Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.09.2018
Ran by ZDENEK (14-09-2018 08:54:54)
Running from C:\Users\ZDENEK\Desktop
Windows 7 Professional Service Pack 1 (X64) (2015-01-18 15:41:11)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1762638149-875449985-1971150987-500 - Administrator - Disabled)
ASPNET (S-1-5-21-1762638149-875449985-1971150987-1013 - Limited - Enabled)
Guest (S-1-5-21-1762638149-875449985-1971150987-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1762638149-875449985-1971150987-1017 - Limited - Enabled)
JIRKA (S-1-5-21-1762638149-875449985-1971150987-1006 - Administrator - Enabled) => C:\Users\JIRKA
Maminka (S-1-5-21-1762638149-875449985-1971150987-1021 - Limited - Enabled) => C:\Users\Maminka
Tata (S-1-5-21-1762638149-875449985-1971150987-1022 - Limited - Enabled) => C:\Users\Tata
ZDENEK (S-1-5-21-1762638149-875449985-1971150987-1000 - Administrator - Enabled) => C:\Users\ZDENEK
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.30 - GIGABYTE)
Adobe Flash Player 31 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.)
AMD OverDrive (HKLM-x32\...\{EEB605FD-C5F5-4946-90F3-D65C604A9187}) (Version: 4.3.1.0698 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.4.1 - Advanced Micro Devices, Inc.)
Application Profiles (HKLM-x32\...\{77A795C8-E532-4B09-5C58-7FFFC3CC9171}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
ASUS GPU Tweak (HKLM-x32\...\{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.6.7.0 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.6.7.0 - ASUSTek COMPUTER INC.)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.026 - ASUSTek Computer Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 68.0.746.59 - AVAST Software)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DeathTaker Gaming Mouse (HKLM-x32\...\{0614BCA9-3613-4171-8128-621991A9FBF2}}_is1) (Version: - )
Driver Booster 4.4 (HKLM-x32\...\Driver Booster_is1) (Version: 4.4.0 - IObit)
Fallout 4 - Čeština (HKLM-x32\...\{F8BA6706-E36D-4140-B786-CE578630D70D}) (Version: 0.9.6 - prekladyher.eu)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.0.1.1049 - Foxit Software Inc.)
Gaming Keyboard Driver (HKLM-x32\...\{B3CDED64-7DC2-429D-A325-BBC3CF793AA6}) (Version: 1.0 - Senbiz)
GDR 5520 for SQL Server 2008 (KB2977321) (64-bit) (HKLM\...\KB2977321) (Version: 10.3.5520.0 - Microsoft Corporation)
GDR 5538 for SQL Server 2008 (KB3045305) (64-bit) (HKLM\...\KB3045305) (Version: 10.3.5538.0 - Microsoft Corporation)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.92 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Gwent (HKLM-x32\...\1971477531_is1) (Version: 0.9.24.3.432 - GOG.com)
Hearts of Iron IV (HKLM-x32\...\Hearts of Iron IV_is1) (Version: - )
Hearts of Iron IV Death or Dishonor (HKLM-x32\...\Hearts of Iron IV Death or Dishonor_is1) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
HP DeskJet 4670 series Nápověda (HKLM-x32\...\{EBEA2EC5-F376-46BB-9104-6DA369B25C32}) (Version: 36.0.0 - Hewlett Packard)
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\HP Photo Creations) (Version: 1.0.0.22192 - HP)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Mafia (HKLM-x32\...\Mafia) (Version: - )
Malwarebytes verze 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.10730.20088 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{2738C4AA-420E-4E13-ADEF-B5AB250E3EF1}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{77F1F8AD-51B8-4490-AEEC-BF480073E0FC}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{F43ADE73-2880-4A95-B995-4FE386ECF667}) (Version: 10.3.5538.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 Design Tools ENU (HKLM-x32\...\{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{877B76B2-F83F-4F5A-B28D-3F398641ADB6}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - ENU (HKLM-x32\...\Microsoft Visual Basic 2010 Express - ENU) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32 (HKLM\...\{11EB1163-5761-4BC6-8F48-98DCF6A46BBF}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSDN Library for Microsoft Visual Studio 2008 Express Editions (HKLM-x32\...\{DF38F332-2AC3-37FF-9FDC-8C4C80E531FB}) (Version: 9.0.21022 - Microsoft Corporation) Hidden
MSDN Library for Microsoft Visual Studio 2008 Express Editions (HKLM-x32\...\MSDN Library for Microsoft Visual Studio 2008 Express Editions) (Version: - Microsoft Corporation)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.65.2 - Black Tree Gaming)
North and South First Manassas (HKLM-x32\...\{2C8737F2-E5C2-4A78-A4F8-1CFB00C9E289}_is1) (Version: 1.0.0 - Hinkel, Parrot, Wuestenkrieger, Nytech)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.6 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.10730.20088 - Microsoft Corporation) Hidden
ON_OFF Charge B12.1025.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.3 (HKLM-x32\...\{7308600A-5231-459C-A3E2-A637F842CACA}) (Version: 4.13.9783 - Apache Software Foundation)
Opera Stable 48.0.2685.35 (HKLM-x32\...\Opera 48.0.2685.35) (Version: 48.0.2685.35 - Opera Software)
Opera Stable 55.0.2994.56 (HKLM-x32\...\Opera 55.0.2994.56) (Version: 55.0.2994.56 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 9.2.1.4399 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.118.1.11 - Overwolf Ltd.)
paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC)
Popcorn-Time (HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\Popcorn-Time) (Version: 0.3.10 - Popcorn Time)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6650 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Samsung AllShare (HKLM-x32\...\{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.) Hidden
Samsung AllShare (HKLM-x32\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.)
Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) (HKLM\...\KB2546951) (Version: 10.3.5500.0 - Microsoft Corporation)
Sid Meiers Civilization VI (HKLM-x32\...\Sid Meiers Civilization VI_is1) (Version: - )
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype verze 8.25 (HKLM-x32\...\Skype_is1) (Version: 8.25 - Skype Technologies S.A.)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.6.1 - Sophos Limited)
Spotify (HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\Spotify) (Version: 1.0.42.151.g19de0aa6 - Spotify AB)
Sql Server Customer Experience Improvement Program (HKLM\...\{2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF}) (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
State of Decay Year-One (HKLM-x32\...\State of Decay Year-One_is1) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Total War Arena (HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\TWA.EU.PRODUCTION) (Version: - Wargaming.net)
Uplay (HKLM-x32\...\Uplay) (Version: 32.1 - Ubisoft)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
VGA USB Camera (HKLM-x32\...\{F0B2D11F-E4D9-4C17-A195-B8BADEAE9C40}) (Version: 1.2.0.0 - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0-2) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
Warband Matchmaking Client (HKLM-x32\...\Warband Matchmaking Client) (Version: 1.9.1 - WBMM)
Wargaming.net Game Center (HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\Wargaming.net Game Center) (Version: 18.4.1.595 - Wargaming.net)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker (HKLM\...\Windows Movie Maker) (Version: 6.0.6002.18005 - Microsoft Corporation)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
Základní software zařízení HP DeskJet 4670 series (HKLM\...\{01702F6C-5E54-4A3D-BBA4-4F307C7BEA67}) (Version: 40.11.1122.1796 - HP Inc.)
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Zemana Ltd.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1762638149-875449985-1971150987-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1762638149-875449985-1971150987-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1762638149-875449985-1971150987-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1762638149-875449985-1971150987-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1762638149-875449985-1971150987-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1762638149-875449985-1971150987-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2018-09-13] ()
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-03-19] ()
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-04-25] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2018-09-13] ()
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02D2C8FB-5A63-4C54-A654-CE7AA90C3A09} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-09-08] (Microsoft Corporation)
Task: {079743D1-C3EE-4D7A-9671-C35A8276A7E5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-08] (Microsoft Corporation)
Task: {0E6D7C57-EA30-4788-9832-FC4E4509B9D7} - System32\Tasks\{F38F528D-C592-428C-A0E4-1D0452214952} => C:\Windows\system32\pcalua.exe -a C:\Users\ZDENEK\Downloads\MassEffect_PS_ES.exe -d C:\Users\ZDENEK\Downloads
Task: {19920F16-AF7D-4E45-8F63-E05E79B173D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-14] (Google Inc.)
Task: {1BBD6EDB-9278-4DD7-8FB6-2B2228DE78FE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-09-08] (Microsoft Corporation)
Task: {357089A0-5E93-49CC-8BDA-D92A8B3D8955} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07] (Oracle Corporation)
Task: {442A9EFF-8BD7-477F-B38B-0E14147F80FC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-12] (Adobe Systems Incorporated)
Task: {4D038A00-24F2-4EA1-962C-6D24DDCAA5FC} - System32\Tasks\Opera scheduled Autoupdate 1421605864 => C:\PROGRAM FILES (X86)\OPERA\launcher.exe [2018-09-06] (Opera Software)
Task: {534CF0D5-CA87-44F0-9808-84E50A882023} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-09-12] (AVAST Software)
Task: {71A34748-A186-415F-923E-B411D10C8F9D} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-03-25] (ASUSTek Computer Inc.)
Task: {74DF450B-62B3-48D5-B95E-B1C7C2B1B31C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-08] (Microsoft Corporation)
Task: {7DEBC82E-0AF6-47A8-B809-23D87A916B8C} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2018-04-25] (Advanced Micro Devices, Inc.)
Task: {83122B64-E32E-41E3-B043-F27F6732CF2E} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-09-08] (Microsoft Corporation)
Task: {89A29279-B963-4089-93C9-FD4FC2693929} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-30] (Microsoft Corporation)
Task: {89A35DE1-EB5E-47CB-9C9F-502C639B7F68} - System32\Tasks\{49065A49-780A-4779-8F94-F6EE7C6E7E5A} => C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis64.exe
Task: {A7B341CB-D330-432B-99F7-6457B5EED89F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-06-24] (Piriform Ltd)
Task: {AE7733C2-3FE3-496F-842D-4A47550410CC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [2018-04-25] (Advanced Micro Devices, Inc.)
Task: {B2FEC5D0-355F-4F9E-9832-876C5295CA85} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {C0D81556-FF94-4658-B42A-4C4E7DE0DFAF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-06-24] (Piriform Ltd)
Task: {C6DB5281-4650-4242-9DED-AB060C53EE09} - System32\Tasks\{09FF4C71-8BA8-40A2-99E5-322C1FB732E0} => C:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe
Task: {D44BC33A-18DD-431E-A2EC-8D490745CD33} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-30] (Microsoft Corporation)
Task: {DC034401-410F-4CB9-A750-ED66F50C72E4} - System32\Tasks\{8BB98CEE-9A1B-497E-B085-87F0CF1D0750} => C:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe
Task: {DF65C2C0-CC13-40F7-8FFF-333822D20210} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-14] (Google Inc.)
Task: {E59AFB75-F781-43BC-A4E6-0E7C6A91AF2A} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2018-08-27] (Overwolf LTD)
Task: {F5C5062B-89F0-413B-95DC-7C925C316F85} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_pepper.exe [2018-09-12] (Adobe Systems Incorporated)
Task: {FE19FF8F-5801-4C1D-8470-E24244594954} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-09-08] (Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-07-28 22:45 - 2015-07-28 22:45 - 000214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 000817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 003650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2014-09-19 03:35 - 2014-09-19 03:35 - 000137584 _____ () C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe
2012-01-17 12:24 - 2012-01-17 12:24 - 000055296 _____ () C:\Windows\SysWOW64\ASGT.exe
2017-07-26 09:58 - 2017-07-26 09:58 - 000192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2015-01-22 17:56 - 2018-08-06 22:24 - 000075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2018-03-19 01:40 - 2018-03-19 01:40 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2018-09-13 21:25 - 2018-09-13 21:25 - 000155504 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
2014-09-19 03:35 - 2014-09-19 03:35 - 000625000 _____ () C:\Program Files (x86)\AMD\OverDrive\Device.dll
2014-09-19 03:35 - 2014-09-19 03:35 - 003860848 _____ () C:\Program Files (x86)\AMD\OverDrive\Platform.dll
2014-09-19 03:35 - 2014-09-19 03:35 - 001587560 _____ () C:\Program Files (x86)\AMD\OverDrive\QtCore4.dll
2014-09-19 03:35 - 2014-09-19 03:35 - 006441320 _____ () C:\Program Files (x86)\AMD\OverDrive\QtGui4.dll
2014-09-19 03:35 - 2014-09-19 03:35 - 000362856 _____ () C:\Program Files (x86)\AMD\OverDrive\QtXml4.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 001135616 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMSWrap.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000656896 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ContentDirectoryPresenter.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000105472 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMCDP.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000098816 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\FolderCDP.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000077312 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MetadataFramework.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 000520234 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\sqlite3.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 000450560 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MoodExtractor.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 005717504 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMImgExtractor.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000029184 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AutoChaptering.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 000147456 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexpat.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoThumb.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 004671488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avcodec-52.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 000070656 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avutil-50.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 000686080 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avformat-52.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 000152064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\swscale-0.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000027648 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AudioExtractor.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000063488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ID3Driver.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 000366592 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\tag.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000289792 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libThumbnail.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000023040 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RichInfoDriver.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoExtractor.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ThumbnailMaker.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000133120 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoMetadataDriver.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000290304 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libKeyFrame.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\SECMetaDriver.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ImageExtractor.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\photoDriver.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 000399826 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexif-12.dll.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000013824 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\TextExtractor.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000031232 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\Autobackup.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 000054784 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RosettaAllShare.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 000044032 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\us.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\ZDENEK:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [120]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
There are 7877 more sites.
IE trusted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\sharepoint.com -> hxxps://gymst.sharepoint.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123simsen.com -> www.123simsen.com
There are 7875 more sites.
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-01-13 23:50 - 2018-09-14 08:37 - 000000027 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: ) (ConsentPromptBehaviorUser: ) (EnableLUA: )
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\Services: WMPNetworkSvc => 2
MSCONFIG\startupfolder: C:^Users^ZDENEK^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^KDPSIZWDgUiV.lnk => C:\Windows\pss\KDPSIZWDgUiV.lnk.Startup
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: ebdkowkffy => explorer "http://granena.ru/?utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=15F1A115797220C93EC51D7069D04C7F&utm_d=20161024"
MSCONFIG\startupreg: gfjfuocyrp => explorer "http://granena.ru/?utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=15F1A115797220C93EC51D7069D04C7F&utm_d=20161024"
MSCONFIG\startupreg: Spotify => "C:\Users\ZDENEK\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\ZDENEK\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
Kontrola logu Vyřešeno
Re: Kontrola logu
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [TCP Query User{69D948CC-ED6E-4FEA-AECD-2D57A976C318}C:\program files (x86)\gigabyte\@bios\gwflash.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\gwflash.exe
FirewallRules: [UDP Query User{D6F5090D-43B4-4604-8090-EFB23E0C99E0}C:\program files (x86)\gigabyte\@bios\gwflash.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\gwflash.exe
FirewallRules: [TCP Query User{247BE826-ECAF-44F4-A9D8-CDA377D50ADC}C:\users\zdenek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\zdenek\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2D8CF9DF-EF85-4F48-9E19-802FFC550363}C:\users\zdenek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\zdenek\appdata\roaming\spotify\spotify.exe
FirewallRules: [{0396E1A1-3494-4515-B003-AAB1DFE020A2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{13FAA7AB-4770-4FEB-801E-77C288896990}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{D557E113-C499-4B6B-AA42-668DC8AB18ED}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{783DC884-985F-41AC-93C2-D3E176B73B99}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{09A1714C-34F1-4C20-ADA2-ED818CB41747}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D23AA47B-053D-48B8-93C5-F45075FC3BE8}] => (Allow) LPort=2869
FirewallRules: [{AF58321A-3A26-41E3-A717-D21697FB0060}] => (Allow) LPort=1900
FirewallRules: [{78631822-9CC6-4A92-A450-1D7F40281DC8}] => (Allow) C:\Program Files (x86)\SimCity 2013 Offline\SimCity\SimCity.exe
FirewallRules: [{A195F8F9-B3B4-4255-91CA-48F1C1F25EF5}] => (Allow) C:\Program Files (x86)\SimCity 2013 Offline\SimCity\SimCity.exe
FirewallRules: [{FE0C6A4E-142A-4F73-8A98-E607552DCBD9}] => (Allow) LPort=1886
FirewallRules: [{8DF016A0-BE31-4FCF-96A3-488CE28DE0CA}] => (Allow) LPort=1886
FirewallRules: [{DDB8CBB5-5095-416C-9000-E20AA1FC58C7}] => (Allow) LPort=1886
FirewallRules: [{15609CC0-CA6C-4A5C-9276-A5F5A583F971}] => (Allow) LPort=1886
FirewallRules: [TCP Query User{AB0DB9E3-5F13-4C35-93A9-A5AC97A29B1C}C:\users\zdenek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zdenek\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{5894A133-51E8-43B2-871A-2D7F5C2D5943}C:\users\zdenek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zdenek\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{F4BA3440-24AF-41E1-A49D-74E5F4C289AB}C:\users\zdenek\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\zdenek\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{3045B310-A3CC-4029-A55E-28DB5806F483}C:\users\zdenek\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\zdenek\appdata\roaming\spotify\spotify.exe
FirewallRules: [{D1B9F5C8-3367-4150-B69B-592CD0C7FEF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AB249AAD-C8F8-4D52-BCE6-762ADC0FCC54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7F207AB6-D04F-49BA-A5B2-44B575B7FB18}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{547B69A7-34FC-4954-8AA8-C5E2204FAA90}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{22E34949-E359-4292-A51D-AC94216D9B46}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{00960A11-A78A-401B-B939-428CD4A038EE}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{EC803957-EF88-4DF7-A515-ED819129004E}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{825F0545-06CF-48E0-98FB-7F2F9FE40EA3}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{D9AE6598-A744-4A15-AA73-D9FD921670CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5EAE23EF-F62C-4BDF-A3BF-862F40C0F767}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B13F4909-14D3-40AA-AD0E-30A9C55DF3EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{522C020B-9C9A-49AE-A312-A019A392B5CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AA6FA53B-4400-4293-BE8E-E4258BE5FA30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7817A79C-3ADE-469B-A38E-D720B815AB1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E4C96233-CF2D-47FE-A0D2-655FB4287340}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{846289F1-3DA7-4C9A-8AF8-40828B41A043}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{29FBF2F7-E1D4-4CC6-811D-F171911BB14F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{32C83239-60F0-409E-85FB-97636FD530CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BC8B56F4-04E6-4833-8949-8C42172FCF9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{61AC19DF-7720-4077-99BF-6FEF902B8807}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9C468452-BAA5-4041-BA13-4371D7DE1A61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D2352277-5EF6-4A4B-9021-C4DE0F44EBC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DA22D3E7-1DBC-4CD5-A4A4-4B02D4BB2E93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BEAF0402-44E2-4672-BF39-B163AD22C350}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C3D54F60-B957-46E0-865A-2C4804BDA7BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{898B2D82-465A-436B-BD25-F1D1E16EF8AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7C8F298B-030D-4414-B94E-C55E8D5C4E50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D8DE7D49-DDE8-4E3C-A1B9-6BA2C9232C19}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FF787EAC-3830-4BFE-AB25-52E28F04DC18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5913BC4F-404A-4D64-ACCA-2392A814F08C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9D063277-E7FE-4D5F-A8B9-286DBF007390}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9F40D5EB-2763-44B7-BD4B-4C1E782FDEB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ED59F935-1DC0-4607-9A46-ED540027A6D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{09D6F8EA-4E48-470B-B7BA-C505C705F0DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0E48BDCD-030B-4A28-B128-2202851C8EF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0E7B613E-3236-4BC1-A3DE-4B35F849DCBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3DC97E56-B5DA-497D-AD73-F948F2B590AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7672F99C-B78C-4F2B-AC9C-BAC44A549CF7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{219D32AE-0390-49F8-89CD-2476EA012ABF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F72A3D51-7C86-4B0C-B320-AA069A3B163F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4A4418C7-C1B3-4B12-BAC0-2C6EB3F3E47D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3BBB0678-4ACB-43DE-A6CF-3E0113413179}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{45DC4BFD-83A1-448F-BF48-E144F995A9A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9C624440-C96B-4671-8F11-B3F19D294CD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{88EA3337-29FA-4A0D-85B7-651E76B3EB0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DBEE808E-3F77-40DD-BC9A-ABBF0D2C14BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F304392A-F00B-415F-B8A0-32DA7AB6E73A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BFC5A9A4-373E-4A54-9357-0A154015BB35}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FBC4744B-DAC5-415A-98C6-2E6C81EF319D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E79DA8E8-1C49-4BA4-A23A-B192A9EC6489}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{26F0EC1C-A458-4D51-90A5-D2D1056AB196}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5590AE3F-5207-4840-9018-A57CFBC598C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4BF76BC1-55E4-4854-978B-F8A0DDE8B2B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DA283C48-0937-4062-A440-2B6296BF6D14}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FC11A4DD-E92D-4EF8-BFE2-2E714CCB0F98}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B03CBE03-7082-4963-A8DB-3C8BDA755324}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3A7035B7-CF58-4642-9670-0E55446D6CA1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1CFAD554-D5D9-4A02-88C5-FFAFFF1F5E63}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{40748BAA-2D27-41BE-9F28-BD1F10880476}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6F9A3BA1-B22C-436F-8CE5-F47FBEE40ED0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{06DC4F4A-81AC-4950-9DAE-E6032EEC0E61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{83E8A90B-F1AE-4EBB-8DDF-697F98CA03E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{735C437E-19CA-4A84-A15E-AF1450BD8CF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{495485ED-D257-48B4-9604-513A912AD8B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{39CA30EB-98EB-4507-8F8D-09FE0BEA79BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{26BCB194-6C02-4842-8264-03760C27D08E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6C906072-3F7E-4A3F-A144-24D11CAF62B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F8427291-BB12-4E00-B36A-1853479AC963}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3BC88407-3A07-4043-A290-402821182261}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{37265EBF-8EA3-42A0-B9BF-E975FB3A2B37}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7B511511-CC79-4AD4-A9FD-CDE252106D47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CB174910-6A9C-4528-86D2-FE8FD788BD95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{29D0F92C-8153-4C79-8591-32B4E4508617}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{91F52E13-4285-45F3-8C6D-E64E3F2E831C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{371FC992-26F9-46DC-94F6-BA333285ECBD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DF50CE55-303A-48D5-8B5B-69FCD6C01436}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4A40A555-E0DF-4928-827D-F71CE44A3DCB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D19B17DE-0811-4F61-8E1C-AD94BB5A0D5E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F5DEE7F8-DC9B-4A15-98A5-0DEF63354B19}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{25AD250E-B1E7-443D-9592-0D7CBC5638D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8BDB872B-B737-49FF-A108-786E716793E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{08F13043-1DE4-4982-A694-B87656692BEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4200E69A-7BBD-4928-9678-32478A72FFCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7FB523C2-49FE-4DD3-A69D-6B84599DB039}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F2CF7C10-330C-4BD6-A8B2-AA825D36B407}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{788248DB-83D2-4115-BEC4-EEB1DE344CCB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{85937AA7-08B4-48EF-B1FC-D8B9D210B385}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{884610A2-90C0-417A-A44B-28739A82E1EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FCCEC186-24FB-49B1-A1D5-86F5E46BCBC1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F865EACB-2326-4BE3-A36D-49A84F32EC41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{012CBCFF-A825-4941-A9A0-FE4D0F29046F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6FECC84C-A2C1-487B-9352-1C933A81B55F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AC2308FD-5A6E-44C1-AABF-674CA581A654}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{634B514D-017F-437B-BC8F-DEB5CDEE9960}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7F1E8036-C153-4C22-BEFF-7BB1CD1DEDCD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0180EB85-7158-43AD-A9C7-00A9A09EB6E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{06F9B9FB-31FD-45DA-BDF1-EA352829EA6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C70E40E9-7EC2-4DC4-9865-865210215F71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9D5D25EE-B8D7-4327-ACDB-3797A9B26AB6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FADB635A-2A86-4FA7-A0FB-D357C707CBC8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2F59504B-3352-4F3F-93DD-F66A23576288}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{10D52896-C9AB-4135-9554-9FEA303240C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A672B044-8EC6-4D3C-A090-C6132AAF3678}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1255C8CA-55D6-4C08-899C-67C6EF188D56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0610D3C0-AACE-4EC5-97C3-E7E0D909082C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5E071719-32CC-4EC2-8A06-1055304E2B9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{67F2203F-B2BA-4191-85A2-8508E0D12F9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DD862489-291E-4505-B204-EDFB6F517718}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BDBBBAB0-2B92-4513-87F2-B780DFD3CB4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{01DAB848-6E41-424C-A475-A5F0BDEF35A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D5F5495E-A6B8-42D4-AA71-525CA970B0A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{99D2F42B-D0F1-4EC1-87D4-B92894AD65AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6A8FC662-D714-4781-968B-A3B590D89AD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D6D90C55-0781-4A4C-907B-6CBCAD36A6BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{21343BD0-944C-4594-8258-4AFABC71684A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9E01CD41-6BDF-4E33-8DBB-FF74F1D57EFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A216A5F0-92EB-4139-B4E2-69D4AE381EB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{04ED689E-FFAD-48DD-8720-037E12EAF099}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{948F31B1-98DB-4710-B422-7A441CF4F219}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{95DA8C69-0FF9-4F01-BF3D-DE670ADDE26D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B527C285-8BBC-4A4C-9256-8936D38BD79D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C6D47AC3-8CC3-4D9D-95AB-F9E84EB8AB24}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FA75DA81-6A64-44BC-BC44-7E67758888F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{19A92EFB-B7E4-4FBE-95CC-60DAF601305F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C5C8C804-DA3A-4CCD-8E20-707AAB686B0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A8A3C72B-C93C-4BE0-9D3A-16C05C195838}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3CD0A743-00E8-46F1-94A9-E6DE02F30B41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CF529A6F-01E7-42EE-8A1A-31678D6E1AF7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{86158D27-D1F2-475C-88CF-91EF5B07954F}] => (Allow) C:\Users\ZDENEK\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{8D239AB3-1095-4835-B7C1-132FBB3CB3C3}] => (Allow) C:\Users\ZDENEK\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{D1AEAF1F-F699-40B8-9C18-D66284D13427}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{105326FF-DBD4-4F92-B2BF-9A0A7727C4E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F6EB8BA6-0E04-4566-B998-23FDC612B6A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{33B3BB25-AE09-41D1-B87F-8E1DA3056027}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{643B35CD-80C1-4A24-AFA2-13F88A9971A2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5FABEF57-5528-4D60-B308-1E68227EED3A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{AA993590-600C-4D90-93D1-2F896CDC6C5D}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe
FirewallRules: [UDP Query User{182888A8-46C2-4B33-BA84-4E0BC52A6378}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe
FirewallRules: [{0BC59FCC-0622-49C2-B7AB-AD41F69CA21D}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
FirewallRules: [{5C481374-AF63-4847-AD96-FE719BEBC04B}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShare.exe
FirewallRules: [{74B6EAB5-1C4B-460D-AE47-B8B0DDC5244D}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
FirewallRules: [{70E0239A-55EA-49C8-984B-DE29CECBB54D}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\bin\FaxPrinterUtility.exe
FirewallRules: [{FF5D06C2-A79B-437B-A124-E4528C5D3469}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\bin\FaxApplications.exe
FirewallRules: [{B529B3AB-F0EB-47F3-9326-AAAC8599186B}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\bin\DigitalWizards.exe
FirewallRules: [{0CC6C58B-A914-48D7-824B-6B08D0F0DE89}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\bin\SendAFax.exe
FirewallRules: [{D8CF7A1F-F8EA-48D6-8856-F0D917627316}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\Bin\DeviceSetup.exe
FirewallRules: [{25567F50-62E6-406B-9B55-7F14590296F6}] => (Allow) LPort=5357
FirewallRules: [{AB974E03-1F4F-44ED-ADAA-6575EB216C32}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{E6B35B55-71C6-461F-B6F9-29ECB6288472}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
FirewallRules: [{27B4258D-2957-4259-BCC1-541BA5AF39B8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
FirewallRules: [{BBD019CA-2074-450E-9228-E6296A4EEE74}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe
FirewallRules: [{0D6DB38A-999B-4541-9412-64EAA7C295C9}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe
FirewallRules: [{A5577A73-99A9-40BA-AF4D-98B72351198A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe
FirewallRules: [{BD27819C-E70B-424D-A7D4-7E4F19F9DAB4}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe
FirewallRules: [{F7520872-13D0-4847-9221-C4B38D977E29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{1A4B9A17-D453-4468-BF3D-9034522CF386}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [TCP Query User{3EF9E635-942A-4856-8EBD-04FAA959F4CF}C:\program files (x86)\crytek\crysis 2 - maximum edition\bin32\crysis2.exe] => (Allow) C:\program files (x86)\crytek\crysis 2 - maximum edition\bin32\crysis2.exe
FirewallRules: [UDP Query User{58FE9470-0BB5-4708-B802-C78187852115}C:\program files (x86)\crytek\crysis 2 - maximum edition\bin32\crysis2.exe] => (Allow) C:\program files (x86)\crytek\crysis 2 - maximum edition\bin32\crysis2.exe
FirewallRules: [{BFD47EA4-31BE-4BF4-BA5B-63307700A09B}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{E057BF7D-FB77-4DE8-ACFC-9B9A98A9D31D}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{EB7122F6-7CCD-4861-9B48-80EECC36165B}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{E9B874C9-7DB4-4E5C-AAEB-04E89E06EC10}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{00ED957B-75A1-4AFD-9D81-B3BCEC9147A3}] => (Allow) C:\Program Files (x86)\Opera\48.0.2685.32\opera.exe
FirewallRules: [TCP Query User{D304F363-F060-4BAD-BAC9-94A2A8AB627B}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [UDP Query User{D761D907-10E8-4CD6-98F4-81B986BE3DB2}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [{559CA03C-34D7-4BBC-A1D8-CF266084E7B6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{15E6DD5D-636D-4A24-B968-2ABBE8C4D61A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{3F457239-CE63-49FF-B106-CF9178E263C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CE66BF6D-8953-4485-9E6C-B1C535127562}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9A85A655-B47B-4062-96E7-BEA49494804D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{72C34D71-DDB5-4BBD-A74B-019443928F36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ECC8E6F7-05C0-4B7B-9033-B393CAE29ACF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{427005C7-E7D3-486D-BA9F-50533754C2B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{51B5B58B-83E1-44FE-ABE1-35285AC741D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EE16FEA0-9535-4159-BFFA-16CBF47DA4C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{535D0E18-2671-4D6D-85A4-F6985E4C3BB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F81BD90F-B002-4E7A-A277-4E3F05ACA9C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{61C45E9A-8B6B-4851-AA67-109AF9230492}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8890DE23-DB76-4C19-8F59-FA486B7B1D1E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7A76721E-2F8A-43A6-936E-85DC5961B8C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3D78F53A-E37C-4219-AA43-ADA82754B548}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4396EDEF-4D17-4093-8BC0-4427FC950CCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6C658876-95F4-45B2-AFC3-527B5434398F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9AACC19D-8408-4967-BAAD-2E1C670CE532}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{98F9CB3C-8374-440C-9487-AAE1745D0D2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{64DF6CC6-EA81-464D-B3A4-2A015A2F2ECA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CA889872-F90D-4814-B966-C5D4B84C81FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{918F701E-8870-49AC-A478-E1112A61B825}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7E30C586-3FDA-4231-A671-5D738BFDCC1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FDA1A4AC-2FDC-474F-8D56-C689677BF8C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9D05F333-8790-4719-9B39-F59DABABA0A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CFC8C82A-1E10-4C06-8CA6-0946EA76C00C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{61D6FB80-6584-4CC7-B163-3C35FDF6A345}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F534414A-8CD5-47C7-B057-667ED1F7AF58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{34740924-7EC6-4F0E-B14C-CB897AF441EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C679A3B2-C8FD-436A-80DD-8C666EF6DD1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1C8CE831-1076-477D-BF42-E134BD6B09EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C314F104-CBC3-429C-98E7-E589C0E6E4AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3F82A9BC-F41E-40A2-8AB1-1FFEA49C1F91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{95BB2CCD-DE23-469B-B44C-FE554A16E6F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D173C0E0-66E2-4392-B5DC-7B6077D20582}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9A0F910A-9DA2-4DC1-B534-F79E704B08F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{03BA04FD-010E-4A54-AD24-52C48482B51F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4CE5CF90-556E-4109-9D88-BA6BBB4CD549}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{00EC36D8-8BE4-4B51-8BFD-0319998A3DB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A6097818-2BDB-4EC2-A0CB-46C612BE4F59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8D6247A2-FCDF-4197-BF25-A3987E3803D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5EC87FAC-6B0D-4C35-BE97-010283C6F752}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{36D6FDB8-2D08-4E3F-9B80-925B06192172}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8D32BE86-E048-4432-A348-1AB2F22BA2F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{486F7527-0740-4BB2-BEB8-F95AACB38ACD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AEA27EBD-CB22-4962-9E49-66144FE84195}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6AFB95DD-5B07-4A4C-9448-EBC79AAFB417}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D8C661CD-86ED-45F2-A459-687EF34CCD69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{34AA7C5C-845B-494F-AAEE-76BF1A946697}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B56CE08E-2AE4-4889-A315-6AB217E43815}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F22B7436-A6F2-42EB-9A2C-3287D050809B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4356345D-299D-47C6-AD15-FBBC134987B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{18B4E26F-9E70-438C-A2F3-A306F4BCC290}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{738C78C8-E43D-4EAA-B1C1-172C9C8F79A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E4E95B2C-257D-43BC-AA66-06CF619F63B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1211720F-9A97-4423-A4AF-88E8153B00DF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F128EE34-98C2-4A88-96D5-E732C93918E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6E3D07B9-9EAE-48C3-8183-C9B63D1D4902}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E7FD2D89-BB82-4DE4-8509-0C3883DD8C77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EC7A91E2-51C5-491B-A92B-DBCDCE1D5788}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5A6959E2-57F6-46CE-BC33-328F3DB6A4D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{12E3B601-72AC-4777-BCC6-7F10CBB25C3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C58DA9A4-CB3A-4A5A-AD49-CEA5656CC5D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E0C783D7-88E8-40C5-85BA-2A65A599F2E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{78BF385D-A612-4D42-B1FC-5C2BFB48AA92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6DF4CFBD-9366-448D-BC05-549108A87120}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{14BFEA1E-0536-4F0C-B948-5D1DEC5C2444}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CF0EB898-F876-4F7A-B22D-D900E5E06719}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0B8ED118-214F-4EB5-96E4-1B79A50FE1B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EF2FE896-2C04-440D-A649-3AA4A52D4DD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9DC2FC9A-7C42-4F31-85CE-6EC06E7DC26A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A9239DC3-F29D-490A-B97F-211228C51058}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{87A6308F-E17B-40D4-8987-AD7F2BB402A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{A0F23FEA-1DF5-4CD3-BC40-C2884EC3E8B6}C:\program files (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\program files (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [UDP Query User{05E87FD9-3D91-40FA-B4B7-1E766D64B208}C:\program files (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\program files (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [TCP Query User{AA178E39-FCC2-4916-AFD5-B9B789218D08}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [UDP Query User{A6C53AD1-F824-4890-A9F8-FA882F68284E}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [TCP Query User{1E75F52D-6F87-472A-BE6E-26C7543B4F5D}C:\sinusbot\sinusbot.exe] => (Allow) C:\sinusbot\sinusbot.exe
FirewallRules: [UDP Query User{430EC0E3-D7DD-44A6-919C-BC824AC1C303}C:\sinusbot\sinusbot.exe] => (Allow) C:\sinusbot\sinusbot.exe
FirewallRules: [{02FA30D7-F951-47B1-B1A3-EFA3444D7BB1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{C9BBA12C-1018-4633-B316-56AB17866411}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{CC03508B-14BD-43F1-B47E-92E6DDB61FBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\cossacks.exe
FirewallRules: [{9DDE0ADF-62BB-4428-82EB-6626DFBE6DB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\cossacks.exe
FirewallRules: [{B5628D47-34F1-4FA1-8B5A-E60157F0807D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\config.exe
FirewallRules: [{12E940A0-2F14-41AF-A4E5-F3CC7799F34A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\config.exe
FirewallRules: [{FA420AD3-ACE7-4D24-8C1F-BE5BE7C5E393}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\editor.exe
FirewallRules: [{79BEC0A9-7331-43AB-8E5B-84A0F6A3CF41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\editor.exe
FirewallRules: [{29300E10-6609-4EB3-994B-E1F11733D098}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\modman.exe
FirewallRules: [{681C74A0-8412-4077-BF15-5CAABD57AF11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\modman.exe
FirewallRules: [{E9313229-DD4A-42DB-9F38-F17E54AD3DF6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{D290CCE0-E678-4D2F-AEED-B5AA3AEB2CEC}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{2DD420E4-CB6E-430A-A923-991F21D0F6CA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{CB6D345B-7401-41A8-BE36-9A8BBDF769D4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{04A639D2-F635-4BF8-B526-110B0F78E036}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassins Creed Brotherhood\ACBSP.exe
FirewallRules: [{9B09B51B-4720-4097-A94B-54C8A43AAC15}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassins Creed Brotherhood\ACBSP.exe
FirewallRules: [TCP Query User{3621C259-8E61-45EB-B6A1-E86C93E9D6A7}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{AD4D362C-CB27-4F8A-9DC1-B6C76AA6BA4F}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [{E0F363D3-4E83-4494-8275-95AE23C013A5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{047AC1D7-F4B0-4796-9025-D8032CD382C7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{78612A7F-DDC7-49E0-8CFF-1B87B273F494}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{4D97815F-F42F-4BC6-BA29-B03B8EFFDC8A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{19D908EC-71FE-4989-9B4A-DB125074AB41}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{CFCABFB8-7A97-47BF-8E0F-5DDBA0491585}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{391F936B-21A1-4483-92A7-59F56C0EAE4D}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{99ABA1B2-314D-420B-9A4F-31C388564568}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{F5944E84-677C-4F39-A065-4E7D18066FE2}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [{B09EE412-A5BF-4B15-B882-001436EB6756}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{E9639FC7-62B1-43E7-B7BF-B92656779594}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{EBC7ED0F-1F93-4316-9D55-6F0470AD8B91}] => (Allow) C:\PROGRAM FILES (X86)\OPERA\55.0.2994.44\opera.exe
FirewallRules: [{262268E0-8051-47BD-84A6-7EBCCDBA7BE3}] => (Allow) C:\PROGRAM FILES (X86)\OPERA\55.0.2994.56\opera.exe
FirewallRules: [{98DC7A0C-7F4F-49F9-8AFE-8B0CBCDF8F9D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{0F6DBD89-C5E2-4976-B98B-3DD3E56E19EB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{3C40E35B-9A3C-4ED5-A838-F77CA715A0AB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{6A66EA5D-7005-4347-A458-1E2DC3BF4C0A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CDDCAD79-EFF5-44A7-B15D-315BD2639724}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{89A11522-16C0-4B0B-94D5-4E7D799A7C7B}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
==================== Restore Points =========================
13-09-2018 20:36:56 zoek.exe restore point
13-09-2018 21:45:26 Zemana AntiMalware 13.9.2018 21:45:23
==================== Faulty Device Manager Devices =============
Name: AODDriver4.2
Description: AODDriver4.2
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AODDriver4.2
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Adaptér tunelového režimu Microsoft Teredo
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/14/2018 08:50:33 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
Error: (09/14/2018 08:48:44 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\microsoft office\root\office16\odbc drivers\salesforce\lib\libcurl32.dlla\libcurl.dll se nezdařilo.
Závislé sestavení OpenSSL.DllA,processorArchitecture="*",type="win32",version="1.0.0.4" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (09/14/2018 08:41:09 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (09/14/2018 08:40:20 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
Error: (09/14/2018 08:15:10 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (09/14/2018 02:29:11 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
Error: (09/14/2018 01:29:11 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
Error: (09/14/2018 12:29:12 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
System errors:
=============
Error: (09/14/2018 08:36:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AODDriver4.2 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedenou cestu.
Error: (09/14/2018 08:35:06 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/14/2018 08:34:58 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/14/2018 08:31:11 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/14/2018 08:26:07 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.
Error: (09/14/2018 08:26:07 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.
Error: (09/14/2018 08:01:02 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.
Error: (09/13/2018 09:58:48 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Windows Defender:
===================================
Date: 2015-08-28 10:35:59.493
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=213571
Název:BrowserModifier:Win32/Diplugem
ID:213571
Závažnost:Vysoké
Kategorie:Program měnící nastavení prohlížeče
Nalezeno v cestě:file:c:\Program Files (x86)\ReactorKeeper\ReactorKeeper.dll;process:pid:1156,ProcessStart:130852224060196781;process:pid:1280,ProcessStart:130852224060664781;service:a4e17035
Typ zjišťování:Konkrétní
Zdroj zjišťování:Systém
Stav:Neznámý
Uživatel:NT AUTHORITY\SYSTEM
Název procesu:C:\Windows\System32\svchost.exe
Date: 2015-08-28 10:25:31.805
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=213571
Název:BrowserModifier:Win32/Diplugem
ID:213571
Závažnost:Vysoké
Kategorie:Program měnící nastavení prohlížeče
Nalezeno v cestě:file:c:\Program Files (x86)\ReactorKeeper\ReactorKeeper.dll;process:pid:1156,ProcessStart:130852224060196781;process:pid:1280,ProcessStart:130852224060664781
Typ zjišťování:Konkrétní
Zdroj zjišťování:Systém
Stav:Neznámý
Uživatel:NT AUTHORITY\SYSTEM
Název procesu:C:\Windows\System32\svchost.exe
Date: 2015-04-18 06:08:50.510
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{D6A3C858-C1C7-4422-9007-E12C95FEAEC1}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2015-03-14 04:06:57.465
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=207024
Název:BrowserModifier:Win32/CouponRuc
ID:207024
Závažnost:Vysoké
Kategorie:Program měnící nastavení prohlížeče
Nalezeno v cestě:bho:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{cb722870-b879-4591-ad93-2121deaf59f7};bho:HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{cb722870-b879-4591-ad93-2121deaf59f7};clsid:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{cb722870-b879-4591-ad93-2121deaf59f7};clsid:HKLM\SOFTWARE\Wow6432Node\CLASSES\CLSID\{cb722870-b879-4591-ad93-2121deaf59f7};file:C:\Program Files (x86)\unnisalues\AA5spKLBnzyK6K.dll;iepreapproved:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{cb722870-b879-4591-ad93-2121deaf59f7};iepreapproved:HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{cb722870-b879-4591-ad93-2121deaf59f7};regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{cb722870-b879-4591-ad93-2121deaf59f7};regkey:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{cb722870-b879-4591-ad93-2121deaf59f7};regkey:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{cb722870-b879
Typ zjišťování:Konkrétní
Zdroj zjišťování:Systém
Stav:Neznámý
Uživatel:NT AUTHORITY\NETWORK SERVICE
Název procesu:c:\program files\windows defender\MpCmdRun.exe
CodeIntegrity:
===================================
Date: 2018-09-14 08:26:07.821
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-14 08:26:07.649
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-14 08:26:07.478
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-14 08:26:07.322
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-13 21:58:11.996
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-13 21:58:11.809
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-12 21:44:38.521
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\gpapi.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-06-12 21:44:38.331
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\gpapi.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 23%
Total physical RAM: 8189.55 MB
Available physical RAM: 6264.02 MB
Total Virtual: 16377.29 MB
Available Virtual: 14411.48 MB
==================== Drives ================================
Drive c: (SYSTEM) (Fixed) (Total:465.56 GB) (Free:125.3 GB) NTFS
Drive x: (DATA) (Fixed) (Total:465.85 GB) (Free:459.27 GB) NTFS
\\?\Volume{4894c6fc-9f27-11e4-8eb2-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 9026D434)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [TCP Query User{69D948CC-ED6E-4FEA-AECD-2D57A976C318}C:\program files (x86)\gigabyte\@bios\gwflash.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\gwflash.exe
FirewallRules: [UDP Query User{D6F5090D-43B4-4604-8090-EFB23E0C99E0}C:\program files (x86)\gigabyte\@bios\gwflash.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\gwflash.exe
FirewallRules: [TCP Query User{247BE826-ECAF-44F4-A9D8-CDA377D50ADC}C:\users\zdenek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\zdenek\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2D8CF9DF-EF85-4F48-9E19-802FFC550363}C:\users\zdenek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\zdenek\appdata\roaming\spotify\spotify.exe
FirewallRules: [{0396E1A1-3494-4515-B003-AAB1DFE020A2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{13FAA7AB-4770-4FEB-801E-77C288896990}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{D557E113-C499-4B6B-AA42-668DC8AB18ED}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{783DC884-985F-41AC-93C2-D3E176B73B99}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Block) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{09A1714C-34F1-4C20-ADA2-ED818CB41747}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D23AA47B-053D-48B8-93C5-F45075FC3BE8}] => (Allow) LPort=2869
FirewallRules: [{AF58321A-3A26-41E3-A717-D21697FB0060}] => (Allow) LPort=1900
FirewallRules: [{78631822-9CC6-4A92-A450-1D7F40281DC8}] => (Allow) C:\Program Files (x86)\SimCity 2013 Offline\SimCity\SimCity.exe
FirewallRules: [{A195F8F9-B3B4-4255-91CA-48F1C1F25EF5}] => (Allow) C:\Program Files (x86)\SimCity 2013 Offline\SimCity\SimCity.exe
FirewallRules: [{FE0C6A4E-142A-4F73-8A98-E607552DCBD9}] => (Allow) LPort=1886
FirewallRules: [{8DF016A0-BE31-4FCF-96A3-488CE28DE0CA}] => (Allow) LPort=1886
FirewallRules: [{DDB8CBB5-5095-416C-9000-E20AA1FC58C7}] => (Allow) LPort=1886
FirewallRules: [{15609CC0-CA6C-4A5C-9276-A5F5A583F971}] => (Allow) LPort=1886
FirewallRules: [TCP Query User{AB0DB9E3-5F13-4C35-93A9-A5AC97A29B1C}C:\users\zdenek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zdenek\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{5894A133-51E8-43B2-871A-2D7F5C2D5943}C:\users\zdenek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zdenek\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{F4BA3440-24AF-41E1-A49D-74E5F4C289AB}C:\users\zdenek\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\zdenek\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{3045B310-A3CC-4029-A55E-28DB5806F483}C:\users\zdenek\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\zdenek\appdata\roaming\spotify\spotify.exe
FirewallRules: [{D1B9F5C8-3367-4150-B69B-592CD0C7FEF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AB249AAD-C8F8-4D52-BCE6-762ADC0FCC54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7F207AB6-D04F-49BA-A5B2-44B575B7FB18}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{547B69A7-34FC-4954-8AA8-C5E2204FAA90}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{22E34949-E359-4292-A51D-AC94216D9B46}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{00960A11-A78A-401B-B939-428CD4A038EE}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{EC803957-EF88-4DF7-A515-ED819129004E}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{825F0545-06CF-48E0-98FB-7F2F9FE40EA3}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{D9AE6598-A744-4A15-AA73-D9FD921670CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5EAE23EF-F62C-4BDF-A3BF-862F40C0F767}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B13F4909-14D3-40AA-AD0E-30A9C55DF3EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{522C020B-9C9A-49AE-A312-A019A392B5CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AA6FA53B-4400-4293-BE8E-E4258BE5FA30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7817A79C-3ADE-469B-A38E-D720B815AB1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E4C96233-CF2D-47FE-A0D2-655FB4287340}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{846289F1-3DA7-4C9A-8AF8-40828B41A043}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{29FBF2F7-E1D4-4CC6-811D-F171911BB14F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{32C83239-60F0-409E-85FB-97636FD530CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BC8B56F4-04E6-4833-8949-8C42172FCF9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{61AC19DF-7720-4077-99BF-6FEF902B8807}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9C468452-BAA5-4041-BA13-4371D7DE1A61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D2352277-5EF6-4A4B-9021-C4DE0F44EBC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DA22D3E7-1DBC-4CD5-A4A4-4B02D4BB2E93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BEAF0402-44E2-4672-BF39-B163AD22C350}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C3D54F60-B957-46E0-865A-2C4804BDA7BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{898B2D82-465A-436B-BD25-F1D1E16EF8AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7C8F298B-030D-4414-B94E-C55E8D5C4E50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D8DE7D49-DDE8-4E3C-A1B9-6BA2C9232C19}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FF787EAC-3830-4BFE-AB25-52E28F04DC18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5913BC4F-404A-4D64-ACCA-2392A814F08C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9D063277-E7FE-4D5F-A8B9-286DBF007390}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9F40D5EB-2763-44B7-BD4B-4C1E782FDEB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ED59F935-1DC0-4607-9A46-ED540027A6D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{09D6F8EA-4E48-470B-B7BA-C505C705F0DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0E48BDCD-030B-4A28-B128-2202851C8EF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0E7B613E-3236-4BC1-A3DE-4B35F849DCBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3DC97E56-B5DA-497D-AD73-F948F2B590AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7672F99C-B78C-4F2B-AC9C-BAC44A549CF7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{219D32AE-0390-49F8-89CD-2476EA012ABF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F72A3D51-7C86-4B0C-B320-AA069A3B163F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4A4418C7-C1B3-4B12-BAC0-2C6EB3F3E47D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3BBB0678-4ACB-43DE-A6CF-3E0113413179}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{45DC4BFD-83A1-448F-BF48-E144F995A9A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9C624440-C96B-4671-8F11-B3F19D294CD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{88EA3337-29FA-4A0D-85B7-651E76B3EB0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DBEE808E-3F77-40DD-BC9A-ABBF0D2C14BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F304392A-F00B-415F-B8A0-32DA7AB6E73A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BFC5A9A4-373E-4A54-9357-0A154015BB35}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FBC4744B-DAC5-415A-98C6-2E6C81EF319D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E79DA8E8-1C49-4BA4-A23A-B192A9EC6489}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{26F0EC1C-A458-4D51-90A5-D2D1056AB196}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5590AE3F-5207-4840-9018-A57CFBC598C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4BF76BC1-55E4-4854-978B-F8A0DDE8B2B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DA283C48-0937-4062-A440-2B6296BF6D14}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FC11A4DD-E92D-4EF8-BFE2-2E714CCB0F98}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B03CBE03-7082-4963-A8DB-3C8BDA755324}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3A7035B7-CF58-4642-9670-0E55446D6CA1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1CFAD554-D5D9-4A02-88C5-FFAFFF1F5E63}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{40748BAA-2D27-41BE-9F28-BD1F10880476}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6F9A3BA1-B22C-436F-8CE5-F47FBEE40ED0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{06DC4F4A-81AC-4950-9DAE-E6032EEC0E61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{83E8A90B-F1AE-4EBB-8DDF-697F98CA03E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{735C437E-19CA-4A84-A15E-AF1450BD8CF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{495485ED-D257-48B4-9604-513A912AD8B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{39CA30EB-98EB-4507-8F8D-09FE0BEA79BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{26BCB194-6C02-4842-8264-03760C27D08E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6C906072-3F7E-4A3F-A144-24D11CAF62B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F8427291-BB12-4E00-B36A-1853479AC963}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3BC88407-3A07-4043-A290-402821182261}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{37265EBF-8EA3-42A0-B9BF-E975FB3A2B37}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7B511511-CC79-4AD4-A9FD-CDE252106D47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CB174910-6A9C-4528-86D2-FE8FD788BD95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{29D0F92C-8153-4C79-8591-32B4E4508617}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{91F52E13-4285-45F3-8C6D-E64E3F2E831C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{371FC992-26F9-46DC-94F6-BA333285ECBD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DF50CE55-303A-48D5-8B5B-69FCD6C01436}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4A40A555-E0DF-4928-827D-F71CE44A3DCB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D19B17DE-0811-4F61-8E1C-AD94BB5A0D5E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F5DEE7F8-DC9B-4A15-98A5-0DEF63354B19}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{25AD250E-B1E7-443D-9592-0D7CBC5638D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8BDB872B-B737-49FF-A108-786E716793E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{08F13043-1DE4-4982-A694-B87656692BEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4200E69A-7BBD-4928-9678-32478A72FFCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7FB523C2-49FE-4DD3-A69D-6B84599DB039}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F2CF7C10-330C-4BD6-A8B2-AA825D36B407}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{788248DB-83D2-4115-BEC4-EEB1DE344CCB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{85937AA7-08B4-48EF-B1FC-D8B9D210B385}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{884610A2-90C0-417A-A44B-28739A82E1EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FCCEC186-24FB-49B1-A1D5-86F5E46BCBC1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F865EACB-2326-4BE3-A36D-49A84F32EC41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{012CBCFF-A825-4941-A9A0-FE4D0F29046F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6FECC84C-A2C1-487B-9352-1C933A81B55F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AC2308FD-5A6E-44C1-AABF-674CA581A654}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{634B514D-017F-437B-BC8F-DEB5CDEE9960}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7F1E8036-C153-4C22-BEFF-7BB1CD1DEDCD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0180EB85-7158-43AD-A9C7-00A9A09EB6E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{06F9B9FB-31FD-45DA-BDF1-EA352829EA6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C70E40E9-7EC2-4DC4-9865-865210215F71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9D5D25EE-B8D7-4327-ACDB-3797A9B26AB6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FADB635A-2A86-4FA7-A0FB-D357C707CBC8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2F59504B-3352-4F3F-93DD-F66A23576288}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{10D52896-C9AB-4135-9554-9FEA303240C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A672B044-8EC6-4D3C-A090-C6132AAF3678}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1255C8CA-55D6-4C08-899C-67C6EF188D56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0610D3C0-AACE-4EC5-97C3-E7E0D909082C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5E071719-32CC-4EC2-8A06-1055304E2B9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{67F2203F-B2BA-4191-85A2-8508E0D12F9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DD862489-291E-4505-B204-EDFB6F517718}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BDBBBAB0-2B92-4513-87F2-B780DFD3CB4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{01DAB848-6E41-424C-A475-A5F0BDEF35A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D5F5495E-A6B8-42D4-AA71-525CA970B0A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{99D2F42B-D0F1-4EC1-87D4-B92894AD65AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6A8FC662-D714-4781-968B-A3B590D89AD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D6D90C55-0781-4A4C-907B-6CBCAD36A6BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{21343BD0-944C-4594-8258-4AFABC71684A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9E01CD41-6BDF-4E33-8DBB-FF74F1D57EFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A216A5F0-92EB-4139-B4E2-69D4AE381EB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{04ED689E-FFAD-48DD-8720-037E12EAF099}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{948F31B1-98DB-4710-B422-7A441CF4F219}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{95DA8C69-0FF9-4F01-BF3D-DE670ADDE26D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B527C285-8BBC-4A4C-9256-8936D38BD79D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C6D47AC3-8CC3-4D9D-95AB-F9E84EB8AB24}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FA75DA81-6A64-44BC-BC44-7E67758888F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{19A92EFB-B7E4-4FBE-95CC-60DAF601305F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C5C8C804-DA3A-4CCD-8E20-707AAB686B0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A8A3C72B-C93C-4BE0-9D3A-16C05C195838}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3CD0A743-00E8-46F1-94A9-E6DE02F30B41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CF529A6F-01E7-42EE-8A1A-31678D6E1AF7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{86158D27-D1F2-475C-88CF-91EF5B07954F}] => (Allow) C:\Users\ZDENEK\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{8D239AB3-1095-4835-B7C1-132FBB3CB3C3}] => (Allow) C:\Users\ZDENEK\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{D1AEAF1F-F699-40B8-9C18-D66284D13427}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{105326FF-DBD4-4F92-B2BF-9A0A7727C4E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F6EB8BA6-0E04-4566-B998-23FDC612B6A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{33B3BB25-AE09-41D1-B87F-8E1DA3056027}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{643B35CD-80C1-4A24-AFA2-13F88A9971A2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5FABEF57-5528-4D60-B308-1E68227EED3A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{AA993590-600C-4D90-93D1-2F896CDC6C5D}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe
FirewallRules: [UDP Query User{182888A8-46C2-4B33-BA84-4E0BC52A6378}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe
FirewallRules: [{0BC59FCC-0622-49C2-B7AB-AD41F69CA21D}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
FirewallRules: [{5C481374-AF63-4847-AD96-FE719BEBC04B}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShare.exe
FirewallRules: [{74B6EAB5-1C4B-460D-AE47-B8B0DDC5244D}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
FirewallRules: [{70E0239A-55EA-49C8-984B-DE29CECBB54D}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\bin\FaxPrinterUtility.exe
FirewallRules: [{FF5D06C2-A79B-437B-A124-E4528C5D3469}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\bin\FaxApplications.exe
FirewallRules: [{B529B3AB-F0EB-47F3-9326-AAAC8599186B}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\bin\DigitalWizards.exe
FirewallRules: [{0CC6C58B-A914-48D7-824B-6B08D0F0DE89}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\bin\SendAFax.exe
FirewallRules: [{D8CF7A1F-F8EA-48D6-8856-F0D917627316}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\Bin\DeviceSetup.exe
FirewallRules: [{25567F50-62E6-406B-9B55-7F14590296F6}] => (Allow) LPort=5357
FirewallRules: [{AB974E03-1F4F-44ED-ADAA-6575EB216C32}] => (Allow) C:\Program Files\HP\HP DeskJet 4670 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{E6B35B55-71C6-461F-B6F9-29ECB6288472}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
FirewallRules: [{27B4258D-2957-4259-BCC1-541BA5AF39B8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe
FirewallRules: [{BBD019CA-2074-450E-9228-E6296A4EEE74}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe
FirewallRules: [{0D6DB38A-999B-4541-9412-64EAA7C295C9}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe
FirewallRules: [{A5577A73-99A9-40BA-AF4D-98B72351198A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe
FirewallRules: [{BD27819C-E70B-424D-A7D4-7E4F19F9DAB4}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe
FirewallRules: [{F7520872-13D0-4847-9221-C4B38D977E29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{1A4B9A17-D453-4468-BF3D-9034522CF386}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [TCP Query User{3EF9E635-942A-4856-8EBD-04FAA959F4CF}C:\program files (x86)\crytek\crysis 2 - maximum edition\bin32\crysis2.exe] => (Allow) C:\program files (x86)\crytek\crysis 2 - maximum edition\bin32\crysis2.exe
FirewallRules: [UDP Query User{58FE9470-0BB5-4708-B802-C78187852115}C:\program files (x86)\crytek\crysis 2 - maximum edition\bin32\crysis2.exe] => (Allow) C:\program files (x86)\crytek\crysis 2 - maximum edition\bin32\crysis2.exe
FirewallRules: [{BFD47EA4-31BE-4BF4-BA5B-63307700A09B}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{E057BF7D-FB77-4DE8-ACFC-9B9A98A9D31D}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{EB7122F6-7CCD-4861-9B48-80EECC36165B}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{E9B874C9-7DB4-4E5C-AAEB-04E89E06EC10}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{00ED957B-75A1-4AFD-9D81-B3BCEC9147A3}] => (Allow) C:\Program Files (x86)\Opera\48.0.2685.32\opera.exe
FirewallRules: [TCP Query User{D304F363-F060-4BAD-BAC9-94A2A8AB627B}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [UDP Query User{D761D907-10E8-4CD6-98F4-81B986BE3DB2}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [{559CA03C-34D7-4BBC-A1D8-CF266084E7B6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{15E6DD5D-636D-4A24-B968-2ABBE8C4D61A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{3F457239-CE63-49FF-B106-CF9178E263C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CE66BF6D-8953-4485-9E6C-B1C535127562}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9A85A655-B47B-4062-96E7-BEA49494804D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{72C34D71-DDB5-4BBD-A74B-019443928F36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ECC8E6F7-05C0-4B7B-9033-B393CAE29ACF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{427005C7-E7D3-486D-BA9F-50533754C2B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{51B5B58B-83E1-44FE-ABE1-35285AC741D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EE16FEA0-9535-4159-BFFA-16CBF47DA4C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{535D0E18-2671-4D6D-85A4-F6985E4C3BB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F81BD90F-B002-4E7A-A277-4E3F05ACA9C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{61C45E9A-8B6B-4851-AA67-109AF9230492}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8890DE23-DB76-4C19-8F59-FA486B7B1D1E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7A76721E-2F8A-43A6-936E-85DC5961B8C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3D78F53A-E37C-4219-AA43-ADA82754B548}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4396EDEF-4D17-4093-8BC0-4427FC950CCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6C658876-95F4-45B2-AFC3-527B5434398F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9AACC19D-8408-4967-BAAD-2E1C670CE532}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{98F9CB3C-8374-440C-9487-AAE1745D0D2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{64DF6CC6-EA81-464D-B3A4-2A015A2F2ECA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CA889872-F90D-4814-B966-C5D4B84C81FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{918F701E-8870-49AC-A478-E1112A61B825}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7E30C586-3FDA-4231-A671-5D738BFDCC1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FDA1A4AC-2FDC-474F-8D56-C689677BF8C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9D05F333-8790-4719-9B39-F59DABABA0A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CFC8C82A-1E10-4C06-8CA6-0946EA76C00C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{61D6FB80-6584-4CC7-B163-3C35FDF6A345}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F534414A-8CD5-47C7-B057-667ED1F7AF58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{34740924-7EC6-4F0E-B14C-CB897AF441EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C679A3B2-C8FD-436A-80DD-8C666EF6DD1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1C8CE831-1076-477D-BF42-E134BD6B09EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C314F104-CBC3-429C-98E7-E589C0E6E4AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3F82A9BC-F41E-40A2-8AB1-1FFEA49C1F91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{95BB2CCD-DE23-469B-B44C-FE554A16E6F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D173C0E0-66E2-4392-B5DC-7B6077D20582}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9A0F910A-9DA2-4DC1-B534-F79E704B08F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{03BA04FD-010E-4A54-AD24-52C48482B51F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4CE5CF90-556E-4109-9D88-BA6BBB4CD549}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{00EC36D8-8BE4-4B51-8BFD-0319998A3DB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A6097818-2BDB-4EC2-A0CB-46C612BE4F59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8D6247A2-FCDF-4197-BF25-A3987E3803D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5EC87FAC-6B0D-4C35-BE97-010283C6F752}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{36D6FDB8-2D08-4E3F-9B80-925B06192172}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8D32BE86-E048-4432-A348-1AB2F22BA2F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{486F7527-0740-4BB2-BEB8-F95AACB38ACD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{AEA27EBD-CB22-4962-9E49-66144FE84195}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6AFB95DD-5B07-4A4C-9448-EBC79AAFB417}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D8C661CD-86ED-45F2-A459-687EF34CCD69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{34AA7C5C-845B-494F-AAEE-76BF1A946697}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B56CE08E-2AE4-4889-A315-6AB217E43815}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F22B7436-A6F2-42EB-9A2C-3287D050809B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{4356345D-299D-47C6-AD15-FBBC134987B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{18B4E26F-9E70-438C-A2F3-A306F4BCC290}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{738C78C8-E43D-4EAA-B1C1-172C9C8F79A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E4E95B2C-257D-43BC-AA66-06CF619F63B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1211720F-9A97-4423-A4AF-88E8153B00DF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F128EE34-98C2-4A88-96D5-E732C93918E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6E3D07B9-9EAE-48C3-8183-C9B63D1D4902}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E7FD2D89-BB82-4DE4-8509-0C3883DD8C77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EC7A91E2-51C5-491B-A92B-DBCDCE1D5788}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5A6959E2-57F6-46CE-BC33-328F3DB6A4D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{12E3B601-72AC-4777-BCC6-7F10CBB25C3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C58DA9A4-CB3A-4A5A-AD49-CEA5656CC5D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E0C783D7-88E8-40C5-85BA-2A65A599F2E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{78BF385D-A612-4D42-B1FC-5C2BFB48AA92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{6DF4CFBD-9366-448D-BC05-549108A87120}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{14BFEA1E-0536-4F0C-B948-5D1DEC5C2444}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{CF0EB898-F876-4F7A-B22D-D900E5E06719}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0B8ED118-214F-4EB5-96E4-1B79A50FE1B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{EF2FE896-2C04-440D-A649-3AA4A52D4DD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9DC2FC9A-7C42-4F31-85CE-6EC06E7DC26A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A9239DC3-F29D-490A-B97F-211228C51058}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{87A6308F-E17B-40D4-8987-AD7F2BB402A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{A0F23FEA-1DF5-4CD3-BC40-C2884EC3E8B6}C:\program files (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\program files (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [UDP Query User{05E87FD9-3D91-40FA-B4B7-1E766D64B208}C:\program files (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\program files (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [TCP Query User{AA178E39-FCC2-4916-AFD5-B9B789218D08}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [UDP Query User{A6C53AD1-F824-4890-A9F8-FA882F68284E}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [TCP Query User{1E75F52D-6F87-472A-BE6E-26C7543B4F5D}C:\sinusbot\sinusbot.exe] => (Allow) C:\sinusbot\sinusbot.exe
FirewallRules: [UDP Query User{430EC0E3-D7DD-44A6-919C-BC824AC1C303}C:\sinusbot\sinusbot.exe] => (Allow) C:\sinusbot\sinusbot.exe
FirewallRules: [{02FA30D7-F951-47B1-B1A3-EFA3444D7BB1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{C9BBA12C-1018-4633-B316-56AB17866411}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{CC03508B-14BD-43F1-B47E-92E6DDB61FBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\cossacks.exe
FirewallRules: [{9DDE0ADF-62BB-4428-82EB-6626DFBE6DB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\cossacks.exe
FirewallRules: [{B5628D47-34F1-4FA1-8B5A-E60157F0807D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\config.exe
FirewallRules: [{12E940A0-2F14-41AF-A4E5-F3CC7799F34A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\config.exe
FirewallRules: [{FA420AD3-ACE7-4D24-8C1F-BE5BE7C5E393}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\editor.exe
FirewallRules: [{79BEC0A9-7331-43AB-8E5B-84A0F6A3CF41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\editor.exe
FirewallRules: [{29300E10-6609-4EB3-994B-E1F11733D098}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\modman.exe
FirewallRules: [{681C74A0-8412-4077-BF15-5CAABD57AF11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\modman.exe
FirewallRules: [{E9313229-DD4A-42DB-9F38-F17E54AD3DF6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{D290CCE0-E678-4D2F-AEED-B5AA3AEB2CEC}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{2DD420E4-CB6E-430A-A923-991F21D0F6CA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{CB6D345B-7401-41A8-BE36-9A8BBDF769D4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{04A639D2-F635-4BF8-B526-110B0F78E036}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassins Creed Brotherhood\ACBSP.exe
FirewallRules: [{9B09B51B-4720-4097-A94B-54C8A43AAC15}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassins Creed Brotherhood\ACBSP.exe
FirewallRules: [TCP Query User{3621C259-8E61-45EB-B6A1-E86C93E9D6A7}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{AD4D362C-CB27-4F8A-9DC1-B6C76AA6BA4F}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [{E0F363D3-4E83-4494-8275-95AE23C013A5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{047AC1D7-F4B0-4796-9025-D8032CD382C7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{78612A7F-DDC7-49E0-8CFF-1B87B273F494}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{4D97815F-F42F-4BC6-BA29-B03B8EFFDC8A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{19D908EC-71FE-4989-9B4A-DB125074AB41}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{CFCABFB8-7A97-47BF-8E0F-5DDBA0491585}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{391F936B-21A1-4483-92A7-59F56C0EAE4D}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{99ABA1B2-314D-420B-9A4F-31C388564568}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{F5944E84-677C-4F39-A065-4E7D18066FE2}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [{B09EE412-A5BF-4B15-B882-001436EB6756}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{E9639FC7-62B1-43E7-B7BF-B92656779594}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{EBC7ED0F-1F93-4316-9D55-6F0470AD8B91}] => (Allow) C:\PROGRAM FILES (X86)\OPERA\55.0.2994.44\opera.exe
FirewallRules: [{262268E0-8051-47BD-84A6-7EBCCDBA7BE3}] => (Allow) C:\PROGRAM FILES (X86)\OPERA\55.0.2994.56\opera.exe
FirewallRules: [{98DC7A0C-7F4F-49F9-8AFE-8B0CBCDF8F9D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{0F6DBD89-C5E2-4976-B98B-3DD3E56E19EB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{3C40E35B-9A3C-4ED5-A838-F77CA715A0AB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{6A66EA5D-7005-4347-A458-1E2DC3BF4C0A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CDDCAD79-EFF5-44A7-B15D-315BD2639724}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{89A11522-16C0-4B0B-94D5-4E7D799A7C7B}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
==================== Restore Points =========================
13-09-2018 20:36:56 zoek.exe restore point
13-09-2018 21:45:26 Zemana AntiMalware 13.9.2018 21:45:23
==================== Faulty Device Manager Devices =============
Name: AODDriver4.2
Description: AODDriver4.2
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AODDriver4.2
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Adaptér tunelového režimu Microsoft Teredo
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/14/2018 08:50:33 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
Error: (09/14/2018 08:48:44 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\microsoft office\root\office16\odbc drivers\salesforce\lib\libcurl32.dlla\libcurl.dll se nezdařilo.
Závislé sestavení OpenSSL.DllA,processorArchitecture="*",type="win32",version="1.0.0.4" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (09/14/2018 08:41:09 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (09/14/2018 08:40:20 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
Error: (09/14/2018 08:15:10 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error: (09/14/2018 02:29:11 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
Error: (09/14/2018 01:29:11 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
Error: (09/14/2018 12:29:12 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
System errors:
=============
Error: (09/14/2018 08:36:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AODDriver4.2 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedenou cestu.
Error: (09/14/2018 08:35:06 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/14/2018 08:34:58 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/14/2018 08:31:11 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/14/2018 08:26:07 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.
Error: (09/14/2018 08:26:07 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.
Error: (09/14/2018 08:01:02 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.
Error: (09/13/2018 09:58:48 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Windows Defender:
===================================
Date: 2015-08-28 10:35:59.493
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=213571
Název:BrowserModifier:Win32/Diplugem
ID:213571
Závažnost:Vysoké
Kategorie:Program měnící nastavení prohlížeče
Nalezeno v cestě:file:c:\Program Files (x86)\ReactorKeeper\ReactorKeeper.dll;process:pid:1156,ProcessStart:130852224060196781;process:pid:1280,ProcessStart:130852224060664781;service:a4e17035
Typ zjišťování:Konkrétní
Zdroj zjišťování:Systém
Stav:Neznámý
Uživatel:NT AUTHORITY\SYSTEM
Název procesu:C:\Windows\System32\svchost.exe
Date: 2015-08-28 10:25:31.805
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=213571
Název:BrowserModifier:Win32/Diplugem
ID:213571
Závažnost:Vysoké
Kategorie:Program měnící nastavení prohlížeče
Nalezeno v cestě:file:c:\Program Files (x86)\ReactorKeeper\ReactorKeeper.dll;process:pid:1156,ProcessStart:130852224060196781;process:pid:1280,ProcessStart:130852224060664781
Typ zjišťování:Konkrétní
Zdroj zjišťování:Systém
Stav:Neznámý
Uživatel:NT AUTHORITY\SYSTEM
Název procesu:C:\Windows\System32\svchost.exe
Date: 2015-04-18 06:08:50.510
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{D6A3C858-C1C7-4422-9007-E12C95FEAEC1}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2015-03-14 04:06:57.465
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=207024
Název:BrowserModifier:Win32/CouponRuc
ID:207024
Závažnost:Vysoké
Kategorie:Program měnící nastavení prohlížeče
Nalezeno v cestě:bho:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{cb722870-b879-4591-ad93-2121deaf59f7};bho:HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{cb722870-b879-4591-ad93-2121deaf59f7};clsid:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{cb722870-b879-4591-ad93-2121deaf59f7};clsid:HKLM\SOFTWARE\Wow6432Node\CLASSES\CLSID\{cb722870-b879-4591-ad93-2121deaf59f7};file:C:\Program Files (x86)\unnisalues\AA5spKLBnzyK6K.dll;iepreapproved:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{cb722870-b879-4591-ad93-2121deaf59f7};iepreapproved:HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{cb722870-b879-4591-ad93-2121deaf59f7};regkey:HKLM\SOFTWARE\CLASSES\Wow6432Node\CLSID\{cb722870-b879-4591-ad93-2121deaf59f7};regkey:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{cb722870-b879-4591-ad93-2121deaf59f7};regkey:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{cb722870-b879
Typ zjišťování:Konkrétní
Zdroj zjišťování:Systém
Stav:Neznámý
Uživatel:NT AUTHORITY\NETWORK SERVICE
Název procesu:c:\program files\windows defender\MpCmdRun.exe
CodeIntegrity:
===================================
Date: 2018-09-14 08:26:07.821
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-14 08:26:07.649
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-14 08:26:07.478
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-14 08:26:07.322
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-13 21:58:11.996
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-09-13 21:58:11.809
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-12 21:44:38.521
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\gpapi.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-06-12 21:44:38.331
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\gpapi.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 23%
Total physical RAM: 8189.55 MB
Available physical RAM: 6264.02 MB
Total Virtual: 16377.29 MB
Available Virtual: 14411.48 MB
==================== Drives ================================
Drive c: (SYSTEM) (Fixed) (Total:465.56 GB) (Free:125.3 GB) NTFS
Drive x: (DATA) (Fixed) (Total:465.85 GB) (Free:459.27 GB) NTFS
\\?\Volume{4894c6fc-9f27-11e4-8eb2-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 9026D434)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43060
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
Kód: Vybrat vše
Start
CloseProcesses:
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> DefaultScope {13552D3B-38FC-4021-BF31-BB920428C6EF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> {13552D3B-38FC-4021-BF31-BB920428C6EF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> {CD58A60B-0F26-49C8-B0EC-5FAAF44C2D47} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-1762638149-875449985-1971150987-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\ZDENEK\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
R4 IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [X]
U2 Plug and Play; no ImagePath
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\System32\Tasks\{49065A49-780A-4779-8F94-F6EE7C6E7E5A}
C:\Windows\System32\Tasks\{09FF4C71-8BA8-40A2-99E5-322C1FB732E0}
C:\Windows\System32\Tasks\{8BB98CEE-9A1B-497E-B085-87F0CF1D0750}
C:\Windows\System32\Tasks\{F38F528D-C592-428C-A0E4-1D0452214952}
C:\Windows\system32\Drivers\asw54473a72254ec307.tmp
C:\Windows\system32\Drivers\asw 11684750ca3214d.tmp
C:\Windows\system32\Drivers\aswc228bb18483bad3c.tmp
C:\Windows\system32\Drivers\aswae6260ab73b9677c.tmp
2018-09-04 17:11 - 2015-01-18 20:45 - 000467320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswe156206d6b9a43db.tmp
2018-09-04 17:11 - 2015-01-18 20:45 - 000467320 _____ (AVAST Software) C:\Windows\system32\Drivers\asw1bcec4a5d11e04a4.tmp
2018-08-30 21:11 - 2015-01-18 20:45 - 000087904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswb18d7fdb7951fe1d.tmp
2018-08-30 21:11 - 2015-01-18 20:45 - 000087904 _____ (AVAST Software) C:\Windows\system32\Drivers\asw763ac6853b9c7967.tmp
2018-08-30 21:10 - 2017-12-25 11:23 - 000249016 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8ed8f345f6bdfae2.tmp
2018-08-30 21:10 - 2017-12-25 11:23 - 000249016 _____ (AVAST Software) C:\Windows\system32\Drivers\asw35bf4b4ba5fcf812.tmp
2018-08-30 21:10 - 2017-11-17 14:25 - 000199712 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbdf426c4a03ead01.tmp
2018-08-30 21:10 - 2017-11-17 14:25 - 000199712 _____ (AVAST Software) C:\Windows\system32\Drivers\asw9d041134b8294ba3.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\asw63b4b55746da7205.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\asw195817f8d58f6d71.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000229384 _____ (AVAST Software) C:\Windows\system32\Drivers\asw755ca1ad1ce1b27e.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000229384 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4cf421bb7363f142.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000201320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswc58ad4944e97f3f3.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000201320 _____ (AVAST Software) C:\Windows\system32\Drivers\asw 13f0846aedaa6b2.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000059568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswf5667901ed8801a2.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000059568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswd979249b1ed849c9.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\asw777647841f24b14c.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\asw62be035d741df32e.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000381560 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8b9f41972460602b.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000381560 _____ (AVAST Software) C:\Windows\system32\Drivers\asw64596dea08c3aa67.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000111864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswee3601940959e81e.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000111864 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8cb136a46803ad90.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswc007a32ab8b5a06f.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\asw 304ef3692d0665f.tmp
C:\Users\ZDENEK\AppData\Roaming\MafiaSetup.exe
C:\Users\ZDENEK\AppData\Roaming\msvjumf.dat
C:\Users\ZDENEK\AppData\Roaming\msyaairi.dat
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
Task: {19920F16-AF7D-4E45-8F63-E05E79B173D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-14] (Google Inc.)
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [120]
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
There are 7877 more sites.
IE trusted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\sharepoint.com -> hxxps://gymst.sharepoint.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123simsen.com -> www.123simsen.com
There are 7875 more sites.
C:\program files (x86)\spyware terminator
MSCONFIG\startupreg: ebdkowkffy => explorer "http://granena.ru/?
utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=15F1A115797220C93EC51D7069D04C7F&utm_d=20161024"
MSCONFIG\startupreg: gfjfuocyrp => explorer "http://granena.ru/?utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=15F1A115797220C93EC51D7069D04C7F&utm_d=20161024"
Menu^Programs^Startup^KDPSIZWDgUiV.lnk => C:\Windows\pss\KDPSIZWDgUiV.lnk.Startup
C:\Windows\pss\KDPSIZWDgUiV.lnk
c:\Program Files (x86)\ReactorKeeper\ReactorKeeper.dll
EmptyTemp:
End(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 09.09.2018
Ran by ZDENEK (14-09-2018 21:01:25) Run:1
Running from C:\Users\ZDENEK\Desktop
Loaded Profiles: ZDENEK (Available Profiles: ZDENEK & JIRKA & Maminka & Tata)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> DefaultScope {13552D3B-38FC-4021-BF31-BB920428C6EF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> {13552D3B-38FC-4021-BF31-BB920428C6EF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> {CD58A60B-0F26-49C8-B0EC-5FAAF44C2D47} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-1762638149-875449985-1971150987-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\ZDENEK\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
R4 IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [X]
U2 Plug and Play; no ImagePath
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\System32\Tasks\{49065A49-780A-4779-8F94-F6EE7C6E7E5A}
C:\Windows\System32\Tasks\{09FF4C71-8BA8-40A2-99E5-322C1FB732E0}
C:\Windows\System32\Tasks\{8BB98CEE-9A1B-497E-B085-87F0CF1D0750}
C:\Windows\System32\Tasks\{F38F528D-C592-428C-A0E4-1D0452214952}
C:\Windows\system32\Drivers\asw54473a72254ec307.tmp
C:\Windows\system32\Drivers\asw 11684750ca3214d.tmp
C:\Windows\system32\Drivers\aswc228bb18483bad3c.tmp
C:\Windows\system32\Drivers\aswae6260ab73b9677c.tmp
2018-09-04 17:11 - 2015-01-18 20:45 - 000467320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswe156206d6b9a43db.tmp
2018-09-04 17:11 - 2015-01-18 20:45 - 000467320 _____ (AVAST Software) C:\Windows\system32\Drivers\asw1bcec4a5d11e04a4.tmp
2018-08-30 21:11 - 2015-01-18 20:45 - 000087904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswb18d7fdb7951fe1d.tmp
2018-08-30 21:11 - 2015-01-18 20:45 - 000087904 _____ (AVAST Software) C:\Windows\system32\Drivers\asw763ac6853b9c7967.tmp
2018-08-30 21:10 - 2017-12-25 11:23 - 000249016 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8ed8f345f6bdfae2.tmp
2018-08-30 21:10 - 2017-12-25 11:23 - 000249016 _____ (AVAST Software) C:\Windows\system32\Drivers\asw35bf4b4ba5fcf812.tmp
2018-08-30 21:10 - 2017-11-17 14:25 - 000199712 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbdf426c4a03ead01.tmp
2018-08-30 21:10 - 2017-11-17 14:25 - 000199712 _____ (AVAST Software) C:\Windows\system32\Drivers\asw9d041134b8294ba3.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\asw63b4b55746da7205.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\asw195817f8d58f6d71.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000229384 _____ (AVAST Software) C:\Windows\system32\Drivers\asw755ca1ad1ce1b27e.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000229384 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4cf421bb7363f142.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000201320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswc58ad4944e97f3f3.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000201320 _____ (AVAST Software) C:\Windows\system32\Drivers\asw 13f0846aedaa6b2.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000059568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswf5667901ed8801a2.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000059568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswd979249b1ed849c9.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\asw777647841f24b14c.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\asw62be035d741df32e.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000381560 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8b9f41972460602b.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000381560 _____ (AVAST Software) C:\Windows\system32\Drivers\asw64596dea08c3aa67.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000111864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswee3601940959e81e.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000111864 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8cb136a46803ad90.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswc007a32ab8b5a06f.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\asw 304ef3692d0665f.tmp
C:\Users\ZDENEK\AppData\Roaming\MafiaSetup.exe
C:\Users\ZDENEK\AppData\Roaming\msvjumf.dat
C:\Users\ZDENEK\AppData\Roaming\msyaairi.dat
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
Task: {19920F16-AF7D-4E45-8F63-E05E79B173D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-14] (Google Inc.)
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [120]
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
There are 7877 more sites.
IE trusted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\sharepoint.com -> hxxps://gymst.sharepoint.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123simsen.com -> www.123simsen.com
There are 7875 more sites.
C:\program files (x86)\spyware terminator
MSCONFIG\startupreg: ebdkowkffy => explorer "http://granena.ru/?
utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=15F1A115797220C93EC51D7069D04C7F&utm_d=20161024"
MSCONFIG\startupreg: gfjfuocyrp => explorer "http://granena.ru/?utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=15F1A115797220C93EC51D7069D04C7F&utm_d=20161024"
Menu^Programs^Startup^KDPSIZWDgUiV.lnk => C:\Windows\pss\KDPSIZWDgUiV.lnk.Startup
C:\Windows\pss\KDPSIZWDgUiV.lnk
c:\Program Files (x86)\ReactorKeeper\ReactorKeeper.dll
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => removed successfully
HKLM\Software\Classes\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => not found
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{13552D3B-38FC-4021-BF31-BB920428C6EF}" => removed successfully
HKLM\Software\Classes\CLSID\{13552D3B-38FC-4021-BF31-BB920428C6EF} => not found
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CD58A60B-0F26-49C8-B0EC-5FAAF44C2D47}" => removed successfully
HKLM\Software\Classes\CLSID\{CD58A60B-0F26-49C8-B0EC-5FAAF44C2D47} => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0" => removed successfully
"C:\Users\ZDENEK\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll" => not found
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl" => removed successfully
"HKLM\System\CurrentControlSet\Services\catchme" => removed successfully
catchme => service removed successfully
"HKLM\System\CurrentControlSet\Services\EagleX64" => removed successfully
EagleX64 => service removed successfully
IOMap => Unable to stop service.
HKLM\System\CurrentControlSet\Services\IOMap => not found
IOMap => service removed successfully
"HKLM\System\CurrentControlSet\Services\Plug and Play" => removed successfully
Plug and Play => service removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Windows\System32\Tasks\{49065A49-780A-4779-8F94-F6EE7C6E7E5A} => moved successfully
C:\Windows\System32\Tasks\{09FF4C71-8BA8-40A2-99E5-322C1FB732E0} => moved successfully
C:\Windows\System32\Tasks\{8BB98CEE-9A1B-497E-B085-87F0CF1D0750} => moved successfully
C:\Windows\System32\Tasks\{F38F528D-C592-428C-A0E4-1D0452214952} => moved successfully
C:\Windows\system32\Drivers\asw54473a72254ec307.tmp => moved successfully
C:\Windows\system32\Drivers\asw 11684750ca3214d.tmp => moved successfully
C:\Windows\system32\Drivers\aswc228bb18483bad3c.tmp => moved successfully
C:\Windows\system32\Drivers\aswae6260ab73b9677c.tmp => moved successfully
C:\Windows\system32\Drivers\aswe156206d6b9a43db.tmp => moved successfully
C:\Windows\system32\Drivers\asw1bcec4a5d11e04a4.tmp => moved successfully
C:\Windows\system32\Drivers\aswb18d7fdb7951fe1d.tmp => moved successfully
C:\Windows\system32\Drivers\asw763ac6853b9c7967.tmp => moved successfully
C:\Windows\system32\Drivers\asw8ed8f345f6bdfae2.tmp => moved successfully
C:\Windows\system32\Drivers\asw35bf4b4ba5fcf812.tmp => moved successfully
C:\Windows\system32\Drivers\aswbdf426c4a03ead01.tmp => moved successfully
C:\Windows\system32\Drivers\asw9d041134b8294ba3.tmp => moved successfully
C:\Windows\system32\Drivers\asw63b4b55746da7205.tmp => moved successfully
C:\Windows\system32\Drivers\asw195817f8d58f6d71.tmp => moved successfully
C:\Windows\system32\Drivers\asw755ca1ad1ce1b27e.tmp => moved successfully
C:\Windows\system32\Drivers\asw4cf421bb7363f142.tmp => moved successfully
C:\Windows\system32\Drivers\aswc58ad4944e97f3f3.tmp => moved successfully
C:\Windows\system32\Drivers\asw 13f0846aedaa6b2.tmp => moved successfully
C:\Windows\system32\Drivers\aswf5667901ed8801a2.tmp => moved successfully
C:\Windows\system32\Drivers\aswd979249b1ed849c9.tmp => moved successfully
C:\Windows\system32\Drivers\asw777647841f24b14c.tmp => moved successfully
C:\Windows\system32\Drivers\asw62be035d741df32e.tmp => moved successfully
C:\Windows\system32\Drivers\asw8b9f41972460602b.tmp => moved successfully
C:\Windows\system32\Drivers\asw64596dea08c3aa67.tmp => moved successfully
C:\Windows\system32\Drivers\aswee3601940959e81e.tmp => moved successfully
C:\Windows\system32\Drivers\asw8cb136a46803ad90.tmp => moved successfully
C:\Windows\system32\Drivers\aswc007a32ab8b5a06f.tmp => moved successfully
C:\Windows\system32\Drivers\asw 304ef3692d0665f.tmp => moved successfully
C:\Users\ZDENEK\AppData\Roaming\MafiaSetup.exe => moved successfully
C:\Users\ZDENEK\AppData\Roaming\msvjumf.dat => moved successfully
C:\Users\ZDENEK\AppData\Roaming\msyaairi.dat => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => invalid subkey removed.
HKLM\Software\Classes\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => invalid subkey removed.
HKLM\Software\Classes\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => invalid subkey removed.
HKLM\Software\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => not found
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw" => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Foxit_ConvertToPDF_Reader" => removed successfully
"HKLM\Software\Classes\CLSID\{A94757A0-0226-426F-B4F1-4DF381C630D3}" => removed successfully
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Foxit_ConvertToPDF_Reader" => removed successfully
HKLM\Software\Classes\CLSID\{A94757A0-0226-426F-B4F1-4DF381C630D3} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{19920F16-AF7D-4E45-8F63-E05E79B173D3}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{19920F16-AF7D-4E45-8F63-E05E79B173D3}" => removed successfully
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\ProgramData\TEMP => ":56E2E879" ADS removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\007guard.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\010402.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\032439.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-2005-search.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1000gratisproben.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001namen.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100888290cs.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\10sek.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-26.net" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-27.net" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123fporn.info" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123haustiereundmehr.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123moviedownload.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123simsen.com" => removed successfully
There are 7877 more sites. => Error: No automatic fix found for this entry.
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sharepoint.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\007guard.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\010402.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\032439.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-2005-search.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1000gratisproben.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001namen.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100888290cs.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\10sek.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-26.net" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-27.net" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123fporn.info" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123haustiereundmehr.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123moviedownload.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123simsen.com" => removed successfully
There are 7875 more sites. => Error: No automatic fix found for this entry.
"C:\program files (x86)\spyware terminator" => not found
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ebdkowkffy" => removed successfully
utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=15F1A115797220C93EC51D7069D04C7F&utm_d=20161024" => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\gfjfuocyrp" => removed successfully
Menu^Programs^Startup^KDPSIZWDgUiV.lnk => C:\Windows\pss\KDPSIZWDgUiV.lnk.Startup => Error: No automatic fix found for this entry.
"C:\Windows\pss\KDPSIZWDgUiV.lnk" => not found
"c:\Program Files (x86)\ReactorKeeper\ReactorKeeper.dll" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 51029899 B
Java, Flash, Steam htmlcache => 44184506 B
Windows/system/drivers => 66696 B
Edge => 0 B
Chrome => 29668609 B
Firefox => 622592 B
Opera => 468970360 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 42350 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33186 B
systemprofile32 => 57250 B
LocalService => 33125 B
NetworkService => 33125 B
ZDENEK => 65132059 B
RODIČE => 0 B
JIRKA => 133445 B
Maminka => 394538 B
Tata => 120556 B
RecycleBin => 7809080 B
EmptyTemp: => 645.4 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:02:14 ====
Ran by ZDENEK (14-09-2018 21:01:25) Run:1
Running from C:\Users\ZDENEK\Desktop
Loaded Profiles: ZDENEK (Available Profiles: ZDENEK & JIRKA & Maminka & Tata)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> DefaultScope {13552D3B-38FC-4021-BF31-BB920428C6EF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> {13552D3B-38FC-4021-BF31-BB920428C6EF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1762638149-875449985-1971150987-1000 -> {CD58A60B-0F26-49C8-B0EC-5FAAF44C2D47} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-1762638149-875449985-1971150987-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\ZDENEK\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
R4 IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [X]
U2 Plug and Play; no ImagePath
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\System32\Tasks\{49065A49-780A-4779-8F94-F6EE7C6E7E5A}
C:\Windows\System32\Tasks\{09FF4C71-8BA8-40A2-99E5-322C1FB732E0}
C:\Windows\System32\Tasks\{8BB98CEE-9A1B-497E-B085-87F0CF1D0750}
C:\Windows\System32\Tasks\{F38F528D-C592-428C-A0E4-1D0452214952}
C:\Windows\system32\Drivers\asw54473a72254ec307.tmp
C:\Windows\system32\Drivers\asw 11684750ca3214d.tmp
C:\Windows\system32\Drivers\aswc228bb18483bad3c.tmp
C:\Windows\system32\Drivers\aswae6260ab73b9677c.tmp
2018-09-04 17:11 - 2015-01-18 20:45 - 000467320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswe156206d6b9a43db.tmp
2018-09-04 17:11 - 2015-01-18 20:45 - 000467320 _____ (AVAST Software) C:\Windows\system32\Drivers\asw1bcec4a5d11e04a4.tmp
2018-08-30 21:11 - 2015-01-18 20:45 - 000087904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswb18d7fdb7951fe1d.tmp
2018-08-30 21:11 - 2015-01-18 20:45 - 000087904 _____ (AVAST Software) C:\Windows\system32\Drivers\asw763ac6853b9c7967.tmp
2018-08-30 21:10 - 2017-12-25 11:23 - 000249016 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8ed8f345f6bdfae2.tmp
2018-08-30 21:10 - 2017-12-25 11:23 - 000249016 _____ (AVAST Software) C:\Windows\system32\Drivers\asw35bf4b4ba5fcf812.tmp
2018-08-30 21:10 - 2017-11-17 14:25 - 000199712 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbdf426c4a03ead01.tmp
2018-08-30 21:10 - 2017-11-17 14:25 - 000199712 _____ (AVAST Software) C:\Windows\system32\Drivers\asw9d041134b8294ba3.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\asw63b4b55746da7205.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\asw195817f8d58f6d71.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000229384 _____ (AVAST Software) C:\Windows\system32\Drivers\asw755ca1ad1ce1b27e.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000229384 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4cf421bb7363f142.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000201320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswc58ad4944e97f3f3.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000201320 _____ (AVAST Software) C:\Windows\system32\Drivers\asw 13f0846aedaa6b2.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000059568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswf5667901ed8801a2.tmp
2018-08-30 21:10 - 2017-03-09 18:47 - 000059568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswd979249b1ed849c9.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\asw777647841f24b14c.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 001027720 _____ (AVAST Software) C:\Windows\system32\Drivers\asw62be035d741df32e.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000381560 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8b9f41972460602b.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000381560 _____ (AVAST Software) C:\Windows\system32\Drivers\asw64596dea08c3aa67.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000111864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswee3601940959e81e.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000111864 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8cb136a46803ad90.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswc007a32ab8b5a06f.tmp
2018-08-30 21:10 - 2015-01-18 20:45 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\asw 304ef3692d0665f.tmp
C:\Users\ZDENEK\AppData\Roaming\MafiaSetup.exe
C:\Users\ZDENEK\AppData\Roaming\msvjumf.dat
C:\Users\ZDENEK\AppData\Roaming\msyaairi.dat
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
Task: {19920F16-AF7D-4E45-8F63-E05E79B173D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-14] (Google Inc.)
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 [120]
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
There are 7877 more sites.
IE trusted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\sharepoint.com -> hxxps://gymst.sharepoint.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1762638149-875449985-1971150987-1000\...\123simsen.com -> www.123simsen.com
There are 7875 more sites.
C:\program files (x86)\spyware terminator
MSCONFIG\startupreg: ebdkowkffy => explorer "http://granena.ru/?
utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=15F1A115797220C93EC51D7069D04C7F&utm_d=20161024"
MSCONFIG\startupreg: gfjfuocyrp => explorer "http://granena.ru/?utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=15F1A115797220C93EC51D7069D04C7F&utm_d=20161024"
Menu^Programs^Startup^KDPSIZWDgUiV.lnk => C:\Windows\pss\KDPSIZWDgUiV.lnk.Startup
C:\Windows\pss\KDPSIZWDgUiV.lnk
c:\Program Files (x86)\ReactorKeeper\ReactorKeeper.dll
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => removed successfully
HKLM\Software\Classes\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => not found
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{13552D3B-38FC-4021-BF31-BB920428C6EF}" => removed successfully
HKLM\Software\Classes\CLSID\{13552D3B-38FC-4021-BF31-BB920428C6EF} => not found
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CD58A60B-0F26-49C8-B0EC-5FAAF44C2D47}" => removed successfully
HKLM\Software\Classes\CLSID\{CD58A60B-0F26-49C8-B0EC-5FAAF44C2D47} => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0" => removed successfully
"C:\Users\ZDENEK\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll" => not found
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl" => removed successfully
"HKLM\System\CurrentControlSet\Services\catchme" => removed successfully
catchme => service removed successfully
"HKLM\System\CurrentControlSet\Services\EagleX64" => removed successfully
EagleX64 => service removed successfully
IOMap => Unable to stop service.
HKLM\System\CurrentControlSet\Services\IOMap => not found
IOMap => service removed successfully
"HKLM\System\CurrentControlSet\Services\Plug and Play" => removed successfully
Plug and Play => service removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Windows\System32\Tasks\{49065A49-780A-4779-8F94-F6EE7C6E7E5A} => moved successfully
C:\Windows\System32\Tasks\{09FF4C71-8BA8-40A2-99E5-322C1FB732E0} => moved successfully
C:\Windows\System32\Tasks\{8BB98CEE-9A1B-497E-B085-87F0CF1D0750} => moved successfully
C:\Windows\System32\Tasks\{F38F528D-C592-428C-A0E4-1D0452214952} => moved successfully
C:\Windows\system32\Drivers\asw54473a72254ec307.tmp => moved successfully
C:\Windows\system32\Drivers\asw 11684750ca3214d.tmp => moved successfully
C:\Windows\system32\Drivers\aswc228bb18483bad3c.tmp => moved successfully
C:\Windows\system32\Drivers\aswae6260ab73b9677c.tmp => moved successfully
C:\Windows\system32\Drivers\aswe156206d6b9a43db.tmp => moved successfully
C:\Windows\system32\Drivers\asw1bcec4a5d11e04a4.tmp => moved successfully
C:\Windows\system32\Drivers\aswb18d7fdb7951fe1d.tmp => moved successfully
C:\Windows\system32\Drivers\asw763ac6853b9c7967.tmp => moved successfully
C:\Windows\system32\Drivers\asw8ed8f345f6bdfae2.tmp => moved successfully
C:\Windows\system32\Drivers\asw35bf4b4ba5fcf812.tmp => moved successfully
C:\Windows\system32\Drivers\aswbdf426c4a03ead01.tmp => moved successfully
C:\Windows\system32\Drivers\asw9d041134b8294ba3.tmp => moved successfully
C:\Windows\system32\Drivers\asw63b4b55746da7205.tmp => moved successfully
C:\Windows\system32\Drivers\asw195817f8d58f6d71.tmp => moved successfully
C:\Windows\system32\Drivers\asw755ca1ad1ce1b27e.tmp => moved successfully
C:\Windows\system32\Drivers\asw4cf421bb7363f142.tmp => moved successfully
C:\Windows\system32\Drivers\aswc58ad4944e97f3f3.tmp => moved successfully
C:\Windows\system32\Drivers\asw 13f0846aedaa6b2.tmp => moved successfully
C:\Windows\system32\Drivers\aswf5667901ed8801a2.tmp => moved successfully
C:\Windows\system32\Drivers\aswd979249b1ed849c9.tmp => moved successfully
C:\Windows\system32\Drivers\asw777647841f24b14c.tmp => moved successfully
C:\Windows\system32\Drivers\asw62be035d741df32e.tmp => moved successfully
C:\Windows\system32\Drivers\asw8b9f41972460602b.tmp => moved successfully
C:\Windows\system32\Drivers\asw64596dea08c3aa67.tmp => moved successfully
C:\Windows\system32\Drivers\aswee3601940959e81e.tmp => moved successfully
C:\Windows\system32\Drivers\asw8cb136a46803ad90.tmp => moved successfully
C:\Windows\system32\Drivers\aswc007a32ab8b5a06f.tmp => moved successfully
C:\Windows\system32\Drivers\asw 304ef3692d0665f.tmp => moved successfully
C:\Users\ZDENEK\AppData\Roaming\MafiaSetup.exe => moved successfully
C:\Users\ZDENEK\AppData\Roaming\msvjumf.dat => moved successfully
C:\Users\ZDENEK\AppData\Roaming\msyaairi.dat => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => invalid subkey removed.
HKLM\Software\Classes\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => invalid subkey removed.
HKLM\Software\Classes\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => invalid subkey removed.
HKLM\Software\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => not found
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw" => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Foxit_ConvertToPDF_Reader" => removed successfully
"HKLM\Software\Classes\CLSID\{A94757A0-0226-426F-B4F1-4DF381C630D3}" => removed successfully
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Foxit_ConvertToPDF_Reader" => removed successfully
HKLM\Software\Classes\CLSID\{A94757A0-0226-426F-B4F1-4DF381C630D3} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{19920F16-AF7D-4E45-8F63-E05E79B173D3}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{19920F16-AF7D-4E45-8F63-E05E79B173D3}" => removed successfully
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\ProgramData\TEMP => ":56E2E879" ADS removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\007guard.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\010402.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\032439.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-2005-search.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1000gratisproben.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001namen.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100888290cs.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\10sek.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-26.net" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-27.net" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123fporn.info" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123haustiereundmehr.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123moviedownload.com" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123simsen.com" => removed successfully
There are 7877 more sites. => Error: No automatic fix found for this entry.
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sharepoint.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\007guard.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\010402.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\032439.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-2005-search.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1000gratisproben.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001namen.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100888290cs.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\10sek.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-26.net" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-27.net" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123fporn.info" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123haustiereundmehr.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123moviedownload.com" => removed successfully
"HKU\S-1-5-21-1762638149-875449985-1971150987-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\123simsen.com" => removed successfully
There are 7875 more sites. => Error: No automatic fix found for this entry.
"C:\program files (x86)\spyware terminator" => not found
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ebdkowkffy" => removed successfully
utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=15F1A115797220C93EC51D7069D04C7F&utm_d=20161024" => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\gfjfuocyrp" => removed successfully
Menu^Programs^Startup^KDPSIZWDgUiV.lnk => C:\Windows\pss\KDPSIZWDgUiV.lnk.Startup => Error: No automatic fix found for this entry.
"C:\Windows\pss\KDPSIZWDgUiV.lnk" => not found
"c:\Program Files (x86)\ReactorKeeper\ReactorKeeper.dll" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 51029899 B
Java, Flash, Steam htmlcache => 44184506 B
Windows/system/drivers => 66696 B
Edge => 0 B
Chrome => 29668609 B
Firefox => 622592 B
Opera => 468970360 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 42350 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33186 B
systemprofile32 => 57250 B
LocalService => 33125 B
NetworkService => 33125 B
ZDENEK => 65132059 B
RODIČE => 0 B
JIRKA => 133445 B
Maminka => 394538 B
Tata => 120556 B
RecycleBin => 7809080 B
EmptyTemp: => 645.4 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:02:14 ====
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43060
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu
Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu
jaro3 píše:Co problémy?
Ne?
Posílal jsem zde už ten Fixlog.-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43060
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu
Ptám se na problémy s PC..
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu
jaro3 píše:Ptám se na problémy s PC..
Žádné problémy.
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43060
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu
Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
Další odkazy:
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
https://toolslib.net/downloads/viewdownload/2-delfix/
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
Další odkazy:
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu
# DelFix v1.013 - Logfile created 14/09/2018 at 22:53:57
# Updated 17/04/2016 by Xplode
# Username : ZDENEK - ZDENEK-PC
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\Qoobox
Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\ComboFix.txt
Deleted : C:\zoek-results.log
Deleted : C:\Users\ZDENEK\Desktop\Addition.txt
Deleted : C:\Users\ZDENEK\Desktop\AdwCleaner.exe
Deleted : C:\Users\ZDENEK\Desktop\adwcleaner_7.2.2.exe
Deleted : C:\Users\ZDENEK\Desktop\adwcleaner_7.2.3.1.exe
Deleted : C:\Users\ZDENEK\Desktop\ComboFix.exe
Deleted : C:\Users\ZDENEK\Desktop\Fixlog.txt
Deleted : C:\Users\ZDENEK\Desktop\FRST.txt
Deleted : C:\Users\ZDENEK\Desktop\FRST64.exe
Deleted : C:\Users\ZDENEK\Desktop\JRT.exe
Deleted : C:\Users\ZDENEK\Desktop\JRT.txt
Deleted : C:\Users\ZDENEK\Desktop\hijackthis.exe
Deleted : C:\Users\ZDENEK\Desktop\hijackthis.log
Deleted : C:\Users\ZDENEK\Desktop\RogueKiller_portable64.exe
Deleted : C:\Users\ZDENEK\Desktop\TFC.exe
Deleted : C:\Users\ZDENEK\Desktop\zoek.exe
Deleted : C:\Users\ZDENEK\Downloads\Avengers-Infinity-War(0000302475).srt
Deleted : C:\Windows\grep.exe
Deleted : C:\Windows\PEV.exe
Deleted : C:\Windows\NIRCMD.exe
Deleted : C:\Windows\MBR.exe
Deleted : C:\Windows\SED.exe
Deleted : C:\Windows\SWREG.exe
Deleted : C:\Windows\SWSC.exe
Deleted : C:\Windows\SWXCACLS.exe
Deleted : C:\Windows\Zip.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
~ Cleaning system restore ...
Deleted : RP #620 [zoek.exe restore point | 09/13/2018 18:36:56]
Deleted : RP #621 [Zemana AntiMalware 13.9.2018 21:45:23 | 09/13/2018 19:45:26]
Deleted : RP #622 [Removed paint.net | 09/14/2018 11:58:43]
Deleted : RP #623 [Removed paint.net | 09/14/2018 12:03:46]
New restore point created !
########## - EOF - ##########
# Updated 17/04/2016 by Xplode
# Username : ZDENEK - ZDENEK-PC
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\Qoobox
Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\ComboFix.txt
Deleted : C:\zoek-results.log
Deleted : C:\Users\ZDENEK\Desktop\Addition.txt
Deleted : C:\Users\ZDENEK\Desktop\AdwCleaner.exe
Deleted : C:\Users\ZDENEK\Desktop\adwcleaner_7.2.2.exe
Deleted : C:\Users\ZDENEK\Desktop\adwcleaner_7.2.3.1.exe
Deleted : C:\Users\ZDENEK\Desktop\ComboFix.exe
Deleted : C:\Users\ZDENEK\Desktop\Fixlog.txt
Deleted : C:\Users\ZDENEK\Desktop\FRST.txt
Deleted : C:\Users\ZDENEK\Desktop\FRST64.exe
Deleted : C:\Users\ZDENEK\Desktop\JRT.exe
Deleted : C:\Users\ZDENEK\Desktop\JRT.txt
Deleted : C:\Users\ZDENEK\Desktop\hijackthis.exe
Deleted : C:\Users\ZDENEK\Desktop\hijackthis.log
Deleted : C:\Users\ZDENEK\Desktop\RogueKiller_portable64.exe
Deleted : C:\Users\ZDENEK\Desktop\TFC.exe
Deleted : C:\Users\ZDENEK\Desktop\zoek.exe
Deleted : C:\Users\ZDENEK\Downloads\Avengers-Infinity-War(0000302475).srt
Deleted : C:\Windows\grep.exe
Deleted : C:\Windows\PEV.exe
Deleted : C:\Windows\NIRCMD.exe
Deleted : C:\Windows\MBR.exe
Deleted : C:\Windows\SED.exe
Deleted : C:\Windows\SWREG.exe
Deleted : C:\Windows\SWSC.exe
Deleted : C:\Windows\SWXCACLS.exe
Deleted : C:\Windows\Zip.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
~ Cleaning system restore ...
Deleted : RP #620 [zoek.exe restore point | 09/13/2018 18:36:56]
Deleted : RP #621 [Zemana AntiMalware 13.9.2018 21:45:23 | 09/13/2018 19:45:26]
Deleted : RP #622 [Removed paint.net | 09/14/2018 11:58:43]
Deleted : RP #623 [Removed paint.net | 09/14/2018 12:03:46]
New restore point created !
########## - EOF - ##########
Re: Kontrola logu Vyřešeno
Díky moc, za tvůj čas.
:)
:)
Kdo je online
Uživatelé prohlížející si toto fórum: DotNetDotCom.org [Bot] a 13 hostů