malé fps.

Příspěvekod **jaro3** » 06 srp 2013 09:35

Musíme použít jiný nástroj.

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

Reklama

dominpb · Příspěvekod **dominpb** » 06 srp 2013 09:53

To mám ten pc tak zavirovaný? Tet to nemůžu dodat z neznámich důvodu mi nefunguje net v pc.

dominpb · Příspěvekod **dominpb** » 06 srp 2013 12:14

OTL logfile created on: 6.8.2013 12:09:59 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\olaf\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,12 Gb Total Physical Memory | 2,03 Gb Available Physical Memory | 64,86% Memory free
7,57 Gb Paging File | 6,20 Gb Available in Paging File | 81,87% Paging File free
Paging file location(s): c:\pagefile.sys 4555 5120 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 283,12 Gb Total Space | 106,41 Gb Free Space | 37,59% Space Free | Partition Type: NTFS
Drive D: | 97,36 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: DOMIN-PC | User Name: olaf | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\olaf\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Fraps\fraps.exe (Beepa P/L)
PRC - c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
PRC - C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation)
PRC - C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\audiodg.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)

========== Modules (No Company Name) ==========

MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.95\ppgooglenaclpluginchrome.dll ()
MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll ()
MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.95\pdf.dll ()
MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.95\libglesv2.dll ()
MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.95\libegl.dll ()
MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.95\ffmpegsumo.dll ()

========== Services (SafeList) ==========

SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe ()
SRV - (TeamViewer8) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (NisSrv) -- c:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV - (MsMpSvc) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (Stereo Service) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (LVPrcSrv) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
DRV - (GPU-Z) -- C:\Users\olaf\AppData\Local\Temp\GPU-Z.sys File not found
DRV - (cpuz135) -- C:\Users\olaf\AppData\Local\Temp\cpuz135\cpuz135_x32.sys File not found
DRV - (ASInsHelp) -- C:\Windows\system32\drivers\AsInsHelp32.sys File not found
DRV - (ar67n2w6) -- File not found
DRV - (truecrypt) -- C:\Windows\System32\drivers\truecrypt.sys (TrueCrypt Foundation)
DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows (R) 2000 DDK provider)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (sptd) -- C:\Windows\System32\drivers\sptd.sys (Duplex Secure Ltd.)
DRV - (NisDrv) -- C:\Windows\System32\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV - (speedfan) -- C:\Windows\System32\speedfan.sys (Almico Software)
DRV - (terminpt) -- C:\Windows\System32\drivers\terminpt.sys (Microsoft Corporation)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (tsusbhub) -- C:\Windows\System32\drivers\tsusbhub.sys (Microsoft Corporation)
DRV - (Synth3dVsc) -- C:\Windows\System32\drivers\Synth3dVsc.sys (Microsoft Corporation)
DRV - (dmvsc) -- C:\Windows\System32\drivers\dmvsc.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (nm3) -- C:\Windows\System32\drivers\nm3.sys (Microsoft Corporation)
DRV - (LVPr2Mon) -- C:\Windows\System32\drivers\LVPr2Mon.sys ()
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (giveio) -- C:\Windows\System32\giveio.sys ()

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\..\SearchScopes\{3B8F57CE-5758-4098-9A8C-82B7CAF3ECEA}: "URL" = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.defaultenginename,S: S", ""
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.order.1,S: S", ""
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.search.selectedEngine,S: S", ""
FF - prefs.js..extensions.enabledAddons: {ea614400-e918-4741-9a97-7a972ff7c30b}:2.5.15
FF - prefs.js..keyword.URL: ""
FF - prefs.js..browser.startup.homepage: ""
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.4: C:\Program Files\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.7: C:\Program Files\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.05.15 20:27:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2013.01.12 18:34:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\olaf\AppData\Roaming\mozilla\Extensions
[2013.08.02 15:49:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions
[2013.05.19 16:44:19 | 000,000,000 | ---D | M] (Seznam liĹˇtiÄŤka) -- C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2012.11.25 21:26:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.10.31 22:56:14 | 000,000,000 | ---D | M] ("BitAccelerator") -- C:\Program Files\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f}
[2013.07.22 08:44:24 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012.10.28 11:40:07 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013.04.27 10:49:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013.07.22 08:44:24 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012.10.28 11:40:06 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.09.06 06:25:45 | 000,003,581 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2012.09.06 06:25:45 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.09.06 06:25:45 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.09.06 06:25:45 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.09.06 06:25:45 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.09.06 06:25:45 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.95\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\Browser\nppdf32.dll
CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files\Battlelog Web Plugins\2.1.4\npesnlaunch.dll
CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files\Battlelog Web Plugins\2.1.7\npesnlaunch.dll
CHR - plugin: ESN Sonar API (Enabled) = C:\Program Files\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll
CHR - plugin: Java Deployment Toolkit 7.0.70.11 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
CHR - Extension: Dokumenty Google = C:\Users\olaf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\olaf\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\olaf\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\olaf\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.3_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\olaf\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Skype Click to Call = C:\Users\olaf\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.10.0.13089_0\
CHR - Extension: Gmail = C:\Users\olaf\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013.08.05 21:53:18 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Windows\System32\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Windows\System32\ilannsp.dll (CrowSoft)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - C:\Windows\System32\LOILSP.dll (Crow Soft)
O15 - HKCU\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E7D58DC7-D3CF-4F5B-99C6-7974C73605CA}: NameServer = 212.158.128.2,212.158.128.3
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corp.)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2012.08.13 10:55:21 | 000,000,000 | ---D | M] - D:\AutoPlay -- [ CDFS ]
O32 - AutoRun File - [2012.08.13 10:55:21 | 006,763,520 | R--- | M] () - D:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2012.08.13 10:55:21 | 000,000,046 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013.08.06 12:05:33 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013.08.05 21:54:22 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013.08.05 21:54:22 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Local\temp
[2013.08.04 22:52:43 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\Originals
[2013.08.04 21:28:29 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013.08.04 15:15:50 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013.08.04 15:12:24 | 000,000,000 | ---D | C] -- C:\Windows\snack
[2013.08.04 12:12:42 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\Malwarebytes
[2013.08.04 12:12:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013.08.04 12:12:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013.08.04 12:12:32 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2013.08.04 12:12:32 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013.08.02 16:38:14 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\Nová složka (3)
[2013.08.02 16:34:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Company of Heroes 2 - etina
[2013.08.02 16:34:53 | 000,000,000 | ---D | C] -- C:\Program Files\Company of Heroes 2 - etina
[2013.08.02 16:32:15 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\Company of Heroes - Čeština
[2013.08.02 16:21:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Steam
[2013.08.02 16:05:15 | 000,000,000 | ---D | C] -- C:\Program Files\Company of Heroes 2
[2013.08.02 15:43:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Company of Heroes 2 - SP a MP crack
[2013.08.02 15:41:40 | 000,000,000 | ---D | C] -- C:\Users\olaf\Nová složka
[2013.08.01 20:16:22 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\Nová složka (2)
[2013.07.30 14:39:42 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\Prodej
[2013.07.29 21:50:01 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\gd
[2013.07.29 20:50:14 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\protectorxfoto
[2013.07.29 19:05:44 | 000,000,000 | ---D | C] -- C:\Users\olaf\rld-coh2
[2013.07.29 19:05:21 | 000,000,000 | ---D | C] -- C:\Users\olaf\World.War.Z.2013.CAM.XviD-THC
[2013.07.29 19:05:21 | 000,000,000 | ---D | C] -- C:\Users\olaf\The.Hangover.Part.III.2013.720p.TS.OWN.SOURCE.XviD-YanKeeS
[2013.07.29 19:05:21 | 000,000,000 | ---D | C] -- C:\Users\olaf\Need.for.Speed.Most.Wanted.CRACK.ONLY-SKIDROW
[2013.07.29 19:05:21 | 000,000,000 | ---D | C] -- C:\Users\olaf\Metro 2033 Crack Only-Razor1911
[2013.07.29 19:05:21 | 000,000,000 | ---D | C] -- C:\Users\olaf\GTA IV PC Version
[2013.07.29 19:05:21 | 000,000,000 | ---D | C] -- C:\Users\olaf\Garry's-Mod 11
[2013.07.29 19:05:21 | 000,000,000 | ---D | C] -- C:\Users\olaf\DayZ-1.7.3
[2013.07.29 19:05:21 | 000,000,000 | ---D | C] -- C:\Users\olaf\Civilization IV Complete Edition [PC-DVD][Multi5][Spanish][www.consolasatope.com]
[2013.07.29 19:05:21 | 000,000,000 | ---D | C] -- C:\Users\olaf\A Good Day to Die Hard (2013)
[2013.07.29 19:05:21 | 000,000,000 | ---D | C] -- C:\Users\olaf\[R.G. Mechanics] Metro Last Light
[2013.07.29 19:05:20 | 000,000,000 | ---D | C] -- C:\Users\olaf\Need.for.Speed.Most.Wanted-SKIDROW
[2013.07.29 19:05:20 | 000,000,000 | ---D | C] -- C:\Users\olaf\Metro.2033.SKIDROW
[2013.07.29 19:05:20 | 000,000,000 | ---D | C] -- C:\Users\olaf\Fallout.New.Vegas-SKIDROW
[2013.07.24 12:22:26 | 000,000,000 | ---D | C] -- C:\Users\olaf\Documents\SoftMaker
[2013.07.24 12:22:26 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\SoftMaker
[2013.07.22 23:56:19 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\ankety
[2013.07.22 12:47:48 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
[2013.07.22 12:38:41 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\Nová složka
[2013.07.21 21:14:44 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\reklamy,atd
[2013.07.21 21:07:52 | 000,000,000 | ---D | C] -- C:\Users\olaf\Desktop\Protector x
[2013.07.20 10:46:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2013.07.17 15:41:23 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\Skype
[2013.07.15 18:57:38 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\Electrum
[2013.07.15 18:56:48 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electrum
[2013.07.15 18:56:44 | 000,000,000 | ---D | C] -- C:\Program Files\Electrum
[2013.07.15 18:38:04 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\Bitcoin
[2013.07.15 18:37:48 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitcoin
[2013.07.15 18:37:39 | 000,000,000 | ---D | C] -- C:\Program Files\Bitcoin
[2013.07.15 15:32:11 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\PhotoScape
[2013.07.14 17:27:23 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
[2013.07.14 17:27:09 | 000,000,000 | ---D | C] -- C:\Program Files\VirtualDJ
[2013.07.14 17:27:07 | 000,000,000 | ---D | C] -- C:\Users\olaf\Documents\VirtualDJ
[2013.07.13 20:13:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
[2013.07.13 20:12:59 | 000,000,000 | ---D | C] -- C:\Fraps
[2013.07.13 15:26:20 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\TrueCrypt
[2013.07.13 14:09:40 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\wargaming.net
[2013.07.13 13:08:00 | 000,000,000 | R--D | C] -- C:\Users\olaf\Favorites
[2013.07.13 13:05:29 | 000,000,000 | R--D | C] -- C:\Users\olaf\Videos
[2013.07.13 13:03:19 | 000,000,000 | R--D | C] -- C:\Users\olaf\Searches
[2013.07.13 12:38:16 | 000,000,000 | ---D | C] -- C:\Program Files\Zacovani her atd
[2013.07.13 11:38:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueCrypt
[2013.07.13 11:38:29 | 000,231,760 | ---- | C] (TrueCrypt Foundation) -- C:\Windows\System32\drivers\truecrypt.sys
[2013.07.13 11:38:11 | 000,000,000 | ---D | C] -- C:\Program Files\TrueCrypt
[2013.07.11 19:29:57 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013.07.11 19:29:55 | 002,877,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013.07.11 19:29:55 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013.07.11 19:29:55 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013.07.11 19:29:54 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013.07.11 19:29:54 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013.07.11 19:29:54 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013.07.11 19:29:54 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013.07.11 19:29:54 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013.07.11 19:29:53 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013.07.11 19:22:59 | 001,247,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2013.07.11 19:22:58 | 001,620,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2013.07.11 19:22:44 | 002,347,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013.07.11 19:22:43 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2013.07.11 19:02:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warplanes
[2013.07.11 18:51:56 | 000,000,000 | ---D | C] -- C:\Users\olaf\WoWp_0.5.0_eu_install
[2013.07.09 21:03:25 | 000,000,000 | ---D | C] -- C:\Users\olaf\AppData\Roaming\InstallShield
[2013.07.09 13:56:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Piranha Games
[2013.07.09 13:56:45 | 000,000,000 | ---D | C] -- C:\Program Files\Piranha Games
[2013.07.09 13:56:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\olaf\*.tmp files -> C:\Users\olaf\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013.08.06 12:05:41 | 000,000,934 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.08.06 11:56:43 | 000,000,374 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
[2013.08.06 11:56:30 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.08.06 11:56:25 | 2515,394,560 | -HS- | M] () -- C:\hiberfil.sys
[2013.08.06 11:55:44 | 000,038,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.08.06 11:55:44 | 000,038,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.08.05 23:12:00 | 000,000,938 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.08.05 21:53:18 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2013.08.05 20:48:49 | 000,139,032 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2013.08.05 20:48:39 | 000,290,184 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2013.08.05 20:48:32 | 000,280,904 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2013.08.05 19:57:11 | 000,109,304 | ---- | M] () -- C:\Users\olaf\Desktop\a4Amgh0.jpg
[2013.08.04 22:52:43 | 000,180,265 | ---- | M] () -- C:\Users\olaf\Desktop\1000303_524370450968262_966133930_n.jpg
[2013.08.04 22:51:48 | 000,010,240 | -H-- | M] () -- C:\Users\olaf\Desktop\photothumb.db
[2013.08.04 21:43:51 | 000,002,026 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013.08.04 21:39:25 | 000,674,888 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2013.08.04 21:39:25 | 000,660,706 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013.08.04 21:39:25 | 000,144,842 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2013.08.04 21:39:25 | 000,124,896 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013.08.04 21:24:32 | 004,194,816 | ---- | M] () -- C:\Windows\System32\drivers\atikmdag.sys.dump
[2013.08.04 15:20:21 | 000,000,150 | ---- | M] () -- C:\Windows\DeleteOnReboot.bat
[2013.08.04 12:23:46 | 000,666,633 | ---- | M] () -- C:\Users\olaf\Desktop\adwcleaner.exe
[2013.08.04 12:12:34 | 000,001,103 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.08.03 17:29:24 | 000,092,665 | ---- | M] () -- C:\Users\olaf\Desktop\probleem.png
[2013.08.02 16:36:44 | 000,234,010 | ---- | M] () -- C:\Windows\System32\poclbm130302GeForce GTX 550 Tigv1w256l4.bin
[2013.08.02 16:36:38 | 000,001,229 | ---- | M] () -- C:\Users\Public\Desktop\Company of Heroes 2 - etina.lnk
[2013.08.02 16:32:00 | 000,112,320 | ---- | M] () -- C:\Users\olaf\Desktop\Company-of-Heroes---Čeština (1).rar
[2013.08.02 16:22:46 | 000,000,218 | ---- | M] () -- C:\Users\olaf\.recently-used.xbel
[2013.08.02 16:15:10 | 000,000,828 | ---- | M] () -- C:\Users\Public\Desktop\Company of Heroes 2.lnk
[2013.08.02 16:03:39 | 000,001,533 | ---- | M] () -- C:\Users\Public\Desktop\Company of Heroes 2 - SP a MP crack.lnk
[2013.08.02 15:43:16 | 000,000,000 | ---- | M] () -- C:\Users\olaf\regbcm
[2013.08.02 15:36:09 | 000,001,504 | ---- | M] () -- C:\Users\olaf\Desktop\RelicCoH2 – zástupce.lnk
[2013.08.01 20:22:24 | 005,761,567 | ---- | M] () -- C:\Users\olaf\Desktop\remix rebel jak svina.mp3
[2013.08.01 09:15:07 | 000,002,165 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013.07.31 14:39:42 | 000,035,027 | ---- | M] () -- C:\Users\olaf\Desktop\fsdfsf.png
[2013.07.22 12:47:48 | 000,002,119 | ---- | M] () -- C:\Users\olaf\Desktop\Minecraft.lnk
[2013.07.19 15:08:03 | 000,084,568 | ---- | M] () -- C:\Users\olaf\Desktop\battlefield fdsf.jpg
[2013.07.19 14:57:21 | 000,759,729 | ---- | M] () -- C:\Users\olaf\Desktop\bf.png
[2013.07.15 18:56:48 | 000,001,001 | ---- | M] () -- C:\Users\olaf\Desktop\Electrum.lnk
[2013.07.15 15:52:26 | 004,970,310 | ---- | M] () -- C:\Users\olaf\Desktop\memecenter_1373896341209_844484.gif
[2013.07.15 11:35:18 | 000,001,972 | ---- | M] () -- C:\Users\Public\Desktop\War Thunder.lnk
[2013.07.15 09:14:33 | 000,325,640 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.07.14 17:27:26 | 000,001,040 | ---- | M] () -- C:\Users\olaf\Desktop\VirtualDJ Home FREE.lnk
[2013.07.13 20:13:03 | 000,000,598 | ---- | M] () -- C:\Users\Public\Desktop\Fraps.lnk
[2013.07.13 11:38:33 | 000,001,064 | ---- | M] () -- C:\Users\Public\Desktop\TrueCrypt.lnk
[2013.07.13 11:38:30 | 000,231,760 | ---- | M] (TrueCrypt Foundation) -- C:\Windows\System32\drivers\truecrypt.sys
[2013.07.11 19:02:50 | 000,000,838 | ---- | M] () -- C:\Users\Public\Desktop\World of Warplanes.lnk
[2013.07.09 21:29:08 | 000,000,017 | ---- | M] () -- C:\Users\olaf\AppData\Local\resmon.resmoncfg
[2013.07.09 13:56:45 | 000,001,980 | ---- | M] () -- C:\Users\Public\Desktop\MechWarrior Online.lnk
[4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\olaf\*.tmp files -> C:\Users\olaf\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013.08.05 19:57:11 | 000,109,304 | ---- | C] () -- C:\Users\olaf\Desktop\a4Amgh0.jpg
[2013.08.04 22:51:33 | 000,180,265 | ---- | C] () -- C:\Users\olaf\Desktop\1000303_524370450968262_966133930_n.jpg
[2013.08.04 15:20:14 | 000,000,150 | ---- | C] () -- C:\Windows\DeleteOnReboot.bat
[2013.08.04 15:12:24 | 004,194,816 | ---- | C] () -- C:\Windows\System32\drivers\atikmdag.sys.dump
[2013.08.04 12:23:45 | 000,666,633 | ---- | C] () -- C:\Users\olaf\Desktop\adwcleaner.exe
[2013.08.04 12:12:34 | 000,001,103 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.08.03 17:29:24 | 000,092,665 | ---- | C] () -- C:\Users\olaf\Desktop\probleem.png
[2013.08.02 16:36:44 | 000,234,010 | ---- | C] () -- C:\Windows\System32\poclbm130302GeForce GTX 550 Tigv1w256l4.bin
[2013.08.02 16:34:54 | 000,001,229 | ---- | C] () -- C:\Users\Public\Desktop\Company of Heroes 2 - etina.lnk
[2013.08.02 16:32:12 | 000,112,320 | ---- | C] () -- C:\Users\olaf\Desktop\Company-of-Heroes---Čeština (1).rar
[2013.08.02 16:22:46 | 000,000,218 | ---- | C] () -- C:\Users\olaf\.recently-used.xbel
[2013.08.02 16:15:10 | 000,000,840 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Company of Heroes 2.lnk
[2013.08.02 16:15:10 | 000,000,828 | ---- | C] () -- C:\Users\Public\Desktop\Company of Heroes 2.lnk
[2013.08.02 15:43:16 | 000,000,000 | ---- | C] () -- C:\Users\olaf\regbcm
[2013.08.02 15:43:02 | 000,001,533 | ---- | C] () -- C:\Users\Public\Desktop\Company of Heroes 2 - SP a MP crack.lnk
[2013.08.02 15:36:09 | 000,001,504 | ---- | C] () -- C:\Users\olaf\Desktop\RelicCoH2 – zástupce.lnk
[2013.08.01 20:18:24 | 005,761,567 | ---- | C] () -- C:\Users\olaf\Desktop\remix rebel jak svina.mp3
[2013.07.31 14:39:42 | 000,035,027 | ---- | C] () -- C:\Users\olaf\Desktop\fsdfsf.png
[2013.07.22 12:47:48 | 000,002,119 | ---- | C] () -- C:\Users\olaf\Desktop\Minecraft.lnk
[2013.07.19 15:08:03 | 000,084,568 | ---- | C] () -- C:\Users\olaf\Desktop\battlefield fdsf.jpg
[2013.07.19 14:57:21 | 000,759,729 | ---- | C] () -- C:\Users\olaf\Desktop\bf.png
[2013.07.15 18:56:48 | 000,001,001 | ---- | C] () -- C:\Users\olaf\Desktop\Electrum.lnk
[2013.07.15 15:52:26 | 004,970,310 | ---- | C] () -- C:\Users\olaf\Desktop\memecenter_1373896341209_844484.gif
[2013.07.15 11:35:18 | 000,001,972 | ---- | C] () -- C:\Users\Public\Desktop\War Thunder.lnk
[2013.07.14 17:27:26 | 000,001,040 | ---- | C] () -- C:\Users\olaf\Desktop\VirtualDJ Home FREE.lnk
[2013.07.13 20:13:03 | 000,000,598 | ---- | C] () -- C:\Users\Public\Desktop\Fraps.lnk
[2013.07.13 11:38:33 | 000,001,064 | ---- | C] () -- C:\Users\Public\Desktop\TrueCrypt.lnk
[2013.07.11 19:02:50 | 000,000,838 | ---- | C] () -- C:\Users\Public\Desktop\World of Warplanes.lnk
[2013.07.09 21:29:08 | 000,000,017 | ---- | C] () -- C:\Users\olaf\AppData\Local\resmon.resmoncfg
[2013.07.09 13:56:45 | 000,001,980 | ---- | C] () -- C:\Users\Public\Desktop\MechWarrior Online.lnk
[2013.03.29 16:36:26 | 000,098,344 | ---- | C] () -- C:\Windows\unTMV.exe
[2013.03.15 13:44:21 | 000,290,184 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2013.01.26 10:32:09 | 000,645,632 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2013.01.26 10:32:09 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2013.01.12 18:32:38 | 000,001,254 | RHS- | C] () -- C:\Users\olaf\ntuser.pol
[2012.10.09 16:31:36 | 002,953,448 | ---- | C] () -- C:\Windows\System32\nvcoproc.bin
[2012.10.06 20:47:26 | 000,000,067 | ---- | C] () -- C:\Windows\Easy Avi Divx Xvid to DVD Burner.INI
[2012.10.06 14:50:53 | 000,484,352 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2012.09.14 13:25:27 | 000,139,032 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012.09.14 13:24:53 | 000,669,184 | ---- | C] () -- C:\Windows\System32\pbsvc.exe
[2012.09.14 13:24:53 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe

========== ZeroAccess Check ==========

[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013.07.22 13:04:15 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\.minecraft
[2013.06.16 21:39:05 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\3909 LLC
[2013.01.26 12:38:21 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\AVI ReComp
[2013.07.16 15:38:42 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\Bitcoin
[2013.08.02 20:24:05 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\DAEMON Tools Lite
[2013.08.02 15:39:45 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\deluge
[2013.04.08 17:49:33 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\DVDVideoSoft
[2013.07.15 18:57:38 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\Electrum
[2013.03.24 15:58:41 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\gtk-2.0
[2013.07.30 15:50:53 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\Origin
[2013.07.19 12:45:02 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\PhotoScape
[2013.07.24 12:22:26 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\SoftMaker
[2013.07.13 15:26:20 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\TrueCrypt
[2013.07.13 14:53:18 | 000,000,000 | ---D | M] -- C:\Users\olaf\AppData\Roaming\wargaming.net

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 296 bytes -> C:\ProgramData\TEMP:9A870F8B
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:3B71D0B4
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:CC02DF48

< End of report >

dominpb · Příspěvekod **dominpb** » 06 srp 2013 12:15

TL Extras logfile created on: 6.8.2013 12:09:59 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\olaf\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,12 Gb Total Physical Memory | 2,03 Gb Available Physical Memory | 64,86% Memory free
7,57 Gb Paging File | 6,20 Gb Available in Paging File | 81,87% Paging File free
Paging file location(s): c:\pagefile.sys 4555 5120 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 283,12 Gb Total Space | 106,41 Gb Free Space | 37,59% Space Free | Partition Type: NTFS
Drive D: | 97,36 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: DOMIN-PC | User Name: olaf | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0E9253AA-4185-47C3-9876-7838FC17333C}" = rport=139 | protocol=6 | dir=out | app=system |
"{116145D6-3B09-49D9-8855-9EF72AC7FECD}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{1741E62C-51AD-49F2-8A9C-EE8B20C67925}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{180529BE-EAF9-417E-956F-35EDCC586BD5}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{183979D2-567E-4646-8EA8-3CFBE3A1CD3C}" = rport=138 | protocol=17 | dir=out | app=system |
"{19BFBA9D-42C2-4EFC-8C8D-A297F7BA9767}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1DF79EE5-3B89-49F5-B7C7-0A28AC43164B}" = rport=445 | protocol=6 | dir=out | app=system |
"{1E906739-C531-45D0-9200-6594623DCC2B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{247807EC-D3E3-4425-A4BC-279EF1505D49}" = lport=138 | protocol=17 | dir=in | app=system |
"{28706E89-5FC8-4462-A621-2FF1A165678F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{31DF02F7-EF45-47AC-9B4A-270356AFEFBF}" = rport=137 | protocol=17 | dir=out | app=system |
"{362AEC70-7FED-437D-8F80-E26DC11128EC}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{42F18542-A82F-498D-B0A8-5E0202CB386C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{45633587-0100-4F0D-86BF-C46C8CBFF146}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{45CEA16F-0089-4666-BB95-9D485D533C7F}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{47DAF7E0-6EE6-47A9-89FB-518536230DA4}" = lport=2869 | protocol=6 | dir=in | app=system |
"{4821B6F9-6E65-41CB-B3AE-B7ECB03721FF}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{48D608EF-A90B-47AB-A906-9869F7A91F55}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{4FD7E894-D476-4BAE-83FF-C562DE68B4E0}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{55980A3D-7099-4651-94AC-EB892E42C729}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5BCB8107-3186-45B9-9547-C91FB4AD6371}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{69D5CDFB-F081-4C2E-A8F2-25E2AF3FA1F6}" = lport=10243 | protocol=6 | dir=in | app=system |
"{6C53AB27-4769-4F15-83FC-0BB133988B22}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{70A4A8CF-E1C1-40DE-82DD-C7DF9FBE6A71}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{72078B79-6E2D-419B-AF26-F9B1AD15B379}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7EC3E2BE-2FB3-4E3A-9042-50E5FEFC67E0}" = rport=10243 | protocol=6 | dir=out | app=system |
"{7F289475-5074-47D4-9756-A09410DA0775}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{83424CD4-61B6-4A2D-A1AC-8CE0B643423E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{83CE09F8-7A6B-47EE-BF0C-E7B59DBA5C0E}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{84B07C2A-4187-4BEB-81EA-558D2974CF48}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{8C6A8A6D-74F4-4B69-940C-849C4324E8F4}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{92F4D3B4-20DE-4368-95E8-8DEAC8704A04}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{96FE5515-34E7-44E4-8732-557D15EC997F}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{A8D677AB-B1EE-43B2-938D-0D1788372915}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{ABD0241B-073E-47B8-B228-77C94699ED02}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{AE9C4EC3-B1EC-4D1A-8998-945FF5D94EF4}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B7638486-010F-4E6D-92F6-8BBAC3136C35}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{BC647347-E71F-42F7-B8FD-00DF181102B1}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{C2DDAD1C-81F1-44AE-B332-CDCC4BCA586E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C9357BFE-21C7-483B-8EEE-3D96F6950B1C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CBA8FF0C-E22D-4A36-B46A-3FE27166884D}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{CC2D8D56-41C6-4C09-862E-72FBDB9BF778}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{CD31D912-1F42-4974-A6EA-3D9CBA34B1A0}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{D5F0BF27-CDF3-4B5C-B00D-30C1FD74F880}" = rport=2869 | protocol=6 | dir=out | app=system |
"{D8105AB7-EC66-4F96-A364-EE53CB37B13C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DA89555D-D4B2-429D-97D0-84459169FD6D}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{DC2EC2A9-5E62-4CE7-9CD2-ABBA928CD587}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{E5244E96-FC5F-4384-A143-2B9D60C5BEE3}" = lport=139 | protocol=6 | dir=in | app=system |
"{E6126CB7-4CBC-4CC7-8DB4-F61B5A3EC3BC}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{EB8E37BF-01CF-4176-B903-ACFC0C7EAD15}" = lport=445 | protocol=6 | dir=in | app=system |
"{EC50E591-B8F5-4E70-B597-C17EF24ED983}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{F84ADED7-06E6-4F6C-B3D5-EFFECA8B115A}" = lport=137 | protocol=17 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0008D6FB-A7ED-424A-8FD4-0C031DE864CF}" = protocol=17 | dir=in | app=c:\program files\logitech\logitech vid\vid.exe |
"{00DFF60D-C431-4665-AF3E-C3581C642B7F}" = protocol=6 | dir=in | app=c:\users\olaf\appdata\local\war thunder\aces.exe |
"{01272329-041D-4693-8059-903196489BBD}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{0A1F195F-13CF-497D-AAA8-09BB03FF7874}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{1074F447-2756-44A2-8732-FA06E48EBA7D}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{11CE756E-E83B-4CD6-8392-095313B4C5D8}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{123F81E4-B3F0-4EF0-B456-98757C191172}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1D5A59A3-9F0A-4112-BBFB-B223A5BF335A}" = protocol=17 | dir=in | app=c:\program files\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{26247959-B456-4CF4-BB85-328EB4A29736}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{2B0FCC20-D004-474C-BB6E-41B96BF51F56}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{35A49883-58A0-4DC3-88CE-6FABE78AE72E}" = protocol=6 | dir=in | app=c:\program files\origin games\battlefield 3\bf3.exe |
"{38B8E098-7D8C-4267-8AB7-7C70FA8E3014}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{3B82B05E-87DA-4733-B957-F5A3460AB674}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{3B9C104B-AE7D-440F-AEED-43E1F5E0F4A7}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4819221E-119C-45B4-9CE4-C4B2E05655A6}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{48BAB652-6EFE-455C-BBD7-6B0086C4B7AB}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version8\teamviewer_service.exe |
"{4D0D840F-F984-4C20-8CCA-23B64E9F193D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{61D07C7D-B1A4-44EC-952C-F5DB49B3EF08}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{631B5DC0-0D91-48AA-BFC4-4DE8D56D0EC3}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{659A26A9-35A6-4702-AE07-58601F125A72}" = protocol=17 | dir=in | app=c:\program files\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{68B4C80A-7F1A-4769-BC77-B05406A04D93}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{69A00CE4-38E4-4368-BCCC-2B50C60562C9}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{708D1026-97C1-4397-9F43-562B56D87764}" = protocol=6 | dir=in | app=c:\windows\system32\msiexec.exe |
"{7AF52E66-B8E1-43B8-805B-9C3829DD691C}" = protocol=17 | dir=in | app=c:\program files\origin games\battlefield 3\bf3.exe |
"{7CC38A76-E553-46DB-B59D-58C21554E3AB}" = protocol=17 | dir=in | app=c:\program files\origin games\crysis 3\bin32\crysis3.exe |
"{8255D0B6-66D0-4E3C-B05C-2782175463EA}" = protocol=6 | dir=out | app=system |
"{852B3BC9-19C4-4BAF-8D72-0E0EF5AA6B61}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8DA6C8B6-5967-45DF-935E-069E0CA6D1B2}" = protocol=6 | dir=in | app=c:\program files\origin games\crysis 3\bin32\crysis3.exe |
"{8EAF672C-6A7F-4750-8D63-58460D5A57C9}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{91FD2F2D-50CC-4A84-B00B-7B3FA3CB7CC7}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{92CCD8CA-86E3-4A4F-B355-8FB8D2A2665B}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version8\teamviewer_service.exe |
"{9EB55FB5-9CE9-4F21-98DC-D4B2347A0D0E}" = protocol=17 | dir=in | app=c:\windows\system32\msiexec.exe |
"{A805E702-8655-4CE8-968C-2E39D462F03C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A87E164F-CC81-4D09-9030-7CE54792DD48}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{B1C60E23-4336-43DF-8CC5-5038581988B5}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{B2AA986D-3E0C-41AF-ACE2-F55B8CD5E428}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B5211C9E-AD48-4543-AFCD-28075C21635A}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version8\teamviewer.exe |
"{BE642F9F-72CA-4C0E-B60A-C9DE7D0E4F0B}" = protocol=6 | dir=in | app=c:\program files\logitech\logitech vid\vid.exe |
"{C960BE6D-F329-49DC-8251-5283036F7630}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D43C2FCD-B335-45BA-B011-7E88546470E3}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{DE63E1C5-5BF9-4F77-AE29-9DFEA274E5A0}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{E2F8C0C2-9FB5-4330-8734-E5A85AFA6B82}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version8\teamviewer.exe |
"{E5209C4C-6D22-45A3-BC6C-15A2B2034431}" = protocol=17 | dir=in | app=c:\users\olaf\appdata\local\war thunder\aces.exe |
"{F2B82157-B086-4FDD-9960-DF56CDA604BD}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{F2CCB797-307D-402B-9F74-0C31AFA12D7C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F569057F-36F4-4B89-B528-61E102FBAA9E}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{F6890DF2-6B8B-408B-BCCD-A78F4F3F76DA}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{FA5A5103-F19D-461B-8A2A-B5A9D538C570}" = protocol=6 | dir=in | app=c:\program files\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{FD261334-9840-48C2-A957-8C093ECD7F80}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FDFC00FD-1061-4FEC-ABBF-47A2FF81988E}" = protocol=6 | dir=in | app=c:\program files\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"TCP Query User{056EBA42-C7CF-4B4B-BA82-69288669D254}C:\program files\deluge\deluge.exe" = protocol=6 | dir=in | app=c:\program files\deluge\deluge.exe |
"TCP Query User{0FF08D72-0C5C-4171-A51D-F982E3DED3A6}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{1F4F48DC-0E95-4CB4-B0DB-40FD35DEC3A4}C:\program files\origin games\battlefield 3\bf3.exe" = protocol=6 | dir=in | app=c:\program files\origin games\battlefield 3\bf3.exe |
"TCP Query User{28B669CC-4127-41CC-80C6-98C3CA53C258}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{39BDF3D9-114D-4CED-8D34-0DA65ACDB1BF}C:\program files\bitcoin\bitcoin-qt.exe" = protocol=6 | dir=in | app=c:\program files\bitcoin\bitcoin-qt.exe |
"TCP Query User{4D89295D-7BB0-40B8-AD04-5B3626655640}C:\program files\company of heroes 2\reliccoh2.exe" = protocol=6 | dir=in | app=c:\program files\company of heroes 2\reliccoh2.exe |
"TCP Query User{5196E778-BCA5-4D74-B321-1142F67C6288}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"TCP Query User{66D7A45D-19FA-4B80-BD24-911DB508B0F5}C:\program files\logitech\logitech vid\vid.exe" = protocol=6 | dir=in | app=c:\program files\logitech\logitech vid\vid.exe |
"TCP Query User{983B7C56-FF21-4CDD-900E-E7742B85437C}C:\users\olaf\appdata\local\war thunder\launcher.exe" = protocol=6 | dir=in | app=c:\users\olaf\appdata\local\war thunder\launcher.exe |
"TCP Query User{A9A8EC61-4E01-4780-908C-8CB6E751ED54}C:\program files\gamespy\comrade\comrade.exe" = protocol=6 | dir=in | app=c:\program files\gamespy\comrade\comrade.exe |
"TCP Query User{B0C06576-BE5A-4A96-B18B-5BA165441ED0}C:\program files\deluge\deluge.exe" = protocol=6 | dir=in | app=c:\program files\deluge\deluge.exe |
"TCP Query User{B170056F-1833-4D38-8496-1C42064B683F}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{00C3DE3C-49D1-4186-8923-43B915ABEA3E}C:\program files\deluge\deluge.exe" = protocol=17 | dir=in | app=c:\program files\deluge\deluge.exe |
"UDP Query User{0F40AAF8-7008-4CDF-92EB-E6EC2E1CA46C}C:\program files\origin games\battlefield 3\bf3.exe" = protocol=17 | dir=in | app=c:\program files\origin games\battlefield 3\bf3.exe |
"UDP Query User{445FE870-5D5A-4D83-B0D9-0FB894E6172F}C:\users\olaf\appdata\local\war thunder\launcher.exe" = protocol=17 | dir=in | app=c:\users\olaf\appdata\local\war thunder\launcher.exe |
"UDP Query User{6E5F4437-D9A2-43B8-BAE7-05AF7292EC69}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{917C1EA5-4D7B-48B2-BE8A-B29A826D99B3}C:\program files\deluge\deluge.exe" = protocol=17 | dir=in | app=c:\program files\deluge\deluge.exe |
"UDP Query User{B97EE1FA-C8A1-4E4C-8FA5-D93066E8C964}C:\program files\logitech\logitech vid\vid.exe" = protocol=17 | dir=in | app=c:\program files\logitech\logitech vid\vid.exe |
"UDP Query User{CD3C8C59-E4ED-45EA-AE64-A5954FF621A8}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{CE05B733-C202-4B81-ADFB-56A6F691EE27}C:\program files\bitcoin\bitcoin-qt.exe" = protocol=17 | dir=in | app=c:\program files\bitcoin\bitcoin-qt.exe |
"UDP Query User{E436B2A7-67A8-4D35-B9B2-7BBE75243B62}C:\program files\gamespy\comrade\comrade.exe" = protocol=17 | dir=in | app=c:\program files\gamespy\comrade\comrade.exe |
"UDP Query User{EAD5CDB4-6F9F-4488-9DA1-6884D5682354}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"UDP Query User{ED4C0709-AF46-4277-9E90-B1D48E3C98BB}C:\program files\company of heroes 2\reliccoh2.exe" = protocol=17 | dir=in | app=c:\program files\company of heroes 2\reliccoh2.exe |
"UDP Query User{F2B0DAD4-4B86-48D2-AD43-C6E8B9897701}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{151959C3-FABC-8827-7933- 4D8AC462D0D}_is1" = Company of Heroes 2 - etina version for Windows
"{1760F404-9A2B-4CD5-9A5C-7F9DCC627741}" = MechWarrior Online
"{17D26CDD-B87C-412B-92F0-2D5DD4313522}" = Facebook Messenger 2.1.4651.0
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1" = World of Tanks
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1" = World of Warplanes
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 9
"{29BA43D8-07F9-4D78-A682-91BAAA98A302}" = Rome - Total War Anthology
"{390DD8BB-BB57-4942-A029-2D913E4E9D74}" = Microsoft Security Client
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4198AE83-A3C6-4C41-85C8-EC63E990696E}" = Crysis®3
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}" = Logitech Vid
"{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
"{5A1A9AB2-2F68-462D-A67D-7C855DFF5EEB}" = Microsoft Network Monitor: NetworkMonitor Parsers 3.4
"{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}" = GameSpy Comrade
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6A9D1594-7791-48f5-9CAA-DE9BCB968320}" = Mass Effect™ 3
"{6AEFCA01-8DF1-11E1-A17B-F04DA23A5C58}" = Vegas Pro 11.0
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{70CB6C40-8DF1-11E1-BDCF-F04DA23A5C58}" = MSVCRT Redists
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{7694E0B1-2332-448B-9235-929F84B41E3F}" = Active@ ISO Burner
"{777163A2-8E38-48D2-AA39-C61AAC924154}" = ZoomEx
"{8190420D-F4BA-4744-8940-A466F81AF89C}_is1" = Ulož.to File Manager verze 1.6
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{989FB5FD-9B00-4B32-8663-849CB1370DD1}" = Google Drive
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A2F2C44A-869E-4C32-9CEC-E22B1CC91F06}" = Microsoft Network Monitor 3.4
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A6AC699F-8315-40CA-8F70-E917494978AB}" = VirtualDJ Home FREE
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7646-CE0000000001}" = Adobe Reader 6.0 CE
"{B000EFB1-ED0C-4830-9DF1-E0EB1E2899E5}" = OSCAR Editor
"{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}" = @BIOS
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.12.1031
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.3.18.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}" = Logitech Webcam Software
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DF5B650A-3F45-4DEF-90B7-5AC4893CED28}" = QuadCoreM2
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}" = Far Cry 3
"{E5F05232-96B6-4552-A480-785A60A94B21}" = System Requirements Lab CYRI
"{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1" = War Thunder Launcher 1.0.1.252
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{FB0127F3-985B-44CE-AE29-378CAF60B361}" = Need for Speed™ Most Wanted
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{ffbbd184-8eba-469f-bb26-ea4e1f6bfd4c}" = MechWarrior Online
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Battlelog Web Plugins" = Battlelog Web Plugins
"BattlEye A2 Free" = BattlEye (A2Free) Uninstall
"Bloody2" = Bloody2
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.63.0
"DAEMON Tools Lite" = DAEMON Tools Lite
"Deluge" = Deluge 1.3.1
"ESN Sonar-0.70.4" = ESN Sonar
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"Fraps" = Fraps
"Google Chrome" = Google Chrome
"GTK2-Runtime" = GTK2-Runtime
"InstallShield_{29BA43D8-07F9-4D78-A682-91BAAA98A302}" = Rome - Total War Anthology
"InstallShield_{B000EFB1-ED0C-4830-9DF1-E0EB1E2899E5}" = X7 Oscar Editor
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.75.0.1300
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"Minecraft1.6.1" = Minecraft1.6.1
"Mozilla Firefox 16.0.2 (x86 cs)" = Mozilla Firefox 16.0.2 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OptimizerPro1" = OptimizerPro1
"Origin" = Origin
"PC Speed Up Extension" = PC Speed Up Extension
"PhotoScape" = PhotoScape
"PrivitizeVPN" = PrivitizeVPN
"Q29tcGFueW9mSGVyb2VzMg==_is1" = Company of Heroes 2
"SpeedFan" = SpeedFan (remove only)
"TeamViewer 8" = TeamViewer 8
"TechPowerUp GPU-Z" = TechPowerUp GPU-Z
"TextMaker Viewer" = TextMaker Viewer
"The KMPlayer" = The KMPlayer (remove only)
"TrueCrypt" = TrueCrypt
"VobSub" = VobSub 2.23
"WinLiveSuite" = Windows Live Essentials
"ZoomEx" =
"ZOTAC FireStorm" = ZOTAC FireStorm

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Bitcoin" = Bitcoin

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5.8.2013 9:12:37 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 5.8.2013 9:12:51 | Computer Name = domin-PC | Source = WinMgmt | ID = 10
Description =

Error - 6.8.2013 3:20:48 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 6.8.2013 3:22:17 | Computer Name = domin-PC | Source = WinMgmt | ID = 10
Description =

Error - 6.8.2013 3:34:22 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 6.8.2013 3:35:27 | Computer Name = domin-PC | Source = WinMgmt | ID = 10
Description =

Error - 6.8.2013 5:38:49 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 6.8.2013 5:40:22 | Computer Name = domin-PC | Source = WinMgmt | ID = 10
Description =

Error - 6.8.2013 5:58:17 | Computer Name = domin-PC | Source = WinMgmt | ID = 10
Description =

Error - 6.8.2013 6:05:32 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

[ System Events ]
Error - 6.8.2013 3:43:53 | Computer Name = domin-PC | Source = Microsoft Antimalware | ID = 2001
Description = %%860 zjistil chybu při pokusu o aktualizaci podpisů. Nová verze podpisu:
Předchozí verze podpisu: 1.155.1493.0 Zdroj aktualizace: %%859 Fáze aktualizace:
%%852 Zdrojová cesta: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizace:
%%803 Uživatel: NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu:
1.1.9700.0 Kód chyby: 0x8024402c Popis chyby: Při zjišťování aktualizací došlo k
neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete
v nápovědě a podpoře.

Error - 6.8.2013 5:38:44 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7000
Description = Služba ASInsHelp neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 6.8.2013 5:40:49 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 6.8.2013 5:40:49 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069

Error - 6.8.2013 5:48:44 | Computer Name = domin-PC | Source = DCOM | ID = 10001
Description =

Error - 6.8.2013 5:54:00 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7034
Description = Služba Skype C2C Service byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 6.8.2013 5:54:01 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7034
Description = Služba Process Monitor byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 6.8.2013 5:56:37 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7000
Description = Služba ASInsHelp neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 6.8.2013 5:58:43 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 6.8.2013 5:58:43 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069

< End of report >

dominpb · Příspěvekod **dominpb** » 06 srp 2013 12:15

TL Extras logfile created on: 6.8.2013 12:09:59 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\olaf\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,12 Gb Total Physical Memory | 2,03 Gb Available Physical Memory | 64,86% Memory free
7,57 Gb Paging File | 6,20 Gb Available in Paging File | 81,87% Paging File free
Paging file location(s): c:\pagefile.sys 4555 5120 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 283,12 Gb Total Space | 106,41 Gb Free Space | 37,59% Space Free | Partition Type: NTFS
Drive D: | 97,36 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: DOMIN-PC | User Name: olaf | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0E9253AA-4185-47C3-9876-7838FC17333C}" = rport=139 | protocol=6 | dir=out | app=system |
"{116145D6-3B09-49D9-8855-9EF72AC7FECD}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{1741E62C-51AD-49F2-8A9C-EE8B20C67925}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{180529BE-EAF9-417E-956F-35EDCC586BD5}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{183979D2-567E-4646-8EA8-3CFBE3A1CD3C}" = rport=138 | protocol=17 | dir=out | app=system |
"{19BFBA9D-42C2-4EFC-8C8D-A297F7BA9767}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1DF79EE5-3B89-49F5-B7C7-0A28AC43164B}" = rport=445 | protocol=6 | dir=out | app=system |
"{1E906739-C531-45D0-9200-6594623DCC2B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{247807EC-D3E3-4425-A4BC-279EF1505D49}" = lport=138 | protocol=17 | dir=in | app=system |
"{28706E89-5FC8-4462-A621-2FF1A165678F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{31DF02F7-EF45-47AC-9B4A-270356AFEFBF}" = rport=137 | protocol=17 | dir=out | app=system |
"{362AEC70-7FED-437D-8F80-E26DC11128EC}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{42F18542-A82F-498D-B0A8-5E0202CB386C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{45633587-0100-4F0D-86BF-C46C8CBFF146}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{45CEA16F-0089-4666-BB95-9D485D533C7F}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{47DAF7E0-6EE6-47A9-89FB-518536230DA4}" = lport=2869 | protocol=6 | dir=in | app=system |
"{4821B6F9-6E65-41CB-B3AE-B7ECB03721FF}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{48D608EF-A90B-47AB-A906-9869F7A91F55}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{4FD7E894-D476-4BAE-83FF-C562DE68B4E0}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{55980A3D-7099-4651-94AC-EB892E42C729}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5BCB8107-3186-45B9-9547-C91FB4AD6371}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{69D5CDFB-F081-4C2E-A8F2-25E2AF3FA1F6}" = lport=10243 | protocol=6 | dir=in | app=system |
"{6C53AB27-4769-4F15-83FC-0BB133988B22}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{70A4A8CF-E1C1-40DE-82DD-C7DF9FBE6A71}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{72078B79-6E2D-419B-AF26-F9B1AD15B379}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7EC3E2BE-2FB3-4E3A-9042-50E5FEFC67E0}" = rport=10243 | protocol=6 | dir=out | app=system |
"{7F289475-5074-47D4-9756-A09410DA0775}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{83424CD4-61B6-4A2D-A1AC-8CE0B643423E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{83CE09F8-7A6B-47EE-BF0C-E7B59DBA5C0E}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{84B07C2A-4187-4BEB-81EA-558D2974CF48}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{8C6A8A6D-74F4-4B69-940C-849C4324E8F4}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{92F4D3B4-20DE-4368-95E8-8DEAC8704A04}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{96FE5515-34E7-44E4-8732-557D15EC997F}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{A8D677AB-B1EE-43B2-938D-0D1788372915}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{ABD0241B-073E-47B8-B228-77C94699ED02}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{AE9C4EC3-B1EC-4D1A-8998-945FF5D94EF4}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B7638486-010F-4E6D-92F6-8BBAC3136C35}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{BC647347-E71F-42F7-B8FD-00DF181102B1}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{C2DDAD1C-81F1-44AE-B332-CDCC4BCA586E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C9357BFE-21C7-483B-8EEE-3D96F6950B1C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CBA8FF0C-E22D-4A36-B46A-3FE27166884D}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{CC2D8D56-41C6-4C09-862E-72FBDB9BF778}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{CD31D912-1F42-4974-A6EA-3D9CBA34B1A0}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{D5F0BF27-CDF3-4B5C-B00D-30C1FD74F880}" = rport=2869 | protocol=6 | dir=out | app=system |
"{D8105AB7-EC66-4F96-A364-EE53CB37B13C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DA89555D-D4B2-429D-97D0-84459169FD6D}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{DC2EC2A9-5E62-4CE7-9CD2-ABBA928CD587}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{E5244E96-FC5F-4384-A143-2B9D60C5BEE3}" = lport=139 | protocol=6 | dir=in | app=system |
"{E6126CB7-4CBC-4CC7-8DB4-F61B5A3EC3BC}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{EB8E37BF-01CF-4176-B903-ACFC0C7EAD15}" = lport=445 | protocol=6 | dir=in | app=system |
"{EC50E591-B8F5-4E70-B597-C17EF24ED983}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{F84ADED7-06E6-4F6C-B3D5-EFFECA8B115A}" = lport=137 | protocol=17 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0008D6FB-A7ED-424A-8FD4-0C031DE864CF}" = protocol=17 | dir=in | app=c:\program files\logitech\logitech vid\vid.exe |
"{00DFF60D-C431-4665-AF3E-C3581C642B7F}" = protocol=6 | dir=in | app=c:\users\olaf\appdata\local\war thunder\aces.exe |
"{01272329-041D-4693-8059-903196489BBD}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{0A1F195F-13CF-497D-AAA8-09BB03FF7874}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{1074F447-2756-44A2-8732-FA06E48EBA7D}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{11CE756E-E83B-4CD6-8392-095313B4C5D8}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{123F81E4-B3F0-4EF0-B456-98757C191172}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1D5A59A3-9F0A-4112-BBFB-B223A5BF335A}" = protocol=17 | dir=in | app=c:\program files\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{26247959-B456-4CF4-BB85-328EB4A29736}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{2B0FCC20-D004-474C-BB6E-41B96BF51F56}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{35A49883-58A0-4DC3-88CE-6FABE78AE72E}" = protocol=6 | dir=in | app=c:\program files\origin games\battlefield 3\bf3.exe |
"{38B8E098-7D8C-4267-8AB7-7C70FA8E3014}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{3B82B05E-87DA-4733-B957-F5A3460AB674}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{3B9C104B-AE7D-440F-AEED-43E1F5E0F4A7}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4819221E-119C-45B4-9CE4-C4B2E05655A6}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{48BAB652-6EFE-455C-BBD7-6B0086C4B7AB}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version8\teamviewer_service.exe |
"{4D0D840F-F984-4C20-8CCA-23B64E9F193D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{61D07C7D-B1A4-44EC-952C-F5DB49B3EF08}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{631B5DC0-0D91-48AA-BFC4-4DE8D56D0EC3}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{659A26A9-35A6-4702-AE07-58601F125A72}" = protocol=17 | dir=in | app=c:\program files\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{68B4C80A-7F1A-4769-BC77-B05406A04D93}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{69A00CE4-38E4-4368-BCCC-2B50C60562C9}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{708D1026-97C1-4397-9F43-562B56D87764}" = protocol=6 | dir=in | app=c:\windows\system32\msiexec.exe |
"{7AF52E66-B8E1-43B8-805B-9C3829DD691C}" = protocol=17 | dir=in | app=c:\program files\origin games\battlefield 3\bf3.exe |
"{7CC38A76-E553-46DB-B59D-58C21554E3AB}" = protocol=17 | dir=in | app=c:\program files\origin games\crysis 3\bin32\crysis3.exe |
"{8255D0B6-66D0-4E3C-B05C-2782175463EA}" = protocol=6 | dir=out | app=system |
"{852B3BC9-19C4-4BAF-8D72-0E0EF5AA6B61}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8DA6C8B6-5967-45DF-935E-069E0CA6D1B2}" = protocol=6 | dir=in | app=c:\program files\origin games\crysis 3\bin32\crysis3.exe |
"{8EAF672C-6A7F-4750-8D63-58460D5A57C9}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{91FD2F2D-50CC-4A84-B00B-7B3FA3CB7CC7}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{92CCD8CA-86E3-4A4F-B355-8FB8D2A2665B}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version8\teamviewer_service.exe |
"{9EB55FB5-9CE9-4F21-98DC-D4B2347A0D0E}" = protocol=17 | dir=in | app=c:\windows\system32\msiexec.exe |
"{A805E702-8655-4CE8-968C-2E39D462F03C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A87E164F-CC81-4D09-9030-7CE54792DD48}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{B1C60E23-4336-43DF-8CC5-5038581988B5}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{B2AA986D-3E0C-41AF-ACE2-F55B8CD5E428}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B5211C9E-AD48-4543-AFCD-28075C21635A}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version8\teamviewer.exe |
"{BE642F9F-72CA-4C0E-B60A-C9DE7D0E4F0B}" = protocol=6 | dir=in | app=c:\program files\logitech\logitech vid\vid.exe |
"{C960BE6D-F329-49DC-8251-5283036F7630}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D43C2FCD-B335-45BA-B011-7E88546470E3}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{DE63E1C5-5BF9-4F77-AE29-9DFEA274E5A0}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{E2F8C0C2-9FB5-4330-8734-E5A85AFA6B82}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version8\teamviewer.exe |
"{E5209C4C-6D22-45A3-BC6C-15A2B2034431}" = protocol=17 | dir=in | app=c:\users\olaf\appdata\local\war thunder\aces.exe |
"{F2B82157-B086-4FDD-9960-DF56CDA604BD}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{F2CCB797-307D-402B-9F74-0C31AFA12D7C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F569057F-36F4-4B89-B528-61E102FBAA9E}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{F6890DF2-6B8B-408B-BCCD-A78F4F3F76DA}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{FA5A5103-F19D-461B-8A2A-B5A9D538C570}" = protocol=6 | dir=in | app=c:\program files\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{FD261334-9840-48C2-A957-8C093ECD7F80}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FDFC00FD-1061-4FEC-ABBF-47A2FF81988E}" = protocol=6 | dir=in | app=c:\program files\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"TCP Query User{056EBA42-C7CF-4B4B-BA82-69288669D254}C:\program files\deluge\deluge.exe" = protocol=6 | dir=in | app=c:\program files\deluge\deluge.exe |
"TCP Query User{0FF08D72-0C5C-4171-A51D-F982E3DED3A6}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{1F4F48DC-0E95-4CB4-B0DB-40FD35DEC3A4}C:\program files\origin games\battlefield 3\bf3.exe" = protocol=6 | dir=in | app=c:\program files\origin games\battlefield 3\bf3.exe |
"TCP Query User{28B669CC-4127-41CC-80C6-98C3CA53C258}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{39BDF3D9-114D-4CED-8D34-0DA65ACDB1BF}C:\program files\bitcoin\bitcoin-qt.exe" = protocol=6 | dir=in | app=c:\program files\bitcoin\bitcoin-qt.exe |
"TCP Query User{4D89295D-7BB0-40B8-AD04-5B3626655640}C:\program files\company of heroes 2\reliccoh2.exe" = protocol=6 | dir=in | app=c:\program files\company of heroes 2\reliccoh2.exe |
"TCP Query User{5196E778-BCA5-4D74-B321-1142F67C6288}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"TCP Query User{66D7A45D-19FA-4B80-BD24-911DB508B0F5}C:\program files\logitech\logitech vid\vid.exe" = protocol=6 | dir=in | app=c:\program files\logitech\logitech vid\vid.exe |
"TCP Query User{983B7C56-FF21-4CDD-900E-E7742B85437C}C:\users\olaf\appdata\local\war thunder\launcher.exe" = protocol=6 | dir=in | app=c:\users\olaf\appdata\local\war thunder\launcher.exe |
"TCP Query User{A9A8EC61-4E01-4780-908C-8CB6E751ED54}C:\program files\gamespy\comrade\comrade.exe" = protocol=6 | dir=in | app=c:\program files\gamespy\comrade\comrade.exe |
"TCP Query User{B0C06576-BE5A-4A96-B18B-5BA165441ED0}C:\program files\deluge\deluge.exe" = protocol=6 | dir=in | app=c:\program files\deluge\deluge.exe |
"TCP Query User{B170056F-1833-4D38-8496-1C42064B683F}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{00C3DE3C-49D1-4186-8923-43B915ABEA3E}C:\program files\deluge\deluge.exe" = protocol=17 | dir=in | app=c:\program files\deluge\deluge.exe |
"UDP Query User{0F40AAF8-7008-4CDF-92EB-E6EC2E1CA46C}C:\program files\origin games\battlefield 3\bf3.exe" = protocol=17 | dir=in | app=c:\program files\origin games\battlefield 3\bf3.exe |
"UDP Query User{445FE870-5D5A-4D83-B0D9-0FB894E6172F}C:\users\olaf\appdata\local\war thunder\launcher.exe" = protocol=17 | dir=in | app=c:\users\olaf\appdata\local\war thunder\launcher.exe |
"UDP Query User{6E5F4437-D9A2-43B8-BAE7-05AF7292EC69}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{917C1EA5-4D7B-48B2-BE8A-B29A826D99B3}C:\program files\deluge\deluge.exe" = protocol=17 | dir=in | app=c:\program files\deluge\deluge.exe |
"UDP Query User{B97EE1FA-C8A1-4E4C-8FA5-D93066E8C964}C:\program files\logitech\logitech vid\vid.exe" = protocol=17 | dir=in | app=c:\program files\logitech\logitech vid\vid.exe |
"UDP Query User{CD3C8C59-E4ED-45EA-AE64-A5954FF621A8}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{CE05B733-C202-4B81-ADFB-56A6F691EE27}C:\program files\bitcoin\bitcoin-qt.exe" = protocol=17 | dir=in | app=c:\program files\bitcoin\bitcoin-qt.exe |
"UDP Query User{E436B2A7-67A8-4D35-B9B2-7BBE75243B62}C:\program files\gamespy\comrade\comrade.exe" = protocol=17 | dir=in | app=c:\program files\gamespy\comrade\comrade.exe |
"UDP Query User{EAD5CDB4-6F9F-4488-9DA1-6884D5682354}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"UDP Query User{ED4C0709-AF46-4277-9E90-B1D48E3C98BB}C:\program files\company of heroes 2\reliccoh2.exe" = protocol=17 | dir=in | app=c:\program files\company of heroes 2\reliccoh2.exe |
"UDP Query User{F2B0DAD4-4B86-48D2-AD43-C6E8B9897701}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{151959C3-FABC-8827-7933- 4D8AC462D0D}_is1" = Company of Heroes 2 - etina version for Windows
"{1760F404-9A2B-4CD5-9A5C-7F9DCC627741}" = MechWarrior Online
"{17D26CDD-B87C-412B-92F0-2D5DD4313522}" = Facebook Messenger 2.1.4651.0
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1" = World of Tanks
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1" = World of Warplanes
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 9
"{29BA43D8-07F9-4D78-A682-91BAAA98A302}" = Rome - Total War Anthology
"{390DD8BB-BB57-4942-A029-2D913E4E9D74}" = Microsoft Security Client
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4198AE83-A3C6-4C41-85C8-EC63E990696E}" = Crysis®3
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}" = Logitech Vid
"{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
"{5A1A9AB2-2F68-462D-A67D-7C855DFF5EEB}" = Microsoft Network Monitor: NetworkMonitor Parsers 3.4
"{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}" = GameSpy Comrade
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6A9D1594-7791-48f5-9CAA-DE9BCB968320}" = Mass Effect™ 3
"{6AEFCA01-8DF1-11E1-A17B-F04DA23A5C58}" = Vegas Pro 11.0
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{70CB6C40-8DF1-11E1-BDCF-F04DA23A5C58}" = MSVCRT Redists
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{7694E0B1-2332-448B-9235-929F84B41E3F}" = Active@ ISO Burner
"{777163A2-8E38-48D2-AA39-C61AAC924154}" = ZoomEx
"{8190420D-F4BA-4744-8940-A466F81AF89C}_is1" = Ulož.to File Manager verze 1.6
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{989FB5FD-9B00-4B32-8663-849CB1370DD1}" = Google Drive
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A2F2C44A-869E-4C32-9CEC-E22B1CC91F06}" = Microsoft Network Monitor 3.4
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A6AC699F-8315-40CA-8F70-E917494978AB}" = VirtualDJ Home FREE
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7646-CE0000000001}" = Adobe Reader 6.0 CE
"{B000EFB1-ED0C-4830-9DF1-E0EB1E2899E5}" = OSCAR Editor
"{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}" = @BIOS
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.12.1031
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.3.18.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}" = Logitech Webcam Software
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DF5B650A-3F45-4DEF-90B7-5AC4893CED28}" = QuadCoreM2
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}" = Far Cry 3
"{E5F05232-96B6-4552-A480-785A60A94B21}" = System Requirements Lab CYRI
"{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1" = War Thunder Launcher 1.0.1.252
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{FB0127F3-985B-44CE-AE29-378CAF60B361}" = Need for Speed™ Most Wanted
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{ffbbd184-8eba-469f-bb26-ea4e1f6bfd4c}" = MechWarrior Online
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Battlelog Web Plugins" = Battlelog Web Plugins
"BattlEye A2 Free" = BattlEye (A2Free) Uninstall
"Bloody2" = Bloody2
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.63.0
"DAEMON Tools Lite" = DAEMON Tools Lite
"Deluge" = Deluge 1.3.1
"ESN Sonar-0.70.4" = ESN Sonar
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"Fraps" = Fraps
"Google Chrome" = Google Chrome
"GTK2-Runtime" = GTK2-Runtime
"InstallShield_{29BA43D8-07F9-4D78-A682-91BAAA98A302}" = Rome - Total War Anthology
"InstallShield_{B000EFB1-ED0C-4830-9DF1-E0EB1E2899E5}" = X7 Oscar Editor
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.75.0.1300
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"Minecraft1.6.1" = Minecraft1.6.1
"Mozilla Firefox 16.0.2 (x86 cs)" = Mozilla Firefox 16.0.2 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OptimizerPro1" = OptimizerPro1
"Origin" = Origin
"PC Speed Up Extension" = PC Speed Up Extension
"PhotoScape" = PhotoScape
"PrivitizeVPN" = PrivitizeVPN
"Q29tcGFueW9mSGVyb2VzMg==_is1" = Company of Heroes 2
"SpeedFan" = SpeedFan (remove only)
"TeamViewer 8" = TeamViewer 8
"TechPowerUp GPU-Z" = TechPowerUp GPU-Z
"TextMaker Viewer" = TextMaker Viewer
"The KMPlayer" = The KMPlayer (remove only)
"TrueCrypt" = TrueCrypt
"VobSub" = VobSub 2.23
"WinLiveSuite" = Windows Live Essentials
"ZoomEx" =
"ZOTAC FireStorm" = ZOTAC FireStorm

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Bitcoin" = Bitcoin

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5.8.2013 9:12:37 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 5.8.2013 9:12:51 | Computer Name = domin-PC | Source = WinMgmt | ID = 10
Description =

Error - 6.8.2013 3:20:48 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 6.8.2013 3:22:17 | Computer Name = domin-PC | Source = WinMgmt | ID = 10
Description =

Error - 6.8.2013 3:34:22 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 6.8.2013 3:35:27 | Computer Name = domin-PC | Source = WinMgmt | ID = 10
Description =

Error - 6.8.2013 5:38:49 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 6.8.2013 5:40:22 | Computer Name = domin-PC | Source = WinMgmt | ID = 10
Description =

Error - 6.8.2013 5:58:17 | Computer Name = domin-PC | Source = WinMgmt | ID = 10
Description =

Error - 6.8.2013 6:05:32 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

[ System Events ]
Error - 6.8.2013 3:43:53 | Computer Name = domin-PC | Source = Microsoft Antimalware | ID = 2001
Description = %%860 zjistil chybu při pokusu o aktualizaci podpisů. Nová verze podpisu:
Předchozí verze podpisu: 1.155.1493.0 Zdroj aktualizace: %%859 Fáze aktualizace:
%%852 Zdrojová cesta: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizace:
%%803 Uživatel: NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu:
1.1.9700.0 Kód chyby: 0x8024402c Popis chyby: Při zjišťování aktualizací došlo k
neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete
v nápovědě a podpoře.

Error - 6.8.2013 5:38:44 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7000
Description = Služba ASInsHelp neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 6.8.2013 5:40:49 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 6.8.2013 5:40:49 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069

Error - 6.8.2013 5:48:44 | Computer Name = domin-PC | Source = DCOM | ID = 10001
Description =

Error - 6.8.2013 5:54:00 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7034
Description = Služba Skype C2C Service byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 6.8.2013 5:54:01 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7034
Description = Služba Process Monitor byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 6.8.2013 5:56:37 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7000
Description = Služba ASInsHelp neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 6.8.2013 5:58:43 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).

Error - 6.8.2013 5:58:43 | Computer Name = domin-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069

< End of report >

Příspěvekod **jaro3** » 06 srp 2013 19:24

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
DRV - (VGPU) -- System32\drivers\rdvgkmd.sys File not found
DRV - (GPU-Z) -- C:\Users\olaf\AppData\Local\Temp\GPU-Z.sys File not found
DRV - (cpuz135) -- C:\Users\olaf\AppData\Local\Temp\cpuz135\cpuz135_x32.sys File not found
DRV - (ASInsHelp) -- C:\Windows\system32\drivers\AsInsHelp32.sys File not found
DRV - (ar67n2w6) -- File not found
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes,DefaultScope = 
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\..\SearchScopes\{3B8F57CE-5758-4098-9A8C-82B7CAF3ECEA}: "URL" = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.defaultenginename,S: S", ""
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.order.1,S: S", ""
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.search.selectedEngine,S: S", ""
FF - prefs.js..extensions.enabledAddons: {ea614400-e918-4741-9a97-7a972ff7c30b}:2.5.15
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll File not found
[2013.01.12 18:34:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\olaf\AppData\Roaming\mozilla\Extensions
[2013.08.02 15:49:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions
[2013.05.19 16:44:19 | 000,000,000 | ---D | M] (Seznam liĹˇtiÄŤka) -- C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2012.11.25 21:26:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013.04.27 10:49:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2012.08.13 10:55:21 | 000,000,000 | ---D | M] - D:\AutoPlay -- [ CDFS ]
O32 - AutoRun File - [2012.08.13 10:55:21 | 006,763,520 | R--- | M] () - D:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2012.08.13 10:55:21 | 000,000,046 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
[2013.08.04 21:39:25 | 000,674,888 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2013.08.04 21:39:25 | 000,660,706 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013.08.04 21:39:25 | 000,144,842 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2013.08.04 21:39:25 | 000,124,896 | ---- | M] () -- C:\Windows\System32\perfc009.dat
@Alternate Data Stream - 296 bytes -> C:\ProgramData\TEMP:9A870F8B
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:3B71D0B4
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:CC02DF48

:Files
C:\WINDOWS\System32\*.tmp 
C:\WINDOWS\*.tmp 
C:\WINDOWS\system32\*.tmp.dll 
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
[1 C:\Users\olaf\*.tmp files -> C:\Users\olaf\*.tmp -> ]
C:\Windows\System32\drivers\atikmdag.sys.dump
C:\Windows\DeleteOnReboot.bat

:Reg
:Commands
[resethosts]
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

C:\Users\olaf\AppData\Roaming\3909 LLC--ten program znáš?

Error - 5.8.2013 9:12:37 | Computer Name = domin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

nejde Ti aktivace licence?

dominpb · Příspěvekod **dominpb** » 06 srp 2013 21:35

Jde jen se mi nechtělo kupovat win na každý PC zvlášt

dominpb · Příspěvekod **dominpb** » 06 srp 2013 21:37

Stejně tet nemůžu s PC dělat nic jedu pryč

Příspěvekod **jaro3** » 07 srp 2013 09:45

no jo , to není ale legální..

dominpb · Příspěvekod **dominpb** » 18 srp 2013 10:30

3909 LLC je hra papers please.

dominpb · Příspěvekod **dominpb** » 18 srp 2013 10:34

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
C:\Program Files\Skype\Updater\Updater.exe moved successfully.
Service VGPU stopped successfully!
Service VGPU deleted successfully!
File System32\drivers\rdvgkmd.sys File not found not found.
Service GPU-Z stopped successfully!
Service GPU-Z deleted successfully!
File C:\Users\olaf\AppData\Local\Temp\GPU-Z.sys File not found not found.
Service cpuz135 stopped successfully!
Service cpuz135 deleted successfully!
File C:\Users\olaf\AppData\Local\Temp\cpuz135\cpuz135_x32.sys File not found not found.
Service ASInsHelp stopped successfully!
Service ASInsHelp deleted successfully!
File C:\Windows\system32\drivers\AsInsHelp32.sys File not found not found.
Error: No service named ar67n2w6 was found to stop!
Service\Driver key ar67n2w6 not found.
File File not found not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3B8F57CE-5758-4098-9A8C-82B7CAF3ECEA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3B8F57CE-5758-4098-9A8C-82B7CAF3ECEA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Prefs.js: "" removed from browser.search.defaultenginename
Prefs.js: S", "" removed from browser.search.defaultenginename,S
Prefs.js: "" removed from browser.search.defaultthis.engineName
Prefs.js: "" removed from browser.search.defaulturl
Prefs.js: "" removed from browser.search.order.1
Prefs.js: S", "" removed from browser.search.order.1,S
Prefs.js: "" removed from browser.search.selectedEngine
Prefs.js: S", "" removed from browser.search.selectedEngine,S
Prefs.js: {ea614400-e918-4741-9a97-7a972ff7c30b}:2.5.15 removed from extensions.enabledAddons
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\ubisoft.com/uplaypc\ deleted successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Extensions folder moved successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK folder moved successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email folder moved successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses folder moved successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components folder moved successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes folder moved successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules folder moved successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\META-INF folder moved successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome folder moved successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} folder moved successfully.
C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions folder moved successfully.
Folder C:\Users\olaf\AppData\Roaming\mozilla\Firefox\Profiles\ueqyorfr.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\ not found.
C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f}\defaults\preferences folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f}\defaults folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f}\chrome\skin folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DontDisplayLogonHoursWarnings deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\autoexec.bat moved successfully.
File not found.
File move failed. D:\autorun.exe scheduled to be moved on reboot.
File move failed. D:\autorun.inf scheduled to be moved on reboot.
C:\Windows\System32\perfh005.dat moved successfully.
C:\Windows\System32\perfh009.dat moved successfully.
C:\Windows\System32\perfc005.dat moved successfully.
C:\Windows\System32\perfc009.dat moved successfully.
ADS C:\ProgramData\TEMP:9A870F8B deleted successfully.
ADS C:\ProgramData\TEMP:3B71D0B4 deleted successfully.
ADS C:\ProgramData\TEMP:CC02DF48 deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
C:\WINDOWS\B83FC356B7C0441F8A4DD71E088E7974.TMP folder moved successfully.
C:\WINDOWS\DA909E623B454BA18B58FCAEBA4BCEC9.TMP folder moved successfully.
C:\WINDOWS\E10DB5DAE57640EAA7FC1CB2A7B283A6.TMP folder moved successfully.
C:\WINDOWS\msdownld.tmp folder moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
c:\windows\Tasks\Adobe Flash Player Updater.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder [1 C:\Users\olaf\*.tmp files -> C:\Users\olaf\*.tmp -> ] not found.
C:\Windows\System32\drivers\atikmdag.sys.dump moved successfully.
C:\Windows\DeleteOnReboot.bat moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: domin
->Temp folder emptied: 0 bytes

User: olaf
->Temp folder emptied: 1211833 bytes
->Temporary Internet Files folder emptied: 1058614 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 29411154 bytes
->Google Chrome cache emptied: 10928177 bytes
->Flash cache emptied: 506 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 10619645 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 51,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 08182013_103012

Files\Folders moved on Reboot...
File move failed. D:\autorun.exe scheduled to be moved on reboot.
File move failed. D:\autorun.inf scheduled to be moved on reboot.
File move failed. C:\Windows\temp\logishrd\LVPrcInj01.dll scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Promin to týdnové zpoždění . ale nebyl jsem na PC.

Příspěvekod **jaro3** » 18 srp 2013 10:38

OK.

Spusť OTL a klikni na Vyčisti.

Jak to vypadá nyní?

malé fps. Vyřešeno

Re: malé fps.

Re: malé fps.

Re: malé fps.

Re: malé fps.

Re: malé fps.

Re: malé fps.

Re: malé fps.

Re: malé fps.

Re: malé fps.

Re: malé fps.

Re: malé fps.

Re: malé fps.

Kdo je online