Prosím o kontrolu logu Vyřešeno

[Aurelius]

Ještě mám jeden dotaz je normalní že mi celkově počítač startuje 30s než dostanu nabídku na jakého uživatele přihlásit pak se na plochu dostanu během 4s. Děkuji

[Reklama]

[jaro3]

Procesy:
Start---spustit , do okna napsat:
msconfig
a dej Ok.

Záložka "po spuštění" , tam můžeš odebrat zatržítko u procesů , o kterýžch víš , že je po startu nepotřebuješ.

Jinak napiš , kdyby se ten start nezlepšil.

[Aurelius]

Start je pořád stejný těch 30s než se dostanu na volbu uživatele.

[jaro3]

Stáhni si Memtest:

Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.


Je třeba zkontrolovat HDD na chyby , zkusit jeho defragmentaci ..

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

[Aurelius]

----------------------------------------------------------------------------
CrystalDiskInfo 6.1.13 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate SP1 [6.1 Build 7601] (x86)
Date : 2014/06/04 20:06:51

-- Controller Map ----------------------------------------------------------
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
+ ATA Channel 0 (0)
- ST3320413AS ATA Device
+ ATA Channel 1 (1)
- LYTU-_N0 DVDRW0SXW=16H5S0 ATA Device
- AFEZBIUK IDE Controller [SCSI]

-- Disk List ---------------------------------------------------------------
(1) ST3320413AS : 153,7 GB [0/0/0, pd1] - st

----------------------------------------------------------------------------
(1) ST3320413AS
----------------------------------------------------------------------------
Model : ST3320413AS
Firmware : JC45
Serial Number : Z2A41R0K
Disk Size : 153,7 GB (8,4/137,4/153,7/153,7)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 300206655
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 5364 hod.
Power On Count : 1746 krát
Temperature : 35 C (95 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : D0D0h [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 114 _99 __6 00000396E16C Počet chyb čtení
03 100 100 __0 000000000000 Čas na roztočení ploten
04 _99 _99 _20 0000000006D5 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _81 _60 _30 00000975E032 Počet chybných hledání
09 _94 _94 __0 0000000014F4 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _99 _20 0000000006D2 Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _99 __0 00000000000A Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _65 _44 _45 000123190023 Teplota toku vzduchu
C2 _35 _56 __0 000C00000023 Teplota
C3 _63 _35 __0 00000396E16C Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000002 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 1220000027AF Čas nastavování hlaviček - v hodinách
F1 100 253 __0 00006917394C Total Host Writes
F2 100 253 __0 000022B814D7 Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5A32 4134 3152 304B
020: 0000 8000 0004 4A43 3435 2020 2020 5354 3333 3230
030: 3431 3341 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0004 0048 0040
080: 01F0 0029 346B 7F01 4163 3469 BE01 4163 407F 001F
090: 001F 0000 FFFE 0000 D0D0 0000 0000 0000 0000 0000
100: CA3F 11E4 0000 0000 0000 0000 0000 0000 5000 C500
110: 3513 1A78 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 EAB0
130: 2542 EAB0 2542 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 004F 0280 0000 0000
150: 000A 0000 0000 0000 0000 0000 0000 0000 3F00 9800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1020 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 7CA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 72 63 6C E1 96 03 00 00 00 03 03
010: 00 64 64 00 00 00 00 00 00 00 04 32 00 63 63 D5
020: 06 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 51 3C 32 E0 75 09 00 00 00 09 32
040: 00 5E 5E F4 14 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 63 63 D2 06 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 63 0A 00 00 00 00
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 41 2C 23 00 19 23 01 00 00 C2 22 00 23 38 23
0B0: 00 00 00 0C 00 00 C3 1A 00 3F 23 6C E1 96 03 00
0C0: 00 00 C5 12 00 64 64 00 00 00 00 00 00 00 C6 10
0D0: 00 64 64 00 00 00 00 00 00 00 C7 3E 00 C8 C8 02
0E0: 00 00 00 00 00 00 F0 00 00 64 FD AF 27 00 00 20
0F0: 12 08 F1 00 00 64 FD 4C 39 17 69 00 00 00 F2 00
100: 00 64 FD D7 14 B8 22 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 69 02 00 7B
170: 03 00 01 00 01 1A 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 58 00 00 00 01 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 9B 62 55 7B 92 11 00 00
1B0: 00 00 00 00 01 00 B7 00 4C 39 17 69 09 00 00 00
1C0: D7 14 B8 22 A1 02 00 00 00 00 00 00 90 F5 01 00
1D0: 00 00 00 01 00 00 00 00 77 04 00 00 14 00 02 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0B
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 75

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 C2 00 00 00 00 00
0B0: 00 00 00 00 00 00 C3 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 F0 00 00 00 00 00 00 00 00 00
0F0: 00 00 F1 00 00 00 00 00 00 00 00 00 00 00 F2 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60

[jaro3]

Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

Co Memtest?

[Aurelius]

OTL Extras logfile created on: 5.6.2014 17:02:40 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\šalomoun\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,53 Gb Available Physical Memory | 76,70% Memory free
4,00 Gb Paging File | 3,36 Gb Available in Paging File | 83,98% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 143,14 Gb Total Space | 28,18 Gb Free Space | 19,68% Space Free | Partition Type: NTFS

Computer Name: ŠALOMOUN-PC | User Name: šalomoun | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
https [open] -- Reg Error: Value error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 1
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 1
"EnableFirewall" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{08F03F22-9697-4BDD-8AB6-B5CD7C0EE7DE}" = rport=2869 | protocol=6 | dir=out | app=system |
"{0A357BED-A011-47BA-AE8F-EF94ACC90F24}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{1B1FDC13-0AAE-40D3-8CEB-66981A65EBC4}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{25C4744A-5C0A-46AF-B18E-49D5703F4999}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2A3385AC-FED5-4E9B-9A45-2C10272572DA}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{3391C87D-EA4A-4CFC-B7B3-4D90883C6199}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{42C7315A-AF87-431A-8052-685A104A11D8}" = lport=20994 | protocol=6 | dir=in | name=bitcomet 20994 tcp |
"{4BCB884D-B3C5-40BE-B20F-28C194458469}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{506C8322-8D0E-4C1B-AAED-958607AB6BE1}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{5D6EEFAE-7E9D-4582-A7F4-3BE96DCC61A5}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{6235F032-441E-4741-A015-8C863612E21E}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{6C4BE822-7C68-42EF-B7AC-FD32E571DDC6}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{76B3D70E-9EBC-4F2A-8F31-E34867AB615F}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{79AF1507-399D-4A43-A0D7-6B3D297CFBC0}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{7AB0AC9D-70F8-43F3-82DD-0902DCD93D51}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{80C1DFE8-CB08-44A4-ADE1-177BCCCC7A86}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{8B5665A7-8C1F-4FCE-9810-A001C1945578}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{A814BDDA-C2A4-4B9E-A671-4EF279BCAB00}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{AC4BB64F-1AC5-4FBF-98EA-F7649D2F84D2}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{AC624DA1-71B0-41C7-B030-B8C5ED25415B}" = lport=2869 | protocol=6 | dir=in | app=system |
"{AD4276F0-54FC-4993-9AFD-C58AC660A70D}" = lport=20994 | protocol=17 | dir=in | name=bitcomet 20994 udp |
"{B2645055-FF28-4B92-AC7D-15D992755ECF}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{BC9A4E59-44E8-4244-8EA7-77AE7056D1C0}" = lport=3724 | protocol=6 | dir=in | name=blizzard downloader: 3724 |
"{CBF03D28-BB81-4060-81D4-6A356070480E}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{CC874335-2AD4-471D-926D-D4772CCAC271}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{D2A200C3-0042-41DC-9628-3BB6EA89B377}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{DA9D4068-05EC-458D-83F5-80824052C34C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DE7CF3C9-5EA3-4084-BEEC-C17FD1C5629B}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{E0A7DC06-70FC-4151-BA19-6486EE30B355}" = lport=6881 | protocol=6 | dir=in | name=war thunder |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02A1BE7A-7255-4308-9974-C47228B58A1F}" = protocol=17 | dir=in | app=c:\program files\goforfiles\goforfilesdl.exe |
"{036BCDA6-FC18-4DA2-8F1E-9EBE93A381B6}" = protocol=6 | dir=in | app=c:\program files\expressfiles\expressfiles.exe |
"{05AFC380-8F74-4B83-959B-F2B701612435}" = protocol=6 | dir=in | app=c:\program files\expressfiles\expressdl.exe |
"{0672A6FA-99E0-4C96-AF74-327DDCCD4650}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{08DA73A5-80D7-4680-BD99-088FCA1CA72B}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{0D3F8A89-2FF2-4B46-A7E2-35219F05569F}" = protocol=17 | dir=in | app=c:\program files\diablo iii\diablo iii.exe |
"{0D6F333B-11C7-4833-A71D-CF09D7D838C1}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\dota 2 beta\dota.exe |
"{10972EF3-E53A-4523-84C0-9E55B2EACCC8}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe |
"{12FF4425-D392-4873-B592-F9D20D7CB8A6}" = protocol=17 | dir=in | app=c:\program files\ubisoft\assassin's creed revelations\acrmp.exe |
"{1803A63F-21D0-408C-BD02-644DF9FB574B}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{1AF4A98F-E096-442C-9632-D13DF9094F57}" = protocol=17 | dir=in | app=c:\program files\konami\pro evolution soccer 2009\pes2009.exe |
"{1E99F32E-318D-424F-8D27-5175138CCCED}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe |
"{23DE5D4E-9864-4D69-8EB8-D286D3EDE0F1}" = protocol=17 | dir=in | app=c:\users\šalomoun\downloads\solutoinstaller.exe |
"{23E72918-6EF9-4E1E-A6D4-6C18232ACAD6}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{278E536B-23BE-4799-8D7C-B1E73B329D2D}" = dir=in | app=c:\program files\protected search\protectedsearch.exe |
"{2F2CE4DF-1DF0-48E4-B032-F5A08571306A}" = protocol=6 | dir=in | app=c:\program files\goforfiles\goforfilesdl.exe |
"{31448BFC-8597-4FCA-955D-9A451B2909DF}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1225\agent.exe |
"{325305E7-F9FA-41EF-BB2D-9AB7923B7C92}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{32F75296-E7B7-47F9-8C21-86F49E6607FA}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\dota 2 beta\dota.exe |
"{35559375-7A76-42CE-BBE0-26BC6C5C1BDD}" = protocol=6 | dir=in | app=c:\program files\diablo iii\diablo iii.exe |
"{36DF919F-C604-450D-9F43-00435042F37A}" = protocol=6 | dir=in | app=c:\program files\ubisoft\assassin's creed revelations\acrmp.exe |
"{3DF6D9BC-A05D-482B-824A-3C827168ED11}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{3FCDC62A-0DC9-440B-82F9-2DB8792D7D9C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe |
"{4159D71F-8CE2-4756-9885-46BA1501BDCD}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\sniper elite v2\bin\sniperelitev2.exe |
"{448B0FC4-4F8C-4257-98E9-A8ADFF0C8450}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\dota 2 beta\dota.exe |
"{45428BBC-9F93-4C1F-A214-67361035029A}" = protocol=17 | dir=in | app=c:\program files\expressfiles\expressfiles.exe |
"{57BCB093-4E32-45D9-B614-0F567A7CFE6C}" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{586A48B1-72E3-4BE0-AF09-5157357D6433}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{58BFA4E7-E153-4E0A-944A-08674B452D25}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"{5BCF48DF-BD25-43E4-8E90-58782A9856B8}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\torchlight ii\torchlight2.exe |
"{5F0C7CB5-AC86-40C4-A7F3-3A6043B735BA}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe |
"{68D77304-49AC-45A6-8C1A-CC2503D8CEF7}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe |
"{6928D72A-A084-4DAD-B54B-94E2C54F3154}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1225\agent.exe |
"{69BFA8AF-9AC0-4683-BA0E-435845EF8A2B}" = protocol=17 | dir=in | app=c:\program files\ubisoft\assassin's creed brotherhood\acbmp.exe |
"{6D543521-F7C7-4437-B9A7-77741ABEDE08}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\dota 2 beta\dota.exe |
"{6DD44578-8B11-41D1-A397-F4E0B31D4E1E}" = protocol=17 | dir=in | app=c:\program files\rockstar games\rockstar games social club\rgsclauncher.exe |
"{6E00AB83-35A1-477A-BD75-AFBF265D97D0}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\sniper elite v2\bin\sniperelitev2.exe |
"{706344F8-6707-406D-957E-4AD73DB3D2E4}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{776749B3-949C-48A8-B42C-F15CC71FBE5C}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{79E55151-9810-4F6F-80A9-AF4050FA5A51}" = protocol=6 | dir=in | app=c:\program files\rockstar games\rockstar games social club\rgsclauncher.exe |
"{806CD05D-1FEF-41B7-B01C-55F7008D8E34}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2328\agent.exe |
"{8BAD484A-421C-46AC-AB6B-49E69621492D}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe |
"{8BFEEC3B-EE23-4A09-983D-333F913DA036}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\dota 2 beta\dota.exe |
"{95499BCE-5725-4097-B2EB-1401E38A3925}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1637\agent.exe |
"{969F3720-6349-46E3-9218-12C5BA52BDD9}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe |
"{983A3B1A-BB72-4632-BEF0-CF0142D44893}" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{986B5B16-40F5-4A54-87F2-E50310261F6B}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\torchlight ii\modlauncher.exe |
"{9C3981A7-D54F-4CDB-BC31-886671C84922}" = protocol=6 | dir=in | app=c:\program files\konami\pro evolution soccer 2009\pes2009.exe |
"{9E4493BD-44C7-4591-9880-BFD6F07B4625}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2328\agent.exe |
"{A8531098-B64E-4F69-95D3-922DE889C7E3}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\torchlight ii\torchlight2.exe |
"{B3F3879F-3EDE-43AA-93CB-A4066DE11EC3}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\dota 2 beta\dota.exe |
"{B6824965-F941-4D55-BD0A-D7A96BF8DA30}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe |
"{C0582CF8-08FE-4DD6-BD98-56F935ABF1AD}" = dir=in | app=c:\users\šalomoun\appdata\local\torch\plugins\torrent\torchtorrent.exe |
"{C7EFD934-4BA0-4434-A43D-93A636CAF4F8}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{C8EC4D4B-2EBF-45EF-9928-354415025D5B}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\torchlight ii\modlauncher.exe |
"{D2D5DDE4-F52C-42AD-A8BB-79221D708321}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"{D73DA24D-EC8B-4030-8F06-9F46B97E842A}" = protocol=6 | dir=in | app=c:\program files\goforfiles\goforfiles.exe |
"{DF9D488A-4A98-42D3-AF52-A59FC3FF3717}" = protocol=6 | dir=in | app=c:\program files\konami\pro evolution soccer 2013\pes2013.exe |
"{E021EB74-D1ED-4186-BC09-2705B0ECB62A}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-x.x.x.x-4.0.0.12911-eu-downloader.exe |
"{E10396E0-0082-4D69-A0D5-85FC6C2ADF22}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe |
"{E58FC33F-399C-462C-9A1E-A3E14B09A92C}" = protocol=6 | dir=in | app=c:\program files\ubisoft\assassin's creed brotherhood\acbmp.exe |
"{E5A98EA2-A8DC-4AA7-8393-11E44465396D}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{E77757DF-4854-43C2-B6F1-5CEFF2E43841}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{E9FAEDF1-CB94-4D8F-A813-D1C9C136EE84}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{EA3C76DB-2760-4752-BA51-71699AE11F95}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{EA68E875-8D83-4BC5-857A-1391D1F516B2}" = protocol=17 | dir=in | app=c:\program files\expressfiles\expressdl.exe |
"{EB5C5733-D8A1-4A63-BFA7-A3827663F43C}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-x.x.x.x-4.0.0.12911-eu-downloader.exe |
"{EB7F184F-EF98-4631-9B28-C349857C3153}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe |
"{F04F7DCD-978F-413E-9647-C1A51EA925E6}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1637\agent.exe |
"{F144FA6A-8FFC-4590-8B9A-0DF2D6052D80}" = protocol=6 | dir=in | app=c:\users\šalomoun\downloads\solutoinstaller.exe |
"{F8168BC5-211D-4ACD-A616-5E51724B6430}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{F86825AA-0AB7-4B0D-97ED-3791A7BA813D}" = protocol=17 | dir=in | app=c:\program files\konami\pro evolution soccer 2013\pes2013.exe |
"{FEA1B46E-381D-4718-82C7-20B64255E991}" = protocol=17 | dir=in | app=c:\program files\goforfiles\goforfiles.exe |
"TCP Query User{0F7F7CC7-2B1C-4BEC-8979-FA0A4F4604DE}C:\program files\ubisoft\assassin's creed iii\ac3sp.exe" = protocol=6 | dir=in | app=c:\program files\ubisoft\assassin's creed iii\ac3sp.exe |
"TCP Query User{19D9A2EA-7D9E-48C2-BABE-A45A9F6EBBC4}C:\program files\steam\steamapps\madl851\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\madl851\team fortress 2\hl2.exe |
"TCP Query User{21E255E3-CF23-46A4-A741-C69684E1152D}C:\program files\fifa 12\game\fifa.exe" = protocol=6 | dir=in | app=c:\program files\fifa 12\game\fifa.exe |
"TCP Query User{3666A441-8A54-405D-9419-E6B99CEF458A}C:\program files\ea sports\fifa 11\game\fifa.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\fifa 11\game\fifa.exe |
"TCP Query User{38375A7B-9404-470C-A040-D6EC4527D31A}C:\program files\ea sports\fifa 11 demo\game\fifa.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\fifa 11 demo\game\fifa.exe |
"TCP Query User{56712018-A277-46C3-BEBA-34C23DB3D7C1}C:\users\šalomoun\downloads\diablo-iii-8370-engb-installer-downloader.exe" = protocol=6 | dir=in | app=c:\users\šalomoun\downloads\diablo-iii-8370-engb-installer-downloader.exe |
"TCP Query User{5EED5C83-EB15-457E-9210-960F2E02AE9F}C:\program files\ea sports\nhl 09\nhl2009.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\nhl 09\nhl2009.exe |
"TCP Query User{62E6E408-F855-4A6E-A826-3E1D6B2D2162}C:\program files\orcs must die 2\build\release\orcsmustdie2.exe" = protocol=6 | dir=in | app=c:\program files\orcs must die 2\build\release\orcsmustdie2.exe |
"TCP Query User{69189BDF-3C8E-4662-ACDC-456EED9B4B6E}C:\users\šalomoun\appdata\local\temp\gw2.exe" = protocol=6 | dir=in | app=c:\users\šalomoun\appdata\local\temp\gw2.exe |
"TCP Query User{A093F181-4769-439F-9177-2333EFD3B751}C:\program files\call of duty black ops 2\t6sp.exe" = protocol=6 | dir=in | app=c:\program files\call of duty black ops 2\t6sp.exe |
"TCP Query User{B6424C69-5F4D-43D1-BCE1-5AF101853901}C:\program files\thq\saints row the third\saintsrowthethird.exe" = protocol=6 | dir=in | app=c:\program files\thq\saints row the third\saintsrowthethird.exe |
"TCP Query User{B8EC4E03-6D86-419F-A3B9-D537146F3B26}C:\program files\activision\call of duty - black ops\blackops.exe" = protocol=6 | dir=in | app=c:\program files\activision\call of duty - black ops\blackops.exe |
"TCP Query User{D3776427-EC36-41ED-8759-7781F038DD0E}C:\program files\guild wars 2\gw2.exe" = protocol=6 | dir=in | app=c:\program files\guild wars 2\gw2.exe |
"UDP Query User{069A5A77-18D8-48B1-A975-741BE98BA6E4}C:\program files\call of duty black ops 2\t6sp.exe" = protocol=17 | dir=in | app=c:\program files\call of duty black ops 2\t6sp.exe |
"UDP Query User{08D3C7DA-ED73-4992-92ED-590FA6284C40}C:\program files\thq\saints row the third\saintsrowthethird.exe" = protocol=17 | dir=in | app=c:\program files\thq\saints row the third\saintsrowthethird.exe |
"UDP Query User{101B955E-6C88-487F-8641-C52CA1C6A938}C:\program files\steam\steamapps\madl851\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\madl851\team fortress 2\hl2.exe |
"UDP Query User{22FE3DD6-F45E-41F0-A414-BF68F1B1FD57}C:\users\šalomoun\appdata\local\temp\gw2.exe" = protocol=17 | dir=in | app=c:\users\šalomoun\appdata\local\temp\gw2.exe |
"UDP Query User{2F5D9079-774F-4777-8915-1B765E5AC8AC}C:\program files\ea sports\fifa 11 demo\game\fifa.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\fifa 11 demo\game\fifa.exe |
"UDP Query User{42E539C2-5F0E-4DE0-8CF3-88521DAF25F0}C:\users\šalomoun\downloads\diablo-iii-8370-engb-installer-downloader.exe" = protocol=17 | dir=in | app=c:\users\šalomoun\downloads\diablo-iii-8370-engb-installer-downloader.exe |
"UDP Query User{66C410A2-F71B-470F-B2DE-273853C49101}C:\program files\ea sports\fifa 11\game\fifa.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\fifa 11\game\fifa.exe |
"UDP Query User{688B5A01-2881-4388-888E-5D953ADE0906}C:\program files\activision\call of duty - black ops\blackops.exe" = protocol=17 | dir=in | app=c:\program files\activision\call of duty - black ops\blackops.exe |
"UDP Query User{732CF3A4-8421-471E-9734-974A5D00DEDE}C:\program files\orcs must die 2\build\release\orcsmustdie2.exe" = protocol=17 | dir=in | app=c:\program files\orcs must die 2\build\release\orcsmustdie2.exe |
"UDP Query User{C49BB43C-7042-4EF2-8220-F513E14F6119}C:\program files\ea sports\nhl 09\nhl2009.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\nhl 09\nhl2009.exe |
"UDP Query User{D80FBDF2-10BD-4C1A-8446-AA5E2AEE87D5}C:\program files\ubisoft\assassin's creed iii\ac3sp.exe" = protocol=17 | dir=in | app=c:\program files\ubisoft\assassin's creed iii\ac3sp.exe |
"UDP Query User{D9585AE5-B5FA-47A3-B945-45F976B94EB7}C:\program files\guild wars 2\gw2.exe" = protocol=17 | dir=in | app=c:\program files\guild wars 2\gw2.exe |
"UDP Query User{F3C6535C-61EC-442C-B6E9-968BF17D248B}C:\program files\fifa 12\game\fifa.exe" = protocol=17 | dir=in | app=c:\program files\fifa 12\game\fifa.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0DEA94ED-915A-4834-A87E-388D012C8E02}" = Medal of Honor Allied Assault
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D FurMark 1.12.0
"{26A24AE4-039D-4CA4-87B4-2F83217010FF}" = Java 7 Update 10
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{459699C3-9430-4381-964B-4248D87B49F9}" = Apple Mobile Device Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4F2CE68F-EDBB-4592-BF07-5AC930A51029}" = Nero 7 Ultra Edition
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{69438B37-FC57-40E1-BB40-C4C64AC98305}" = AMD OverDrive Beta
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware
"{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}" = Microsoft Security Client
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7B1AF68B-4606-4152-9991-1E9D4FF5F0FA}" = Microsoft Antimalware Service CS-CZ Language Pack
"{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX
"{859B9BCA-5376-4566-9F88-C6C9DAA7A925}" = Microsoft Security Client CS-CZ Language Pack
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9D15E813-0C26-41E7-ABC5-3EB06FF1B3CF}" = Assassin's Creed (R) III
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{B0261E53-B6F1-474A-864B-E7C3CBF468E0}" = iTunes
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 327.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 327.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 327.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.6.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 326.01
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.0725
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 8.3.14
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.3.26.4
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.5
"{CCE825DB-347A-4004-A186-5F4A6FDD8547}" = Apple Application Support
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F2B5A2A7-2DF9-4361-8BD5-362714528B51}" = NHL® 09
"{F6197679-051D-4E3E-9757-4D5CDA6D658B}" = Microsoft Antimalware Service CS-CZ Language Pack
"Adobe Flash Player ActiveX" = Adobe Flash Player 13 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 13 Plugin
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"Diablo III" = Diablo III
"GOM Player" = GOM Player
"Google Chrome" = Google Chrome
"Hamachi" = Hamachi 1.0.3.0
"Hi Suite" = HiSuite
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OCCT" = OCCT 4.3.1
"Steam App 200710" = Torchlight II
"Steam App 35450" = Rising Storm/Red Orchestra 2 Multiplayer
"Steam App 570" = Dota 2
"Steam App 63380" = Sniper Elite V2
"WinRAR archiver" = WinRAR 4.01 (32-bit)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 1.6.2014 7:03:14 | Computer Name = šalomoun-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 1.6.2014 7:40:37 | Computer Name = šalomoun-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 1.6.2014 7:40:37 | Computer Name = šalomoun-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 1.6.2014 13:00:20 | Computer Name = šalomoun-PC | Source = Windows Backup | ID = 4103
Description =

Error - 1.6.2014 14:14:44 | Computer Name = šalomoun-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 1.6.2014 14:14:44 | Computer Name = šalomoun-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 1.6.2014 15:02:39 | Computer Name = šalomoun-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 1.6.2014 15:02:39 | Computer Name = šalomoun-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 1.6.2014 15:44:00 | Computer Name = šalomoun-PC | Source = NvStreamSvc | ID = 131073
Description =

Error - 1.6.2014 15:44:00 | Computer Name = šalomoun-PC | Source = NvStreamSvc | ID = 131073
Description =

[ System Events ]
Error - 4.6.2014 16:00:07 | Computer Name = šalomoun-PC | Source = Service Control Manager | ID = 7031
Description = Služba Microsoft Antimalware Service byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 15000 milisekund: Restartovat
službu.

Error - 5.6.2014 8:18:27 | Computer Name = šalomoun-PC | Source = Service Control Manager | ID = 7000
Description = Služba Util DiVapton neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 5.6.2014 8:18:29 | Computer Name = šalomoun-PC | Source = ipnathlp | ID = 30013
Description =

Error - 5.6.2014 9:26:16 | Computer Name = šalomoun-PC | Source = ipnathlp | ID = 31004
Description =

Error - 5.6.2014 9:58:58 | Computer Name = šalomoun-PC | Source = ipnathlp | ID = 30013
Description =

Error - 5.6.2014 9:59:10 | Computer Name = šalomoun-PC | Source = ipnathlp | ID = 30013
Description =

Error - 5.6.2014 10:11:50 | Computer Name = šalomoun-PC | Source = Service Control Manager | ID = 7000
Description = Služba Util DiVapton neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 5.6.2014 10:11:52 | Computer Name = šalomoun-PC | Source = ipnathlp | ID = 30013
Description =

Error - 5.6.2014 10:53:56 | Computer Name = šalomoun-PC | Source = Service Control Manager | ID = 7000
Description = Služba Util DiVapton neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 5.6.2014 10:53:58 | Computer Name = šalomoun-PC | Source = ipnathlp | ID = 30013
Description =


< End of report >

[Aurelius]

OTL logfile created on: 5.6.2014 17:02:40 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\šalomoun\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,53 Gb Available Physical Memory | 76,70% Memory free
4,00 Gb Paging File | 3,36 Gb Available in Paging File | 83,98% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 143,14 Gb Total Space | 28,18 Gb Free Space | 19,68% Space Free | Partition Type: NTFS

Computer Name: ŠALOMOUN-PC | User Name: šalomoun | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\šalomoun\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation)


========== Modules (No Company Name) ==========


========== Services (SafeList) ==========

SRV - (Util DiVapton) -- C:\Program Files\DiVapton\bin\utilDiVapton.exe File not found
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (Stereo Service) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (NvStreamSvc) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation)
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (HiSuiteOuc.exe) -- C:\ProgramData\HiSuiteOuc\HiSuiteOuc.exe ()
SRV - (HuaweiHiSuiteService.exe) -- C:\ProgramData\HandSetService\HuaweiHiSuiteService.exe ()
SRV - (AODService) -- C:\Program Files\AMD\OverDrive\AODAssist.exe ()
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (NisSrv) -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe (Microsoft Corporation)
SRV - (MsMpSvc) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (WinRing0_1_2_0) -- C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys File not found
DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
DRV - (tsusbhub) -- system32\drivers\tsusbhub.sys File not found
DRV - (Synth3dVsc) -- System32\drivers\synth3dvsc.sys File not found
DRV - (MBAMSwissArmy) -- C:\Windows\system32\drivers\MBAMSwissArmy.sys File not found
DRV - (cpuz136) -- C:\Windows\TEMP\cpuz136\cpuz136_x32.sys File not found
DRV - (cpuz135) -- C:\Users\ALOMOU~1\AppData\Local\Temp\cpuz135\cpuz135_x32.sys File not found
DRV - (ajt0v5jr) -- File not found
DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (Disc Soft Ltd)
DRV - (sptd) -- C:\Windows\System32\drivers\sptd.sys (Duplex Secure Ltd.)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (nvvad_WaveExtensible) -- C:\Windows\System32\drivers\nvvad32v.sys (NVIDIA Corporation)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (AODDriver4.2.0) -- C:\Program Files\AMD\OverDrive\i386\AODDriver2.sys (Advanced Micro Devices)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (NisDrv) -- C:\Windows\System32\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV - (MpNWMon) -- C:\Windows\System32\drivers\MpNWMon.sys (Microsoft Corporation)
DRV - (Serial) -- C:\Windows\System32\drivers\serial.sys (Brother Industries Ltd.)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (netr28u) -- C:\Windows\System32\drivers\netr28u.sys (Ralink Technology Corp.)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Users\šalomoun\Desktop
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://www.google.com
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{233A3E6C-8D49-463A-8F9F-BBE2C78934C5}: "URL" = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{3A3D3820-81E2-4303-9897-B41DFAAB04DD}: "URL" = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{894E298C-52F4-4C01-A726-0AB0FB6DDA7D}: "URL" = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{B9C3ED2D-21BF-43F1-8A6F-9A42EB86E1FF}: "URL" = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{C273DDF9-9E88-450B-A4CA-4B78AC565901}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{C329E9AA-B87C-4A43-A7EF-BA5273BD05C6}: "URL" = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{E8095E47-DFE0-456B-BFEF-63E36B83C8FE}: "URL" = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{ECC992ED-F197-4CB4-A3AF-BAE64FDEE503}: "URL" = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: C:\Program Files\VideoLAN\VLC\npvlc.dll File not found
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll File not found


[2014.04.18 22:42:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\šalomoun\AppData\Roaming\Mozilla\Extensions
[2014.04.18 22:50:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\šalomoun\AppData\Roaming\Mozilla\Firefox\Profiles\h4pr3j9e.default\extensions

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
CHR - plugin: Error reading preferences file
CHR - Extension: Dokumenty Google = C:\Users\šalomoun\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.6_0\
CHR - Extension: Disk Google = C:\Users\šalomoun\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\šalomoun\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: VyhledávánĂ­ Google = C:\Users\šalomoun\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Peněženka Google = C:\Users\šalomoun\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\šalomoun\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2014.06.01 11:16:36 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105 File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000031 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000032 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000033 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000034 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab.co ... .5.1.0.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{24FC7489-FA02-489C-942E-1E04DEACCA6C}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{42ACFE0C-F9D0-490D-815E-98B0187928FA}: NameServer = 172.16.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EE928C34-4B07-41BE-A09A-893F11660DF4}: NameServer = 172.16.0.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014.06.04 21:55:55 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014.06.01 21:34:05 | 000,000,000 | ---D | C] -- C:\Users\šalomoun\Desktop\maturita 2015
[2014.06.01 19:21:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014.06.01 15:38:54 | 000,000,000 | ---D | C] -- C:\Users\šalomoun\Documents\NHL09
[2014.06.01 12:44:59 | 000,000,000 | ---D | C] -- C:\Users\šalomoun\AppData\Roaming\Runscanner.net
[2014.06.01 12:07:42 | 000,000,000 | -HSD | C] -- C:\Windows\System32\AI_RecycleBin
[2014.06.01 12:06:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Soluto
[2014.06.01 11:19:11 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2014.06.01 11:18:33 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014.05.31 15:14:40 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2014.05.30 19:22:55 | 000,000,000 | ---D | C] -- C:\Program Files\EA Sports
[2014.05.30 16:01:33 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2014.05.29 14:48:10 | 000,000,000 | ---D | C] -- C:\ProgramData\RogueKiller
[2014.05.28 17:33:43 | 000,000,000 | ---D | C] -- C:\Windows\System32\MpEngineStore
[2014.05.28 17:14:48 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\Windows\System32\sqlite3.dll
[2014.05.28 16:36:10 | 000,000,000 | ---D | C] -- C:\Users\šalomoun\AppData\Local\Diagnostics
[2014.05.28 14:21:49 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2014.05.28 14:11:32 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2014.05.28 13:29:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014.05.23 16:21:05 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2014.05.21 15:03:27 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox

========== Files - Modified Within 30 Days ==========

[2014.06.05 17:00:59 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.06.05 17:00:59 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.06.05 16:54:01 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.06.05 16:53:58 | 000,000,387 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
[2014.06.05 16:53:52 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.06.05 16:53:20 | 1610,014,720 | -HS- | M] () -- C:\hiberfil.sys
[2014.06.05 16:42:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.06.05 16:25:00 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.06.05 16:03:21 | 000,026,624 | ---- | M] () -- C:\Windows\System32\drivers\TrueSight.sys
[2014.06.05 14:35:56 | 000,000,215 | ---- | M] () -- C:\Users\šalomoun\Desktop\Sniper Elite V2.url
[2014.06.01 19:21:56 | 000,002,165 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014.06.01 14:16:32 | 000,001,902 | ---- | M] () -- C:\Users\Public\Desktop\NHL® 09.lnk
[2014.06.01 12:17:19 | 000,000,193 | ---- | M] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2014.06.01 11:16:36 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2014.05.31 11:49:29 | 000,139,112 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2014.05.31 11:49:19 | 000,280,792 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2014.05.31 11:46:13 | 000,280,856 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2014.05.28 18:54:53 | 000,683,252 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2014.05.28 18:54:53 | 000,660,538 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014.05.28 18:54:53 | 000,145,602 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2014.05.28 18:54:53 | 000,126,118 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014.05.28 17:20:11 | 000,003,163 | ---- | M] () -- C:\Users\šalomoun\rgmnr
[2014.05.23 16:26:11 | 000,000,045 | ---- | M] () -- C:\Windows\System32\initdebug.nfo
[2014.05.21 15:42:26 | 000,692,400 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014.05.21 15:42:26 | 000,070,832 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl

========== Files Created - No Company Name ==========

[2014.06.05 14:35:56 | 000,000,215 | ---- | C] () -- C:\Users\šalomoun\Desktop\Sniper Elite V2.url
[2014.06.01 19:21:56 | 000,002,165 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014.06.01 19:20:33 | 000,000,944 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.06.01 19:20:32 | 000,000,940 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.06.01 14:16:32 | 000,001,902 | ---- | C] () -- C:\Users\Public\Desktop\NHL® 09.lnk
[2014.06.01 12:07:46 | 000,000,193 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2014.05.29 14:48:11 | 000,026,624 | ---- | C] () -- C:\Windows\System32\drivers\TrueSight.sys
[2014.05.01 08:51:13 | 000,003,163 | ---- | C] () -- C:\Users\šalomoun\rgmnr
[2014.04.30 21:18:50 | 000,234,010 | ---- | C] () -- C:\Windows\System32\poclbm130302GeForce GT 630gv1w256l4.bin
[2014.04.30 21:18:44 | 000,000,000 | ---- | C] () -- C:\Users\šalomoun\regbcm
[2014.04.30 20:21:00 | 000,000,161 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2014.04.26 09:52:19 | 000,139,112 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2014.04.26 09:51:49 | 000,280,792 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2014.04.26 09:51:23 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2013.06.09 16:21:50 | 000,000,745 | ---- | C] () -- C:\Windows\CoD.INI
[2013.05.13 17:38:12 | 003,361,114 | ---- | C] () -- C:\Windows\System32\nvcoproc.bin
[2012.12.29 00:16:06 | 000,011,264 | ---- | C] () -- C:\Windows\Launcher.exe
[2012.12.25 13:38:10 | 000,143,068 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2012.11.21 15:10:20 | 003,123,272 | R--- | C] () -- C:\Windows\System32\pbsvc.exe
[2012.10.21 14:44:02 | 000,000,476 | ---- | C] () -- C:\Users\šalomoun\AppData\Roaming\del.bat
[2012.10.09 15:18:56 | 000,007,602 | ---- | C] () -- C:\Users\šalomoun\AppData\Local\Resmon.ResmonCfg
[2012.09.16 18:39:02 | 000,000,151 | ---- | C] () -- C:\Windows\PhotoSnapViewer.INI
[2012.07.19 16:34:55 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2012.07.19 16:33:17 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2012.07.11 09:39:01 | 000,000,307 | ---- | C] () -- C:\Windows\game.ini
[2012.06.29 19:25:17 | 000,012,288 | ---- | C] () -- C:\Users\šalomoun\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.06.18 16:32:59 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2012.06.18 16:32:59 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2012.06.18 16:32:54 | 000,790,528 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2012.06.18 16:32:54 | 000,134,144 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2012.06.18 16:32:54 | 000,108,032 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2012.06.18 16:25:09 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012.06.18 16:25:09 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat

========== ZeroAccess Check ==========

[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014.04.20 15:45:17 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\AVG
[2013.12.23 14:35:15 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\BitComet
[2014.05.28 19:45:36 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\BitTorrent
[2014.04.06 12:04:13 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\DAEMON Tools Lite
[2012.12.25 22:15:56 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\DiskAid
[2012.12.30 15:07:05 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\iFunbox_UserCache
[2012.07.23 16:23:44 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\Leadertech
[2013.05.18 13:55:16 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\LucasArts
[2014.01.31 17:29:41 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\MotionDSP
[2013.11.30 19:26:20 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\openvr
[2014.04.05 18:58:15 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\Origin
[2013.01.06 16:58:46 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\ProtectDISC
[2012.12.02 10:53:32 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\PunkBuster
[2014.06.01 12:44:59 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\Runscanner.net
[2014.06.01 13:07:57 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\Seznam.cz
[2013.08.11 16:43:26 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\SpinTires
[2013.05.18 18:38:39 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\Sports Interactive
[2012.12.01 21:47:20 | 000,000,000 | ---D | M] -- C:\Users\šalomoun\AppData\Roaming\Ubisoft

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:890CC2F3

< End of report >

[Aurelius]

Memtest proběhl v pořádku 0 errors. Zajimavé je že třeba večer naběhl do 8s dnes odpoledne zase 30s

[jaro3]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV - (Util DiVapton) -- C:\Program Files\DiVapton\bin\utilDiVapton.exe File not found
DRV - (WinRing0_1_2_0) -- C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys File not found
DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
DRV - (tsusbhub) -- system32\drivers\tsusbhub.sys File not found
DRV - (Synth3dVsc) -- System32\drivers\synth3dvsc.sys File not found
DRV - (MBAMSwissArmy) -- C:\Windows\system32\drivers\MBAMSwissArmy.sys File not found
DRV - (cpuz136) -- C:\Windows\TEMP\cpuz136\cpuz136_x32.sys File not found
DRV - (cpuz135) -- C:\Users\ALOMOU~1\AppData\Local\Temp\cpuz135\cpuz135_x32.sys File not found
DRV - (ajt0v5jr) -- File not found
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{233A3E6C-8D49-463A-8F9F-BBE2C78934C5}: "URL" = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{3A3D3820-81E2-4303-9897-B41DFAAB04DD}: "URL" = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{894E298C-52F4-4C01-A726-0AB0FB6DDA7D}: "URL" = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{B9C3ED2D-21BF-43F1-8A6F-9A42EB86E1FF}: "URL" = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{C273DDF9-9E88-450B-A4CA-4B78AC565901}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{C329E9AA-B87C-4A43-A7EF-BA5273BD05C6}: "URL" = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{E8095E47-DFE0-456B-BFEF-63E36B83C8FE}: "URL" = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{ECC992ED-F197-4CB4-A3AF-BAE64FDEE503}: "URL" = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: C:\Program Files\VideoLAN\VLC\npvlc.dll File not found
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll File not found
[2014.04.18 22:42:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\šalomoun\AppData\Roaming\Mozilla\Extensions
[2014.04.18 22:50:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\šalomoun\AppData\Roaming\Mozilla\Firefox\Profiles\h4pr3j9e.default\extensions
CHR - plugin: Error reading preferences file
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab.co ... .5.1.0.cab (Reg Error: Key error.)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
@Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:890CC2F3

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Program Files\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\System32\drivers\etc\hosts.ics
C:\Windows\AutoKMS.ini
C:\Windows\System32\mlfcache.dat
C:\Users\šalomoun\AppData\Roaming\AVG

:Reg
:Commands
[resethosts]
[purity]
[emptytemp]
[start explorer]
[Reboot]


Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Windows\Launcher.exe
C:\Users\šalomoun\AppData\Roaming\del.bat

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

Nainstaluj si free antivir ( Avira , Avast nebo AVG

[Aurelius]

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service Util DiVapton stopped successfully!
Service Util DiVapton deleted successfully!
File C:\Program Files\DiVapton\bin\utilDiVapton.exe File not found not found.
Service WinRing0_1_2_0 stopped successfully!
Service WinRing0_1_2_0 deleted successfully!
File C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys File not found not found.
Service VGPU stopped successfully!
Service VGPU deleted successfully!
File System32\drivers\rdvgkmd.sys File not found not found.
Service tsusbhub stopped successfully!
Service tsusbhub deleted successfully!
File system32\drivers\tsusbhub.sys File not found not found.
Service Synth3dVsc stopped successfully!
Service Synth3dVsc deleted successfully!
File System32\drivers\synth3dvsc.sys File not found not found.
Service MBAMSwissArmy stopped successfully!
Service MBAMSwissArmy deleted successfully!
File C:\Windows\system32\drivers\MBAMSwissArmy.sys File not found not found.
Service cpuz136 stopped successfully!
Service cpuz136 deleted successfully!
File C:\Windows\TEMP\cpuz136\cpuz136_x32.sys File not found not found.
Service cpuz135 stopped successfully!
Service cpuz135 deleted successfully!
File C:\Users\ALOMOU~1\AppData\Local\Temp\cpuz135\cpuz135_x32.sys File not found not found.
Error: No service named ajt0v5jr was found to stop!
Service\Driver key ajt0v5jr not found.
File File not found not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{233A3E6C-8D49-463A-8F9F-BBE2C78934C5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{233A3E6C-8D49-463A-8F9F-BBE2C78934C5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3A3D3820-81E2-4303-9897-B41DFAAB04DD}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A3D3820-81E2-4303-9897-B41DFAAB04DD}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{894E298C-52F4-4C01-A726-0AB0FB6DDA7D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{894E298C-52F4-4C01-A726-0AB0FB6DDA7D}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B9C3ED2D-21BF-43F1-8A6F-9A42EB86E1FF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B9C3ED2D-21BF-43F1-8A6F-9A42EB86E1FF}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C273DDF9-9E88-450B-A4CA-4B78AC565901}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C273DDF9-9E88-450B-A4CA-4B78AC565901}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C329E9AA-B87C-4A43-A7EF-BA5273BD05C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C329E9AA-B87C-4A43-A7EF-BA5273BD05C6}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E8095E47-DFE0-456B-BFEF-63E36B83C8FE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E8095E47-DFE0-456B-BFEF-63E36B83C8FE}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ECC992ED-F197-4CB4-A3AF-BAE64FDEE503}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ECC992ED-F197-4CB4-A3AF-BAE64FDEE503}\ not found.
Prefs.js: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1 removed from extensions.enabledAddons
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\ubisoft.com/uplaypc\ deleted successfully.
C:\Users\šalomoun\AppData\Roaming\Mozilla\Extensions folder moved successfully.
C:\Users\šalomoun\AppData\Roaming\Mozilla\Firefox\Profiles\h4pr3j9e.default\extensions folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Starting removal of ActiveX control {E6F480FC-BD44-4CBA-B74A-89AF7842937D}
C:\Windows\Downloaded Program Files\SystemRequirementsLab.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E6F480FC-BD44-4CBA-B74A-89AF7842937D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6F480FC-BD44-4CBA-B74A-89AF7842937D}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E6F480FC-BD44-4CBA-B74A-89AF7842937D}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6F480FC-BD44-4CBA-B74A-89AF7842937D}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
ADS C:\ProgramData\TEMP:890CC2F3 deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Program Files\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
C:\Windows\System32\drivers\etc\hosts.ics moved successfully.
C:\Windows\AutoKMS.ini moved successfully.
C:\Windows\System32\mlfcache.dat moved successfully.
C:\Users\šalomoun\AppData\Roaming\AVG\AWL2014\TuningIndex folder moved successfully.
C:\Users\šalomoun\AppData\Roaming\AVG\AWL2014\StartUp Manager folder moved successfully.
C:\Users\šalomoun\AppData\Roaming\AVG\AWL2014\Dashboard folder moved successfully.
C:\Users\šalomoun\AppData\Roaming\AVG\AWL2014\Backups folder moved successfully.
C:\Users\šalomoun\AppData\Roaming\AVG\AWL2014 folder moved successfully.
C:\Users\šalomoun\AppData\Roaming\AVG\AWL\CrashDumps folder moved successfully.
C:\Users\šalomoun\AppData\Roaming\AVG\AWL folder moved successfully.
C:\Users\šalomoun\AppData\Roaming\AVG folder moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: aalomoun

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: All Users

User: Assassin's Creed Brotherhood

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 15938790 bytes
->Flash cache emptied: 0 bytes

User: hedev

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: çalomoun

User: šalomoun
->Temp folder emptied: 494267 bytes
->Temporary Internet Files folder emptied: 33502 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 339062600 bytes
->Flash cache emptied: 492 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 30478 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 339,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 06062014_132421

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[Aurelius]

https://www.virustotal.com/cs/file/93f0 ... 402054404/
https://www.virustotal.com/cs/file/a3cc ... 402054734/