OTL Extras logfile created on: 4/18/2013 7:48:23 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Matyáš\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3.91 Gb Total Physical Memory | 2.55 Gb Available Physical Memory | 65.34% Memory free
7.81 Gb Paging File | 5.93 Gb Available in Paging File | 75.90% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 453.52 Gb Total Space | 258.90 Gb Free Space | 57.09% Space Free | Partition Type: NTFS
Drive D: | 12.14 Gb Total Space | 1.45 Gb Free Space | 11.95% Space Free | Partition Type: NTFS
Computer Name: PAVEL-PC | User Name: Pavel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{10C4A4DC-DC10-4D70-8DEE-4B5D2B3B2248}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{145A4A32-0A4A-4D62-B386-ECCB233ACC1E}" = lport=138 | protocol=17 | dir=in | app=system |
"{2EEE0757-0155-4C1F-BC8E-C896F4C70574}" = lport=445 | protocol=6 | dir=in | app=system |
"{4E5FF2AB-E924-43E1-BD49-45D600C821BA}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{5306EBDD-520B-4C23-A75C-7CEA2833E420}" = rport=445 | protocol=6 | dir=out | app=system |
"{53798718-A7AA-4DC8-99D6-DBE5A72DB994}" = lport=137 | protocol=17 | dir=in | app=system |
"{860CF154-9C1D-4DB1-BBB1-BA55E0F99E14}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{889E4EC2-7F79-480C-886D-BA049AC5BCDF}" = rport=139 | protocol=6 | dir=out | app=system |
"{8C39CE87-ECC1-47C4-8ADC-471B6CD9F86C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B88709E8-0883-4BB8-A3F4-E74BDD9B363C}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F014A2A2-0AAA-4C1A-AFEB-0EDE8FC8771C}" = rport=137 | protocol=17 | dir=out | app=system |
"{F230395D-7072-4850-87CD-975FB3F7EF07}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F26B4241-2D09-4D40-8BDB-8945A2122DAC}" = lport=139 | protocol=6 | dir=in | app=system |
"{F60C9F28-8440-438E-9507-D2A81A725238}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{FAC1C6CB-600B-401E-9430-CEC609EA04CE}" = rport=138 | protocol=17 | dir=out | app=system |
"{FFD97D47-D151-4145-8BE0-0A14D49552AD}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0200C0B0-8589-49F4-AAAB-58EC93842824}" = protocol=6 | dir=in | app=c:\users\matyáš\appdata\roaming\utorrent\utorrent.exe |
"{0666FD48-8ABF-463E-914F-7EA27DD20198}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{09C2C453-AB7F-4209-904C-F6E36CED8826}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\aceofspades\aos.exe |
"{124A1CD2-B184-4943-BFDE-23C64A1C18E7}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysisdedicatedserver.exe |
"{143E381F-8BE2-414B-A441-409432A96FF2}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{1625E328-0050-4277-AA82-186475E8EFF5}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysis.exe |
"{1848DEF7-E67D-4208-8180-A3DDF3A132CD}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysisdedicatedserver.exe |
"{209F8CE0-78AE-46F5-808E-044F3F927166}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysis.exe |
"{24B1BA0D-074B-483C-AE0F-5954691F62C5}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{292982A8-04E4-4B8C-BBE0-B5EE9E864F7B}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{2AD64388-EE93-4FD2-8CCD-07456C357D21}" = protocol=6 | dir=in | app=c:\users\matyáš\appdata\local\temp\rar$exa0.870\microsoft office 2010 professional plus x64_x86 activator\keygen.exe |
"{2E2129E0-D10C-4ADD-9D2F-1825A7F4DFDF}" = protocol=17 | dir=in | app=c:\users\matyáš\appdata\local\temp\rar$exa0.870\microsoft office 2010 professional plus x64_x86 activator\keygen.exe |
"{2F81A388-35C5-4388-972D-14B599271A10}" = protocol=6 | dir=in | app=c:\program files (x86)\yourfiledownloader\yourfile.exe |
"{3F445CD8-7CDD-422B-BA3C-83266F0E06EA}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{3FB1CD55-6134-415D-B35D-A48EBA2F4A54}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{3FBCA5CE-8BB8-4D52-AC6A-89B9109384FE}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{467FE08C-C488-4EB6-AC0F-BE60A39EA072}" = protocol=6 | dir=in | app=c:\users\matyáš\appdata\local\temp\rar$exa0.087\microsoft office 2010 professional plus x64_x86 activator\keygen.exe |
"{47F61C97-A500-4BAA-BD04-24A5DAC473F9}" = protocol=6 | dir=in | app=c:\users\matyáš\appdata\local\hamachi\hamachi.exe |
"{4E1C64D7-3DAA-4799-8975-EAD4782090DB}" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"{5208EDCC-FEAF-49DA-BFF3-819494A6A1F9}" = protocol=6 | dir=in | app=c:\users\pavel\appdata\local\temp\keygen.exe |
"{597483EE-09B7-4C2E-BA83-6819E3B8A822}" = protocol=17 | dir=in | app=c:\program files (x86)\yourfiledownloader\yourfile.exe |
"{59903F80-0603-4633-8D69-D885261E7D00}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysis.exe |
"{6065C9E4-CDF0-43C3-A8CB-BC2061443DBA}" = protocol=17 | dir=in | app=c:\users\matyáš\appdata\roaming\utorrent\utorrent.exe |
"{6EE850CD-AB40-4117-9633-E302B4608539}" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\battlefield heroes\bfheroes.exe |
"{71D1C280-B46B-4026-B819-AB81DB9F5BD6}" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"{75DD62AD-43D0-467B-8970-CA772681C65F}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{76656881-7810-4A20-B986-969FCAB76128}" = protocol=17 | dir=in | app=c:\users\matyáš\appdata\local\temp\rar$exa0.087\microsoft office 2010 professional plus x64_x86 activator\keygen.exe |
"{782B72D9-B9B7-4174-9F88-6EA74D8A58FB}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{7C16C13E-59A8-4EE7-AE60-513A6F18309B}" = protocol=17 | dir=in | app=c:\users\pavel\appdata\local\temp\keygen.exe |
"{7EE36E39-DC9E-44EA-B2CA-6BBFE6099B63}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{83D5BEC5-BD12-422F-83EE-7A100C755B87}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{887AD091-33E4-4F61-8DF0-D4935277B5B8}" = protocol=17 | dir=in | app=c:\program files (x86)\yourfiledownloader\downloader.exe |
"{8A065061-BDD4-4D49-8868-C9C016D5988A}" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\battlefield heroes\bfheroes.exe |
"{94FFCF71-9BC8-4A3F-AE0B-B7B2230F375A}" = protocol=6 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe |
"{9CF8709C-C974-41AF-B603-EB49646E6538}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysisdedicatedserver.exe |
"{9D3E1952-1FCC-4A04-94A7-96CFC9CB69A2}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysisdedicatedserver.exe |
"{9D665BEA-37E3-439F-84AF-0272432504F3}" = protocol=6 | dir=in | app=c:\program files (x86)\sony mobile\update service\update service.exe |
"{A153C3C3-F6D9-4E86-B457-8D9E35B4883B}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{A2AE3537-5B82-43DF-885F-C66997BD4180}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A6DCA498-D2D2-42BB-88B3-6C2A6118C3AF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{A7F33E5F-214D-4D37-ADB5-20C4CB5EA127}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AB646142-7999-40C1-A410-A34E4C116136}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysis.exe |
"{ABB8FFEC-5010-4E2B-986F-19D1DDC70F00}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{ACEF7705-77BD-40E0-99FA-8F8706447501}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{B4A493E6-3C7A-4AB6-B0CC-0473EA9A36ED}" = protocol=17 | dir=in | app=c:\users\matyáš\appdata\local\hamachi\hamachi.exe |
"{B7ECF4BE-2DBA-4D9D-8C6E-3EA3CCC18C86}" = protocol=6 | dir=in | app=c:\program files (x86)\yourfiledownloader\downloader.exe |
"{BC812D8A-C226-46B2-8598-6588F4D68883}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{CDC9B190-0A99-4206-8C55-3E33D6D1C07E}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{D17C085B-0674-4005-B126-A77CDF5D42D3}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\aceofspades\aos.exe |
"{D629DD17-8A65-4BDA-9641-5F3B90066576}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D9C7F8E1-EBA2-4372-B427-3D85EB681F37}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E2593DA1-9D0B-4082-866D-8FAE0ACEB26D}" = protocol=17 | dir=in | app=c:\program files (x86)\sony mobile\update service\update service.exe |
"{E3646F86-5638-4939-8141-2B0722237F73}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E72DDA20-90A3-476F-BE4E-7E2A4771F82E}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{EE255BF3-5DEE-48B4-BE02-20D66766D6C8}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{F0018E1A-8F5F-45BC-A4AC-284571ED441A}" = protocol=17 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe |
"{FEB8DFD4-0E25-4C06-860D-0108DF3D7307}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"TCP Query User{2B3A4E49-A731-4FE3-A4DE-C6F67E2C2089}C:\program files (x86)\metin2\metin2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\metin2\metin2.exe |
"TCP Query User{34359E5F-F0B2-48CE-9FF4-6E196FB8D0B4}C:\users\pavel\appdata\local\directdownloader\directdownloader.exe" = protocol=6 | dir=in | app=c:\users\pavel\appdata\local\directdownloader\directdownloader.exe |
"TCP Query User{4A2BB6E5-D452-48A1-ABFC-8679839CE7B8}C:\users\matyáš\appdata\local\temp\rar$exa0.087\microsoft office 2010 professional plus x64_x86 activator\keygen.exe" = protocol=6 | dir=in | app=c:\users\matyáš\appdata\local\temp\rar$exa0.087\microsoft office 2010 professional plus x64_x86 activator\keygen.exe |
"TCP Query User{50248650-D703-4111-9975-FA4708BA192A}C:\program files\abc\alpine skiing & ski jumping\alpine skiing\alpineski.exe" = protocol=6 | dir=in | app=c:\program files\abc\alpine skiing & ski jumping\alpine skiing\alpineski.exe |
"TCP Query User{51FE781B-DAE0-45DC-B05E-7C7A7660E2BE}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"TCP Query User{5BC4BD96-3368-4A23-9F8A-3043B622605C}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"TCP Query User{60BC4C86-D91D-4D84-BEFA-4D0F97D21D80}C:\users\matyáš\appdata\local\temp\rar$exa0.870\microsoft office 2010 professional plus x64_x86 activator\keygen.exe" = protocol=6 | dir=in | app=c:\users\matyáš\appdata\local\temp\rar$exa0.870\microsoft office 2010 professional plus x64_x86 activator\keygen.exe |
"TCP Query User{64F324F2-27D2-423D-95ED-8DDC3A636DDC}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{7B265971-931D-4643-AE4F-4006CB4F70A2}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{802D2082-5831-4032-92A1-D4FC63A505AE}C:\program files\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\program files\world_of_tanks\worldoftanks.exe |
"TCP Query User{8456AA03-5E23-48BB-A27B-851903A0C240}C:\program files\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\program files\world_of_tanks\wotlauncher.exe |
"TCP Query User{8F5314D1-E73A-4BA0-940B-2A18D3AFEABB}C:\program files (x86)\steam\steamapps\pikachu__11\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\pikachu__11\team fortress 2\hl2.exe |
"TCP Query User{9F3196E2-47C0-471C-8F90-5F13B696A3D9}C:\program files (x86)\metin2\metin2client.bin" = protocol=6 | dir=in | app=c:\program files (x86)\metin2\metin2client.bin |
"TCP Query User{AFBAE923-B388-47B4-9E3D-6B2EDED2CB97}C:\program files (x86)\valve\hltv.exe" = protocol=6 | dir=in | app=c:\program files (x86)\valve\hltv.exe |
"TCP Query User{B627C5A3-F975-4B36-80C3-1EA2E09CD462}C:\users\matyáš\appdata\local\temp\rar$exa0.313\utorrent.exe" = protocol=6 | dir=in | app=c:\users\matyáš\appdata\local\temp\rar$exa0.313\utorrent.exe |
"TCP Query User{CE1F7DE9-4DD0-43F2-979C-02EA2A4EADFB}C:\program files (x86)\metin2\metin2client.bin" = protocol=6 | dir=in | app=c:\program files (x86)\metin2\metin2client.bin |
"TCP Query User{D8F4FB37-6C1B-48AA-862F-28D3A8965A65}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\battlefield heroes\bfheroes.exe |
"TCP Query User{E70BF016-ADF3-49B1-9BA3-3A22893F78CE}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"TCP Query User{E84A966D-7B72-4447-8927-232E69A065E9}C:\users\pavel\appdata\local\temp\keygen.exe" = protocol=6 | dir=in | app=c:\users\pavel\appdata\local\temp\keygen.exe |
"TCP Query User{EB426A8C-0E08-4BA1-AB68-0F2886744506}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"TCP Query User{FFE7CDC5-9A6B-4C73-AA23-6348969808D5}C:\program files (x86)\topcd\army men\army men rts\amrts.exe" = protocol=6 | dir=in | app=c:\program files (x86)\topcd\army men\army men rts\amrts.exe |
"UDP Query User{1E3C7D5F-00DB-4776-83DD-CBB7FEC296E4}C:\users\matyáš\appdata\local\temp\rar$exa0.087\microsoft office 2010 professional plus x64_x86 activator\keygen.exe" = protocol=17 | dir=in | app=c:\users\matyáš\appdata\local\temp\rar$exa0.087\microsoft office 2010 professional plus x64_x86 activator\keygen.exe |
"UDP Query User{1E3D60CC-FFCD-43B2-849A-149F003CF7EF}C:\program files (x86)\steam\steamapps\pikachu__11\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\pikachu__11\team fortress 2\hl2.exe |
"UDP Query User{215E3ED8-DB55-4976-8823-562468D53FB4}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{25886834-3CCF-4B8E-9D10-0BCB4F8EBE46}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\battlefield heroes\bfheroes.exe |
"UDP Query User{32938E79-BEFC-47EF-881A-2E193C782AF7}C:\users\matyáš\appdata\local\temp\rar$exa0.870\microsoft office 2010 professional plus x64_x86 activator\keygen.exe" = protocol=17 | dir=in | app=c:\users\matyáš\appdata\local\temp\rar$exa0.870\microsoft office 2010 professional plus x64_x86 activator\keygen.exe |
"UDP Query User{3D5C274C-2076-4AA5-8DD8-7A3DCCBA4261}C:\users\matyáš\appdata\local\temp\rar$exa0.313\utorrent.exe" = protocol=17 | dir=in | app=c:\users\matyáš\appdata\local\temp\rar$exa0.313\utorrent.exe |
"UDP Query User{3D9CF460-C3AC-471D-BDEE-B937BE95D7A1}C:\program files (x86)\metin2\metin2client.bin" = protocol=17 | dir=in | app=c:\program files (x86)\metin2\metin2client.bin |
"UDP Query User{439CB950-5DF4-4F64-A897-387D21DBB97C}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{564F1315-C912-45B5-93AE-40514D25E0DD}C:\program files\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\program files\world_of_tanks\worldoftanks.exe |
"UDP Query User{843633E6-7870-4AFF-901E-9BD498DD3C5C}C:\users\pavel\appdata\local\temp\keygen.exe" = protocol=17 | dir=in | app=c:\users\pavel\appdata\local\temp\keygen.exe |
"UDP Query User{8B324836-FA42-4454-9AA4-2D1F1396F97F}C:\users\pavel\appdata\local\directdownloader\directdownloader.exe" = protocol=17 | dir=in | app=c:\users\pavel\appdata\local\directdownloader\directdownloader.exe |
"UDP Query User{9674DC6D-85F3-4F12-A1DE-BA2DC4E4DB1E}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"UDP Query User{A4E5B32C-28E6-485F-8502-999F0C1075DC}C:\program files (x86)\metin2\metin2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\metin2\metin2.exe |
"UDP Query User{B0CA1D72-E3D8-46DB-8BA5-F86243103A4A}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{BEACEB0D-70A9-4BBB-B0CD-6FD27CDF5A38}C:\program files\abc\alpine skiing & ski jumping\alpine skiing\alpineski.exe" = protocol=17 | dir=in | app=c:\program files\abc\alpine skiing & ski jumping\alpine skiing\alpineski.exe |
"UDP Query User{C20818BD-C1FF-4CAC-B125-22DFAD130672}C:\program files (x86)\metin2\metin2client.bin" = protocol=17 | dir=in | app=c:\program files (x86)\metin2\metin2client.bin |
"UDP Query User{C5061D4F-1486-4995-B161-FBB53212762F}C:\program files (x86)\valve\hltv.exe" = protocol=17 | dir=in | app=c:\program files (x86)\valve\hltv.exe |
"UDP Query User{C5DA0E55-8AD9-4DD8-A6EA-B898EB76F697}C:\program files\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\program files\world_of_tanks\wotlauncher.exe |
"UDP Query User{CB781AF6-9717-4E29-8ED8-6906BE88A60C}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{CE9A61D2-EE65-4C40-9682-CCD1B086A591}C:\program files (x86)\topcd\army men\army men rts\amrts.exe" = protocol=17 | dir=in | app=c:\program files (x86)\topcd\army men\army men rts\amrts.exe |
"UDP Query User{F42668B5-8D2F-40FF-8440-D4266E6FA1FF}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1374CC63-B520-4f3f-98E8-E9020BF01CFF}" = Prostředí Windows XP Mode
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86417017FF}" = Java 7 Update 17 (64-bit)
"{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}" = HP Client Services
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{55B52830-024A-443E-AF61-61E1E71AFA1B}" = Device Access Manager for HP ProtectTools
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{64A3A4F4-B792-11D6-A78A-00B0D0170100}" = Java SE Development Kit 7 Update 10 (64-bit)
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{89FB1B35-AFEE-4DA6-A137-9459874EFFCC}" = HP ProtectTools Security Manager
"{8A0041CD-277C-4C1F-BFE4-7AC508B20B4C}" = Drive Encryption For HP ProtectTools
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2010
"{90140000-006D-0405-1000-0000000FF1CE}" = Microsoft Office Klikni a spusť 2010
"{987FE247-4E69-4A2E-A961-D14F901FDBF6}" = Logitech Webcam Software
"{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1" = VDownloader 3.9.1326
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}" = HP Auto
"{D79A02E9-6713-4335-9668-AAC7474C0C0E}" = HP Vision Hardware Diagnostics
"{E21BDB83-D7A7-45ED-85F2-C2496D25496D}" = Droid Explorer 0.8.8.8 (x64)
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.63.0
"HPProtectTools" = HP ProtectTools Security Manager
"lvdrivers_12.10" = Logitech Webcam Software Driver Package
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"WinRAR archiver" = WinRAR 4.20 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000E79B7-E725-4F01-870A-C12942B7F8E4}" = Crysis(R)
"{03046EBB-CB7C-4B98-BEFB-690EB955DA22}" = HP Setup
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{07A540AB-D785-11D5-8E89-0090275862A0}" = Corel Graphics Suite 11
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D637670-BC00-4FAC-8E00-518EB7F65091}" = Angry Birds Rio
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}" = Bing Bar
"{1E0AF527-0B8E-4F8A-BA27-CB3C359998C6}" = OpenOffice.org 3.4.1
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1" = World of Tanks
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216043FF}" = Java(TM) 6 Update 43
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{384FA0C0-BB19-4CA0-8DB4-5FD4E938277F}" = Notification Center
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = Recovery Manager
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}" = Google Earth
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.1
"{60C7709B-2EC1-4E45-A53C-B51034847B06}_is1" = ABC Edice PC her - Alpine Skiing & Ski Jumping
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}" = File Sanitizer For HP ProtectTools
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.1.1.0
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp" = WildTangent Games App (HP Games)
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7170BF54-7808-45EE-AB06-6BCE7A254E29}" = Angry Birds Space
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7F2A11F4-EAE8-4325-83EC-E3E99F85169E}" = HP Support Information
"{81F07A4F-A47E-4E0F-A75D-D24BD09BB2D8}" = CompuGroup Medical - (PC DOKTOR / PC DENT)
"{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}" = Battlefield Heroes
"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}_Office14.SingleImage_{2304F942-79D2-46F7-A512-269A7F5B7EFC}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-0000-0000000FF1CE}_Office14.SingleImage_{A162C5E6-7778-4D5B-9F0A-38F0122DD859}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0405-1000-0000000FF1CE}_Office14.SingleImage_{AB90513B-B892-41B5-8F8B-1D356A449652}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-0000-0000000FF1CE}_Office14.SingleImage_{8148DB19-71B1-4415-8B26-DF5B9E873FC3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}_Office14.SingleImage_{EEF3E2C0-135B-44DC-BEDD-7F01CFBEFF46}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{95140000-00AF-0405-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{9577B943-AEDD-462A-AF22-5F55BB3BFB1D}" = Bad Piggies
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A6F873F6-F266-4CE4-945D-DFC06388F2CC}" = Hledá se Nemo
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.6) - Czech
"{ADB7D0AC-9611-4AA9-8863-4066E2ADF197}" = Signer 4.5
"{AE856388-AFAD-4753-81DF-D96B19D0A17C}" = HP Setup Manager
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B489D5F8-D960-4399-9286-C59BF21991B5}" = Medvědí bratři
"{B69F28DF-CBB1-41B7-008A-210E4D0518FC}" = Harry Potter a Fénixův řád™
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B8AC1A89-FFD1-4F97-8051-E505A160F562}" = HP Odometer
"{BE1C9464-DEBB-4DA6-B19A-8EC634F22D73}" = HP Connect Solutions
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C01A86F5-56E7-101F-9BC9-E3F1025EB779}" = Intel(R) Identity Protection Technology 1.1.2.0
"{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}" = Camtasia Studio 7
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C615B4A6-DDE8-4325-BCF8-E53E913D95E9}_is1" = AMR to MP3 Converter 1.4
"{C9AAF970-4E7E-4C98-AD67-09C74379D345}" = Harry Potter and the Deathly Hallows™ - Part 1
"{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226}" = HP Support Assistant
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1" = VSO ConvertXtoDVD 5 (beta version)
"{D4006E71-FF32-44FF-AD5A-B5EE4389B825}_is1" = FlatOut2
"{D46BC537-E841-442A-861E-784DB19CA7C3}" = Microsoft Mouse Mischief
"{E9E34215-82EF-4909-BE2F-F581F0DC9062}" = DirectX for Managed Code Update (Summer 2004)
"{EC3DB6E1-023A-41C1-BB4C-CAFF25337278}" = Angry Birds Space
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.136
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FD1B1980-8CAB-4474-89F8-1245AF657AD1}" = Harry Potter a Princ Dvojí Krve™
"{Smajlici}_is1" = Smajlíci 1.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"ARMY MEN_is1" = ARMY MEN
"avast" = avast! Free Antivirus
"BlueStacks App Player" = BlueStacks App Player
"Clifford Adventure" = Clifford Thinking Adventures
"Clifford Learning Activities" = Clifford Learning Activities
"Counter-strike 1.6 CZ" = Counter-strike 1.6 CZ
"Counter-Strike 1.6 Standalone" = Counter-Strike 1.6 Standalone
"Drakensang Online" = Drakensang Online
"Emilka Holubová - Montezumův poklad" = Emilka Holubová - Montezumův poklad
"Hamachi" = Hamachi 1.0.2.5
"HP Keyboard_is1" = HP Desktop Keyboard
"InstallShield_{07A540AB-D785-11D5-8E89-0090275862A0}" = CorelDRAW Graphics Suite 11
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{A6F873F6-F266-4CE4-945D-DFC06388F2CC}" = Hledá se Nemo
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"LANGMaster Zábavná ŠKOLA_is1" = LANGMaster Zábavná ŠKOLA
"Logitech Vid" = Logitech Vid HD
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.75.0.1300
"Metin2_is1" = Metin2
"Mozilla Firefox 20.0.1 (x86 cs)" = Mozilla Firefox 20.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office14.Click2Run" = Microsoft Office Klikni a spusť 2010
"Office14.SingleImage" = Microsoft Office 2010 pro studenty a domácnosti
"PDF Complete" = PDF Complete Special Edition
"PunkBusterSvc" = PunkBuster Services
"rajče.net_is1" = rajče průvodce verze 1.59.40.255
"Rossmann FOTOSHOP" = Rossmann FOTOSHOP
"SONICHEROESTRIAL" = SONIC HEROES TRIAL
"Steam App 440" = Team Fortress 2
"Swords and Sandals 2" = Swords and Sandals 2 2.0
"TeamViewer 8" = TeamViewer 8
"Totalcmd" = Total Commander (Remove or Repair)
"Tux Paint Stamps_is1" = Tux Paint Stamps 2009-06-28
"Tux Paint_is1" = Tux Paint 0.9.21
"Update Engine" = Sony Ericsson Update Engine
"Update Service" = Sony Mobile Update Service
"uTorrent" = µTorrent
"VIP Access SDK" = VIP Access SDK (1.0.1.4)
"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime
"VLC media player" = VLC media player 2.0.6
"WildTangent hp Master Uninstall" = HP Games
"WinPcapInst" = WinPcap 4.1.1
"WTA-07799d11-c232-4b12-ab53-7aaa05be2573" = Mystery of Mortlake Mansion
"WTA-20da02f8-d96f-4223-aa70-2d8afffff966" = Blackhawk Striker 2
"WTA-23f8a636-ef4e-414f-a8a6-062243d09616" = Vacation Quest - The Hawaiian Islands
"WTA-383fe2b8-0a5c-48df-9a9a-3ca2c1444b6a" = Poker Superstars III
"WTA-43d4615e-4817-4274-a8d4-a76f3ece1c22" = Bejeweled 3
"WTA-51e043d2-8501-43ce-8229-cccc707250cb" = Polar Bowler
"WTA-536def80-f07b-463c-9d5a-a1f5b992d687" = Zuma Deluxe
"WTA-5c9b440e-a5d1-4443-895d-a8762fac7d1e" = Namco All-Stars: PAC-MAN
"WTA-66ecde79-c1f2-4d37-8b54-b2d7ecf659a6" = Blasterball 3
"WTA-70db9579-0b4d-48b5-9407-12e5b5519f30" = Bounce Symphony
"WTA-715a52b0-a13d-44c2-abf9-021a88651bf8" = Slingo Supreme
"WTA-73043038-00c4-4ebb-977d-b25ee40f05fe" = Final Drive: Nitro
"WTA-74f48ca7-6ac0-4419-a510-b1274ea08d34" = Governor of Poker 2 Premium Edition
"WTA-779eef16-5624-4606-858b-814f61d92924" = Agatha Christie - Peril at End House
"WTA-81d1bff0-0590-4ebe-a06e-22f5bd4a6670" = Virtual Villagers 5 - New Believers
"WTA-96c3c3d8-c1d3-4fa2-8a02-276edf1e2feb" = FATE
"WTA-9d32332e-885c-45a6-bb56-90c58a16564c" = Cradle of Rome 2
"WTA-a1605361-1218-4a90-b0d6-7aec09bcb6a8" = Jewel Quest: The Sleepless Star - Collector's Edition
"WTA-a294fd90-3f5a-4e2d-9617-b1b5c434fae6" = Chuzzle Deluxe
"WTA-c0cdc281-a8c3-4847-b470-742a1825b73c" = Penguins!
"WTA-c9c09089-b960-4aeb-ae36-689bca7f3c26" = Cake Mania
"WTA-d80d3cd2-71b8-4ece-a596-08df6a9292a8" = Chronicles of Albian
"WTA-de1c44cb-ef3b-4550-b74b-1d36ca549f09" = Plants vs. Zombies - Game of the Year
"WTA-f542d472-0a98-4187-b491-b15187e72caa" = Polar Golfer
"WTA-f8d09fc6-6c3a-4bb8-80b6-cda650a883d0" = Mah Jong Medley
"WTA-fa457a86-2891-4575-8179-a2f2a2ec4905" = Farm Frenzy
"CENZURA HD_is1" = CENZURA HD v. 2.9.5
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"DirectDownloader" = DirectDownloader
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 4/17/2013 11:37:06 AM | Computer Name = Pavel-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 26.0.1410.64, časové
razítko: 0x5163bfb1 Název chybujícího modulu: chrome.dll, verze: 26.0.1410.64, časové
razítko: 0x5163bf4a Kód výjimky: 0x80000003 Posun chyby: 0x005df7d7 ID chybujícího
procesu: 0x1928 Čas spuštění chybující aplikace: 0x01ce3b816ab2029e Cesta k chybující
aplikaci: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\chrome.exe Cesta
k chybujícímu modulu: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\26.0.1410.64\chrome.dll
ID
zprávy: a86c0ada-a774-11e2-ad65-3cd92b74cc40
Error - 4/17/2013 11:37:07 AM | Computer Name = Pavel-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 26.0.1410.64, časové
razítko: 0x5163bfb1 Název chybujícího modulu: chrome.dll, verze: 26.0.1410.64, časové
razítko: 0x5163bf4a Kód výjimky: 0x80000003 Posun chyby: 0x005df7d7 ID chybujícího
procesu: 0x199c Čas spuštění chybující aplikace: 0x01ce3b816afd8ba9 Cesta k chybující
aplikaci: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\chrome.exe Cesta
k chybujícímu modulu: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\26.0.1410.64\chrome.dll
ID
zprávy: a8b85738-a774-11e2-ad65-3cd92b74cc40
Error - 4/17/2013 11:37:07 AM | Computer Name = Pavel-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 26.0.1410.64, časové
razítko: 0x5163bfb1 Název chybujícího modulu: chrome.dll, verze: 26.0.1410.64, časové
razítko: 0x5163bf4a Kód výjimky: 0x80000003 Posun chyby: 0x005df7d7 ID chybujícího
procesu: 0x1a04 Čas spuštění chybující aplikace: 0x01ce3b816b1532b2 Cesta k chybující
aplikaci: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\chrome.exe Cesta
k chybujícímu modulu: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\26.0.1410.64\chrome.dll
ID
zprávy: a8d2bd6a-a774-11e2-ad65-3cd92b74cc40
Error - 4/17/2013 11:37:07 AM | Computer Name = Pavel-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 26.0.1410.64, časové
razítko: 0x5163bfb1 Název chybujícího modulu: chrome.dll, verze: 26.0.1410.64, časové
razítko: 0x5163bf4a Kód výjimky: 0x80000003 Posun chyby: 0x005df7d7 ID chybujícího
procesu: 0x1a80 Čas spuštění chybující aplikace: 0x01ce3b816b49d807 Cesta k chybující
aplikaci: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\chrome.exe Cesta
k chybujícímu modulu: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\26.0.1410.64\chrome.dll
ID
zprávy: a9058df9-a774-11e2-ad65-3cd92b74cc40
Error - 4/17/2013 11:37:09 AM | Computer Name = Pavel-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 26.0.1410.64, časové
razítko: 0x5163bfb1 Název chybujícího modulu: chrome.dll, verze: 26.0.1410.64, časové
razítko: 0x5163bf4a Kód výjimky: 0x80000003 Posun chyby: 0x005df7d7 ID chybujícího
procesu: 0x1b04 Čas spuštění chybující aplikace: 0x01ce3b816b7c0c53 Cesta k chybující
aplikaci: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\chrome.exe Cesta
k chybujícímu modulu: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\26.0.1410.64\chrome.dll
ID
zprávy: a9c86ba3-a774-11e2-ad65-3cd92b74cc40
Error - 4/17/2013 11:37:09 AM | Computer Name = Pavel-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 26.0.1410.64, časové
razítko: 0x5163bfb1 Název chybujícího modulu: chrome.dll, verze: 26.0.1410.64, časové
razítko: 0x5163bf4a Kód výjimky: 0x80000003 Posun chyby: 0x005df7d7 ID chybujícího
procesu: 0x1b18 Čas spuštění chybující aplikace: 0x01ce3b816b93653b Cesta k chybující
aplikaci: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\chrome.exe Cesta
k chybujícímu modulu: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\26.0.1410.64\chrome.dll
ID
zprávy: a9c892b3-a774-11e2-ad65-3cd92b74cc40
Error - 4/17/2013 11:37:09 AM | Computer Name = Pavel-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 26.0.1410.64, časové
razítko: 0x5163bfb1 Název chybujícího modulu: chrome.dll, verze: 26.0.1410.64, časové
razítko: 0x5163bf4a Kód výjimky: 0x80000003 Posun chyby: 0x005df7d7 ID chybujícího
procesu: 0x1af4 Čas spuštění chybující aplikace: 0x01ce3b816b685cfa Cesta k chybující
aplikaci: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\chrome.exe Cesta
k chybujícímu modulu: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\26.0.1410.64\chrome.dll
ID
zprávy: a9c8b9c3-a774-11e2-ad65-3cd92b74cc40
Error - 4/17/2013 11:37:09 AM | Computer Name = Pavel-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: chrome.exe, verze: 26.0.1410.64, časové
razítko: 0x5163bfb1 Název chybujícího modulu: chrome.dll, verze: 26.0.1410.64, časové
razítko: 0x5163bf4a Kód výjimky: 0x80000003 Posun chyby: 0x005df7d7 ID chybujícího
procesu: 0x1b28 Čas spuštění chybující aplikace: 0x01ce3b816bab8175 Cesta k chybující
aplikaci: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\chrome.exe Cesta
k chybujícímu modulu: C:\Users\Matyáš\AppData\Local\Google\Chrome\Application\26.0.1410.64\chrome.dll
ID
zprávy: a9da1f26-a774-11e2-ad65-3cd92b74cc40
Error - 4/17/2013 4:11:25 PM | Computer Name = Pavel-PC | Source = BstHdAndroidSvc | ID = 0
Description = Službu nelze spustit. System.ApplicationException: Cannot start service.
Service did not stop gracefully the last time it was run. v BlueStacks.hyperDroid.Service.Service.OnStart(String[]
args) v System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error - 4/18/2013 1:02:24 AM | Computer Name = Pavel-PC | Source = BstHdAndroidSvc | ID = 0
Description = Službu nelze spustit. System.ApplicationException: Cannot start service.
Service did not stop gracefully the last time it was run. v BlueStacks.hyperDroid.Service.Service.OnStart(String[]
args) v System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error - 4/18/2013 8:03:43 AM | Computer Name = Pavel-PC | Source = BstHdAndroidSvc | ID = 0
Description = Službu nelze spustit. System.ApplicationException: Cannot start service.
Service did not stop gracefully the last time it was run. v BlueStacks.hyperDroid.Service.Service.OnStart(String[]
args) v System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
[ System Events ]
Error - 4/17/2013 11:27:39 AM | Computer Name = Pavel-PC | Source = Service Control Manager | ID = 7023
Description = Služba BlueStacks Android Service byla ukončena s následující chybou:
%%1064
Error - 4/17/2013 4:11:04 PM | Computer Name = Pavel-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby DroidExplorer Service bylo dosaženo
časového limitu (30000 ms).
Error - 4/17/2013 4:11:04 PM | Computer Name = Pavel-PC | Source = Service Control Manager | ID = 7000
Description = Služba DroidExplorer Service neuspěla při spuštění v důsledku následující
chyby: %%1053
Error - 4/17/2013 4:11:25 PM | Computer Name = Pavel-PC | Source = Service Control Manager | ID = 7023
Description = Služba BlueStacks Android Service byla ukončena s následující chybou:
%%1064
Error - 4/18/2013 1:01:49 AM | Computer Name = Pavel-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby DroidExplorer Service bylo dosaženo
časového limitu (30000 ms).
Error - 4/18/2013 1:01:49 AM | Computer Name = Pavel-PC | Source = Service Control Manager | ID = 7000
Description = Služba DroidExplorer Service neuspěla při spuštění v důsledku následující
chyby: %%1053
Error - 4/18/2013 1:02:24 AM | Computer Name = Pavel-PC | Source = Service Control Manager | ID = 7023
Description = Služba BlueStacks Android Service byla ukončena s následující chybou:
%%1064
Error - 4/18/2013 8:02:55 AM | Computer Name = Pavel-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby DroidExplorer Service bylo dosaženo
časového limitu (30000 ms).
Error - 4/18/2013 8:02:55 AM | Computer Name = Pavel-PC | Source = Service Control Manager | ID = 7000
Description = Služba DroidExplorer Service neuspěla při spuštění v důsledku následující
chyby: %%1053
Error - 4/18/2013 8:03:43 AM | Computer Name = Pavel-PC | Source = Service Control Manager | ID = 7023
Description = Služba BlueStacks Android Service byla ukončena s následující chybou:
%%1064
< End of report >
Preventivní kontrola Vyřešeno
-
pikachu_11
- Level 1
- Příspěvky: 91
- Registrován: červen 12
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola Vyřešeno
MB: GigabyteGA-Z87-HD3
CPU: Intel Core i5-4440s
GPU: Gigabyte GeForce GTX 660 2GB
RAM: Kingston HyperX 2 x 4GB
HDD: 1TB
Case: Zalman Z9 U3
CPU: Intel Core i5-4440s
GPU: Gigabyte GeForce GTX 660 2GB
RAM: Kingston HyperX 2 x 4GB
HDD: 1TB
Case: Zalman Z9 U3
-
pikachu_11
- Level 1
- Příspěvky: 91
- Registrován: červen 12
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola
A poradte jak smazu combofix
MB: GigabyteGA-Z87-HD3
CPU: Intel Core i5-4440s
GPU: Gigabyte GeForce GTX 660 2GB
RAM: Kingston HyperX 2 x 4GB
HDD: 1TB
Case: Zalman Z9 U3
CPU: Intel Core i5-4440s
GPU: Gigabyte GeForce GTX 660 2GB
RAM: Kingston HyperX 2 x 4GB
HDD: 1TB
Case: Zalman Z9 U3
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola
Dám smazat..
Odinstaluj:
Java Plug-in 1.6.0_43
Java Plug-in 10.17.2
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
C:\Users\Pavel\AppData\Roaming\fizzy---ten program znáš?
Odinstaluj:
Java Plug-in 1.6.0_43
Java Plug-in 10.17.2
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:
Kód: Vybrat vše
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CMDTDF&pc=CMDTDF&src=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{3A66F914-2365-4960-B723-BB8B1B1053D4}: "URL" = http://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CMDTDF&pc=CMDTDF&src=IE-SearchBox
IE - HKLM\..\SearchScopes\{3A66F914-2365-4960-B723-BB8B1B1053D4}: "URL" = http://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=CMDTDF&pc=CMDTDF&src=IE-SearchBox
IE - HKCU\..\SearchScopes\{0A0921EC-9996-4D2B-ADAA-4BFB729EA82F}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3072253
IE - HKCU\..\SearchScopes\{3A66F914-2365-4960-B723-BB8B1B1053D4}: "URL" = http://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
IE - HKCU\..\SearchScopes\{4EA378A9-B0A0-44E6-8D1E-78A01AD248D8}: "URL" = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=&apn_ptnrs=9M&apn_dtid=OSJ000&apn_uid=22D086F1-6399-4312-824F-505B5AE09DD4&apn_sauid=C55A0832-47CE-463C-B3B5-FAF079975E50
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_169.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
[2012/06/04 16:37:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions
[2012/06/04 16:37:28 | 000,000,000 | ---D | M] (uTorrentControl2 Community Toolbar) -- C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2012/06/10 19:47:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
O4 - HKLM..\Run: [] File not found
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [Power2GoExpress] NA File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[2013/04/13 13:40:57 | 000,677,662 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013/04/13 13:40:57 | 000,662,304 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/04/13 13:40:57 | 000,146,290 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013/04/13 13:40:57 | 000,126,132 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\Windows\SysNative\*.tmp
C:\32788R22FWJFW
C:\Windows\SWREG.exe
C:\Windows\SWSC.exe
C:\Windows\NIRCMD.exe
C:\ComboFix
C:\Qoobox
[1 C:\Users\Pavel\Documents\*.tmp files -> C:\Users\Pavel\Documents\*.tmp -> ]
C:\Windows\DeleteOnReboot.bat
C:\Windows\PEV.exe
C:\Windows\MBR.exe
C:\Windows\sed.exe
C:\Windows\grep.exe
C:\Windows\zip.exe
C:\Windows\disney.ini
:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
C:\Users\Pavel\AppData\Roaming\fizzy---ten program znáš?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
-
pikachu_11
- Level 1
- Příspěvky: 91
- Registrován: červen 12
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola
nevim jak smazat ty javy :(
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
C:\Program Files (x86)\Skype\Updater\Updater.exe moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0A0921EC-9996-4D2B-ADAA-4BFB729EA82F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0A0921EC-9996-4D2B-ADAA-4BFB729EA82F}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4EA378A9-B0A0-44E6-8D1E-78A01AD248D8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4EA378A9-B0A0-44E6-8D1E-78A01AD248D8}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\searchplugin folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\modules folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\META-INF folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\defaults folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\components folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\chrome folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions folder moved successfully.
Folder C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\ not found.
C:\Program Files (x86)\Mozilla Firefox\extensions folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Power2GoExpress deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
File Protocol\Handler\ms-help - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Windows\SysNative\perfh005.dat moved successfully.
C:\Windows\SysNative\perfh009.dat moved successfully.
C:\Windows\SysNative\perfc005.dat moved successfully.
C:\Windows\SysNative\perfc009.dat moved successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1001Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1001UA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1002Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1002UA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1006Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1006UA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1009Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1009UA.job moved successfully.
c:\windows\Tasks\HPCeeScheduleForMatyáš.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
File\Folder C:\Windows\SysNative\*.tmp not found.
C:\32788R22FWJFW\N_ folder moved successfully.
C:\32788R22FWJFW\License folder moved successfully.
C:\32788R22FWJFW\EN-US folder moved successfully.
C:\32788R22FWJFW folder moved successfully.
File\Folder C:\Windows\SWREG.exe not found.
File\Folder C:\Windows\SWSC.exe not found.
File\Folder C:\Windows\NIRCMD.exe not found.
File\Folder C:\ComboFix not found.
File\Folder C:\Qoobox not found.
File\Folder [1 C:\Users\Pavel\Documents\*.tmp files -> C:\Users\Pavel\Documents\*.tmp -> ] not found.
C:\Windows\DeleteOnReboot.bat moved successfully.
File\Folder C:\Windows\PEV.exe not found.
File\Folder C:\Windows\MBR.exe not found.
File\Folder C:\Windows\sed.exe not found.
File\Folder C:\Windows\grep.exe not found.
File\Folder C:\Windows\zip.exe not found.
C:\Windows\disney.ini moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Jáchym
->Temp folder emptied: 352646 bytes
->Temporary Internet Files folder emptied: 126163 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
User: Matyáš
->Temp folder emptied: 20060084 bytes
->Temporary Internet Files folder emptied: 3045257 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 1389944 bytes
->Google Chrome cache emptied: 17306486 bytes
->Flash cache emptied: 911 bytes
User: Mr.Alex
User: Mr.Alex.Pavel-PC
->Temp folder emptied: 116481630 bytes
->Temporary Internet Files folder emptied: 1974292 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 247522063 bytes
->Flash cache emptied: 911 bytes
User: Pavel
->Temp folder emptied: 1096156 bytes
->Temporary Internet Files folder emptied: 80902771 bytes
->Java cache emptied: 2770077 bytes
->Google Chrome cache emptied: 21247848 bytes
->Flash cache emptied: 660 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 20263168 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50574 bytes
RecycleBin emptied: 2538 bytes
Total Files Cleaned = 510.00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 04192013_150631
a to fizzy bylo od nejaky hry
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
C:\Program Files (x86)\Skype\Updater\Updater.exe moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0A0921EC-9996-4D2B-ADAA-4BFB729EA82F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0A0921EC-9996-4D2B-ADAA-4BFB729EA82F}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3A66F914-2365-4960-B723-BB8B1B1053D4}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4EA378A9-B0A0-44E6-8D1E-78A01AD248D8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4EA378A9-B0A0-44E6-8D1E-78A01AD248D8}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\searchplugin folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\modules folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\META-INF folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\defaults folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\components folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\chrome folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} folder moved successfully.
C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions folder moved successfully.
Folder C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}\ not found.
C:\Program Files (x86)\Mozilla Firefox\extensions folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Power2GoExpress deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
File Protocol\Handler\ms-help - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Windows\SysNative\perfh005.dat moved successfully.
C:\Windows\SysNative\perfh009.dat moved successfully.
C:\Windows\SysNative\perfc005.dat moved successfully.
C:\Windows\SysNative\perfc009.dat moved successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1001Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1001UA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1002Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1002UA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1006Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1006UA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1009Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2819974913-3357554946-468882298-1009UA.job moved successfully.
c:\windows\Tasks\HPCeeScheduleForMatyáš.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
File\Folder C:\Windows\SysNative\*.tmp not found.
C:\32788R22FWJFW\N_ folder moved successfully.
C:\32788R22FWJFW\License folder moved successfully.
C:\32788R22FWJFW\EN-US folder moved successfully.
C:\32788R22FWJFW folder moved successfully.
File\Folder C:\Windows\SWREG.exe not found.
File\Folder C:\Windows\SWSC.exe not found.
File\Folder C:\Windows\NIRCMD.exe not found.
File\Folder C:\ComboFix not found.
File\Folder C:\Qoobox not found.
File\Folder [1 C:\Users\Pavel\Documents\*.tmp files -> C:\Users\Pavel\Documents\*.tmp -> ] not found.
C:\Windows\DeleteOnReboot.bat moved successfully.
File\Folder C:\Windows\PEV.exe not found.
File\Folder C:\Windows\MBR.exe not found.
File\Folder C:\Windows\sed.exe not found.
File\Folder C:\Windows\grep.exe not found.
File\Folder C:\Windows\zip.exe not found.
C:\Windows\disney.ini moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Jáchym
->Temp folder emptied: 352646 bytes
->Temporary Internet Files folder emptied: 126163 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
User: Matyáš
->Temp folder emptied: 20060084 bytes
->Temporary Internet Files folder emptied: 3045257 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 1389944 bytes
->Google Chrome cache emptied: 17306486 bytes
->Flash cache emptied: 911 bytes
User: Mr.Alex
User: Mr.Alex.Pavel-PC
->Temp folder emptied: 116481630 bytes
->Temporary Internet Files folder emptied: 1974292 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 247522063 bytes
->Flash cache emptied: 911 bytes
User: Pavel
->Temp folder emptied: 1096156 bytes
->Temporary Internet Files folder emptied: 80902771 bytes
->Java cache emptied: 2770077 bytes
->Google Chrome cache emptied: 21247848 bytes
->Flash cache emptied: 660 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 20263168 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50574 bytes
RecycleBin emptied: 2538 bytes
Total Files Cleaned = 510.00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 04192013_150631
a to fizzy bylo od nejaky hry
MB: GigabyteGA-Z87-HD3
CPU: Intel Core i5-4440s
GPU: Gigabyte GeForce GTX 660 2GB
RAM: Kingston HyperX 2 x 4GB
HDD: 1TB
Case: Zalman Z9 U3
CPU: Intel Core i5-4440s
GPU: Gigabyte GeForce GTX 660 2GB
RAM: Kingston HyperX 2 x 4GB
HDD: 1TB
Case: Zalman Z9 U3
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola
a to fizzy bylo od nejaky hry
tak to smaž
java--odinstalovat pomocí CCleaneru---nástroje---uninstall.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
-
pikachu_11
- Level 1
- Příspěvky: 91
- Registrován: červen 12
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola
Jaksi tam java plugin neni
- Přílohy
-
MB: GigabyteGA-Z87-HD3
CPU: Intel Core i5-4440s
GPU: Gigabyte GeForce GTX 660 2GB
RAM: Kingston HyperX 2 x 4GB
HDD: 1TB
Case: Zalman Z9 U3
CPU: Intel Core i5-4440s
GPU: Gigabyte GeForce GTX 660 2GB
RAM: Kingston HyperX 2 x 4GB
HDD: 1TB
Case: Zalman Z9 U3
-
Orcus
- člen Security týmu
-
Elite Level 10.5
- Příspěvky: 10645
- Registrován: duben 10
- Bydliště: Okolo rostou 3 růže =o)
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola
Potom by bylo nejvhodnější Javu kompletně odebrat. Tjs. vše co vidíš, smazat. Projet PC Ccleanerem a nainstalovat jí znovu.
Láska hřeje, ale uhlí je uhlí. 
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola
nebo použít:
http://www.java.com/en/download/uninstall.jsp
http://www.stahuj.centrum.cz/utility_a_ ... /javara-2/
http://www.java.com/en/download/uninstall.jsp
http://www.stahuj.centrum.cz/utility_a_ ... /javara-2/
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
-
pikachu_11
- Level 1
- Příspěvky: 91
- Registrován: červen 12
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola
myslim ze uz to tam neni
MB: GigabyteGA-Z87-HD3
CPU: Intel Core i5-4440s
GPU: Gigabyte GeForce GTX 660 2GB
RAM: Kingston HyperX 2 x 4GB
HDD: 1TB
Case: Zalman Z9 U3
CPU: Intel Core i5-4440s
GPU: Gigabyte GeForce GTX 660 2GB
RAM: Kingston HyperX 2 x 4GB
HDD: 1TB
Case: Zalman Z9 U3
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Preventivní kontrola
Spusť OTL a klikni na Vyčisti.
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 102 hostů