Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02.08.2018
Ran by Iva (03-08-2018 16:32:43)
Running from C:\Users\Iva\Desktop
Windows 10 Home Version 1803 17134.165 (X64) (2018-05-17 15:49:30)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1099578462-2906175372-3953032792-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1099578462-2906175372-3953032792-503 - Limited - Disabled)
Guest (S-1-5-21-1099578462-2906175372-3953032792-501 - Limited - Disabled)
Iva (S-1-5-21-1099578462-2906175372-3953032792-1001 - Administrator - Enabled) => C:\Users\Iva
WDAGUtilityAccount (S-1-5-21-1099578462-2906175372-3953032792-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20055 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{EC824E76-85F0-CEE4-3C31-AC3F90D6AB80}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Brother MFL-Pro Suite DCP-L2500D series (HKLM-x32\...\{F8ECC2FD-CE2B-4ED4-BDCC-90D0D34206FD}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4624 - Intel Corporation)
Lenovo Business Vantage (HKLM-x32\...\{BAAE4B9C-8D26-44AF-BCE8-181C8F4A8D5B}_is1) (Version: 3.0.2.0 - Lenovo)
Lenovo Smart Fingerprint (HKLM-x32\...\{90C700B4-BC7E-4628-867C-FC8622F0DAD9}_is1) (Version: 1.0.0.44 - Lenovo)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.10325.20082 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1099578462-2906175372-3953032792-1001\...\OneDriveSetup.exe) (Version: 18.111.0603.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 61.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 61.0.1 (x64 cs)) (Version: 61.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.2 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Název společnosti:)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden
PX Profile Update (HKLM-x32\...\{5EA828B3-FD95-0500-48FB-132EEEF8AD3B}) (Version: 1.00.1. - AMD) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7592 - Realtek Semiconductor Corp.)
Skype™ 7.41 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.41.101 - Skype Technologies S.A.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.5.1 - VideoLAN)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-07-15] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-04-23] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0A103F2E-9147-4080-B186-2F9656BB5E88} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-07-22] (Microsoft Corporation)
Task: {1F4D0BD6-BC22-40AC-BD90-122F73436B70} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-07-29] (Microsoft Corporation)
Task: {25F0EFC9-3862-4C90-9D45-B3F87AB51930} - System32\Tasks\Lenovo\fplmonitor => C:\Program Files (x86)\Lenovo\Lenovo Smart Fingerprint\fplmonitor.exe [2015-07-09] (Lenovo)
Task: {5616242D-7B04-4A9E-BDFE-3CB0E52040B1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {598558A9-163D-416C-A609-9FE83E187F31} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-07-29] (Microsoft Corporation)
Task: {64512707-1405-4391-B191-FA5B2E17F1BD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-07-31] (Microsoft Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {7B79C058-A542-4108-9362-1A69C6A43DB2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-07-31] (Microsoft Corporation)
Task: {979742B3-915E-4562-8116-989C83DEA622} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-07-29] (Microsoft Corporation)
Task: {9B8245C0-40A3-495F-852F-9A717DA622FE} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-07-29] (Microsoft Corporation)
Task: {9E9AA6D3-A0C8-4553-B142-D7C18C09B9D1} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-07-29] (Microsoft Corporation)
Task: {C681C854-45A6-4DE9-8F20-BBCA9CD0B5FA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-07-22] (Microsoft Corporation)
Task: {C7B1876C-6B39-46D0-9989-BEC16C017C88} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-07-29] (Microsoft Corporation)
Task: {DCEAE267-CCA7-482F-BC36-1720D3BD64C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-07-31] (Microsoft Corporation)
Task: {E64C7BB2-50E7-40A6-9E39-45DD11574966} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-07-31] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2016-02-15 21:01 - 2016-02-15 21:01 - 000031256 _____ () C:\WINDOWS\System32\us008lm.dll
2018-07-12 13:49 - 2018-06-15 19:30 - 001308672 _____ () c:\windows\system32\FaceProcessor.dll
2018-07-12 13:49 - 2018-06-15 19:55 - 000542888 _____ () c:\windows\system32\FaceProcessorCore.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 001348664 _____ () c:\windows\system32\FaceTrackerInternal.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2017-04-23 22:28 - 2017-04-23 22:28 - 000401912 _____ () C:\WINDOWS\system32\igfxTray.exe
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-07-12 13:49 - 2018-07-06 08:55 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-26 19:11 - 2018-07-26 19:12 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-07-26 19:11 - 2018-07-26 19:12 - 068154880 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-05 15:19 - 2017-10-05 15:20 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-07-24 14:04 - 2018-07-24 14:05 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-07-24 14:04 - 2018-07-24 14:04 - 004139008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-05-04 22:35 - 2018-05-04 22:36 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-03-30 18:50 - 2018-03-30 18:52 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-07-24 14:04 - 2018-07-24 14:05 - 000035840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-07-26 19:11 - 2018-07-26 19:12 - 014919168 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-07-24 14:04 - 2018-07-24 14:04 - 003982848 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-07-26 19:11 - 2018-07-26 19:11 - 002938880 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-05-26 10:52 - 2018-05-26 10:52 - 000872448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-24 14:04 - 2018-07-24 14:05 - 001396224 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2018-07-26 19:11 - 2018-07-26 19:12 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-07-26 19:11 - 2018-07-26 19:12 - 000162816 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\SKU.dll
2018-07-26 19:11 - 2018-07-26 19:11 - 035195392 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-07-26 19:11 - 2018-07-26 19:11 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-07-26 19:11 - 2018-07-26 19:11 - 006373376 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-27 09:38 - 2017-09-27 09:38 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-07-26 19:11 - 2018-07-26 19:11 - 008903168 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-07-12 13:49 - 2018-06-15 06:41 - 005471232 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2018-07-12 13:48 - 2018-06-15 06:36 - 000047616 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2018-07-12 13:49 - 2018-06-15 06:40 - 005082112 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
2017-10-29 16:59 - 2009-02-27 17:38 - 000139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1099578462-2906175372-3953032792-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Iva\Pictures\Saved Pictures\i-should-buy-a-boat.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKU\S-1-5-21-1099578462-2906175372-3953032792-1001\...\StartupApproved\Run: => "Gaijin.Net Agent"
HKU\S-1-5-21-1099578462-2906175372-3953032792-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1099578462-2906175372-3953032792-1001\...\StartupApproved\Run: => "Lync"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{B1F4D0A3-5E96-4255-A868-8CE40D15F69D}C:\program files (x86)\heroes of the storm\versions\base65006\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base65006\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B2A72D21-432E-4F57-B43D-E9215B862D22}C:\program files (x86)\heroes of the storm\versions\base65006\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base65006\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9EE6F3D7-620F-4A55-8AC5-55BE65513F50}C:\program files (x86)\heroes of the storm\versions\base64657\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base64657\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{28300BD1-8C86-4611-AF3B-29583B4AB7C9}C:\program files (x86)\heroes of the storm\versions\base64657\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base64657\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{1C17F3C5-BB93-4D99-AF62-802E1B575BF1}C:\program files (x86)\heroes of the storm\versions\base64455\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base64455\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8AE2DCEC-BA00-4371-900E-8423B38DA176}C:\program files (x86)\heroes of the storm\versions\base64455\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base64455\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4C701F7C-1742-49E9-9567-BF14E3B16177}C:\program files (x86)\heroes of the storm\versions\base64129\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base64129\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D21E1308-AB77-438D-9511-4F8F2E0A4BEF}C:\program files (x86)\heroes of the storm\versions\base64129\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base64129\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A660C4DD-634F-442D-81CA-1AA325DD1231}C:\program files (x86)\heroes of the storm\versions\base63635\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base63635\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{92711C88-2CB8-43D1-B7E4-A955340A332C}C:\program files (x86)\heroes of the storm\versions\base63635\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base63635\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{8CB5AD5B-0151-4CAE-9834-4B73310E46D0}C:\program files (x86)\heroes of the storm\versions\base63507\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base63507\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{6BCE2538-6818-42CA-9059-B7695214CE2F}C:\program files (x86)\heroes of the storm\versions\base63507\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base63507\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F578D5DC-4C52-4DD6-B106-3BFAF9461501}C:\program files (x86)\heroes of the storm\versions\base63402\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base63402\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{89120EDA-CBC9-46DE-9AE6-BB59FD25592F}C:\program files (x86)\heroes of the storm\versions\base63402\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base63402\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{EBD36C07-85C2-4DA5-8D7E-AC4338595595}C:\program files (x86)\heroes of the storm\versions\base63070\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base63070\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{297AC559-0116-41EF-937C-897F3A904D7F}C:\program files (x86)\heroes of the storm\versions\base63070\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base63070\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{111D64C9-9B29-4494-8D06-70746CCC1AA1}C:\program files (x86)\heroes of the storm\versions\base62833\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base62833\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8108C1CB-F22F-434D-A5B8-ADF0F877ED3A}C:\program files (x86)\heroes of the storm\versions\base62833\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base62833\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{A0284CED-D9BB-464D-AF32-05033675AAA4}C:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{038BAFDA-BCC3-4D0C-B475-DB56E4383B5F}C:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C5150399-ADD5-405F-857D-7B49A4A58548}C:\program files (x86)\heroes of the storm\versions\base62212\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base62212\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{384F4609-1C2C-4CBA-93B4-AB91A4849FF2}C:\program files (x86)\heroes of the storm\versions\base62212\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base62212\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4DEDDB53-0A4D-4A12-8E04-A2EAECB2D5B6}C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{79E67DAD-91B6-4B22-BE80-48CA50815B2D}C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B5100931-CB6B-404C-BE9D-9948D29130DF}C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{AAD69AAF-121A-48C9-B01B-97AFA09C125D}C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe
FirewallRules: [{5752F2F5-6568-4968-B440-92B08AD18991}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [UDP Query User{1DC475C5-58D9-4FD2-9D5B-DE10842629B6}C:\program files (x86)\heroes of the storm\versions\base61552\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base61552\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B0AE04AF-62C0-4F20-8AC2-824AC8DF41C6}C:\program files (x86)\heroes of the storm\versions\base61552\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base61552\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{7E120CE7-008A-426E-BC59-5C0578648CC8}C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8032FC20-F3A6-4E9C-A20F-FEE11365D26B}C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B68FE500-81FD-40DB-A93B-9592109B1D68}C:\program files (x86)\heroes of the storm\versions\base61129\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base61129\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D224CF35-F82E-4514-8617-15EB9223E375}C:\program files (x86)\heroes of the storm\versions\base61129\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base61129\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{8E0B46DD-7ACE-411F-AC73-4F26C8646446}C:\program files (x86)\heroes of the storm\versions\base60821\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base60821\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D90ADE9F-AAFB-4080-BCF6-84EB785040DA}C:\program files (x86)\heroes of the storm\versions\base60821\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base60821\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{283DF76D-978A-4525-BE6F-86EAFCB6E6C7}C:\program files (x86)\heroes of the storm\versions\base59988\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base59988\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{7F13D489-34CA-464A-8668-C08A868396C3}C:\program files (x86)\heroes of the storm\versions\base59988\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base59988\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2C3F80E8-9260-4C0C-8DB5-CA9D36CCD15E}D:\warthunder\launcher.exe] => (Allow) D:\warthunder\launcher.exe
FirewallRules: [UDP Query User{6D565E2C-0680-4557-BEF5-5AD12748446C}D:\warthunder\launcher.exe] => (Allow) D:\warthunder\launcher.exe
FirewallRules: [{C10015F1-59B6-4121-A71F-27A4309B45EF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EDDAC9B2-A70E-4B93-8710-C2F24A761B2B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2AA19782-F9D6-4BD4-9758-F39943FF983C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{12E95443-8083-40C9-BB7A-CAC3DF9332FE}C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E2FA46B8-CF5F-4F9B-85BF-6129FE24C7B4}C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base65285\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{38F76531-9965-4B6B-B11D-5B3ECAF8F86B}C:\program files (x86)\heroes of the storm\versions\base65617\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base65617\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{DBFD64F9-2240-4F92-AF69-AAD819CA60E1}C:\program files (x86)\heroes of the storm\versions\base65617\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base65617\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{3310DE21-B0B4-4FAC-86B8-3FA0BCBD2DCB}C:\program files (x86)\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{7D755547-8B28-4DDF-8DEC-4D0EF6818CA9}C:\program files (x86)\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{93B1F586-6AE5-4B58-A25A-0525D55FC326}C:\program files (x86)\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{77D2953C-EF5F-48A2-B5E8-649BB429A1AC}C:\program files (x86)\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D3473033-B390-443A-BE90-68ECAA6B94F2}C:\program files (x86)\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{CAAF1D88-F30B-4522-B1A4-2642980D2789}C:\program files (x86)\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{139BFB16-A564-4DC4-BB8A-3D05BB8FC235}C:\program files (x86)\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9EC8FAC7-3569-4C26-AD57-C13EA7A9C828}C:\program files (x86)\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{47DBF0CA-5E30-4D00-A98D-E94DD2FA1C85}C:\program files (x86)\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{1690CB81-BE62-4B6C-B213-1E975556B6FD}C:\program files (x86)\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9A207723-C2A0-48CB-BD2A-92B460CAC535}C:\program files (x86)\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{8D489823-3420-4F0A-9DAF-68B2D15D1F03}C:\program files (x86)\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe
FirewallRules: [{3F3BE956-5A14-4B0C-93EC-5E8D1D4CE213}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{CCCA6124-3E8D-426D-8E03-BBA4477D0D87}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{0E543071-3891-4640-BE40-546657B77307}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{DFE3D7F1-2F68-4D10-B2CD-FD3B30768A03}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe

==================== Restore Points =========================

09-07-2018 15:25:39 Naplánovaný kontrolní bod
25-07-2018 12:53:38 Naplánovaný kontrolní bod
02-08-2018 11:04:43 Instalační služba modulů systému Windows
03-08-2018 12:11:39 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/03/2018 09:56:14 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (08/02/2018 10:09:07 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (08/01/2018 03:06:18 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (07/31/2018 04:09:07 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (07/31/2018 04:08:26 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (07/30/2018 05:22:42 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (07/28/2018 05:04:48 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (07/27/2018 04:06:05 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (08/03/2018 09:56:44 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/03/2018 09:53:46 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 a APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/03/2018 09:53:46 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 a APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/03/2018 09:53:45 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/02/2018 10:09:04 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/01/2018 03:06:13 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/01/2018 03:03:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 a APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/01/2018 03:03:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 a APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2018-08-03 16:28:44.606
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0
Název: Trojan:Win32/Tiggre!rfn
ID: 2147723625
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Iva\AppData\Local\Temp\8LLvTIWN.exe.part
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-M4Q9AT2\Iva
Název procesu: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Verze podpisu: AV: 1.273.778.0, AS: 1.273.778.0, NIS: 1.273.778.0
Verze modulu: AM: 1.1.15100.1, NIS: 1.1.15100.1

Date: 2018-08-02 13:49:58.252
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {4F231164-6E62-4ED5-8FF8-4CC4AC0A0806}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-08-02 13:35:53.083
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {FD415900-ADA6-47BA-8CC1-CBE5A2ED9011}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-08-02 12:43:44.283
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {B951C2E2-6351-4389-A8C4-6F1F6ED52368}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-08-02 12:25:22.022
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {C4324C92-F31F-46D5-86F8-BEA6E2A3A716}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-05-26 10:28:51.451
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.267.1896.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14800.3
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru. 

Date: 2018-05-26 10:28:51.450
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.267.1896.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14800.3
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru. 

Date: 2018-05-26 10:28:51.449
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.267.1896.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14800.3
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru. 

Date: 2018-05-26 10:28:51.424
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.267.1896.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14800.3
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru. 

Date: 2018-05-26 10:28:51.423
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.267.1896.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14800.3
Kód chyby: 0x80072ee7
Popis chyby :Nelze rozpoznat název nebo adresu serveru. 

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 42%
Total physical RAM: 8105.84 MB
Available physical RAM: 4647.45 MB
Total Virtual: 9385.84 MB
Available Virtual: 5562.3 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:883.36 GB) (Free:768.34 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:14.97 GB) NTFS

\\?\Volume{3c822cc2-ccbf-48cb-a896-980ac5aaf3eb}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.55 GB) NTFS
\\?\Volume{34782946-a2a4-429d-b9bb-ff51648660e5}\ (LENOVO_PART) (Fixed) (Total:20.93 GB) (Free:7.61 GB) NTFS
\\?\Volume{d9f53981-0cb2-49ea-ac56-192e45683d19}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E17C5C9E)

Partition: GPT.

==================== End of Addition.txt ============================