TODO: <Company name>) [File not signed]
FirewallRules: [{90C8894F-BD85-46A0-A43F-65369EB389DC}] => (Allow) D:\Steam\steamapps\common\ESEA Premium\eseaclientsteam.exe (TODO: <Company name>) [File not signed]
FirewallRules: [{07C9228B-4B6B-4069-A209-16517A805C06}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{5C6A9396-3000-4A60-A82D-398DBB6AEBAE}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{41DF5C28-065E-4F97-B887-2BC5B1D896AB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{175C6145-9CE8-467B-841B-6805BEF624AB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{792828BD-CB49-485D-87AE-BC5B68B54433}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{43CD531F-90F8-4E6A-99AA-B43246C5B449}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7E56D93A-D415-4719-B3DB-E74A440EA930}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:111.19 GB) (Free:6.42 GB) (6%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/02/2020 03:29:16 PM) (Source: VSS) (EventID: 12293) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny zprostředkovatele stínové kopie {b5946137-7b9f-4925-af80-51abd60b20d5} došlo k chybě. Podrobnosti rutiny EndPrepareSnapshots({136e71f0-6981-497c-ae35-1f3a99487192}) [hr = 0x8000ffff, Katastrofální selhání
].


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (03/02/2020 03:24:56 PM) (Source: VSS) (EventID: 12293) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny zprostředkovatele stínové kopie {b5946137-7b9f-4925-af80-51abd60b20d5} došlo k chybě. Podrobnosti rutiny EndPrepareSnapshots({ac162361-de07-4209-9137-ca47980ffaf5}) [hr = 0x8000ffff, Katastrofální selhání
].


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (03/02/2020 03:24:07 PM) (Source: VSS) (EventID: 12293) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny zprostředkovatele stínové kopie {b5946137-7b9f-4925-af80-51abd60b20d5} došlo k chybě. Podrobnosti rutiny EndPrepareSnapshots({02e9866f-f49f-4de6-a550-ba00ba096052}) [hr = 0x8000ffff, Katastrofální selhání
].


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (03/02/2020 02:41:43 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-V9N1Q60)
Description: httphttp-2147467263

Error: (03/02/2020 02:27:04 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-V9N1Q60)
Description: httphttp-2147467263

Error: (03/02/2020 02:26:00 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-V9N1Q60)
Description: httphttp-2147467263

Error: (03/02/2020 02:24:16 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-V9N1Q60)
Description: httphttp-2147467263

Error: (03/02/2020 02:22:34 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-V9N1Q60)
Description: httphttp-2147467263


System errors:
=============
Error: (03/02/2020 03:23:15 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-V9N1Q60)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
5
při provádění příkazu:
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (03/02/2020 03:23:15 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-V9N1Q60)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
5
při provádění příkazu:
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (03/02/2020 03:23:12 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-V9N1Q60)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
5
při provádění příkazu:
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (03/02/2020 03:23:12 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-V9N1Q60)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
5
při provádění příkazu:
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (03/02/2020 03:18:56 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-V9N1Q60)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-V9N1Q60\Kolaček Petr (SID: S-1-5-21-583211017-4179701285-1130646269-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/02/2020 02:41:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/02/2020 02:41:08 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-V9N1Q60)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-V9N1Q60\Kolaček Petr (SID: S-1-5-21-583211017-4179701285-1130646269-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/02/2020 02:40:53 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-V9N1Q60)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
5
při provádění příkazu:
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding


Windows Defender:
===================================
Date: 2020-03-02 14:33:17.828
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=1
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\KOLAEK~1\AppData\Local\Temp\4CBA1A813A2B2639EA288F8A8E0FA338.exe; file:_C:\Users\KOLAEK~1\AppData\Local\Temp\759C72C122E559C7CA528103F8940BE7.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\4CBA1A813A2B2639EA288F8A8E0FA338.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\726DC672AFE81AC859B62CEECFE2BD10.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\759C72C122E559C7CA528103F8940BE7.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\8A02E607C1E1C7B113AC5B174698E832.exe; file:_C:\Users\Kolaček Petr\Desktop\loader.exe; file:_D:\RŮZNÉ\loader (1).exe; process:_pid:68,ProcessStart:132276295640592616
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-V9N1Q60\Kolaček Petr
Název procesu: C:\Windows\SysWOW64\wscript.exe
Verze podpisu: AV: 1.311.348.0, AS: 1.311.348.0, NIS: 1.311.348.0
Verze modulu: AM: 1.1.16800.2, NIS: 1.1.16800.2

Date: 2020-03-02 14:33:12.889
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=1
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\KOLAEK~1\AppData\Local\Temp\4CBA1A813A2B2639EA288F8A8E0FA338.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\4CBA1A813A2B2639EA288F8A8E0FA338.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\726DC672AFE81AC859B62CEECFE2BD10.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\759C72C122E559C7CA528103F8940BE7.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\8A02E607C1E1C7B113AC5B174698E832.exe; file:_C:\Users\Kolaček Petr\Desktop\loader.exe; file:_D:\RŮZNÉ\loader (1).exe; process:_pid:68,ProcessStart:132276295640592616
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-V9N1Q60\Kolaček Petr
Název procesu: D:\RŮZNÉ\loader (1).exe
Verze podpisu: AV: 1.311.348.0, AS: 1.311.348.0, NIS: 1.311.348.0
Verze modulu: AM: 1.1.16800.2, NIS: 1.1.16800.2

Date: 2020-03-02 14:33:12.674
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=1
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\KOLAEK~1\AppData\Local\Temp\4CBA1A813A2B2639EA288F8A8E0FA338.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\4CBA1A813A2B2639EA288F8A8E0FA338.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\726DC672AFE81AC859B62CEECFE2BD10.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\8A02E607C1E1C7B113AC5B174698E832.exe; file:_C:\Users\Kolaček Petr\Desktop\loader.exe; file:_D:\RŮZNÉ\loader (1).exe; process:_pid:68,ProcessStart:132276295640592616
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-V9N1Q60\Kolaček Petr
Název procesu: D:\RŮZNÉ\loader (1).exe
Verze podpisu: AV: 1.311.348.0, AS: 1.311.348.0, NIS: 1.311.348.0
Verze modulu: AM: 1.1.16800.2, NIS: 1.1.16800.2

Date: 2020-03-02 14:32:44.805
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=1
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\KOLAEK~1\AppData\Local\Temp\4CBA1A813A2B2639EA288F8A8E0FA338.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\4CBA1A813A2B2639EA288F8A8E0FA338.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\726DC672AFE81AC859B62CEECFE2BD10.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\8A02E607C1E1C7B113AC5B174698E832.exe; file:_C:\Users\Kolaček Petr\Desktop\loader.exe; file:_D:\RŮZNÉ\loader (1).exe; process:_pid:8904,ProcessStart:132276278494280449; webfile:_C:\Users\Kolaček Petr\Desktop\loader.exe|https://www.getrekt.xyz/loader.php|pid: ... 3802213119
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-V9N1Q60\Kolaček Petr
Název procesu: D:\RŮZNÉ\loader (1).exe
Verze podpisu: AV: 1.311.348.0, AS: 1.311.348.0, NIS: 1.311.348.0
Verze modulu: AM: 1.1.16800.2, NIS: 1.1.16800.2

Date: 2020-03-02 14:31:30.715
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=1
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\KOLAEK~1\AppData\Local\Temp\4CBA1A813A2B2639EA288F8A8E0FA338.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\4CBA1A813A2B2639EA288F8A8E0FA338.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\726DC672AFE81AC859B62CEECFE2BD10.exe; file:_C:\Users\Kolaček Petr\AppData\Local\Temp\8A02E607C1E1C7B113AC5B174698E832.exe; file:_C:\Users\Kolaček Petr\Desktop\loader.exe; file:_D:\RŮZNÉ\loader (1).exe; process:_pid:8904,ProcessStart:132276278494280449; webfile:_C:\Users\Kolaček Petr\Desktop\loader.exe|https://www.getrekt.xyz/loader.php|pid: ... 3802213119
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-V9N1Q60\Kolaček Petr
Název procesu: C:\Windows\explorer.exe
Verze podpisu: AV: 1.311.348.0, AS: 1.311.348.0, NIS: 1.311.348.0
Verze modulu: AM: 1.1.16800.2, NIS: 1.1.16800.2

Date: 2020-02-24 15:45:16.738
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.309.1519.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16700.3
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2020-02-24 15:45:16.738
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.309.1519.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16700.3
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2020-02-24 15:45:16.738
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.309.1519.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16700.3
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2020-02-24 15:44:52.718
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.309.1519.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16700.3
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

Date: 2020-02-24 15:44:52.718
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.309.1519.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16700.3
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===================================

Date: 2020-01-18 20:43:52.352
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Twitch\Bin\Electron\TwitchUI.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Overwolf\0.138.0.17\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-18 20:43:52.349
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Twitch\Bin\Electron\TwitchUI.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Overwolf\0.138.0.17\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-18 20:43:52.344
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Twitch\Bin\Electron\TwitchUI.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Overwolf\0.138.0.17\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-18 20:43:52.340
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Twitch\Bin\Electron\TwitchUI.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Overwolf\0.138.0.17\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-18 20:43:05.495
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Twitch\Bin\Electron\TwitchUI.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Overwolf\0.138.0.17\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-18 20:43:05.492
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Twitch\Bin\Electron\TwitchUI.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Overwolf\0.138.0.17\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-18 20:43:05.489
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Twitch\Bin\Electron\TwitchUI.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Overwolf\0.138.0.17\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-18 20:43:02.621
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Twitch\Bin\Electron\TwitchUI.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Overwolf\0.138.0.17\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 3401 12/04/2017
Motherboard: ASUSTeK COMPUTER INC. PRIME B350M-A
Processor: AMD Ryzen 3 1200 Quad-Core Processor
Percentage of memory in use: 49%
Total physical RAM: 8119.11 MB
Available physical RAM: 4099.68 MB
Total Virtual: 12727.11 MB
Available Virtual: 6324.41 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.19 GB) (Free:6.42 GB) NTFS
Drive d: () (Fixed) (Total:931.5 GB) (Free:228.77 GB) NTFS

\\?\Volume{0b2fc61f-8746-4204-8e54-214cf6dcebae}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.13 GB) NTFS
\\?\Volume{c9523856-b7ff-4de1-9284-4604c6bf53d7}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

tady je ten log co mi vyskocil po restartu, a taky jsem zapoměl dodat že mi ani nejde aktualizovat windows.

======================================

# -------------------------------
# Malwarebytes AdwCleaner 8.0.2.0
# -------------------------------
# Build: 01-27-2020
# Database: 2020-02-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-02-2020
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.ASUSProductRegistration Folder C:\Program Files (x86)\ASUS\APRP
Deleted Preinstalled.ASUSProductRegistration Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [8114 octets] - [02/03/2020 16:02:32]
AdwCleaner[C00].txt - [7059 octets] - [02/03/2020 16:03:35]
AdwCleaner[S01].txt - [1739 octets] - [02/03/2020 17:15:26]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

OK. Dejte nové logy FRST+Addition.