Prosím o kontolu logu. Vyřešeno

[Beati]

OTL Extras logfile created on: 27. 12. 2013 15:33:35 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Lam\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000405 | Country: Czech Republic | Language: CSY | Date Format: d. M. yyyy

7,86 Gb Total Physical Memory | 6,31 Gb Available Physical Memory | 80,25% Memory free
9,11 Gb Paging File | 7,50 Gb Available in Paging File | 82,33% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 883,84 Gb Total Space | 769,06 Gb Free Space | 87,01% Space Free | Partition Type: NTFS
Drive D: | 25,00 Gb Total Space | 8,85 Gb Free Space | 35,42% Space Free | Partition Type: NTFS

Computer Name: MANTIK | User Name: Lam | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\Free Media Player\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\Free Media Player\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\Free Media Player\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\Free Media Player\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"UpdatesDisableNotify" =

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0C2449C6-1F36-4A5A-9045-4AAC0FB28B4C}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4C36F249-0DC4-4C40-A6CD-4AB6B60849BE}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5A75EFD7-92DE-4285-A681-A42CBE37DD38}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{65E020A4-B0F5-4B43-B032-31AC6B7BF1AA}" = lport=10243 | protocol=6 | dir=in | app=system |
"{73D20416-2204-4DED-AA90-33DDFE35A663}" = rport=10243 | protocol=6 | dir=out | app=system |
"{8A636E50-EF12-4E29-BD82-D476579A1F23}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{A36DA442-E847-4968-92F7-7E9C419C678B}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DBA8AE74-877D-4356-B738-827253E5E78F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{E964649A-B398-4846-A7AF-A7C6796A3547}" = lport=2869 | protocol=6 | dir=in | app=system |
"{EDAC5428-F2AF-4B9E-8FA5-8DBB78E7AEFF}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01C0194A-AB56-45D0-ACFC-592BB3E90B13}" = protocol=6 | dir=in | app=c:\users\lam\appdata\roaming\utorrent\utorrent.exe |
"{0E0246AD-BB4A-48CD-8F0E-1EE9A8AAAE36}" = dir=out | name=@{microsoft.zunevideo_1.3.59.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{1037B158-C24C-4EA4-9432-DE063A1B606F}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{144101A0-25CB-4179-9A51-A1388B44E9DF}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{15FED1D5-562C-4674-97DA-EE4B0B8A11DA}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{179FEC73-3D24-4B90-B3F0-ADE2F9F26255}" = dir=out | name=mcafee® central for lenovo |
"{182E7E05-D1EB-446F-91EB-EDFD83E8937A}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.1.335_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{19FA9FFF-293B-4316-90A6-D9EA65642978}" = dir=out | name=@{microsoft.bingmaps_1.6.1528.2509_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{1E31A5B9-616B-4ED1-9C5B-46E084E60F57}" = dir=out | name=@{microsoft.bingtravel_3.0.1.202_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{2343C3BE-A01C-403C-8422-F55D1F4534E6}" = dir=out | name=@{microsoft.xboxlivegames_1.3.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{23C7FFEC-765D-4D0A-B4FD-7AADBDA1F396}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{27581D7A-0503-4925-B05B-12E483899A38}" = dir=out | name=@{microsoft.reader_6.2.9200.20623_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{2ACF252C-C9E1-4499-84DF-8BCB69C46EBD}" = protocol=17 | dir=in | app=c:\users\lam\appdata\roaming\utorrent\utorrent.exe |
"{30B14B58-5EB2-4104-9400-BF8D9995AEA8}" = dir=out | name=windows_ie_ac_001 |
"{34589F4F-1958-49F6-B8BB-BC20BB664F72}" = dir=out | name=@{microsoft.bingfinance_3.0.1.299_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{36538649-318E-49FD-9E8A-4EE3C43AB161}" = dir=out | name=@{microsoft.bingmaps_2.0.2210.2401_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{38069A85-BF52-4085-BEFF-3381DE521456}" = dir=out | name=check point vpn |
"{3BCC9E0C-AE1F-440B-8F46-9BFE17EB296E}" = dir=out | name=f5 vpn |
"{407EA01E-BDAE-49FF-8690-507693D9BE79}" = protocol=17 | dir=in | app=c:\games\gas guzzlers extreme\bin32\gasguzzlers.exe |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{476EDD8A-C67B-4B20-82BA-340D5295160D}" = dir=out | name=accuweather for windows 8 |
"{48D12813-E291-43A7-A766-FEADE863DA98}" = protocol=17 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{49C4182F-9654-46EA-85A2-B9F339C532E7}" = dir=out | name=powerdvd for lenovo idea |
"{4AE70F6E-98B6-4BCA-9F62-E5E869E83659}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{4DD3AADB-C362-4B86-A970-D672D9320F44}" = dir=out | name=@{microsoft.bingsports_3.0.1.203_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{505BEDF1-2F97-423E-82F5-5DA1197BB71B}" = dir=out | name=@{microsoft.zunemusic_2.2.339.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{5070C12C-540E-4C48-9A92-8D2CD827C5C8}" = dir=in | name=powerdvd for lenovo idea |
"{540C192A-EE06-444D-B097-21071A76BB01}" = dir=out | name=lenovo support |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{56B46FCA-33B1-488D-9998-AD7DF532A8C0}" = dir=out | name=@{microsoft.zunevideo_2.2.338.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{597EEFFB-C50C-46B4-B059-43AE8D2B00DB}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{64537896-FF36-475E-AF13-48E65C3E00A7}" = dir=out | name=@{microsoft.bingweather_2.0.0.288_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{6A34D6B0-CF65-422A-A608-82FD7861C6DC}" = dir=out | name=@{microsoft.bingweather_3.0.1.203_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{70A0C8C2-A0A9-4342-A92F-0E21B3ED41BF}" = dir=in | name=juniper networks junos pulse |
"{71ACC943-D9D4-40C4-A698-35F5C15A396A}" = dir=in | name=f5 vpn |
"{75FD1BE8-8787-4D93-B569-05150A368371}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{76A0E988-D971-4FF9-A24F-40678F33897D}" = dir=in | app=c:\users\lam\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{7A3C2CDF-3A69-4A5A-975B-D09708B7B986}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7B01182D-BFE7-4D19-9B5D-C2ECF6156E24}" = dir=in | name=skype |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{818AAE19-DBAC-41E0-B118-23C1AE3AD280}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{82DC3AF8-0BB3-4CCD-89A1-F4370F9F4BFD}" = protocol=6 | dir=out | app=system |
"{8413BE24-5444-4888-B083-2C67F4F169CE}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{842FB247-82D1-4E9A-AD12-5BFC99AB6749}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{85B232E8-1141-4FEE-AB2F-EB393B16F347}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8DB7E01A-86F8-49FE-974D-5DB6471F0BA6}" = dir=out | name=windows_ie_ac_001 |
"{9673B935-273F-4EBE-BEDA-0ADFB58C677B}" = dir=in | name=evernote touch |
"{968EFF09-3124-4C73-8B2F-345D6F0BE437}" = dir=out | name=skype |
"{9C5EF6B6-B10E-4EE2-BA3C-063C2C459846}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{9CC21B83-3E0A-4981-B217-22B7EF461820}" = dir=out | name=windows_ie_ac_001 |
"{9E21F815-7790-4D92-80A6-D400AC7FA2A3}" = dir=in | name=check point vpn |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{A00315FF-1363-4409-AC94-8ADC0819242A}" = protocol=6 | dir=in | app=c:\cherrydegames\dragon nest\dragonnest.exe |
"{A0C551E1-9C2E-4741-9D29-DF66B7133A84}" = dir=out | name=sonicwall mobile connect |
"{A59E21D6-967F-4D22-8D03-BEFD1E177489}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.1.337_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{AFF333ED-6074-41C8-8A69-AB151FB4A441}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{BAA66B39-8919-4C2A-B44E-9551D1072C44}" = dir=in | app=c:\program files (x86)\lenovo\powerdvd10\powerdvd cinema\powerdvdcinema10.exe |
"{BD406658-27A9-4CAA-9C81-93114EF3E3D4}" = dir=in | name=@{microsoft.reader_6.2.9200.20623_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{C587FC45-1982-4E00-BF4F-F0FE9A88E7F8}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{C6278305-3AF9-421C-9C5A-93ADB0DBD48E}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{C74477C6-8FC4-4CF8-A083-0D5F8119FBE7}" = dir=in | name=sonicwall mobile connect |
"{C7910A22-CB08-4E0C-B07B-F4E5D4ABCD88}" = protocol=6 | dir=in | app=c:\games\gas guzzlers extreme\bin32\gasguzzlers.exe |
"{CC0DB5A1-A028-48CD-82A3-491A84813B73}" = dir=out | name=@{microsoft.zunemusic_1.4.18.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{CF845B16-DCB1-47CF-B114-21EEFB6C23EA}" = dir=in | app=c:\program files (x86)\lenovo\powerdvd10\powerdvd10.exe |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{E0429A82-F264-40B9-AC67-E6D3F866C9EC}" = dir=out | name=evernote touch |
"{E371E8A3-4E36-487C-B66E-EAD829C3C78A}" = dir=out | name=juniper networks junos pulse |
"{E75DE708-B592-4E9F-B79C-ACB996CF2B41}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E86C6CB8-5A4E-4791-828A-DEB911D12EF8}" = dir=out | name=@{microsoft.bingnews_3.0.1.321_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/apptitle} |
"{EB414CE9-63F4-44A4-87EF-F515CA1054B1}" = dir=out | name=lenovo companion |
"{EB6673EA-7CD7-4A7F-A657-BA102996FF68}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{F440CDFA-1CAC-44F6-83E6-33BC9E3DB851}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{F4A30B72-617E-46D4-B063-23335763D9D5}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F4B8749B-3EB2-4265-B9E8-CF1DD2E71380}" = dir=in | name=mcafee® central for lenovo |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F7216703-4E13-42D8-AEDC-9ACBBDFF21C0}" = protocol=17 | dir=in | app=c:\cherrydegames\dragon nest\dragonnest.exe |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{FAB6EB7B-20FA-4AE3-B992-1E7BB2661343}" = protocol=6 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{FCC0F979-2087-45A9-9226-4FD35C7C89C5}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{FED07A57-5034-4C19-A525-710DEABE1E4D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"TCP Query User{414269E0-82B2-4B18-A5C5-9C70AB37BD35}C:\users\lam\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\lam\appdata\roaming\utorrent\utorrent.exe |
"TCP Query User{789F4E68-1AFE-4DAC-B541-E0003EB40BD8}C:\windows\kmsemulator.exe" = protocol=6 | dir=in | app=c:\windows\kmsemulator.exe |
"TCP Query User{CD0C6C86-9D20-4C99-9940-250F47D923F1}C:\users\lam\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\lam\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{88AB3175-C765-4289-B755-05F14F9ACEB9}C:\users\lam\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\lam\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{97B5F23F-B370-4C40-900F-C5C8A53178FC}C:\users\lam\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\lam\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{D58E5FF3-6833-4AB6-9CB5-EE4AFB5DFBEC}C:\windows\kmsemulator.exe" = protocol=17 | dir=in | app=c:\windows\kmsemulator.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2010
"{A84A4FB1-D703-48DB-89E0-68B6499D2801}" = Qualcomm Atheros Bluetooth Suite (64)
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 327.02
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 327.02
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 327.02
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 8.3.14
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.0725
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client
"71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42" = Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1)
"8A223E56FB1ED4F697B54E5BF96F1EB63B512684" = Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733)
"CCleaner" = CCleaner
"Elantech" = ETDWare PS/2-X64 11.4.8.1_WHQL

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Lenovo YouCam
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}" = Amazon Browser App
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros Client Installation Program
"{3566D7DB-EA10-49DE-A95B-F4AB41FC0A93}" = Dragon Nest SEA
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{91CC5BAE-A098-40D3-A43B-C0DC7CE263FE}" = Onekey Theater
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office
"{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}" = Google Earth
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2764561-3E70-4744-993A-F9EFC457E080}" = S4 League_EU
"{A8DDE849-C13A-4BD5-8456-95BCBA18D600}_is1" = Grand Theft Auto IV
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{B26438B4-BF51-49C3-9567-7F14A5E40CB9}" = Dolby Home Theater v4
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{DAE7BFC8-617F-4795-AC82-B7A9490B6263}_is1" = "Gas Guzzlers Extreme"
"{DD7D6D84-93AB-48CA-A759-94324E341CBA}" = Intelligent Touchpad
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = Lenovo PowerDVD10
"{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}" = Lenovo EasyCamera
"{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = UserGuide
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Fraps" = Fraps
"Free Media Player" = Free Media Player 2.0.7
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Lenovo YouCam
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = Lenovo PowerDVD10
"InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = UserGuide
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.75.0.1300
"Mozilla Firefox 26.0 (x86 en-US)" = Mozilla Firefox 26.0 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Office14.SingleImage" = Microsoft Office Professional 2010
"SugarSync" = SugarSync Manager
"Tales of Pirates II_is1" = Tales of Pirates II
"WinRAR archiver" = WinRAR 4.20 (32-bit)
"Yahoo! Messenger" = Yahoo! Messenger

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"ec1b2343809087a4" = SAND BAG CALC
"PC Cleaners" = PC Cleaners

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2. 11. 2013 7:55:38 | Computer Name = Mantik | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Aplikaci FileManager_cw5n1h2txyewy!Microsoft.Windows.PhotoManager
se nepovedlo aktivovat, protože došlo k chybě: -2147024809. Další informace najdete
v protokolu Microsoft-Windows-TWinUI/Operational.

Error - 2. 11. 2013 12:11:57 | Computer Name = Mantik | Source = Microsoft-Windows-LocationProvider | ID = 2006
Description =

Error - 5. 11. 2013 2:28:42 | Computer Name = Mantik | Source = Application Hang | ID = 1002
Description = Program wwahost.exe verze 6.3.9600.16384 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: 3d4 Čas spuštění: 01ced9eedb7549a0 Čas ukončení: 4294967295 Cesta k aplikaci:
C:\WINDOWS\syswow64\wwahost.exe ID hlášení: 82ad1f9a-45e3-11e3-bebe-20689df4e42e

Úplný
název chybujícího balíčku: Microsoft.SkypeApp_2.2.0.1009_x86__kzf8qxf38zg5c ID aplikace
související s chybujícím balíčkem: App

Error - 5. 11. 2013 2:47:05 | Computer Name = Mantik | Source = Application Hang | ID = 1002
Description = Program wwahost.exe verze 6.3.9600.16384 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: 374 Čas spuštění: 01ced9eedb7437f3 Čas ukončení: 4294967295 Cesta k aplikaci:
C:\WINDOWS\system32\wwahost.exe ID hlášení: 289d6479-45e3-11e3-bebe-20689df4e42e

Úplný
název chybujícího balíčku: Microsoft.BingHealthAndFitness_3.0.1.203_x64__8wekyb3d8bbwe

ID
aplikace související s chybujícím balíčkem: AppexHealthAndFitness

Error - 5. 11. 2013 2:47:05 | Computer Name = Mantik | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Aplikaci Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness
se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete
v protokolu Microsoft-Windows-TWinUI/Operational.

Error - 5. 11. 2013 11:12:17 | Computer Name = Mantik | Source = SideBySide | ID = 16842761
Description = Generování kontextu aktivace pro C:\Program Files (x86)\Smileys We
Love Toolbar for IE\adxloader.dll.Manifest se nezdařilo. Chyba v souboru manifestu
nebo zásady C:\Program Files (x86)\Smileys We Love Toolbar for IE\adxloader.dll.Manifest
na řádku 2. Kořenový prvek souboru manifestu musí být symbolická adresa.

Error - 6. 11. 2013 0:15:38 | Computer Name = Mantik | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Aplikaci Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness
se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete
v protokolu Microsoft-Windows-TWinUI/Operational.

Error - 6. 11. 2013 0:15:38 | Computer Name = Mantik | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Aplikaci Microsoft.BingHealthAndFitness_8wekyb3d8bbwe!AppexHealthAndFitness
se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete
v protokolu Microsoft-Windows-TWinUI/Operational.

Error - 6. 11. 2013 15:45:13 | Computer Name = Mantik | Source = Application Error | ID = 1000
Description = Název chybující aplikace: game.exe, verze: 2.0.0.0, časové razítko:
0x522572ec Název chybujícího modulu: game.exe, verze: 2.0.0.0, časové razítko: 0x522572ec
Kód
výjimky: 0xc0000005 Posun chyby: 0x001d0871 ID chybujícího procesu: 0x17c8 Čas spuštění
chybující aplikace: 0x01cedad74e21e32d Cesta k chybující aplikaci: C:\Program Files
(x86)\Tales of Pirates II\system\game.exe Cesta k chybujícímu modulu: C:\Program
Files (x86)\Tales of Pirates II\system\game.exe ID zprávy: f3b7bdb0-471b-11e3-bebe-20689df4e42e
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:

Error - 6. 11. 2013 19:47:36 | Computer Name = Mantik | Source = Application Hang | ID = 1002
Description = Program game.exe verze 2.0.0.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 1020 Čas
spuštění: 01cedb473dea1b69 Čas ukončení: 37 Cesta k aplikaci: C:\Program Files (x86)\Tales
of Pirates II\system\game.exe ID hlášení: cce7f531-473d-11e3-bebe-20689df4e42e Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:

[ System Events ]
Error - 14. 12. 2013 9:55:02 | Computer Name = Mantik | Source = DCOM | ID = 10001
Description =

Error - 14. 12. 2013 9:55:10 | Computer Name = Mantik | Source = DCOM | ID = 10001
Description =

Error - 14. 12. 2013 9:55:10 | Computer Name = Mantik | Source = DCOM | ID = 10001
Description =

Error - 14. 12. 2013 9:57:12 | Computer Name = Mantik | Source = Service Control Manager | ID = 7022
Description = Služba Ochrana softwaru přestala během spouštění reagovat.

Error - 14. 12. 2013 9:58:07 | Computer Name = Mantik | Source = DCOM | ID = 10016
Description =

Error - 15. 12. 2013 5:00:00 | Computer Name = Mantik | Source = DCOM | ID = 10016
Description =

Error - 16. 12. 2013 5:00:00 | Computer Name = Mantik | Source = DCOM | ID = 10016
Description =

Error - 16. 12. 2013 6:24:39 | Computer Name = Mantik | Source = Microsoft-Windows-Kernel-General | ID = 5
Description =

Error - 16. 12. 2013 6:25:23 | Computer Name = Mantik | Source = Microsoft-Windows-Kernel-General | ID = 5
Description =

Error - 16. 12. 2013 6:25:31 | Computer Name = Mantik | Source = Microsoft-Windows-Kernel-General | ID = 5
Description =


< End of report >

[Reklama]

[jaro3]

Odinstaluj:
Eset
Vipre
suurf aand! Keep
pokud najdeš.


Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.dosearches.com/web/?utm_s ... default&q={searchTerms}
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.dosearches.com/web/?utm_s ... default&q={searchTerms}
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{414CF5AD-901C-41E8-A1FE-411B8D646566}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{414CF5AD-901C-41E8-A1FE-411B8D646566}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:26.0
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Lam\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll File not found
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
[2013/12/23 20:35:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lam\AppData\Roaming\mozilla\Extensions
[2013/12/25 16:11:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lam\AppData\Roaming\mozilla\Firefox\Profiles\jgia5n34.default\extensions
[2013/12/23 20:44:45 | 000,479,561 | ---- | M] () (No name found) -- C:\Users\Lam\AppData\Roaming\mozilla\firefox\profiles\jgia5n34.default\extensions\jid1-vW9nopuIAJiRHw@jetpack.xpi
[2013/12/23 20:35:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/12/23 20:35:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions
O2:64bit: - BHO: (surf aNd keep) - {62B98EFE-BEDB-922B-2E61-F00F6B9D0D0C} - C:\Program Files (x86)\surf aNd keep\NYjHTH4v.x64.dll File not found
O2:64bit: - BHO: (YoutubeAdblocker) - {7C6EE233-66E3-2BCB-72DB-49E574A617AD} - C:\Program Files (x86)\YoutubeAdblocker\MElq6DOl.x64.dll File not found
O4 - HKCU..\Run: [Facebook Update] C:\Users\Lam\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
[ NTFS ]
O33 - MountPoints2\{d9ddbfec-3974-11e3-beb4-20689df4e42e}\Shell - "" = AutoRun
O33 - MountPoints2\{d9ddbfec-3974-11e3-beb4-20689df4e42e}\Shell\AutoRun\command - "" = "F:\HTC_Sync_Manager_PC.exe"
@Alternate Data Stream - 139 bytes -> C:\ProgramData\Temp:373E1720

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\Windows\SysNative\*.tmp
C:\WINDOWS\SysNative\drivers\EpfwLWF.sys.bak
C:\Users\Lam\AppData\Roaming\ESET
C:\Users\Lam\AppData\Local\ESET
C:\ProgramData\suurf aand! Keep
C:\WINDOWS\SysNative\drivers\EpfwLWF.sys.bak
C:\ProgramData\DP45977C.lfl
C:\Users\Lam\AppData\Roaming\ESET

:Reg
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\ProgramData\PC Cleaners\PCCleaners.exe

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

[Beati]

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{414CF5AD-901C-41E8-A1FE-411B8D646566}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{414CF5AD-901C-41E8-A1FE-411B8D646566}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{414CF5AD-901C-41E8-A1FE-411B8D646566}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{414CF5AD-901C-41E8-A1FE-411B8D646566}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Prefs.js: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:26.0 removed from extensions.enabledAddons
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com deleted successfully.
File C:\Program Files\McAfee\MSK not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com deleted successfully.
File C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird not found.
C:\Users\Lam\AppData\Roaming\mozilla\Extensions folder moved successfully.
C:\Users\Lam\AppData\Roaming\mozilla\Firefox\Profiles\jgia5n34.default\extensions folder moved successfully.
File C:\Users\Lam\AppData\Roaming\mozilla\firefox\profiles\jgia5n34.default\extensions\jid1-vW9nopuIAJiRHw@jetpack.xpi not found.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\browser\extensions folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\META-INF folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults\preferences folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\components folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\chrome folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\distribution\extensions folder moved successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{62B98EFE-BEDB-922B-2E61-F00F6B9D0D0C}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{62B98EFE-BEDB-922B-2E61-F00F6B9D0D0C}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C6EE233-66E3-2BCB-72DB-49E574A617AD}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7C6EE233-66E3-2BCB-72DB-49E574A617AD}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update deleted successfully.
C:\Users\Lam\AppData\Local\Facebook\Update\FacebookUpdate.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages:livessp deleted successfully.
File TFS ] not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d9ddbfec-3974-11e3-beb4-20689df4e42e}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d9ddbfec-3974-11e3-beb4-20689df4e42e}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d9ddbfec-3974-11e3-beb4-20689df4e42e}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d9ddbfec-3974-11e3-beb4-20689df4e42e}\ not found.
File "F:\HTC_Sync_Manager_PC.exe" not found.
ADS C:\ProgramData\Temp:373E1720 deleted successfully.
File EY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 not found.
File EY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] not found.
File EY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 not found.
File EY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] not found.
File rity] not found.
File ptytemp] not found.
File art explorer] not found.
File boot] not found.

OTL by OldTimer - Version 3.2.69.0 log created on 01032014_080109

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...


PCCleaners. eexe jsem po odkrytí složek a odškrtnutí chráněných souborů os nenašel.

[jaro3]

Co problémy?

[Beati]

Už ani ne. Děkuji. d8Đ

[memphisto]

Spusť znovu OTL a klikni na Vyčistit

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Pokud nejsou další problémy, tak můžeš dát vyřešeno - zelená fajka vpravo nahoře

[Beati]

Hotovo.
Našel jsem ještě jeden takový malý problém, který sem nejspíše nepatří, ale přesto. Používal jsem prohlížeč google chrome, jednoho dne nešel spustit poklepnutím, musel jsem ho spouštět přes pravý tlačítko a kliknout na "nové okno" nebo poslední relaci. K tomu tam začali vyskakovat nechtěné reklamy, které po odinstalování prohlížeče, vyskakovali i v jiných prohlížečích (mozila firefox, internet explorer). A tak jsem se obrátil na Vás, reklamy sice vymizely úplně všechny, ale prohlížeč google chrome stále nelze spustit obyčejným poklepáním.

[Beati]

Tak už žádné problémy nemám. To s tím prohlížečem chrome jsem už vyřešil. Děkuji Vám za veškerou pomoc.

[jaro3]

Nemáš zač!

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.