VIRY.CZ

Dobrý den,
chtěl bych preventivně zkontrolovat svůj PC, chci ho začít pročišťovat a zbavovat se nepotřebných věcí.
Ale možná že mám i jeden problém s přehráváním videií z Youtube. Když jsem klikl na nějaké video, objevila se hláška "došlo k chybě, opakujte prosím později", ale po aktualizování stránky se asi po 7 vteřinách video spustilo, takže nic strašného.... Ale není to nic obvyklého, nikdy dřív jsem takový problém neměl.... Ale uvidíme, jestli bude problém trvat.
Prozatím pošlu log z FRST + Addition, a také z ADWCleaner (možná něco našel, a Youtube pročistil)

Posílám log z FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-03-2020
Ran by Paulie (administrator) on PAULIE-PC (11-03-2020 17:55:56)
Running from C:\Users\Paulie\Downloads
Loaded Profiles: Paulie (Available Profiles: Paulie)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\DAODx.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(CANON INC. -> CANON INC.) C:\Windows\System32\CNAB4RPD.EXE
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\92.4.382\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\92.4.382\QtWebEngineProcess.exe
(FabulaTech -> ) C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgrhv.exe
(FabulaTech -> ) C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe
(FabulaTech -> VMware) C:\Program Files (x86)\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(LogMeIn, Inc. -> LogMeIn Inc.) E:\PROGRAMY\hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) E:\PROGRAMY\hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Open Source Developer, Benjamin Höglinger-Stelzer -> Scarlet.Crush Productions) E:\PROGRAMY\SCP TOOLKIT\ScpService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Horizon View Client\ClientService\horizon_client_service.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7200984 2013-10-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [277664 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [VMware Netlink 3 HV Install Utility] => C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnliu.exe [75680 2017-07-12] (FabulaTech -> )
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3498720 2016-04-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6260736 2020-03-04] (Dropbox, Inc -> Dropbox, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\...\Run: [CCleaner Smart Cleaning] => D:\PROGRAMY\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\...\Run: [EpicGamesLauncher] => E:\HRY\Fortnite\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36058000 2019-12-02] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\...\MountPoints2: {ef9f63fc-9cb7-11e8-8122-99fdd327bea2} - I:\HiSuiteDownLoader.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\Software\...\AppCompatFlags\Custom\Heroes3.exe: [{1d3c859c-1028-4822-b0a7-da4f7bbc18bc}.sdb] -> GOG.com Heroes of Might and Magic 3
HKLM\Software\...\AppCompatFlags\InstalledSDB\{1d3c859c-1028-4822-b0a7-da4f7bbc18bc}: [DatabasePath] -> C:\Windows\AppPatch\Custom\{1d3c859c-1028-4822-b0a7-da4f7bbc18bc}.sdb [2012-11-28]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.132\Installer\chrmstp.exe [2020-03-04] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Canon LBP2900 Status Window.lnk [2016-07-18]
ShortcutTarget: Canon LBP2900 Status Window.lnk -> C:\Windows\System32\spool\drivers\x64\3\CNAB4LAD.EXE (CANON INC. -> CANON INC.)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {021DB23C-4AAE-4DDD-84B8-1297368A8526} - System32\Tasks\{E0B8B670-75E5-4C13-A77B-85A9C058ECD4} => C:\Windows\system32\pcalua.exe -a D:\DOWNLOADS\FreeRapid-0.9u4\FreeRapid-0.9u4\frd.exe -d D:\DOWNLOADS\FreeRapid-0.9u4\FreeRapid-0.9u4
Task: {0E270C50-1A28-4CF0-B1B1-4CEAF355C188} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-03-18] (Advanced Micro Devices, Inc.) [File not signed]
Task: {1DA29EC2-8216-4EA7-8EA6-78F130A961F4} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-03-18] (Advanced Micro Devices, Inc.) [File not signed]
Task: {21A9F51C-8AE3-4657-BC21-C67680E28AD2} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {25BDBC5C-7AA7-4F3E-8309-E51C3333F37B} - System32\Tasks\AdobeAAMUpdater-1.0-Paulie-PC-Paulie => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {2B66B829-CC76-405D-A63A-51499A13A282} - System32\Tasks\{38585E9B-6B1E-4432-8614-096A60AAA340} => E:\HRY\Warcraft II BNE\Warcraft II BNE.exe
Task: {3CAEA1C2-35DC-4B9A-8765-84432AD077B1} - System32\Tasks\GoogleUpdateTaskMachineUA1d1e916db60ce40 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-06] (Google Inc -> Google Inc.)
Task: {473FDB5B-1D33-419D-8D5E-6EC0690CD8D3} - System32\Tasks\SmartDefrag_Update => E:\PROGRAMY\Smart Defrag\AutoUpdate.exe
Task: {6361CF89-1910-4B36-80C9-749C6C5945F4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-06] (Google Inc -> Google Inc.)
Task: {7F2D03D9-3AF7-4FC2-AFB8-C0150B98E729} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_Plugin.exe [1458232 2020-02-11] (Adobe Inc. -> Adobe)
Task: {82203BFB-93DF-4FE0-A0BD-F62AF26A48F5} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3894664 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
Task: {84D89BCA-51B2-4B8E-AAF4-B79B84187EBD} - System32\Tasks\GoogleUpdateTaskMachineCore1d1e916db4c3483 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-06] (Google Inc -> Google Inc.)
Task: {8673F87B-6326-4B20-B67E-1B8D1F165833} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {89E39149-D29B-402D-9637-BE3BE53C2BAD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {8AA7E1DE-F8AA-47F9-B9D8-6F351FCE46A5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-02-11] (Adobe Inc. -> Adobe)
Task: {8AC8F324-81BB-4F90-871C-3C206C51E3A0} - System32\Tasks\ASUS\RunDAOD => C:\Windows\DAODx.exe [32768 2009-03-30] () [File not signed]
Task: {999A8B25-A1EC-433B-896C-6CD386EED24E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A914A185-A749-4C56-985B-A35C257BD191} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe
Task: {B1FEE318-01FF-4750-BD44-1FE332D58B6F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-06] (Google Inc -> Google Inc.)
Task: {B9A65AF9-D1AC-49AE-994C-8F6A6803F26D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-03-07] (Avast Software s.r.o. -> Avast Software)
Task: {BC7168B7-C3BF-43FE-A3DC-66059A84823F} - System32\Tasks\CCleanerSkipUAC => D:\PROGRAMY\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd)
Task: {BCC0570A-B56E-4492-9F84-67DC0A04FAF8} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe
Task: {CD6FEFED-FBD1-45A9-B594-A82B364536E1} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe
Task: {D8E0275D-61D7-406A-94A8-F4D0F673D3F0} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58760 2019-03-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {E019F1D6-9B86-4401-AAB8-23346973AA88} - System32\Tasks\CCleaner Update => D:\PROGRAMY\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {EA78E978-B86F-4AC6-85DF-7F3A4CA41960} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58760 2019-03-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {ED1B4A0C-9E58-4A39-BDD7-2AEC03053D44} - System32\Tasks\ScpUpdater => E:\PROGRAMY\SCP TOOLKIT\ScpUpdater.exe [460480 2016-04-12] (Open Source Developer, Benjamin Höglinger-Stelzer -> Nefarius Software Solutions)
Task: {F5CA3A99-B43E-40E6-B409-A54E729EFF08} - System32\Tasks\SessionAgent => C:\windows\sysde32.exe
Task: {F84AEC77-CD7A-4DFA-A6A4-EBB8DEA442B7} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ScpUpdater.job => E:\PROGRAMY\SCP TOOLKIT\ScpUpdater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Tcpip\..\Interfaces\{7721449B-54C2-4422-B45D-91B5D03753DA}: [NameServer] 192.168.1.1
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.1,-1]

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2623976002-1524246759-2826972749-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2623976002-1524246759-2826972749-1000 -> {78FA49D8-B6E7-4E91-8983-BF688BA9DDA9} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-03-08] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> E:\PROGRAMY\JAVA\jre\bin\ssv.dll [2017-08-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-04-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> E:\PROGRAMY\JAVA\jre\bin\jp2ssv.dll [2017-08-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-04-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-03-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_172\bin\ssv.dll [2018-05-10] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-04-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_172\bin\jp2ssv.dll [2018-05-10] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-04-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-04-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-04-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2017-03-05] [Legacy]
FF HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\...\Firefox\Extensions: [KVAllmytube@KeepVid.com] - E:\PROGRAMY\Wondershare\Wondershare AllMyTube\BrowserPlugin\kvallmytube@keepvid.com_xpi
FF Extension: (KeepVid Pro) - E:\PROGRAMY\Wondershare\Wondershare AllMyTube\BrowserPlugin\kvallmytube@keepvid.com_xpi [2019-08-16] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> E:\PROGRAMY\JAVA\jre\bin\dtplugin\npDeployJava1.dll [2017-08-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> E:\PROGRAMY\JAVA\jre\bin\plugin2\npjp2.dll [2017-08-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.172.2 -> C:\Program Files (x86)\Java\jre1.8.0_172\bin\dtplugin\npDeployJava1.dll [2018-05-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.172.2 -> C:\Program Files (x86)\Java\jre1.8.0_172\bin\plugin2\npjp2.dll [2018-05-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2016-04-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-02-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)

PS: omlouvám se do rozdělení dvou příspěvků, hlásilo mi to chybu, že tu je nějaký neznámý znak a nešlo mi to odeslat. Chvíli mi trvalo, než jsem ho našel.

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default [2020-03-11]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: ( Slither Friends - by Creators of Agar.pw) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\acmckabjkfogakcfhckahnpmbjfncafn [2017-03-05]
CHR Extension: (Dokumenty) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Disk Google) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-05]
CHR Extension: (YouTube) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-05]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-02-23]
CHR Extension: (Vyhledávání Google) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-06-05]
CHR Extension: (ARC Welder) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\emfinbmielocnlhgmfkkmkngdoccbadn [2019-07-09]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-12-22]
CHR Extension: (Tabulky) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (Vzdálená plocha Chrome) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-19]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-03-09]
CHR Extension: (App Runtime for Chrome (Beta)) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfaihdlpglflfgpfjcifdjdjcckigekc [2019-07-09]
CHR Extension: (Facebook Screen Sharing) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncfpggehkhmjpdjpefomjchjafhmbnai [2019-11-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-02-06]
CHR Extension: (Gmail) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-06]
CHR Extension: (Chrome Media Router) - C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-18]
CHR Profile: C:\Users\Paulie\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-21]
CHR HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2016-04-23]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [499592 2019-03-18] (Advanced Micro Devices, Inc. -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-08-30] (Advanced Micro Devices, Inc.) [File not signed]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6046624 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
S2 AUEPLauncher; C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe [43008 2019-03-18] (AMD) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [413472 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2019-10-29] (BattlEye Innovations e.K. -> )
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe [73200 2019-12-17] (Google LLC -> Google Inc.)
R2 client_service; C:\Program Files (x86)\VMware\VMware Horizon View Client\ClientService\horizon_client_service.exe [532456 2017-09-27] (VMware, Inc. -> VMware, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-06] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-06] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44552 2020-03-04] (Dropbox, Inc -> Dropbox, Inc.)
R2 Ds3Service; E:\PROGRAMY\SCP TOOLKIT\ScpService.exe [394944 2016-04-12] (Open Source Developer, Benjamin Höglinger-Stelzer -> Scarlet.Crush Productions)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-10-18] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ftnlsv3hv; C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe [218528 2017-07-12] (FabulaTech -> )
R2 ftscanmgrhv; C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgrhv.exe [2949024 2017-06-15] (FabulaTech -> )
R2 Hamachi2Svc; E:\PROGRAMY\hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-04-20] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 vmwsprrdpwks; C:\Program Files (x86)\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe [276896 2017-06-15] (FabulaTech -> VMware)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2291568 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [52875144 2019-03-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [581512 2019-03-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [94000 2019-01-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [82560 2012-04-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [42624 2012-04-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.3.0; C:\Program Files\AMD\Performance Profile Client\amd64\AODDriver2.sys [60104 2015-02-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] (Giga-Byte Technology -> )
R3 asmthub3; C:\Windows\System32\DRIVERS\asmthub3.sys [140032 2013-08-16] (MCCI Corporation -> ASMedia Technology Inc)
R3 asmtxhci; C:\Windows\System32\DRIVERS\asmtxhci.sys [424192 2013-08-16] (MCCI Corporation -> ASMedia Technology Inc)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37864 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205576 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [271120 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206608 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [64272 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [279360 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42976 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175400 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110560 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84056 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848672 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [458584 2020-03-11] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235184 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316256 2020-03-07] (Avast Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [104840 2018-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 EraserUtilDrv11510; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11510.sys [153936 2016-06-06] (Symantec Corporation -> Symantec Corporation)
S3 EraserUtilDrv11521; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11521.sys [156912 2016-06-06] (Symantec Corporation -> Symantec Corporation)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2018-04-20] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-04-20] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [51712 2009-06-10] (Microsoft Windows -> Realtek Semiconductor Corporation )
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [111344 2016-06-05] (Symantec Corporation -> Symantec Corporation)
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [58536 2012-08-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [119712 2016-06-28] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [192864 2016-06-28] (Oracle Corporation -> Oracle Corporation)
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (AVnex Ltd. -> Avnex)
S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [74120 2018-03-17] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [23200 2015-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-11 17:55 - 2020-03-11 17:56 - 000035889 _____ C:\Users\Paulie\Downloads\FRST.txt
2020-03-11 17:55 - 2020-03-11 17:56 - 000000000 ____D C:\FRST
2020-03-11 17:55 - 2020-03-11 17:55 - 000000000 ____D C:\Users\Paulie\Downloads\FRST-OlderVersion
2020-03-11 17:49 - 2020-03-11 17:49 - 008199856 _____ (Malwarebytes) C:\Users\Paulie\Downloads\AdwCleaner.exe
2020-03-09 10:04 - 2020-03-09 10:04 - 000043101 _____ C:\Users\Paulie\Desktop\životopis_PJ.pdf
2020-03-08 10:22 - 2020-03-07 10:21 - 000368056 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-03-07 10:21 - 2020-03-07 10:21 - 000235184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-03-07 10:21 - 2020-03-07 10:21 - 000175400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-03-06 13:56 - 2020-03-06 13:56 - 000033421 _____ C:\Users\Paulie\Downloads\životopis.pdf
2020-03-04 20:19 - 2020-03-04 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-03-04 14:21 - 2020-03-04 14:21 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2020-03-04 14:21 - 2020-03-04 14:21 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2020-03-04 14:21 - 2020-03-04 14:21 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2020-03-04 14:21 - 2020-03-04 14:21 - 000044552 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2020-02-24 14:43 - 2020-02-24 14:51 - 000000000 ____D C:\Users\Paulie\AppData\LocalLow\uTorrent
2020-02-24 13:39 - 2020-02-24 13:39 - 000000000 ____D C:\ProgramData\boost_interprocess

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-11 17:55 - 2020-01-12 13:10 - 002279936 _____ (Farbar) C:\Users\Paulie\Downloads\FRST64.exe
2020-03-11 17:54 - 2019-03-04 10:13 - 000003106 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2020-03-11 17:54 - 2017-08-06 14:13 - 000000908 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2020-03-11 17:54 - 2017-08-06 14:13 - 000000904 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2020-03-11 17:54 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-03-11 17:53 - 2017-02-14 14:46 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2020-03-11 17:53 - 2016-06-05 00:13 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-03-11 17:42 - 2009-07-14 05:45 - 000030720 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-03-11 17:42 - 2009-07-14 05:45 - 000030720 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-03-11 15:00 - 2019-10-03 20:38 - 000003446 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2020-03-11 15:00 - 2019-03-27 18:20 - 000003290 _____ C:\Windows\system32\Tasks\StartCNBM
2020-03-11 15:00 - 2019-03-27 18:20 - 000003146 _____ C:\Windows\system32\Tasks\StartCN
2020-03-11 15:00 - 2019-03-27 18:20 - 000003060 _____ C:\Windows\system32\Tasks\StartDVR
2020-03-11 15:00 - 2019-03-04 10:13 - 000003116 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2020-03-11 15:00 - 2018-05-29 12:35 - 000004532 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-03-11 15:00 - 2018-05-29 12:35 - 000004408 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-03-11 15:00 - 2018-05-10 10:02 - 000004118 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-03-11 15:00 - 2018-01-03 19:43 - 000003332 _____ C:\Windows\system32\Tasks\SessionAgent
2020-03-11 15:00 - 2017-08-06 14:13 - 000003914 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2020-03-11 15:00 - 2017-08-06 14:13 - 000003662 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2020-03-11 15:00 - 2017-06-01 18:33 - 000003506 _____ C:\Windows\system32\Tasks\AdobeAAMUpdater-1.0-Paulie-PC-Paulie
2020-03-11 15:00 - 2017-05-02 10:29 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-03-11 15:00 - 2016-07-28 22:27 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d1e916db60ce40
2020-03-11 15:00 - 2016-07-28 22:27 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d1e916db4c3483
2020-03-11 15:00 - 2016-06-23 18:14 - 000002954 _____ C:\Windows\system32\Tasks\{38585E9B-6B1E-4432-8614-096A60AAA340}
2020-03-11 15:00 - 2016-06-14 06:31 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-03-11 14:22 - 2017-05-02 10:29 - 000458584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-03-11 09:34 - 2016-06-13 17:59 - 000000000 ____D C:\Users\Paulie\AppData\Local\Adobe
2020-03-10 18:56 - 2019-10-03 20:38 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-03-10 18:56 - 2019-10-03 20:38 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-03-10 18:47 - 2009-07-14 16:18 - 000668866 _____ C:\Windows\system32\perfh005.dat
2020-03-10 18:47 - 2009-07-14 16:18 - 000141526 _____ C:\Windows\system32\perfc005.dat
2020-03-10 18:47 - 2009-07-14 06:13 - 001584554 _____ C:\Windows\system32\PerfStringBackup.INI
2020-03-10 18:47 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-03-09 09:37 - 2019-10-09 19:13 - 000002003 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-03-09 09:37 - 2019-10-09 19:13 - 000002003 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-03-08 10:22 - 2017-05-02 10:29 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-03-07 12:01 - 2016-07-12 08:42 - 000000000 ____D C:\Users\Paulie\Documents\My Games
2020-03-07 12:01 - 2016-06-08 14:57 - 000000000 ____D C:\Users\Paulie\AppData\Local\SKIDROW
2020-03-07 12:00 - 2019-05-23 11:15 - 000000000 ____D C:\Users\Paulie\AppData\Roaming\vlc
2020-03-07 10:21 - 2019-02-19 22:40 - 000279360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2020-03-07 10:21 - 2019-01-25 14:11 - 000271120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-03-07 10:21 - 2019-01-16 16:51 - 000206608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-03-07 10:21 - 2019-01-16 16:51 - 000064272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-03-07 10:21 - 2019-01-16 16:51 - 000037864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-03-07 10:21 - 2018-10-12 19:49 - 000042976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-03-07 10:21 - 2017-11-21 00:52 - 000205576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-03-07 10:21 - 2017-05-02 10:29 - 000848672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-03-07 10:21 - 2017-05-02 10:29 - 000316256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-03-07 10:21 - 2017-05-02 10:29 - 000110560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-03-07 10:21 - 2017-05-02 10:29 - 000084056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-03-04 23:54 - 2018-01-31 23:49 - 000000000 ____D C:\Users\Paulie\AppData\Roaming\audacity
2020-03-04 21:07 - 2016-06-05 00:00 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-04 21:07 - 2016-06-05 00:00 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-03-04 21:07 - 2016-06-05 00:00 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-03-04 20:19 - 2017-08-06 14:13 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-03-04 14:28 - 2019-03-30 20:02 - 000000000 ____D C:\Users\Paulie\AppData\Local\Ubisoft Game Launcher
2020-03-01 00:24 - 2016-06-06 10:03 - 000000000 ____D C:\Users\Paulie\AppData\Roaming\uTorrent
2020-03-01 00:22 - 2016-06-08 13:25 - 000000000 ____D C:\Users\Paulie\AppData\Local\Battle.net
2020-02-27 23:03 - 2017-08-03 13:31 - 000000000 ____D C:\Users\Paulie\Documents\The Witcher 3
2020-02-25 22:41 - 2019-04-15 16:08 - 000000000 ____D C:\Users\Paulie\AppData\Local\BitTorrentHelper
2020-02-12 12:36 - 2018-05-29 12:38 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-02-11 22:21 - 2018-05-29 12:35 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-02-11 22:21 - 2018-05-29 12:35 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-11 22:21 - 2018-05-29 12:35 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-02-11 22:21 - 2018-05-29 12:35 - 000000000 ____D C:\Windows\system32\Macromed
==================== Files in the root of some directories ========

2018-11-23 14:46 - 2018-11-23 14:46 - 000000000 _____ () C:\Users\Paulie\AppData\Local\oobelibMkey.log
2019-04-10 12:57 - 2019-04-10 12:57 - 000000017 _____ () C:\Users\Paulie\AppData\Local\resmon.resmoncfg
2019-08-07 18:13 - 2019-08-07 18:13 - 000000129 _____ () C:\Users\Paulie\AppData\Local\{8A9396B5-C300-4D53-871B-74FB3243F8CA}
2019-08-07 18:13 - 2019-08-08 22:34 - 000000000 _____ () C:\Users\Paulie\AppData\Local\{DCDFCE8B-EBE2-4A9D-9269-E9732E4B75E7}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-03-08 10:03
==================== End of FRST.txt ========================



Posílám log z ADWCleaner:
# -------------------------------
# Malwarebytes AdwCleaner 8.0.3.0
# -------------------------------
# Build: 03-03-2020
# Database: 2020-03-09.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-11-2020
# Duration: 00:00:01
# OS: Windows 7 Professional
# Cleaned: 4
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}

***** [ Chromium (and derivatives) ] *****

Deleted Seznam doplněk - Esko - olfeabkoenfaoljndfecamgilllcpiak

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.ASUSProductRegistration Folder C:\Program Files (x86)\ASUS\APRP
Deleted Preinstalled.ASUSProductRegistration Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2004 octets] - [18/11/2018 01:46:08]
AdwCleaner[C00].txt - [2004 octets] - [18/11/2018 01:46:27]
AdwCleaner[S01].txt - [1386 octets] - [18/11/2018 01:55:48]
AdwCleaner[C01].txt - [1552 octets] - [18/11/2018 01:55:56]
AdwCleaner[S02].txt - [1806 octets] - [16/05/2019 18:39:15]
AdwCleaner[C02].txt - [1858 octets] - [16/05/2019 18:39:28]
AdwCleaner[S03].txt - [1640 octets] - [19/06/2019 13:30:55]
AdwCleaner[C03].txt - [1806 octets] - [19/06/2019 13:31:04]
AdwCleaner[S04].txt - [2253 octets] - [11/03/2020 17:52:16]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C04].txt ##########

Zdravím!
Ještě bych potřeboval vidět log Addition. Najdete ho v souboru addition.txt v C:\Users\Paulie\Downloads. Děkuji.

Zdravím,
Omlouvám se za zmatek, to bude tím, jak jsem měl problém vložit příspěvek. Addition by měl být zabalený v raru úplně v prvním příspěvku, nikoli v tom druhém, kde byste ho nejspíš hledal
Já jsem log posílal ve spěchu a nešlo to stále odeslat, ale pak jsem našel jeden speciální znak který tomu vadil, tak jsem ho umazal (jednalo se o znak, který vypadal jako had k aplikaci slither. Tu hru už beztak dávno nehraji, tak ji můžeme vymazat, ať nám nedělá neplechu v pc)

Omlouvám se, přehlédl jsem to

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d1e916db60ce40
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d1e916db4c3483
C:\Users\Paulie\AppData\Local\{8A9396B5-C300-4D53-871B-74FB3243F8CA}
C:\Users\Paulie\AppData\Local\{DCDFCE8B-EBE2-4A9D-9269-E9732E4B75E7}
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\...\MountPoints2: {ef9f63fc-9cb7-11e8-8122-99fdd327bea2} - I:\HiSuiteDownLoader.exe
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3CAEA1C2-35DC-4B9A-8765-84432AD077B1} - System32\Tasks\GoogleUpdateTaskMachineUA1d1e916db60ce40 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-06] (Google Inc -> Google Inc.)
Task: {B1FEE318-01FF-4750-BD44-1FE332D58B6F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-06] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2623976002-1524246759-2826972749-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Shortcut: C:\Users\Paulie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Аrdamаx Kеylogger 4.4.2\Аrdamаx Kеylogger 4.4.2.lnk -> E:\PROGRAMY\CCP\CCP.exe (No File) <==== Cyrillic
AlternateDataStreams: C:\Users\Paulie\ntuser.ini:NTV [9460]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [TCP Query User{4A7D1402-1D28-4663-90D6-0A498C24FF34}E:\hry\portal 2\portal2.exe] => (Allow) E:\hry\portal 2\portal2.exe No File
FirewallRules: [UDP Query User{E91D5A2B-1E15-4981-B0D6-D7FA68784034}E:\hry\portal 2\portal2.exe] => (Allow) E:\hry\portal 2\portal2.exe No File
FirewallRules: [TCP Query User{C2FC0F22-AD3F-4FBA-8DE0-6BD736CDB4D2}E:\hry\counter-strike 1.6\hl.exe] => (Allow) E:\hry\counter-strike 1.6\hl.exe No File
FirewallRules: [UDP Query User{830B1723-9690-498A-9A0B-C305D9D0ACC4}E:\hry\counter-strike 1.6\hl.exe] => (Allow) E:\hry\counter-strike 1.6\hl.exe No File
FirewallRules: [TCP Query User{5F4AFF4C-0E79-4CA0-8EE9-FF2E2F8ECE55}E:\hry\mafia iii\launcher.exe] => (Allow) E:\hry\mafia iii\launcher.exe No File
FirewallRules: [UDP Query User{90DB72EE-4FB7-4BF4-BB8C-428DBEED224F}E:\hry\mafia iii\launcher.exe] => (Allow) E:\hry\mafia iii\launcher.exe No File
FirewallRules: [TCP Query User{66F2EDA0-FB46-4CEB-BB53-959E98F231B8}E:\hry\mafia iii\mafia3.exe] => (Allow) E:\hry\mafia iii\mafia3.exe No File
FirewallRules: [UDP Query User{B689C03F-0B19-4B25-92C1-5A51C6E427F4}E:\hry\mafia iii\mafia3.exe] => (Allow) E:\hry\mafia iii\mafia3.exe No File
FirewallRules: [TCP Query User{8B1B756B-C590-489D-B2CF-79D02D23C95B}E:\hry\mafia iii\launcher.exe] => (Allow) E:\hry\mafia iii\launcher.exe No File
FirewallRules: [UDP Query User{09C690AE-2B31-4CA4-B6D3-6601B20A43C9}E:\hry\mafia iii\launcher.exe] => (Allow) E:\hry\mafia iii\launcher.exe No File
FirewallRules: [TCP Query User{464DAC4E-2989-4103-A101-723991FD0D81}E:\hry\mafia iii\mafia3.exe] => (Block) E:\hry\mafia iii\mafia3.exe No File
FirewallRules: [UDP Query User{1E25EE04-B212-48DA-B192-050BC0580FEE}E:\hry\mafia iii\mafia3.exe] => (Block) E:\hry\mafia iii\mafia3.exe No File
FirewallRules: [TCP Query User{8D6A7470-D43F-4B3E-B160-7F5D1E7AC157}E:\hry\heroes of might and magic iii complete\h3wog.exe] => (Allow) E:\hry\heroes of might and magic iii complete\h3wog.exe No File
FirewallRules: [UDP Query User{C9B4792E-62BB-4B74-ACFB-865121943A2E}E:\hry\heroes of might and magic iii complete\h3wog.exe] => (Allow) E:\hry\heroes of might and magic iii complete\h3wog.exe No File
FirewallRules: [TCP Query User{4AE72832-2148-415C-A844-F871AD9548FD}E:\hry\counter-strike 1.6\hl.exe] => (Allow) E:\hry\counter-strike 1.6\hl.exe No File
FirewallRules: [UDP Query User{5CCB8A34-DF3B-459C-9BA9-3185F5F9B627}E:\hry\counter-strike 1.6\hl.exe] => (Allow) E:\hry\counter-strike 1.6\hl.exe No File
FirewallRules: [TCP Query User{13F68361-0E74-412F-B423-CEFE4EAE0DBB}E:\hry\mortal kombat complete edition\mkke.exe] => (Allow) E:\hry\mortal kombat complete edition\mkke.exe No File
FirewallRules: [UDP Query User{AC53F77B-9919-4ED5-BB52-11655B317DD2}E:\hry\mortal kombat complete edition\mkke.exe] => (Allow) E:\hry\mortal kombat complete edition\mkke.exe No File
FirewallRules: [TCP Query User{393C43F9-6EA2-48D0-9450-4EB1E1E63F9C}E:\hry\portal 2\portal2.exe] => (Allow) E:\hry\portal 2\portal2.exe No File
FirewallRules: [UDP Query User{EC64182A-774B-4ED1-A804-9A343E6FF5FD}E:\hry\portal 2\portal2.exe] => (Allow) E:\hry\portal 2\portal2.exe No File
FirewallRules: [TCP Query User{69734D94-EA54-4015-A78B-D88E1C0872A5}E:\hry\nfs most wanted black edition\speed.exe] => (Allow) E:\hry\nfs most wanted black edition\speed.exe No File
FirewallRules: [UDP Query User{DA7316CC-151A-4A32-BD9C-F1ED5AFF8156}E:\hry\nfs most wanted black edition\speed.exe] => (Allow) E:\hry\nfs most wanted black edition\speed.exe No File
FirewallRules: [{3493E558-0BF3-4B1C-AAEF-A34F08F84A36}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F32AF3E2-034E-4604-9B08-1136BA316E26}] => (Block) E:\HRY\Trackmania Turbo\TrackmaniaTurbo.exe No File
FirewallRules: [TCP Query User{2AE48B29-5190-48D7-9B35-FC029ECEC5B9}E:\hry\starcraft ii\versions\base65384\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base65384\sc2_x64.exe No File
FirewallRules: [UDP Query User{1B982A0C-9534-44B4-9CC5-0A3478B9107F}E:\hry\starcraft ii\versions\base65384\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base65384\sc2_x64.exe No File
FirewallRules: [TCP Query User{25722AD3-4F66-4201-B47F-60EB08FE2339}E:\hry\age of empires iii - complete collection\age3n.exe] => (Allow) E:\hry\age of empires iii - complete collection\age3n.exe No File
FirewallRules: [UDP Query User{E3080154-02EF-4C07-B00F-C82D90B349DE}E:\hry\age of empires iii - complete collection\age3n.exe] => (Allow) E:\hry\age of empires iii - complete collection\age3n.exe No File
FirewallRules: [TCP Query User{37D4E5D3-576E-41EF-85E6-228906BC8CBD}E:\hry\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{45FF5574-0065-4D6A-A5B8-BA11D18A8AEE}E:\hry\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{7EAFC326-D281-4656-9D5C-0BB8B00E89F7}E:\hry\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{6DE67C5F-7572-47AC-9778-2EF1B1FE1B26}E:\hry\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{35FB60FD-8371-45AC-A53E-FF909DD7149E}E:\hry\age of empires iii - complete collection\age3x.exe] => (Allow) E:\hry\age of empires iii - complete collection\age3x.exe No File
FirewallRules: [UDP Query User{5C0AA0DA-4224-4E8F-ACC0-F70C95D64887}E:\hry\age of empires iii - complete collection\age3x.exe] => (Allow) E:\hry\age of empires iii - complete collection\age3x.exe No File
FirewallRules: [TCP Query User{3A78ADB1-9EE8-4712-932D-3DE3ADB0CE2F}E:\hry\starcraft ii\versions\base65895\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base65895\sc2_x64.exe No File
FirewallRules: [UDP Query User{4D8D9DDD-61C0-4C27-A034-33DF2926E84F}E:\hry\starcraft ii\versions\base65895\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base65895\sc2_x64.exe No File
FirewallRules: [TCP Query User{7CD00890-6EB6-44A9-B4FB-C1415D262DB3}E:\hry\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{E423CB73-50F7-4C1E-B4DA-B9BDD00A3BD5}E:\hry\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{379D429F-27A5-4A58-8DB5-7F09B292E967}E:\programy\python\python.exe] => (Allow) E:\programy\python\python.exe No File
FirewallRules: [UDP Query User{1B3BA9FD-C64C-42CD-BAAE-4A65023014F5}E:\programy\python\python.exe] => (Allow) E:\programy\python\python.exe No File
FirewallRules: [TCP Query User{41F04712-1EB6-4DE6-B5B4-1B3EB1AA9D4D}E:\hry\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{DBA407B4-65B8-42F1-BB8A-11BBBB03B251}E:\hry\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{2FD777AA-D0DA-41ED-8DCA-EC601467D64B}E:\hry\starcraft ii\versions\base66668\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base66668\sc2_x64.exe No File
FirewallRules: [UDP Query User{6459EA49-D21F-4CA6-9357-C4C9482014AD}E:\hry\starcraft ii\versions\base66668\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base66668\sc2_x64.exe No File
FirewallRules: [TCP Query User{BA3AFB43-1813-46F6-BBDF-6BF3413A0300}E:\hry\diablo iii\x64\diablo iii64.exe] => (Allow) E:\hry\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [UDP Query User{CE124DFF-B35E-46C1-9B2F-D4DF6A910CE3}E:\hry\diablo iii\x64\diablo iii64.exe] => (Allow) E:\hry\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [TCP Query User{BBE626C8-54EF-4B7D-B5C9-8AE0921CA2A1}E:\hry\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{1EA15254-54DA-4089-B1ED-36DF7A684068}E:\hry\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{5DB203A5-30DE-439E-BE70-5BA1CDA7F8FE}E:\hry\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{703296D7-D066-4D9F-A7A7-FC58AAD2097A}E:\hry\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{C00CD7F5-4F5B-4365-AA02-533216B2FCDD}E:\hry\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{75D29460-469B-4977-B870-39A0ABA7FD1E}E:\hry\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{E3EC9AC5-CA72-4F15-B8CC-6E7F62A0B72A}E:\hry\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{97FD55D8-5335-4867-850A-86E09700196C}E:\hry\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{C5CACBEF-06AD-4441-B9BD-8B6F920C0541}E:\hry\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{6C4BD0D5-1F62-45CB-A79D-C9F41D8CC800}E:\hry\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{03DF1E93-6126-48E5-98C2-DE44AB376A98}E:\hry\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{0B12460C-51B3-4982-99E2-2393820DEB41}E:\hry\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe No File
irewallRules: [TCP Query User{E625C15C-D8FF-4850-ACA6-D388009F4AD9}E:\hry\starcraft ii\versions\base67926\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base67926\sc2_x64.exe No File
FirewallRules: [UDP Query User{588B2C3A-69A2-4928-9C51-CC12716B337F}E:\hry\starcraft ii\versions\base67926\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base67926\sc2_x64.exe No File
FirewallRules: [TCP Query User{B8683B8E-ACEE-4CA5-8A47-90C6FC3F5F64}E:\hry\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{92EA5809-3EE5-4FD8-A0F7-92A5CAA7FB4F}E:\hry\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{92F440F7-686B-44B7-AF69-108A1AD84E10}E:\hry\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left 4 dead 2\left4dead2.exe] => (Allow) E:\hry\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left 4 dead 2\left4dead2.exe No File
FirewallRules: [UDP Query User{45C92F08-5E64-43C4-B311-16798F82F94D}E:\hry\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left 4 dead 2\left4dead2.exe] => (Allow) E:\hry\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left 4 dead 2\left4dead2.exe No File
FirewallRules: [TCP Query User{E88AC7A7-5579-44E1-B834-75243A930E17}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{261BEABB-EF56-4970-AC99-F461F1B42AB9}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{09EF2856-A995-475E-8A82-71B9BBC868B4}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{09C358B5-749C-4DC7-9886-0BC4CF549449}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{E3DF146A-74A7-4335-867B-6DBC6F6C7A75}E:\hry\mortal kombat complete edition\mkke.exe] => (Allow) E:\hry\mortal kombat complete edition\mkke.exe No File
FirewallRules: [UDP Query User{CAAF4270-3A52-4121-A67E-C16F6D65793A}E:\hry\mortal kombat complete edition\mkke.exe] => (Allow) E:\hry\mortal kombat complete edition\mkke.exe No File
FirewallRules: [TCP Query User{F260EFFE-54D1-42C2-AB80-A173C532878B}E:\hry\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{1F997557-D3ED-4245-B1EE-A15A734368BA}E:\hry\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{E7A118BE-940C-493C-A483-3C823661C1B0}E:\hry\starcraft ii\versions\base69232\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base69232\sc2_x64.exe No File
FirewallRules: [UDP Query User{9CAB7929-4111-4A4E-BEF9-48EB5B35BAEB}E:\hry\starcraft ii\versions\base69232\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base69232\sc2_x64.exe No File
FirewallRules: [TCP Query User{60A1C0BB-57D2-4920-80B9-D6F19B8E1955}E:\hry\starcraft ii\versions\base70154\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base70154\sc2_x64.exe No File
FirewallRules: [UDP Query User{A21CF993-700B-49DB-8D8B-2DA171420B19}E:\hry\starcraft ii\versions\base70154\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base70154\sc2_x64.exe No File
FirewallRules: [TCP Query User{DBFF1C57-6117-46FC-A90F-630A3643F7EE}E:\hry\heroes of the storm\versions\base70200\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base70200\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{054EFC05-AD69-48EC-843B-BE97BE8FDE60}E:\hry\heroes of the storm\versions\base70200\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base70200\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{EC1E9923-2D7C-4D15-876F-537B29388DB9}E:\hry\diablo\tchernobog.exe] => (Allow) E:\hry\diablo\tchernobog.exe No File
FirewallRules: [UDP Query User{F2FC0BF2-FC03-4E8C-B2A2-552092A94745}E:\hry\diablo\tchernobog.exe] => (Allow) E:\hry\diablo\tchernobog.exe No File
FirewallRules: [TCP Query User{9FFE6EF5-5D54-4DDC-BA1C-B4D3CE9A7EE4}E:\hry\starcraft ii\versions\base71061\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base71061\sc2_x64.exe No File
FirewallRules: [UDP Query User{B9A4420A-EB3E-4AD7-883C-37724EB063BE}E:\hry\starcraft ii\versions\base71061\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base71061\sc2_x64.exe No File
FirewallRules: [TCP Query User{B320F7D8-14D8-46F2-912B-DB68063A8D5B}E:\hry\starcraft ii\versions\base71061\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71061\sc2.exe No File
FirewallRules: [UDP Query User{EE0CD48E-9C06-4172-9E4F-F5F2BEA63308}E:\hry\starcraft ii\versions\base71061\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71061\sc2.exe No File
FirewallRules: [TCP Query User{EF95A5BA-0556-47D7-9030-6D0453322C80}E:\hry\starcraft ii\versions\base71523\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71523\sc2.exe No File
FirewallRules: [UDP Query User{624A2351-DB2E-4659-B50B-6D172767DBC6}E:\hry\starcraft ii\versions\base71523\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71523\sc2.exe No File
FirewallRules: [TCP Query User{6938EE50-B1C5-40F7-B3D3-B705258DCB3A}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.12.game] => (Allow) E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.12.game No File
FirewallRules: [UDP Query User{E5BBA412-08C8-4B4E-915A-ECA08F7CADB1}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.12.game] => (Allow) E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.12.game No File
FirewallRules: [TCP Query User{FABC05B9-594A-462D-A5AB-FC503B2FA014}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.9.game] => (Allow) E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.9.game No File
FirewallRules: [UDP Query User{8E1CE93D-8F70-4C9C-AF3B-91874CB79C16}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.9.game] => (Allow) E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.9.game No File
FirewallRules: [TCP Query User{4FFA23D8-64F3-4C6C-913F-C54C7F79EC26}E:\hry\driver - san francisco\driver.exe] => (Allow) E:\hry\driver - san francisco\driver.exe No File
FirewallRules: [UDP Query User{90448727-D786-471E-9005-EDD3CD8EE022}E:\hry\driver - san francisco\driver.exe] => (Allow) E:\hry\driver - san francisco\driver.exe No File
FirewallRules: [TCP Query User{42C73FDE-8093-4A87-B1C9-4DC837F369FF}E:\hry\starcraft ii\versions\base71663\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71663\sc2.exe No File
FirewallRules: [UDP Query User{A2BA7FB9-E8D7-4A1F-AE5B-AB4CE60F2B68}E:\hry\starcraft ii\versions\base71663\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71663\sc2.exe No File
FirewallRules: [TCP Query User{B8DD27C9-9DED-4EA7-94CE-905904918DCE}E:\hry\starcraft ii\versions\base72282\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base72282\sc2.exe No File
FirewallRules: [UDP Query User{4003730E-3012-469A-A449-BE0CD7539262}E:\hry\starcraft ii\versions\base72282\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base72282\sc2.exe No File
FirewallRules: [TCP Query User{7376E354-2062-442D-9A29-6728C4435F14}E:\hry\starcraft ii\versions\base73286\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base73286\sc2.exe No File
FirewallRules: [UDP Query User{FB0E0035-461F-4722-A75C-5465E03706F8}E:\hry\starcraft ii\versions\base73286\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base73286\sc2.exe No File
FirewallRules: [TCP Query User{0BB29190-13C6-4106-83F8-AD54C85C64AE}E:\hry\starcraft ii\versions\base73620\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base73620\sc2.exe No File
FirewallRules: [UDP Query User{2EF2BA01-4B9D-4E95-946A-D433EB6C6DCF}E:\hry\starcraft ii\versions\base73620\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base73620\sc2.exe No File
FirewallRules: [TCP Query User{F1299CB0-9BD2-413A-9436-1DA7E3BDA83C}E:\hry\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{44124196-D10A-4FE5-A50E-D6630324CA8B}E:\hry\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{DF190DB1-513C-42E5-9ACD-AF9D90309B46}E:\hry\starcraft ii\versions\base74071\sc2.exe] => (Block) E:\hry\starcraft ii\versions\base74071\sc2.exe No File
FirewallRules: [UDP Query User{A01F141D-CFE0-4844-B7ED-BB74F7F3DA42}E:\hry\starcraft ii\versions\base74071\sc2.exe] => (Block) E:\hry\starcraft ii\versions\base74071\sc2.exe No File
FirewallRules: [TCP Query User{93D589E7-7363-4AC9-84BC-F9C21EFEF807}E:\hry\starcraft ii\versions\base74456\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base74456\sc2.exe No File
FirewallRules: [UDP Query User{AE30E16D-94F3-420C-9EF0-6A0E5AFD6944}E:\hry\starcraft ii\versions\base74456\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base74456\sc2.exe No File
FirewallRules: [TCP Query User{82F4A2F0-568F-4263-A8F1-FE7932DA093E}E:\hry\starcraft ii\versions\base74741\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base74741\sc2.exe No File
FirewallRules: [UDP Query User{C783D0CF-DBC1-41BB-AE02-2C7B2DDD1022}E:\hry\starcraft ii\versions\base74741\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base74741\sc2.exe No File
FirewallRules: [TCP Query User{C241D1B2-4679-4E29-AE3B-C62B844A0C17}E:\hry\starcraft ii\versions\base76114\sc2.exe] => (Block) E:\hry\starcraft ii\versions\base76114\sc2.exe No File
FirewallRules: [UDP Query User{CB773318-1A3A-4342-A622-FE56AC3959EF}E:\hry\starcraft ii\versions\base76114\sc2.exe] => (Block) E:\hry\starcraft ii\versions\base76114\sc2.exe No File

EmptyTemp:
End

Uložte do C:\Users\Paulie\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Dobrý den, provedl jsem pokyny, restartoval se PC ale žádný log nenaběhl. Ale našel jsem ve složce fixlog.txt, předpokládám, že to je on. Posílám:

Fix result of Farbar Recovery Scan Tool (x64) Version: 08-03-2020
Ran by Paulie (15-03-2020 11:23:20) Run:1
Running from C:\Users\Paulie\Downloads
Loaded Profiles: Paulie (Available Profiles: Paulie)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d1e916db60ce40
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d1e916db4c3483
C:\Users\Paulie\AppData\Local\{8A9396B5-C300-4D53-871B-74FB3243F8CA}
C:\Users\Paulie\AppData\Local\{DCDFCE8B-EBE2-4A9D-9269-E9732E4B75E7}
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\...\MountPoints2: {ef9f63fc-9cb7-11e8-8122-99fdd327bea2} - I:\HiSuiteDownLoader.exe
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3CAEA1C2-35DC-4B9A-8765-84432AD077B1} - System32\Tasks\GoogleUpdateTaskMachineUA1d1e916db60ce40 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-06] (Google Inc -> Google Inc.)
Task: {B1FEE318-01FF-4750-BD44-1FE332D58B6F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-06] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2623976002-1524246759-2826972749-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Shortcut: C:\Users\Paulie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\?rdam?x K?ylogger 4.4.2\?rdam?x K?ylogger 4.4.2.lnk -> E:\PROGRAMY\CCP\CCP.exe (No File) <==== Cyrillic
AlternateDataStreams: C:\Users\Paulie\ntuser.ini:NTV [9460]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [TCP Query User{4A7D1402-1D28-4663-90D6-0A498C24FF34}E:\hry\portal 2\portal2.exe] => (Allow) E:\hry\portal 2\portal2.exe No File
FirewallRules: [UDP Query User{E91D5A2B-1E15-4981-B0D6-D7FA68784034}E:\hry\portal 2\portal2.exe] => (Allow) E:\hry\portal 2\portal2.exe No File
FirewallRules: [TCP Query User{C2FC0F22-AD3F-4FBA-8DE0-6BD736CDB4D2}E:\hry\counter-strike 1.6\hl.exe] => (Allow) E:\hry\counter-strike 1.6\hl.exe No File
FirewallRules: [UDP Query User{830B1723-9690-498A-9A0B-C305D9D0ACC4}E:\hry\counter-strike 1.6\hl.exe] => (Allow) E:\hry\counter-strike 1.6\hl.exe No File
FirewallRules: [TCP Query User{5F4AFF4C-0E79-4CA0-8EE9-FF2E2F8ECE55}E:\hry\mafia iii\launcher.exe] => (Allow) E:\hry\mafia iii\launcher.exe No File
FirewallRules: [UDP Query User{90DB72EE-4FB7-4BF4-BB8C-428DBEED224F}E:\hry\mafia iii\launcher.exe] => (Allow) E:\hry\mafia iii\launcher.exe No File
FirewallRules: [TCP Query User{66F2EDA0-FB46-4CEB-BB53-959E98F231B8}E:\hry\mafia iii\mafia3.exe] => (Allow) E:\hry\mafia iii\mafia3.exe No File
FirewallRules: [UDP Query User{B689C03F-0B19-4B25-92C1-5A51C6E427F4}E:\hry\mafia iii\mafia3.exe] => (Allow) E:\hry\mafia iii\mafia3.exe No File
FirewallRules: [TCP Query User{8B1B756B-C590-489D-B2CF-79D02D23C95B}E:\hry\mafia iii\launcher.exe] => (Allow) E:\hry\mafia iii\launcher.exe No File
FirewallRules: [UDP Query User{09C690AE-2B31-4CA4-B6D3-6601B20A43C9}E:\hry\mafia iii\launcher.exe] => (Allow) E:\hry\mafia iii\launcher.exe No File
FirewallRules: [TCP Query User{464DAC4E-2989-4103-A101-723991FD0D81}E:\hry\mafia iii\mafia3.exe] => (Block) E:\hry\mafia iii\mafia3.exe No File
FirewallRules: [UDP Query User{1E25EE04-B212-48DA-B192-050BC0580FEE}E:\hry\mafia iii\mafia3.exe] => (Block) E:\hry\mafia iii\mafia3.exe No File
FirewallRules: [TCP Query User{8D6A7470-D43F-4B3E-B160-7F5D1E7AC157}E:\hry\heroes of might and magic iii complete\h3wog.exe] => (Allow) E:\hry\heroes of might and magic iii complete\h3wog.exe No File
FirewallRules: [UDP Query User{C9B4792E-62BB-4B74-ACFB-865121943A2E}E:\hry\heroes of might and magic iii complete\h3wog.exe] => (Allow) E:\hry\heroes of might and magic iii complete\h3wog.exe No File
FirewallRules: [TCP Query User{4AE72832-2148-415C-A844-F871AD9548FD}E:\hry\counter-strike 1.6\hl.exe] => (Allow) E:\hry\counter-strike 1.6\hl.exe No File
FirewallRules: [UDP Query User{5CCB8A34-DF3B-459C-9BA9-3185F5F9B627}E:\hry\counter-strike 1.6\hl.exe] => (Allow) E:\hry\counter-strike 1.6\hl.exe No File
FirewallRules: [TCP Query User{13F68361-0E74-412F-B423-CEFE4EAE0DBB}E:\hry\mortal kombat complete edition\mkke.exe] => (Allow) E:\hry\mortal kombat complete edition\mkke.exe No File
FirewallRules: [UDP Query User{AC53F77B-9919-4ED5-BB52-11655B317DD2}E:\hry\mortal kombat complete edition\mkke.exe] => (Allow) E:\hry\mortal kombat complete edition\mkke.exe No File
FirewallRules: [TCP Query User{393C43F9-6EA2-48D0-9450-4EB1E1E63F9C}E:\hry\portal 2\portal2.exe] => (Allow) E:\hry\portal 2\portal2.exe No File
FirewallRules: [UDP Query User{EC64182A-774B-4ED1-A804-9A343E6FF5FD}E:\hry\portal 2\portal2.exe] => (Allow) E:\hry\portal 2\portal2.exe No File
FirewallRules: [TCP Query User{69734D94-EA54-4015-A78B-D88E1C0872A5}E:\hry\nfs most wanted black edition\speed.exe] => (Allow) E:\hry\nfs most wanted black edition\speed.exe No File
FirewallRules: [UDP Query User{DA7316CC-151A-4A32-BD9C-F1ED5AFF8156}E:\hry\nfs most wanted black edition\speed.exe] => (Allow) E:\hry\nfs most wanted black edition\speed.exe No File
FirewallRules: [{3493E558-0BF3-4B1C-AAEF-A34F08F84A36}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F32AF3E2-034E-4604-9B08-1136BA316E26}] => (Block) E:\HRY\Trackmania Turbo\TrackmaniaTurbo.exe No File
FirewallRules: [TCP Query User{2AE48B29-5190-48D7-9B35-FC029ECEC5B9}E:\hry\starcraft ii\versions\base65384\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base65384\sc2_x64.exe No File
FirewallRules: [UDP Query User{1B982A0C-9534-44B4-9CC5-0A3478B9107F}E:\hry\starcraft ii\versions\base65384\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base65384\sc2_x64.exe No File
FirewallRules: [TCP Query User{25722AD3-4F66-4201-B47F-60EB08FE2339}E:\hry\age of empires iii - complete collection\age3n.exe] => (Allow) E:\hry\age of empires iii - complete collection\age3n.exe No File
FirewallRules: [UDP Query User{E3080154-02EF-4C07-B00F-C82D90B349DE}E:\hry\age of empires iii - complete collection\age3n.exe] => (Allow) E:\hry\age of empires iii - complete collection\age3n.exe No File
FirewallRules: [TCP Query User{37D4E5D3-576E-41EF-85E6-228906BC8CBD}E:\hry\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{45FF5574-0065-4D6A-A5B8-BA11D18A8AEE}E:\hry\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{7EAFC326-D281-4656-9D5C-0BB8B00E89F7}E:\hry\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{6DE67C5F-7572-47AC-9778-2EF1B1FE1B26}E:\hry\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{35FB60FD-8371-45AC-A53E-FF909DD7149E}E:\hry\age of empires iii - complete collection\age3x.exe] => (Allow) E:\hry\age of empires iii - complete collection\age3x.exe No File
FirewallRules: [UDP Query User{5C0AA0DA-4224-4E8F-ACC0-F70C95D64887}E:\hry\age of empires iii - complete collection\age3x.exe] => (Allow) E:\hry\age of empires iii - complete collection\age3x.exe No File
FirewallRules: [TCP Query User{3A78ADB1-9EE8-4712-932D-3DE3ADB0CE2F}E:\hry\starcraft ii\versions\base65895\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base65895\sc2_x64.exe No File
FirewallRules: [UDP Query User{4D8D9DDD-61C0-4C27-A034-33DF2926E84F}E:\hry\starcraft ii\versions\base65895\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base65895\sc2_x64.exe No File
FirewallRules: [TCP Query User{7CD00890-6EB6-44A9-B4FB-C1415D262DB3}E:\hry\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{E423CB73-50F7-4C1E-B4DA-B9BDD00A3BD5}E:\hry\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{379D429F-27A5-4A58-8DB5-7F09B292E967}E:\programy\python\python.exe] => (Allow) E:\programy\python\python.exe No File
FirewallRules: [UDP Query User{1B3BA9FD-C64C-42CD-BAAE-4A65023014F5}E:\programy\python\python.exe] => (Allow) E:\programy\python\python.exe No File
FirewallRules: [TCP Query User{41F04712-1EB6-4DE6-B5B4-1B3EB1AA9D4D}E:\hry\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{DBA407B4-65B8-42F1-BB8A-11BBBB03B251}E:\hry\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{2FD777AA-D0DA-41ED-8DCA-EC601467D64B}E:\hry\starcraft ii\versions\base66668\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base66668\sc2_x64.exe No File
FirewallRules: [UDP Query User{6459EA49-D21F-4CA6-9357-C4C9482014AD}E:\hry\starcraft ii\versions\base66668\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base66668\sc2_x64.exe No File
FirewallRules: [TCP Query User{BA3AFB43-1813-46F6-BBDF-6BF3413A0300}E:\hry\diablo iii\x64\diablo iii64.exe] => (Allow) E:\hry\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [UDP Query User{CE124DFF-B35E-46C1-9B2F-D4DF6A910CE3}E:\hry\diablo iii\x64\diablo iii64.exe] => (Allow) E:\hry\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [TCP Query User{BBE626C8-54EF-4B7D-B5C9-8AE0921CA2A1}E:\hry\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{1EA15254-54DA-4089-B1ED-36DF7A684068}E:\hry\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{5DB203A5-30DE-439E-BE70-5BA1CDA7F8FE}E:\hry\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{703296D7-D066-4D9F-A7A7-FC58AAD2097A}E:\hry\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{C00CD7F5-4F5B-4365-AA02-533216B2FCDD}E:\hry\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{75D29460-469B-4977-B870-39A0ABA7FD1E}E:\hry\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{E3EC9AC5-CA72-4F15-B8CC-6E7F62A0B72A}E:\hry\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{97FD55D8-5335-4867-850A-86E09700196C}E:\hry\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{C5CACBEF-06AD-4441-B9BD-8B6F920C0541}E:\hry\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{6C4BD0D5-1F62-45CB-A79D-C9F41D8CC800}E:\hry\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{03DF1E93-6126-48E5-98C2-DE44AB376A98}E:\hry\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{0B12460C-51B3-4982-99E2-2393820DEB41}E:\hry\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe No File
irewallRules: [TCP Query User{E625C15C-D8FF-4850-ACA6-D388009F4AD9}E:\hry\starcraft ii\versions\base67926\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base67926\sc2_x64.exe No File
FirewallRules: [UDP Query User{588B2C3A-69A2-4928-9C51-CC12716B337F}E:\hry\starcraft ii\versions\base67926\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base67926\sc2_x64.exe No File
FirewallRules: [TCP Query User{B8683B8E-ACEE-4CA5-8A47-90C6FC3F5F64}E:\hry\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{92EA5809-3EE5-4FD8-A0F7-92A5CAA7FB4F}E:\hry\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{92F440F7-686B-44B7-AF69-108A1AD84E10}E:\hry\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left 4 dead 2\left4dead2.exe] => (Allow) E:\hry\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left 4 dead 2\left4dead2.exe No File
FirewallRules: [UDP Query User{45C92F08-5E64-43C4-B311-16798F82F94D}E:\hry\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left 4 dead 2\left4dead2.exe] => (Allow) E:\hry\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left 4 dead 2\left4dead2.exe No File
FirewallRules: [TCP Query User{E88AC7A7-5579-44E1-B834-75243A930E17}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{261BEABB-EF56-4970-AC99-F461F1B42AB9}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{09EF2856-A995-475E-8A82-71B9BBC868B4}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{09C358B5-749C-4DC7-9886-0BC4CF549449}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{E3DF146A-74A7-4335-867B-6DBC6F6C7A75}E:\hry\mortal kombat complete edition\mkke.exe] => (Allow) E:\hry\mortal kombat complete edition\mkke.exe No File
FirewallRules: [UDP Query User{CAAF4270-3A52-4121-A67E-C16F6D65793A}E:\hry\mortal kombat complete edition\mkke.exe] => (Allow) E:\hry\mortal kombat complete edition\mkke.exe No File
FirewallRules: [TCP Query User{F260EFFE-54D1-42C2-AB80-A173C532878B}E:\hry\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{1F997557-D3ED-4245-B1EE-A15A734368BA}E:\hry\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{E7A118BE-940C-493C-A483-3C823661C1B0}E:\hry\starcraft ii\versions\base69232\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base69232\sc2_x64.exe No File
FirewallRules: [UDP Query User{9CAB7929-4111-4A4E-BEF9-48EB5B35BAEB}E:\hry\starcraft ii\versions\base69232\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base69232\sc2_x64.exe No File
FirewallRules: [TCP Query User{60A1C0BB-57D2-4920-80B9-D6F19B8E1955}E:\hry\starcraft ii\versions\base70154\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base70154\sc2_x64.exe No File
FirewallRules: [UDP Query User{A21CF993-700B-49DB-8D8B-2DA171420B19}E:\hry\starcraft ii\versions\base70154\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base70154\sc2_x64.exe No File
FirewallRules: [TCP Query User{DBFF1C57-6117-46FC-A90F-630A3643F7EE}E:\hry\heroes of the storm\versions\base70200\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base70200\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{054EFC05-AD69-48EC-843B-BE97BE8FDE60}E:\hry\heroes of the storm\versions\base70200\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base70200\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{EC1E9923-2D7C-4D15-876F-537B29388DB9}E:\hry\diablo\tchernobog.exe] => (Allow) E:\hry\diablo\tchernobog.exe No File
FirewallRules: [UDP Query User{F2FC0BF2-FC03-4E8C-B2A2-552092A94745}E:\hry\diablo\tchernobog.exe] => (Allow) E:\hry\diablo\tchernobog.exe No File
FirewallRules: [TCP Query User{9FFE6EF5-5D54-4DDC-BA1C-B4D3CE9A7EE4}E:\hry\starcraft ii\versions\base71061\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base71061\sc2_x64.exe No File
FirewallRules: [UDP Query User{B9A4420A-EB3E-4AD7-883C-37724EB063BE}E:\hry\starcraft ii\versions\base71061\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base71061\sc2_x64.exe No File
FirewallRules: [TCP Query User{B320F7D8-14D8-46F2-912B-DB68063A8D5B}E:\hry\starcraft ii\versions\base71061\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71061\sc2.exe No File
FirewallRules: [UDP Query User{EE0CD48E-9C06-4172-9E4F-F5F2BEA63308}E:\hry\starcraft ii\versions\base71061\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71061\sc2.exe No File
FirewallRules: [TCP Query User{EF95A5BA-0556-47D7-9030-6D0453322C80}E:\hry\starcraft ii\versions\base71523\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71523\sc2.exe No File
FirewallRules: [UDP Query User{624A2351-DB2E-4659-B50B-6D172767DBC6}E:\hry\starcraft ii\versions\base71523\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71523\sc2.exe No File
FirewallRules: [TCP Query User{6938EE50-B1C5-40F7-B3D3-B705258DCB3A}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.12.game] => (Allow) E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.12.game No File
FirewallRules: [UDP Query User{E5BBA412-08C8-4B4E-915A-ECA08F7CADB1}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.12.game] => (Allow) E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.12.game No File
FirewallRules: [TCP Query User{FABC05B9-594A-462D-A5AB-FC503B2FA014}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.9.game] => (Allow) E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.9.game No File
FirewallRules: [UDP Query User{8E1CE93D-8F70-4C9C-AF3B-91874CB79C16}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.9.game] => (Allow) E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.9.game No File
FirewallRules: [TCP Query User{4FFA23D8-64F3-4C6C-913F-C54C7F79EC26}E:\hry\driver - san francisco\driver.exe] => (Allow) E:\hry\driver - san francisco\driver.exe No File
FirewallRules: [UDP Query User{90448727-D786-471E-9005-EDD3CD8EE022}E:\hry\driver - san francisco\driver.exe] => (Allow) E:\hry\driver - san francisco\driver.exe No File
FirewallRules: [TCP Query User{42C73FDE-8093-4A87-B1C9-4DC837F369FF}E:\hry\starcraft ii\versions\base71663\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71663\sc2.exe No File
FirewallRules: [UDP Query User{A2BA7FB9-E8D7-4A1F-AE5B-AB4CE60F2B68}E:\hry\starcraft ii\versions\base71663\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base71663\sc2.exe No File
FirewallRules: [TCP Query User{B8DD27C9-9DED-4EA7-94CE-905904918DCE}E:\hry\starcraft ii\versions\base72282\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base72282\sc2.exe No File
FirewallRules: [UDP Query User{4003730E-3012-469A-A449-BE0CD7539262}E:\hry\starcraft ii\versions\base72282\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base72282\sc2.exe No File
FirewallRules: [TCP Query User{7376E354-2062-442D-9A29-6728C4435F14}E:\hry\starcraft ii\versions\base73286\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base73286\sc2.exe No File
FirewallRules: [UDP Query User{FB0E0035-461F-4722-A75C-5465E03706F8}E:\hry\starcraft ii\versions\base73286\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base73286\sc2.exe No File
FirewallRules: [TCP Query User{0BB29190-13C6-4106-83F8-AD54C85C64AE}E:\hry\starcraft ii\versions\base73620\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base73620\sc2.exe No File
FirewallRules: [UDP Query User{2EF2BA01-4B9D-4E95-946A-D433EB6C6DCF}E:\hry\starcraft ii\versions\base73620\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base73620\sc2.exe No File
FirewallRules: [TCP Query User{F1299CB0-9BD2-413A-9436-1DA7E3BDA83C}E:\hry\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{44124196-D10A-4FE5-A50E-D6630324CA8B}E:\hry\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe] => (Allow) E:\hry\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{DF190DB1-513C-42E5-9ACD-AF9D90309B46}E:\hry\starcraft ii\versions\base74071\sc2.exe] => (Block) E:\hry\starcraft ii\versions\base74071\sc2.exe No File
FirewallRules: [UDP Query User{A01F141D-CFE0-4844-B7ED-BB74F7F3DA42}E:\hry\starcraft ii\versions\base74071\sc2.exe] => (Block) E:\hry\starcraft ii\versions\base74071\sc2.exe No File
FirewallRules: [TCP Query User{93D589E7-7363-4AC9-84BC-F9C21EFEF807}E:\hry\starcraft ii\versions\base74456\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base74456\sc2.exe No File
FirewallRules: [UDP Query User{AE30E16D-94F3-420C-9EF0-6A0E5AFD6944}E:\hry\starcraft ii\versions\base74456\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base74456\sc2.exe No File
FirewallRules: [TCP Query User{82F4A2F0-568F-4263-A8F1-FE7932DA093E}E:\hry\starcraft ii\versions\base74741\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base74741\sc2.exe No File
FirewallRules: [UDP Query User{C783D0CF-DBC1-41BB-AE02-2C7B2DDD1022}E:\hry\starcraft ii\versions\base74741\sc2.exe] => (Allow) E:\hry\starcraft ii\versions\base74741\sc2.exe No File
FirewallRules: [TCP Query User{C241D1B2-4679-4E29-AE3B-C62B844A0C17}E:\hry\starcraft ii\versions\base76114\sc2.exe] => (Block) E:\hry\starcraft ii\versions\base76114\sc2.exe No File
FirewallRules: [UDP Query User{CB773318-1A3A-4342-A622-FE56AC3959EF}E:\hry\starcraft ii\versions\base76114\sc2.exe] => (Block) E:\hry\starcraft ii\versions\base76114\sc2.exe No File

EmptyTemp:
End
*****************

Processes closed successfully.
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d1e916db60ce40 => moved successfully
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d1e916db4c3483 => moved successfully
C:\Users\Paulie\AppData\Local\{8A9396B5-C300-4D53-871B-74FB3243F8CA} => moved successfully
C:\Users\Paulie\AppData\Local\{DCDFCE8B-EBE2-4A9D-9269-E9732E4B75E7} => moved successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F => removed successfully
HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef9f63fc-9cb7-11e8-8122-99fdd327bea2} => removed successfully
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3CAEA1C2-35DC-4B9A-8765-84432AD077B1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3CAEA1C2-35DC-4B9A-8765-84432AD077B1}" => removed successfully
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d1e916db60ce40" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d1e916db60ce40" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1FEE318-01FF-4750-BD44-1FE332D58B6F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1FEE318-01FF-4750-BD44-1FE332D58B6F}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKU\S-1-5-21-2623976002-1524246759-2826972749-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"C:\Users\Paulie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\?rdam?x K?ylogger 4.4.2\?rdam?x K?ylogger 4.4.2.lnk" => not found
C:\Users\Paulie\ntuser.ini => ":NTV" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\SPPSVC-In-TCP" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\SPPSVC-In-TCP-NoScope" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4A7D1402-1D28-4663-90D6-0A498C24FF34}E:\hry\portal 2\portal2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E91D5A2B-1E15-4981-B0D6-D7FA68784034}E:\hry\portal 2\portal2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C2FC0F22-AD3F-4FBA-8DE0-6BD736CDB4D2}E:\hry\counter-strike 1.6\hl.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{830B1723-9690-498A-9A0B-C305D9D0ACC4}E:\hry\counter-strike 1.6\hl.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5F4AFF4C-0E79-4CA0-8EE9-FF2E2F8ECE55}E:\hry\mafia iii\launcher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{90DB72EE-4FB7-4BF4-BB8C-428DBEED224F}E:\hry\mafia iii\launcher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{66F2EDA0-FB46-4CEB-BB53-959E98F231B8}E:\hry\mafia iii\mafia3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B689C03F-0B19-4B25-92C1-5A51C6E427F4}E:\hry\mafia iii\mafia3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8B1B756B-C590-489D-B2CF-79D02D23C95B}E:\hry\mafia iii\launcher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{09C690AE-2B31-4CA4-B6D3-6601B20A43C9}E:\hry\mafia iii\launcher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{464DAC4E-2989-4103-A101-723991FD0D81}E:\hry\mafia iii\mafia3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1E25EE04-B212-48DA-B192-050BC0580FEE}E:\hry\mafia iii\mafia3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8D6A7470-D43F-4B3E-B160-7F5D1E7AC157}E:\hry\heroes of might and magic iii complete\h3wog.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C9B4792E-62BB-4B74-ACFB-865121943A2E}E:\hry\heroes of might and magic iii complete\h3wog.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4AE72832-2148-415C-A844-F871AD9548FD}E:\hry\counter-strike 1.6\hl.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5CCB8A34-DF3B-459C-9BA9-3185F5F9B627}E:\hry\counter-strike 1.6\hl.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{13F68361-0E74-412F-B423-CEFE4EAE0DBB}E:\hry\mortal kombat complete edition\mkke.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AC53F77B-9919-4ED5-BB52-11655B317DD2}E:\hry\mortal kombat complete edition\mkke.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{393C43F9-6EA2-48D0-9450-4EB1E1E63F9C}E:\hry\portal 2\portal2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EC64182A-774B-4ED1-A804-9A343E6FF5FD}E:\hry\portal 2\portal2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{69734D94-EA54-4015-A78B-D88E1C0872A5}E:\hry\nfs most wanted black edition\speed.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DA7316CC-151A-4A32-BD9C-F1ED5AFF8156}E:\hry\nfs most wanted black edition\speed.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3493E558-0BF3-4B1C-AAEF-A34F08F84A36}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F32AF3E2-034E-4604-9B08-1136BA316E26}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2AE48B29-5190-48D7-9B35-FC029ECEC5B9}E:\hry\starcraft ii\versions\base65384\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1B982A0C-9534-44B4-9CC5-0A3478B9107F}E:\hry\starcraft ii\versions\base65384\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{25722AD3-4F66-4201-B47F-60EB08FE2339}E:\hry\age of empires iii - complete collection\age3n.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E3080154-02EF-4C07-B00F-C82D90B349DE}E:\hry\age of empires iii - complete collection\age3n.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{37D4E5D3-576E-41EF-85E6-228906BC8CBD}E:\hry\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{45FF5574-0065-4D6A-A5B8-BA11D18A8AEE}E:\hry\heroes of the storm\versions\base65846\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7EAFC326-D281-4656-9D5C-0BB8B00E89F7}E:\hry\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6DE67C5F-7572-47AC-9778-2EF1B1FE1B26}E:\hry\heroes of the storm\versions\base65943\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{35FB60FD-8371-45AC-A53E-FF909DD7149E}E:\hry\age of empires iii - complete collection\age3x.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5C0AA0DA-4224-4E8F-ACC0-F70C95D64887}E:\hry\age of empires iii - complete collection\age3x.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3A78ADB1-9EE8-4712-932D-3DE3ADB0CE2F}E:\hry\starcraft ii\versions\base65895\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4D8D9DDD-61C0-4C27-A034-33DF2926E84F}E:\hry\starcraft ii\versions\base65895\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7CD00890-6EB6-44A9-B4FB-C1415D262DB3}E:\hry\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E423CB73-50F7-4C1E-B4DA-B9BDD00A3BD5}E:\hry\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{379D429F-27A5-4A58-8DB5-7F09B292E967}E:\programy\python\python.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1B3BA9FD-C64C-42CD-BAAE-4A65023014F5}E:\programy\python\python.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{41F04712-1EB6-4DE6-B5B4-1B3EB1AA9D4D}E:\hry\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DBA407B4-65B8-42F1-BB8A-11BBBB03B251}E:\hry\heroes of the storm\versions\base66488\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2FD777AA-D0DA-41ED-8DCA-EC601467D64B}E:\hry\starcraft ii\versions\base66668\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6459EA49-D21F-4CA6-9357-C4C9482014AD}E:\hry\starcraft ii\versions\base66668\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BA3AFB43-1813-46F6-BBDF-6BF3413A0300}E:\hry\diablo iii\x64\diablo iii64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CE124DFF-B35E-46C1-9B2F-D4DF6A910CE3}E:\hry\diablo iii\x64\diablo iii64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BBE626C8-54EF-4B7D-B5C9-8AE0921CA2A1}E:\hry\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1EA15254-54DA-4089-B1ED-36DF7A684068}E:\hry\heroes of the storm\versions\base66810\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5DB203A5-30DE-439E-BE70-5BA1CDA7F8FE}E:\hry\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{703296D7-D066-4D9F-A7A7-FC58AAD2097A}E:\hry\heroes of the storm\versions\base66946\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C00CD7F5-4F5B-4365-AA02-533216B2FCDD}E:\hry\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{75D29460-469B-4977-B870-39A0ABA7FD1E}E:\hry\heroes of the storm\versions\base67143\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E3EC9AC5-CA72-4F15-B8CC-6E7F62A0B72A}E:\hry\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{97FD55D8-5335-4867-850A-86E09700196C}E:\hry\heroes of the storm\versions\base67462\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C5CACBEF-06AD-4441-B9BD-8B6F920C0541}E:\hry\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6C4BD0D5-1F62-45CB-A79D-C9F41D8CC800}E:\hry\heroes of the storm\versions\base67621\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{03DF1E93-6126-48E5-98C2-DE44AB376A98}E:\hry\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0B12460C-51B3-4982-99E2-2393820DEB41}E:\hry\heroes of the storm\versions\base67985\heroesofthestorm_x64.exe" => removed successfully
irewallRules: [TCP Query User{E625C15C-D8FF-4850-ACA6-D388009F4AD9}E:\hry\starcraft ii\versions\base67926\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base67926\sc2_x64.exe No File => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{588B2C3A-69A2-4928-9C51-CC12716B337F}E:\hry\starcraft ii\versions\base67926\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B8683B8E-ACEE-4CA5-8A47-90C6FC3F5F64}E:\hry\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{92EA5809-3EE5-4FD8-A0F7-92A5CAA7FB4F}E:\hry\heroes of the storm\versions\base68509\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{92F440F7-686B-44B7-AF69-108A1AD84E10}E:\hry\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left 4 dead 2\left4dead2.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{45C92F08-5E64-43C4-B311-16798F82F94D}E:\hry\left 4 dead 2 v2.0.2.7 full-rip {blaze69}\left 4 dead 2\left 4 dead 2\left4dead2.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E88AC7A7-5579-44E1-B834-75243A930E17}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{261BEABB-EF56-4970-AC99-F461F1B42AB9}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{09EF2856-A995-475E-8A82-71B9BBC868B4}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{09C358B5-749C-4DC7-9886-0BC4CF549449}E:\hry\heroes of the storm\versions\base68778\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E3DF146A-74A7-4335-867B-6DBC6F6C7A75}E:\hry\mortal kombat complete edition\mkke.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CAAF4270-3A52-4121-A67E-C16F6D65793A}E:\hry\mortal kombat complete edition\mkke.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F260EFFE-54D1-42C2-AB80-A173C532878B}E:\hry\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1F997557-D3ED-4245-B1EE-A15A734368BA}E:\hry\heroes of the storm\versions\base69350\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E7A118BE-940C-493C-A483-3C823661C1B0}E:\hry\starcraft ii\versions\base69232\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9CAB7929-4111-4A4E-BEF9-48EB5B35BAEB}E:\hry\starcraft ii\versions\base69232\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{60A1C0BB-57D2-4920-80B9-D6F19B8E1955}E:\hry\starcraft ii\versions\base70154\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A21CF993-700B-49DB-8D8B-2DA171420B19}E:\hry\starcraft ii\versions\base70154\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DBFF1C57-6117-46FC-A90F-630A3643F7EE}E:\hry\heroes of the storm\versions\base70200\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{054EFC05-AD69-48EC-843B-BE97BE8FDE60}E:\hry\heroes of the storm\versions\base70200\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EC1E9923-2D7C-4D15-876F-537B29388DB9}E:\hry\diablo\tchernobog.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F2FC0BF2-FC03-4E8C-B2A2-552092A94745}E:\hry\diablo\tchernobog.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9FFE6EF5-5D54-4DDC-BA1C-B4D3CE9A7EE4}E:\hry\starcraft ii\versions\base71061\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B9A4420A-EB3E-4AD7-883C-37724EB063BE}E:\hry\starcraft ii\versions\base71061\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B320F7D8-14D8-46F2-912B-DB68063A8D5B}E:\hry\starcraft ii\versions\base71061\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EE0CD48E-9C06-4172-9E4F-F5F2BEA63308}E:\hry\starcraft ii\versions\base71061\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EF95A5BA-0556-47D7-9030-6D0453322C80}E:\hry\starcraft ii\versions\base71523\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{624A2351-DB2E-4659-B50B-6D172767DBC6}E:\hry\starcraft ii\versions\base71523\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6938EE50-B1C5-40F7-B3D3-B705258DCB3A}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.12.game" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E5BBA412-08C8-4B4E-915A-ECA08F7CADB1}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.12.game" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FABC05B9-594A-462D-A5AB-FC503B2FA014}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.9.game" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8E1CE93D-8F70-4C9C-AF3B-91874CB79C16}E:\programy\steam\steamapps\common\command and conquer red alert 3\data\ra3_1.9.game" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4FFA23D8-64F3-4C6C-913F-C54C7F79EC26}E:\hry\driver - san francisco\driver.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{90448727-D786-471E-9005-EDD3CD8EE022}E:\hry\driver - san francisco\driver.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{42C73FDE-8093-4A87-B1C9-4DC837F369FF}E:\hry\starcraft ii\versions\base71663\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A2BA7FB9-E8D7-4A1F-AE5B-AB4CE60F2B68}E:\hry\starcraft ii\versions\base71663\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B8DD27C9-9DED-4EA7-94CE-905904918DCE}E:\hry\starcraft ii\versions\base72282\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4003730E-3012-469A-A449-BE0CD7539262}E:\hry\starcraft ii\versions\base72282\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7376E354-2062-442D-9A29-6728C4435F14}E:\hry\starcraft ii\versions\base73286\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FB0E0035-461F-4722-A75C-5465E03706F8}E:\hry\starcraft ii\versions\base73286\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0BB29190-13C6-4106-83F8-AD54C85C64AE}E:\hry\starcraft ii\versions\base73620\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2EF2BA01-4B9D-4E95-946A-D433EB6C6DCF}E:\hry\starcraft ii\versions\base73620\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F1299CB0-9BD2-413A-9436-1DA7E3BDA83C}E:\hry\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{44124196-D10A-4FE5-A50E-D6630324CA8B}E:\hry\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DF190DB1-513C-42E5-9ACD-AF9D90309B46}E:\hry\starcraft ii\versions\base74071\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A01F141D-CFE0-4844-B7ED-BB74F7F3DA42}E:\hry\starcraft ii\versions\base74071\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{93D589E7-7363-4AC9-84BC-F9C21EFEF807}E:\hry\starcraft ii\versions\base74456\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AE30E16D-94F3-420C-9EF0-6A0E5AFD6944}E:\hry\starcraft ii\versions\base74456\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{82F4A2F0-568F-4263-A8F1-FE7932DA093E}E:\hry\starcraft ii\versions\base74741\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C783D0CF-DBC1-41BB-AE02-2C7B2DDD1022}E:\hry\starcraft ii\versions\base74741\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C241D1B2-4679-4E29-AE3B-C62B844A0C17}E:\hry\starcraft ii\versions\base76114\sc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CB773318-1A3A-4342-A622-FE56AC3959EF}E:\hry\starcraft ii\versions\base76114\sc2.exe" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 75756135 B
Java, Flash, Steam htmlcache => 284454890 B
Windows/system/drivers => 4063989 B
Edge => 0 B
Chrome => 396357770 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 256 B
LocalService => 256 B
NetworkService => 256 B
Paulie => 355207699 B

RecycleBin => 2525042196 B
EmptyTemp: => 3.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 11:23:43 ====

Ano, to je on (občas se stane, že se neotevře sám). Log již vypadá OK.