Podezření na vir v pc Vyřešeno

[Jarek103]

OTL Extras logfile created on: 26.1.2014 18:33:03 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jarda\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,65 Gb Available Physical Memory | 66,24% Memory free
7,99 Gb Paging File | 5,36 Gb Available in Paging File | 67,07% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 195,31 Gb Total Space | 152,93 Gb Free Space | 78,30% Space Free | Partition Type: NTFS
Drive D: | 736,20 Gb Total Space | 401,06 Gb Free Space | 54,48% Space Free | Partition Type: NTFS
Drive E: | 3,92 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: JARDA-PC | User Name: Jarda | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1554C871-3308-451C-BE21-1C1CF5CC7F5D}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{17985E74-CCF1-46ED-B81C-8C76BB1D9FA5}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{20345CF0-349F-4C13-AD52-A9EFDAEFD9D2}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{22445E70-B68D-46E5-9EC1-3DCFB1D92E6E}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{2F16CAC4-5ACF-48F4-A9CD-A59EC50DB89C}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{40876F94-9C74-4CE0-A338-D1446E95C908}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{4A7BDF40-B128-40BA-8963-0F0ADE03D225}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{52870586-C2FF-450E-B5DC-1C08D846914A}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{5AD2C0E6-17CA-423C-A3D5-5DB8FC9A2A54}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{63404402-6E4E-4C84-B92A-81B87994B7CE}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{659E6B1F-1E81-4C17-9E3A-F06FBD82D261}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{6758C7B5-91C1-4F61-BDA1-E6CBA5732D15}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{6C9D8D01-6E4F-4A4F-8EF3-836956753048}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{726122D1-FABB-40C9-A31D-0FFC06DE3866}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{76E71098-D03D-4777-821E-DD2B355370AB}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8A860251-B6C8-4976-9B18-0ED902498801}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{8B4A8B22-82E0-4E58-A3E7-AF894EB02168}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{93CD1DD0-C679-43E1-83CF-9017159CEDC2}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{AC9796AE-BACE-4500-B7C0-032FB4101666}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{B98A735B-0D22-4D78-B40F-C8A74E12A41F}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{BCD9D66C-614F-4B0C-B0E4-CB244D084F19}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{BD1E68E0-3482-46F7-9B1F-CCFB8CE76401}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{CD3E6E7B-F4BF-4FFC-A1E2-108120D961FE}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{CFF17EF7-B110-4F8F-93B7-4DB1A46C9AE4}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{D11894D9-FD4A-4CB5-BECE-EBED0464803B}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{E265D530-5E9E-402E-B0F6-8063AB560F23}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{EEB63DA3-05C2-49EB-AC45-786150D89BC0}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{F8E39F38-0335-4569-9CB5-31AE8AC84127}" = lport=33333 | protocol=6 | dir=in | name=war thunder |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1C7714C6-BFE6-47A1-A8C3-CFC14034F757}" = protocol=17 | dir=in | app=d:\nové hry\warthunder\launcher.exe |
"{1E170FA2-E2E5-4302-B60B-8C43E78095C3}" = protocol=6 | dir=in | app=d:\nové hry\launchpad.exe |
"{258662C8-BD6F-4649-BE31-C19626658688}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{29374148-8F83-456B-85BE-448F508E75A3}" = protocol=17 | dir=in | app=d:\nové hry\war thunder\launcher.exe |
"{3E6D63E7-DF46-4817-8055-D13B5AD66E64}" = protocol=6 | dir=in | app=d:\programy\install\winamp.5.x\winamp534_1195_beta_std.exe |
"{3FB82D26-3132-4406-8EBD-C66337B6B975}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{46C969FB-81D0-4330-A84C-A12054BD4A51}" = protocol=17 | dir=in | app=c:\program files (x86)\relevantknowledge\rlvknlg.exe |
"{5B78738B-0018-4D93-B0C8-8ACB5DF85C37}" = protocol=6 | dir=in | app=d:\nové hry\war thunder\launcher.exe |
"{5BB2E167-37E7-4AB9-8BBB-82E22CD7ABA9}" = protocol=17 | dir=in | app=c:\program files (x86)\goforfiles\goforfiles.exe |
"{5EAF6693-CAC0-4D78-91A0-B124E2646FD4}" = protocol=6 | dir=in | app=c:\users\jarda\appdata\local\apps\2.0\trdm391l.zjd\kg260x3b.4vv\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\curseclient.exe |
"{60D9D5E6-16FF-4692-9087-3F0918A576AF}" = protocol=17 | dir=in | app=d:\nové hry\launchpad.exe |
"{65FE0120-63A2-4767-B547-A4079FA6E829}" = protocol=17 | dir=in | app=d:\nové hry\steam\steam.exe |
"{6C95D423-ABB8-4298-B181-F5A902BC2460}" = protocol=17 | dir=in | app=c:\program files (x86)\logmein hamachi\hamachi-2-ui.exe |
"{869F3A60-4FFD-47F0-85B7-79F04D6F810D}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{93DD2997-D3E7-4399-B469-65EE30450829}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9BE22BAA-A4BB-4D13-A411-3FC211E079C5}" = protocol=6 | dir=in | app=c:\program files (x86)\goforfiles\goforfilesdl.exe |
"{9E533E3F-4BAC-41A2-BE43-DE5E3D47D85F}" = protocol=6 | dir=in | app=d:\nové hry\warthunder\launcher.exe |
"{A0E1C94B-1E6F-48E0-A630-92D294DC3430}" = protocol=6 | dir=in | app=c:\program files (x86)\goforfiles\goforfiles.exe |
"{A825D8D5-1E8C-4D9D-BB4C-44010C8BF026}" = protocol=6 | dir=in | app=c:\program files (x86)\relevantknowledge\rlvknlg.exe |
"{AAAC75FB-4BEF-4988-B43F-EBAB8A4AE729}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{AECB9516-484F-45FE-ABEB-6A8644DD7BBF}" = protocol=6 | dir=in | app=c:\program files (x86)\logmein hamachi\hamachi-2-ui.exe |
"{B3D0254A-77FD-40F2-A238-5EB7A1102C58}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{B422B819-003B-4B2C-B538-9653CE667944}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{C29BEE9A-BC56-46B4-BBA7-196F89E7A785}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{CC641339-0222-445D-A486-F8BE5261B8DA}" = protocol=6 | dir=in | app=d:\nové hry\world_of_tanks\worldoftanks.exe |
"{D11CE4EF-2C70-44B7-B168-6694E3E9835F}" = protocol=17 | dir=in | app=c:\users\jarda\appdata\local\apps\2.0\trdm391l.zjd\kg260x3b.4vv\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\curseclient.exe |
"{EC3ED02A-5C45-4FE0-A190-6851E0B9FD41}" = protocol=17 | dir=in | app=c:\program files (x86)\goforfiles\goforfilesdl.exe |
"{F1968C6E-0B97-40DF-A2C7-C132F2CB5125}" = protocol=17 | dir=in | app=d:\programy\install\winamp.5.x\winamp534_1195_beta_std.exe |
"{F631F447-95B6-4A0A-B4CA-147A924DA8A2}" = protocol=6 | dir=in | app=d:\nové hry\steam\steam.exe |
"{FF51BC61-F81C-4548-900E-E3AE3C28919D}" = protocol=17 | dir=in | app=d:\nové hry\world_of_tanks\worldoftanks.exe |
"TCP Query User{01AF0ACA-4C53-4274-8A0A-BC06645EAFAF}D:\nové hry\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=d:\nové hry\world_of_tanks\worldoftanks.exe |
"TCP Query User{04119128-05ED-4790-9AEE-C99BEAFAE1E1}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{0E9AE2FD-B5DE-4F3E-ADA4-FFC82345D10B}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" = protocol=6 | dir=in | app=c:\programdata\electronic arts\need for speed world\data\nfsw.exe |
"TCP Query User{13BF82CC-4E1C-4658-92DB-351F0F31C6EB}C:\games\world_of_tanks_ct\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks_ct\worldoftanks.exe |
"TCP Query User{1542278B-7F96-48F5-8FEC-C4091A7B777D}D:\nové hry\wot test server\wotlauncher.exe" = protocol=6 | dir=in | app=d:\nové hry\wot test server\wotlauncher.exe |
"TCP Query User{186CCF01-7173-45EE-BEB4-023855403CE5}C:\games\world_of_tanks_ct\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks_ct\wotlauncher.exe |
"TCP Query User{1B47DC99-E2BB-43BB-849B-272BEB15B79E}D:\nové hry\cod - mw2\call of duty modern warfare 2 alterrev\iw4mp.exe" = protocol=6 | dir=in | app=d:\nové hry\cod - mw2\call of duty modern warfare 2 alterrev\iw4mp.exe |
"TCP Query User{1BBD24DC-8664-4371-8D02-205479F6CB85}D:\hry\counter strike 1-6\hl.exe" = protocol=6 | dir=in | app=d:\hry\counter strike 1-6\hl.exe |
"TCP Query User{262751AF-75AA-4E63-A493-C8973B593D34}D:\nové hry\wot\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=d:\nové hry\wot\world_of_tanks\worldoftanks.exe |
"TCP Query User{264E94AA-DCBB-405B-9104-62AFBA88F376}D:\nové hry\war thunder\launcher.exe" = protocol=6 | dir=in | app=d:\nové hry\war thunder\launcher.exe |
"TCP Query User{29514315-33F4-4DAB-98F1-D0543E007356}C:\program files (x86)\world_of_tanks_ct\worldoftanks.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world_of_tanks_ct\worldoftanks.exe |
"TCP Query User{310EA178-FA59-4A46-A99F-DB1CB6DD9D79}D:\programy\advanced tactical center\atc.exe" = protocol=6 | dir=in | app=d:\programy\advanced tactical center\atc.exe |
"TCP Query User{36B0CC28-0853-4A9E-9EEF-26E806713402}D:\nové hry\counter-strike 1.6 non-steam\hl.exe" = protocol=6 | dir=in | app=d:\nové hry\counter-strike 1.6 non-steam\hl.exe |
"TCP Query User{4DE8BB98-DBE1-4975-8F1B-83C383356007}D:\nové hry\world_of_tanks_ct\wotlauncher.exe" = protocol=6 | dir=in | app=d:\nové hry\world_of_tanks_ct\wotlauncher.exe |
"TCP Query User{5DB5B0A0-303A-4FAF-9084-47392651CC06}D:\nové hry\flatout2\flatout2.exe" = protocol=6 | dir=in | app=d:\nové hry\flatout2\flatout2.exe |
"TCP Query User{675208D9-D18E-4958-8E4E-1D9E7793D3F8}D:\nové hry\wot test\wotlauncher.exe" = protocol=6 | dir=in | app=d:\nové hry\wot test\wotlauncher.exe |
"TCP Query User{676DC8B2-8138-4135-912A-766712BD60B7}D:\nové hry\wot test\worldoftanks.exe" = protocol=6 | dir=in | app=d:\nové hry\wot test\worldoftanks.exe |
"TCP Query User{69F76260-AFE0-44ED-8777-F02FA107B52F}D:\nové hry\wot test server\worldoftanks.exe" = protocol=6 | dir=in | app=d:\nové hry\wot test server\worldoftanks.exe |
"TCP Query User{6B193D72-4E47-4F8D-94F1-630858280A4C}D:\nové hry\metin2\metin2client.bin" = protocol=6 | dir=in | app=d:\nové hry\metin2\metin2client.bin |
"TCP Query User{80AC6B2B-8915-4706-B13E-8AD546A890C5}C:\users\jarda\desktop\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\users\jarda\desktop\skype\phone\skype.exe |
"TCP Query User{845AD905-0694-4C07-A323-345B5E61D1F6}C:\users\jarda\desktop\skype.exe" = protocol=6 | dir=in | app=c:\users\jarda\desktop\skype.exe |
"TCP Query User{8763291C-9D0F-4D72-B638-8B59CE5E91F4}C:\windows\keygen.exe" = protocol=6 | dir=in | app=c:\windows\keygen.exe |
"TCP Query User{88304156-65DB-40A6-8CF5-25B4CF5A7B07}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{99EB47E3-B640-4E73-8005-9DFBDA5D3372}D:\wot test\worldoftanks.exe" = protocol=6 | dir=in | app=d:\wot test\worldoftanks.exe |
"TCP Query User{9B4C6265-EE89-4206-B28F-D1C22327F384}D:\nové hry\wot\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=d:\nové hry\wot\world_of_tanks\worldoftanks.exe |
"TCP Query User{9EEF9B43-61F4-4774-902E-35963D4FFEF8}D:\nové hry\wot\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=d:\nové hry\wot\world_of_tanks\wotlauncher.exe |
"TCP Query User{A47466DD-5EFB-4F6F-910D-331DDBE18F24}D:\programy\advanced tactical center\atc.exe" = protocol=6 | dir=in | app=d:\programy\advanced tactical center\atc.exe |
"TCP Query User{A8E639F1-52C6-4DC7-8D35-3AD48F97FE2D}D:\nové hry\bf1942.exe" = protocol=6 | dir=in | app=d:\nové hry\bf1942.exe |
"TCP Query User{AAF603B3-2764-4831-BFC5-1FC3126908E0}D:\nové hry\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=d:\nové hry\world_of_tanks\wotlauncher.exe |
"TCP Query User{B8528DB8-4849-44BC-923B-2CD313896171}D:\nové hry\warthunder\aces.exe" = protocol=6 | dir=in | app=d:\nové hry\warthunder\aces.exe |
"TCP Query User{C9AB7350-B1B3-4E11-913A-EB9DA50062C4}C:\program files (x86)\world_of_tanks_ct\wotlauncher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world_of_tanks_ct\wotlauncher.exe |
"TCP Query User{CC058030-8EAB-47E2-A846-54940D1395E0}D:\nové hry\operationflashpoint\operationflashpoint.exe" = protocol=6 | dir=in | app=d:\nové hry\operationflashpoint\operationflashpoint.exe |
"TCP Query User{D0543B78-3823-4071-BF05-95B568187723}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{D8E71C9A-4238-4E37-91DC-3F9F44C7E6D9}D:\wot test\wotlauncher.exe" = protocol=6 | dir=in | app=d:\wot test\wotlauncher.exe |
"TCP Query User{E099EBD8-8463-4923-AB15-2437CC3281CB}D:\nové hry\world_of_tanks_ct\worldoftanks.exe" = protocol=6 | dir=in | app=d:\nové hry\world_of_tanks_ct\worldoftanks.exe |
"TCP Query User{E39ADC3B-FCC4-47F0-ADE7-E85401928D83}D:\nové hry\scrapland\bin\scrap.exe" = protocol=6 | dir=in | app=d:\nové hry\scrapland\bin\scrap.exe |
"TCP Query User{E790F71C-18E6-49DF-ACE3-0BD0CB250216}D:\nové hry\world_of_warplanes\wowplauncher.exe" = protocol=6 | dir=in | app=d:\nové hry\world_of_warplanes\wowplauncher.exe |
"TCP Query User{F08CFF90-34F4-42EB-8A38-B09481EDB40A}D:\hry\counter strike 1-6\counter-strike 1.6 non-steam\hl.exe" = protocol=6 | dir=in | app=d:\hry\counter strike 1-6\counter-strike 1.6 non-steam\hl.exe |
"TCP Query User{F135DCAF-985A-4B9F-A46B-2FAF5799AA6D}D:\nové hry\nfsu2\speed2.exe" = protocol=6 | dir=in | app=d:\nové hry\nfsu2\speed2.exe |
"TCP Query User{F77CA229-0C54-4D07-AA70-E9835B4F8ACA}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{FC0E8513-4462-473B-A724-E1E62423174D}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{066C5A67-0A0E-4D55-B33F-67FC1FA3D5C5}D:\nové hry\wot test server\wotlauncher.exe" = protocol=17 | dir=in | app=d:\nové hry\wot test server\wotlauncher.exe |
"UDP Query User{070DB05D-FF9C-4D07-8F40-306A5778D9DF}D:\nové hry\wot\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=d:\nové hry\wot\world_of_tanks\worldoftanks.exe |
"UDP Query User{0A6730FB-B259-4E3C-80EC-632D81EB251E}D:\nové hry\counter-strike 1.6 non-steam\hl.exe" = protocol=17 | dir=in | app=d:\nové hry\counter-strike 1.6 non-steam\hl.exe |
"UDP Query User{0CA8ACE7-8EAC-4228-9A5B-15F1774D0DDC}D:\nové hry\flatout2\flatout2.exe" = protocol=17 | dir=in | app=d:\nové hry\flatout2\flatout2.exe |
"UDP Query User{0F0DCF9B-1DD4-4484-8E61-4AF40B8BFCC6}D:\nové hry\world_of_tanks_ct\worldoftanks.exe" = protocol=17 | dir=in | app=d:\nové hry\world_of_tanks_ct\worldoftanks.exe |
"UDP Query User{13840934-2EEA-4B7D-ACDB-A387950CFB2B}D:\nové hry\bf1942.exe" = protocol=17 | dir=in | app=d:\nové hry\bf1942.exe |
"UDP Query User{16FF7800-760C-4FC1-BFA7-E4216AB625B2}D:\nové hry\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=d:\nové hry\world_of_tanks\worldoftanks.exe |
"UDP Query User{1A62936B-11BA-4F51-ABB0-BC3D9763C986}C:\users\jarda\desktop\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\users\jarda\desktop\skype\phone\skype.exe |
"UDP Query User{1F77637C-A56D-4CC3-A935-DDF0D2F7A6B8}C:\users\jarda\desktop\skype.exe" = protocol=17 | dir=in | app=c:\users\jarda\desktop\skype.exe |
"UDP Query User{248E083A-53AC-4E53-BFF3-9DF6227CA571}C:\windows\keygen.exe" = protocol=17 | dir=in | app=c:\windows\keygen.exe |
"UDP Query User{2B5553D1-9BE4-4AC3-8C3D-04634294AB7A}C:\games\world_of_tanks_ct\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks_ct\wotlauncher.exe |
"UDP Query User{2B7783B1-F250-4866-9ADD-C074CF2EE609}D:\nové hry\metin2\metin2client.bin" = protocol=17 | dir=in | app=d:\nové hry\metin2\metin2client.bin |
"UDP Query User{34591A54-47DB-4C6B-A872-05AE2F5A6A1B}D:\nové hry\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=d:\nové hry\world_of_tanks\wotlauncher.exe |
"UDP Query User{38BDC544-61AC-4FB0-B4BF-AE74C7B5DDCE}D:\nové hry\wot\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=d:\nové hry\wot\world_of_tanks\worldoftanks.exe |
"UDP Query User{472C5B28-DDBC-4504-BD66-C5BFDE01E388}D:\nové hry\world_of_warplanes\wowplauncher.exe" = protocol=17 | dir=in | app=d:\nové hry\world_of_warplanes\wowplauncher.exe |
"UDP Query User{532EF9D6-4823-400E-A35F-E7DBC72653D6}D:\wot test\worldoftanks.exe" = protocol=17 | dir=in | app=d:\wot test\worldoftanks.exe |
"UDP Query User{6827A302-4BA1-4FC1-953C-8EB6B4F4E144}D:\nové hry\world_of_tanks_ct\wotlauncher.exe" = protocol=17 | dir=in | app=d:\nové hry\world_of_tanks_ct\wotlauncher.exe |
"UDP Query User{6FC9B2CC-5B83-4EE8-99DB-8CE8BF5A5D3F}D:\nové hry\nfsu2\speed2.exe" = protocol=17 | dir=in | app=d:\nové hry\nfsu2\speed2.exe |
"UDP Query User{75AB25B2-D454-43AD-BA4D-FFE4553B47A6}D:\nové hry\operationflashpoint\operationflashpoint.exe" = protocol=17 | dir=in | app=d:\nové hry\operationflashpoint\operationflashpoint.exe |
"UDP Query User{7B74B939-8746-465D-B481-87740624A7A5}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{7D7F85AA-C162-4AB2-898A-BAF2A5D3FDDD}D:\nové hry\wot test\wotlauncher.exe" = protocol=17 | dir=in | app=d:\nové hry\wot test\wotlauncher.exe |
"UDP Query User{7DC2FCAA-F418-474A-9705-2D54A06870D7}C:\games\world_of_tanks_ct\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks_ct\worldoftanks.exe |
"UDP Query User{851CD813-0E29-4F04-8F00-30068E29D780}D:\nové hry\scrapland\bin\scrap.exe" = protocol=17 | dir=in | app=d:\nové hry\scrapland\bin\scrap.exe |
"UDP Query User{8B0710CC-05C4-406C-934A-8E4E91BEC686}D:\nové hry\war thunder\launcher.exe" = protocol=17 | dir=in | app=d:\nové hry\war thunder\launcher.exe |
"UDP Query User{94428391-6B78-4DC3-B6C8-3F5B19FBD39E}D:\hry\counter strike 1-6\hl.exe" = protocol=17 | dir=in | app=d:\hry\counter strike 1-6\hl.exe |
"UDP Query User{AF410478-60F9-45D6-A25C-7F811288988F}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{B0649DEE-3470-4577-AE96-81E83C5D2B53}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{B7A32803-8FE4-40F2-B337-9F6406B0CB10}D:\programy\advanced tactical center\atc.exe" = protocol=17 | dir=in | app=d:\programy\advanced tactical center\atc.exe |
"UDP Query User{BCCEB971-6A3B-4AB5-92E9-7B88BDBA86EF}D:\nové hry\wot test\worldoftanks.exe" = protocol=17 | dir=in | app=d:\nové hry\wot test\worldoftanks.exe |
"UDP Query User{C3092F62-9E60-41D4-8800-D788BAB59EB0}D:\nové hry\wot test server\worldoftanks.exe" = protocol=17 | dir=in | app=d:\nové hry\wot test server\worldoftanks.exe |
"UDP Query User{C7DC2E1A-D6E1-4220-9EF6-72CE65E45DE1}C:\program files (x86)\world_of_tanks_ct\wotlauncher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world_of_tanks_ct\wotlauncher.exe |
"UDP Query User{C9FB638F-1E78-49FC-8AEC-28ABC08DE86D}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" = protocol=17 | dir=in | app=c:\programdata\electronic arts\need for speed world\data\nfsw.exe |
"UDP Query User{D0AEF178-944A-4AC9-85AE-5977F0D67F12}D:\hry\counter strike 1-6\counter-strike 1.6 non-steam\hl.exe" = protocol=17 | dir=in | app=d:\hry\counter strike 1-6\counter-strike 1.6 non-steam\hl.exe |
"UDP Query User{D68CB29C-51F8-47BC-B549-EBA3D0AF42BC}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{D906E9B7-6D1C-40D6-9E14-0264AFE44432}D:\nové hry\warthunder\aces.exe" = protocol=17 | dir=in | app=d:\nové hry\warthunder\aces.exe |
"UDP Query User{DAF4CB14-6EB4-4016-9391-C53865BBC8AE}C:\program files (x86)\world_of_tanks_ct\worldoftanks.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world_of_tanks_ct\worldoftanks.exe |
"UDP Query User{E35F3A0C-EFB2-498B-B031-81D505024DFA}D:\programy\advanced tactical center\atc.exe" = protocol=17 | dir=in | app=d:\programy\advanced tactical center\atc.exe |
"UDP Query User{E686B599-A2B0-4677-82CE-B4BB144C2501}D:\wot test\wotlauncher.exe" = protocol=17 | dir=in | app=d:\wot test\wotlauncher.exe |
"UDP Query User{EF0210E8-E1FB-4931-A204-CFE42EE89DD6}D:\nové hry\wot\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=d:\nové hry\wot\world_of_tanks\wotlauncher.exe |
"UDP Query User{F69D5589-58B7-4DF5-B1C4-1FA676305D9E}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{FE694343-EF02-4A5F-87EC-4F68BB0BF2D8}D:\nové hry\cod - mw2\call of duty modern warfare 2 alterrev\iw4mp.exe" = protocol=17 | dir=in | app=d:\nové hry\cod - mw2\call of duty modern warfare 2 alterrev\iw4mp.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{72EF03F5-0507-4861-9A44-D99FD4C41418}" = Paint.NET v3.5.11
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5 CSY Language Pack
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{A4F0DB87-3269-34FE-AFFE-4168FDFA4A22}" = Microsoft .NET Framework 4.5 CSY Language Pack
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 331.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 331.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 331.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.3.26.4
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{FD8E178D-8B4E-42DA-B434-EFF270329B1C}" = COMODO Internet Security
"CCleaner" = CCleaner
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"WinRAR archiver" = WinRAR 4.20 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1" = Euro Truck Simulator 2
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1" = World of Tanks
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.11
"{4F62B1AE-E778-49E2-9C57-C1C65A122098}" = Zoner Callisto 5
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}" = NVIDIA PhysX
"{6D45EF03-E8EE-4355-81C3-F918CBCF1029}" = Nero 8 Ultra Edition HD
"{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1" = Need For Speed™ World
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A6AC699F-8315-40CA-8F70-E917494978AB}" = VirtualDJ Home FREE
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{E0303B6A-C675-4102-95DA-C013625BFA99}" = GTA San Andreas
"{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1" = War Thunder Launcher 1.0.1.269
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"DAEMON Tools Lite" = DAEMON Tools Lite
"Flashpoint" = Flashpoint uninstall
"Google Chrome" = Google Chrome
"KLiteCodecPack_is1" = K-Lite Codec Pack 6.0.4 (Basic)
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"The Walking Dead" = The Walking Dead
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player 2.0.1
"Weather_ask1.6_is1" = weather_ask1.6
"Winamp" = Winamp (remove only)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5.1.2014 10:58:25 | Computer Name = Jarda-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: speed.exe, verze: 0.0.0.0, časové razítko:
0x438e4c8c Název chybujícího modulu: speed.exe, verze: 0.0.0.0, časové razítko:
0x438e4c8c Kód výjimky: 0xc0000005 Posun chyby: 0x0025aa27 ID chybujícího procesu:
0xa84 Čas spuštění chybující aplikace: 0x01cf0a2694c09069 Cesta k chybující aplikaci:
D:\Nové hry\Need for Speed Most Wanted\speed.exe Cesta k chybujícímu modulu: D:\Nové
hry\Need for Speed Most Wanted\speed.exe ID zprávy: d3bb3830-7619-11e3-98ec-14dae9ecacaf

Error - 6.1.2014 12:37:28 | Computer Name = Jarda-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: gta_sa.exe, verze: 0.0.0.0, časové razítko:
0x427101ca Název chybujícího modulu: ntdll.dll, verze: 6.1.7600.16385, časové razítko:
0x4a5bdb3b Kód výjimky: 0xc0000005 Posun chyby: 0x00022272 ID chybujícího procesu:
0x122c Čas spuštění chybující aplikace: 0x01cf0afd84700c60 Cesta k chybující aplikaci:
D:\Nové hry\GTA SA\gta_sa.exe Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID
zprávy: d45b062c-76f0-11e3-b408-14dae9ecacaf

Error - 6.1.2014 12:40:13 | Computer Name = Jarda-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: gta_sa.exe, verze: 0.0.0.0, časové razítko:
0x427101ca Název chybujícího modulu: ntdll.dll, verze: 6.1.7600.16385, časové razítko:
0x4a5bdb3b Kód výjimky: 0xc0000005 Posun chyby: 0x00022272 ID chybujícího procesu:
0xa50 Čas spuštění chybující aplikace: 0x01cf0afde6bac5e1 Cesta k chybující aplikaci:
D:\Nové hry\GTA SA\gta_sa.exe Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID
zprávy: 363a03f9-76f1-11e3-b408-14dae9ecacaf

Error - 7.1.2014 13:01:48 | Computer Name = Jarda-PC | Source = Application Hang | ID = 1002
Description = Program iw4sp.exe verze 0.0.0.0 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
670 Čas spuštění: 01cf0bca043e6960 Čas ukončení: 23 Cesta k aplikaci: D:\Nové hry\COD
- MW2\Call of Duty Modern Warfare 2 alterRev\iw4sp.exe ID hlášení:

Error - 10.1.2014 16:05:39 | Computer Name = Jarda-PC | Source = Application Hang | ID = 1002
Description = Program gta_sa.exe verze 0.0.0.0 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
8cc Čas spuštění: 01cf0e35ed146500 Čas ukončení: 541 Cesta k aplikaci: D:\Nové hry\GTA
SA\GTA San Andreas\gta_sa.exe ID hlášení:

Error - 10.1.2014 16:33:28 | Computer Name = Jarda-PC | Source = Application Hang | ID = 1002
Description = Program gta_sa.exe verze 0.0.0.0 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
cc8 Čas spuštění: 01cf0e3f582ecdf4 Čas ukončení: 504 Cesta k aplikaci: D:\Nové hry\GTA
SA\GTA San Andreas\gta_sa.exe ID hlášení:

Error - 12.1.2014 14:01:48 | Computer Name = Jarda-PC | Source = Microsoft Office 14 | ID = 2001
Description = Microsoft PowerPoint: Rejected Safe Mode action : Poslední spuštění
aplikace PowerPoint se nezdařilo. Spuštěním PowerPoint v nouzovém režimu můžete
odstranit nebo zjistit problém a dosáhnout tak úspěšného spuštění aplikace. Některé
funkce nebudou pravděpodobně v tomto režimu k dispozici. Chcete aplikaci PowerPoint
spustit v nouzovém režimu?.

Error - 17.1.2014 15:50:51 | Computer Name = Jarda-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: eurotrucks2.exe, verze: 1.2.42233.5, časové
razítko: 0x50a3a015 Název chybujícího modulu: eurotrucks2.exe, verze: 1.2.42233.5,
časové razítko: 0x50a3a015 Kód výjimky: 0xc0000005 Posun chyby: 0x000e972d ID chybujícího
procesu: 0xa4c Čas spuštění chybující aplikace: 0x01cf13b7a78c6d0b Cesta k chybující
aplikaci: D:\Nové hry\Euro Truck Simulator 2\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
Cesta
k chybujícímu modulu: D:\Nové hry\Euro Truck Simulator 2\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
ID
zprávy: aa6756eb-7fb0-11e3-9db1-14dae9ecacaf

Error - 22.1.2014 16:00:53 | Computer Name = Jarda-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: speeditupfree.exe, verze: 9.0.1.6, časové
razítko: 0x52433bb0 Název chybujícího modulu: speeditupfree.exe, verze: 9.0.1.6,
časové razítko: 0x52433bb0 Kód výjimky: 0xc0000005 Posun chyby: 0x000351ff ID chybujícího
procesu: 0xd78 Čas spuštění chybující aplikace: 0x01cf17ac9444b84c Cesta k chybující
aplikaci: C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe Cesta k chybujícímu
modulu: C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe ID zprávy: e5479596-839f-11e3-8a22-14dae9ecacaf

Error - 23.1.2014 13:40:47 | Computer Name = Jarda-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rundll32.exe, verze: 6.1.7600.16385, časové
razítko: 0x4a5bc637 Název chybujícího modulu: SysMenu.dll, verze: 1.0.0.5, časové
razítko: 0x52b449c7 Kód výjimky: 0xc0000005 Posun chyby: 0x0006ce5c ID chybujícího
procesu: 0x150 Čas spuštění chybující aplikace: 0x01cf18623dd72b17 Cesta k chybující
aplikaci: C:\Windows\SysWOW64\rundll32.exe Cesta k chybujícímu modulu: C:\PROGRA~1\COMMON~1\System\SysMenu.dll
ID
zprávy: 7d7a65a5-8455-11e3-ba44-14dae9ecacaf

Error - 24.1.2014 16:31:10 | Computer Name = Jarda-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rundll32.exe, verze: 6.1.7600.16385, časové
razítko: 0x4a5bc637 Název chybujícího modulu: SysMenu.dll, verze: 1.0.0.5, časové
razítko: 0x52b449c7 Kód výjimky: 0xc0000005 Posun chyby: 0x0006ce5c ID chybujícího
procesu: 0xed8 Čas spuštění chybující aplikace: 0x01cf194336932fa7 Cesta k chybující
aplikaci: C:\Windows\SysWOW64\rundll32.exe Cesta k chybujícímu modulu: C:\PROGRA~1\COMMON~1\System\SysMenu.dll
ID
zprávy: 759c791b-8536-11e3-8a71-14dae9ecacaf

Error - 25.1.2014 16:31:10 | Computer Name = Jarda-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rundll32.exe, verze: 6.1.7600.16385, časové
razítko: 0x4a5bc637 Název chybujícího modulu: SysMenu.dll, verze: 1.0.0.5, časové
razítko: 0x52b449c7 Kód výjimky: 0xc0000005 Posun chyby: 0x0006ce5c ID chybujícího
procesu: 0xe9c Čas spuštění chybující aplikace: 0x01cf1a0c60f78a84 Cesta k chybující
aplikaci: C:\Windows\SysWOW64\rundll32.exe Cesta k chybujícímu modulu: C:\PROGRA~1\COMMON~1\System\SysMenu.dll
ID
zprávy: 9face65e-85ff-11e3-8a1e-14dae9ecacaf

[ System Events ]
Error - 21.1.2014 10:34:04 | Computer Name = Jarda-PC | Source = Microsoft-Windows-EnhancedStorage-EhStorCertDrv | ID = 12
Description = Inicializace ovladače se nezdařila z důvodu nepodporovaného zařízení.

Error - 22.1.2014 12:23:24 | Computer Name = Jarda-PC | Source = Microsoft-Windows-EnhancedStorage-EhStorCertDrv | ID = 12
Description = Inicializace ovladače se nezdařila z důvodu nepodporovaného zařízení.

Error - 23.1.2014 13:35:40 | Computer Name = Jarda-PC | Source = Microsoft-Windows-EnhancedStorage-EhStorCertDrv | ID = 12
Description = Inicializace ovladače se nezdařila z důvodu nepodporovaného zařízení.

Error - 23.1.2014 13:46:08 | Computer Name = Jarda-PC | Source = Microsoft-Windows-EnhancedStorage-EhStorCertDrv | ID = 12
Description = Inicializace ovladače se nezdařila z důvodu nepodporovaného zařízení.

Error - 24.1.2014 12:31:19 | Computer Name = Jarda-PC | Source = Microsoft-Windows-EnhancedStorage-EhStorCertDrv | ID = 12
Description = Inicializace ovladače se nezdařila z důvodu nepodporovaného zařízení.

Error - 24.1.2014 17:25:35 | Computer Name = Jarda-PC | Source = nvlddmkm | ID = 11141134
Description =

Error - 25.1.2014 8:35:21 | Computer Name = Jarda-PC | Source = Microsoft-Windows-EnhancedStorage-EhStorCertDrv | ID = 12
Description = Inicializace ovladače se nezdařila z důvodu nepodporovaného zařízení.

Error - 25.1.2014 19:00:05 | Computer Name = Jarda-PC | Source = Service Control Manager | ID = 7034
Description = Služba COMODO Internet Security Helper Service byla neočekávaně ukončena.
Tento stav nastal již 1krát.

Error - 26.1.2014 6:47:32 | Computer Name = Jarda-PC | Source = Microsoft-Windows-EnhancedStorage-EhStorCertDrv | ID = 12
Description = Inicializace ovladače se nezdařila z důvodu nepodporovaného zařízení.

Error - 26.1.2014 10:16:42 | Computer Name = Jarda-PC | Source = Microsoft-Windows-EnhancedStorage-EhStorCertDrv | ID = 12
Description = Inicializace ovladače se nezdařila z důvodu nepodporovaného zařízení.


< End of report >

[Reklama]

[jaro3]

Odinstaluj:
protected search
Weather

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search
IE - HKCU\..\SearchScopes\{966BAFC7-849E-4903-8C94-4DBA405BAB14}: "URL" = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll File not found
O2:64bit: - BHO: (no name) - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - No CLSID value found.
O4 - HKCU..\Run: [cfweatherStation] C:\Weather\weather.exe (weather-life.com)
O4 - HKCU..\Run: [SpeedItupFree] "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe" File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp
C:\WINDOWS\system32\DUMP*.tmp
c:\windows\Tasks\*.job /s
C:\*.tmp
C:\WINDOWS\System32\drivers\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\Windows\SysNative\*.tmp
C:\Weather
c:\program files (x86)\protected search
c:\windows\keygen.exe

:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{258662C8-BD6F-4649-BE31-C19626658688}" =-
"{3FB82D26-3132-4406-8EBD-C66337B6B975}" =-
"{B422B819-003B-4B2C-B538-9653CE667944}" =-
"{C29BEE9A-BC56-46B4-BBA7-196F89E7A785}" =-
"TCP Query User{8763291C-9D0F-4D72-B638-8B59CE5E91F4}C:\windows\keygen.exe" =-
"UDP Query User{248E083A-53AC-4E53-BFF3-9DF6227CA571}C:\windows\keygen.exe" =-

:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Windows\SysWow64\rp.dll
c:\users\jarda\appdata\local\apps\2.0\trdm391l.zjd\kg260x3b.4vv

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

[Jarek103]

Ten weather potřebuji, mám to kvůli meteostanici v obýváku. Je s tou aplikací něco v nepořádku ?

[memphisto]

Tak weather nech a pokračuj

[Jarek103]

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
C:\Program Files (x86)\Skype\Updater\Updater.exe moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{966BAFC7-849E-4903-8C94-4DBA405BAB14}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{966BAFC7-849E-4903-8C94-4DBA405BAB14}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\cfweatherStation deleted successfully.
C:\Weather\weather.exe moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SpeedItupFree deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder C:\WINDOWS\system32\DUMP*.tmp not found.
File\Folder c:\windows\Tasks\*.job not found.
File\Folder C:\*.tmp not found.
File\Folder C:\WINDOWS\System32\drivers\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
File\Folder C:\Windows\SysNative\*.tmp not found.
C:\Weather\update folder moved successfully.
C:\Weather\images\icons folder moved successfully.
C:\Weather\images folder moved successfully.
C:\Weather\bak folder moved successfully.
C:\Weather folder moved successfully.
File\Folder c:\program files (x86)\protected search not found.
File\Folder c:\windows\keygen.exe not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{258662C8-BD6F-4649-BE31-C19626658688} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{258662C8-BD6F-4649-BE31-C19626658688}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3FB82D26-3132-4406-8EBD-C66337B6B975} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3FB82D26-3132-4406-8EBD-C66337B6B975}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B422B819-003B-4B2C-B538-9653CE667944} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B422B819-003B-4B2C-B538-9653CE667944}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C29BEE9A-BC56-46B4-BBA7-196F89E7A785} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C29BEE9A-BC56-46B4-BBA7-196F89E7A785}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8763291C-9D0F-4D72-B638-8B59CE5E91F4}C:\windows\keygen.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{248E083A-53AC-4E53-BFF3-9DF6227CA571}C:\windows\keygen.exe deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Jarda
->Temp folder emptied: 786912 bytes
->Temporary Internet Files folder emptied: 5625397 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 348538912 bytes
->Flash cache emptied: 568 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 66757 bytes
RecycleBin emptied: 6843543581 bytes

Total Files Cleaned = 6 865,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 01302014_161437

Files\Folders moved on Reboot...
C:\Users\Jarda\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[Jarek103]

https://www.virustotal.com/cs/file/57bf ... 391095140/

[Jarek103]

Soubor c:\users\jarda\appdata\local\apps\2.0\trdm391l.zjd\kg260x3b.4vv nemohu najít. Mám povolené vše co jste psal.

[jaro3]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

:Files
c:\users\jarda\appdata\local\apps\2.0\trdm391l.zjd
C:\Windows\SysWow64\rp.dll

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]


Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

[Jarek103]

Omlouvám se za zpoždění.

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
========== FILES ==========
File\Folder c:\users\jarda\appdata\local\apps\2.0\trdm391l.zjd not found.
C:\Windows\SysWow64\rp.dll moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Jarda
->Temp folder emptied: 5236889 bytes
->Temporary Internet Files folder emptied: 12655639 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 375548597 bytes
->Flash cache emptied: 824 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 10552512 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 21827450590 bytes

Total Files Cleaned = 21 202,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 02162014_172337

Files\Folders moved on Reboot...
C:\Users\Jarda\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\Low\SkypeClickToCall\Logs\AutoUpdateSvc.log scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[jaro3]

Co problémy?

[Jarek103]

No myslím že už je to lepší, viz. jak jsem psal minule, moc se toho nezměnilo, ALE začal jsem si všímat pár drobností. Jakmile hraju (nemám otestováno na ničem jiném, jen hraní) hru World of Tanks, například po třech hodinách, chci vyskočit na plochu, vyskakuje to déle než obvykle, třeba i na 5 sekund zhasne obrazovka a načte se plocha, jenže bez myši, takže musím restartovat pc. Jinak je vše v pohodě, pc se tak nepřehřívá, nesekají se hry, tak jako předtím. Velice děkuji za pomoc, základní problémy, které mě nejvíc štvaly, se vyřešily (snad )

[Orcus]

OK, vyčistíme čistící programy:

Stáhni si zde DelFix
http://general-changelog-team.fr/fr/dow ... e/9-delfix

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud to je vše, můžeš téma označit fajfkou jako vyřešené.