Začal zlobit prohlížeč SeaMonkey.

[goha]

Nenačítá obrázky, špatně otevírá některé stránky ... např. jen v textovém režimu a pod.. Virus jsem žádný nenašel .... vyzkoušel jsem mwav a 360 Total security.
Můžete poradit jak dál?
Díky za info.

[Rudy]

Zdravím!
Tento prohlížeč moc neznám a pokud vím, nikdo z kolegů ho nepoužívá. Nicméně analogicky s FF se zeptám: Máte správně nastaven datum a čas?

[goha]

Ano datum je v pořádku.

[Rudy]

Zkuste ho přeinstalovat.

[goha]

To už jsem udělal, bylo to to první, co mě napadlo.

[goha]

To už jsem udělal, bylo to to první, co mě napadlo.

Edit: Před chvílí jsem na jiné diskuzi chtěl vložit za text smajlíka, který byl v nabídce a vždy po kliknutí na něj obrazovka "odskočila" jinam na jiné místo a ke vložení nedošlo.

Omlouvám se, místo na edit jsem kliknul omylem na citaci.

[Rudy]

Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .

[goha]

Přikládám log FRST + Addition.zip:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by BetaVerze (administrator) on BETAVERZE-PC (16-03-2016 19:41:05)
Running from C:\Users\BetaVerze\Desktop
Loaded Profiles: BetaVerze (Available Profiles: BetaVerze)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSTeK COMPUTER INC.) C:\Windows\System32\ATKFUSService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
() C:\Program Files\ASUS\GamerOSD\ATKFastUserSwitching.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(
ASUSTeK Computer Inc.) C:\Program Files\ASUS\GPU Boost Driver\GpuBoostServer.exe
() C:\Program Files (x86)\ASUS\WLAN Card Utilities\ASWLCCSVC.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
(Microsoft) C:\Program Files (x86)\365dni\365dniNET.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteTray.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EASEUS\EaseUS Partition Master 10.8\bin\EpmNews.exe
() C:\Program Files (x86)\EASEUS\EaseUS Partition Master 10.8\bin\TrayPopupE\TrayTipAgentE.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\Evernote.exe
(mozilla.org) C:\Program Files (x86)\SeaMonkey\seamonkey.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\alg.exe
(forum.viry.cz) C:\Users\BetaVerze\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe [1065080 2016-03-03] ()
HKLM-x32\...\Run: [EaseUS EPM tray] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe [2089056 2015-09-16] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\TrayPopupE\TrayTipAgentE.exe [255072 2014-11-18] ()
Winlogon\Notify\!SASWinLogon: C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll [2009-09-03] (SUPERAntiSpyware.com)
HKLM\...\Policies\Explorer: [NoStrCmpLogical] 1
HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\Run: [365dni] => C:\Program Files (x86)\365dni\365dniNET.exe [858624 2010-05-13] (Microsoft)
HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellExecuteHooks-x32: - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File [ ]
ShellExecuteHooks-x32: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL [77824 2008-05-13] (SuperAdBlocker.com)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2013-01-24] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2013-01-24] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2013-01-24] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2013-01-24] (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
Startup: C:\Users\BetaVerze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteTray.lnk [2015-04-07]
ShortcutTarget: EvernoteTray.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteTray.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BootExecute: autocheck autochk * PDBoot.exe
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-409041142-459604370-2198087559-1000] => http=127.0.0.1:1042;https=127.0.0.1:1042
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{0DC0A56B-602D-40DE-A012-EAF600461F86}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{786BEB82-0C00-48F8-A716-46C470793C7B}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-409041142-459604370-2198087559-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-409041142-459604370-2198087559-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-409041142-459604370-2198087559-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-409041142-459604370-2198087559-1000 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
BHO: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll [2016-02-26] (Qihu 360 Software Co., Ltd.)
BHO-x32: PDF Architect 4 Helper -> {38279E1A-7019-40C1-B579-E99DFB3312E8} -> C:\Program Files (x86)\PDF Architect 4\creator-ie-helper.dll [2016-01-15] (pdfforge GmbH)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-12-01] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon.dll [2016-02-26] (Qihu 360 Software Co., Ltd.)
Toolbar: HKLM-x32 - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files (x86)\PDF Architect 4\creator-ie-plugin.dll [2016-01-15] (pdfforge GmbH)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)

FireFox:
========
FF ProfilePath: C:\Users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default
FF NewTab: hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAcQcwteAFxEDAdFcwkVVQtGRBgbcAELTAtJFgJAcA8AAA5IFhNBNARaB0tXUUEeGGlxR1dMc1BAL0tcMVgWRA==
FF DefaultSearchEngine: Default
FF SelectedSearchEngine: Default
FF Homepage: hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggRcwoKB1gUFBgRJgoITA1DFlAOeAkAUhRDGQIUIwkOWVhGGAIFIk0FA18DB0VXfWFoKB8fHGdGI1ZKBWkQRlA=
FF Session Restore: -> is enabled.
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-13] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [1999-12-31] (Tracker Software Products Ltd.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [1999-12-31] (Tracker Software Products Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-13] ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [1999-12-31] (Tracker Software Products Ltd.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.450 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll [2010-02-15] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.448 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll [2010-02-15] (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-14] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [1999-12-31] (Tracker Software Products Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wolfram.com/Mathematica -> C:\Program Files (x86)\Common Files\Wolfram Research\Browser\8.0.3.2427702\npmathplugin.dll [2011-07-11] (Wolfram Research, Inc.)
FF Plugin-x32: PDF Architect 4 -> C:\Program Files (x86)\PDF Architect 4\np-previewer.dll [2016-01-15] (pdfforge GmbH)
FF SearchPlugin: C:\Users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\searchplugins\default.xml [2016-03-15]
FF SearchPlugin: C:\Users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\searchplugins\duckduckgo.xml [2014-09-04]
FF Extension: Flash Video Downloader - YouTube HD Downloader [4K] - C:\Users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\extensions\artur.dubovoy@gmail.com [2015-06-10]
FF Extension: Record Page - C:\Users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\Extensions\{80249d94-cb27-4919-8ae8-70c3a10ec453}.xpi [2015-05-30] [not signed]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-10-14] [not signed]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-10-14] [not signed]
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: PDF Architect 4 Creator - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2016-02-04] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [WebProtection@360safe.com] - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox
FF Extension: 360 Internet Protection - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox [2016-03-03]
FF HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\Firefox\Extensions: [{DBF68C10-4AEE-41f2-831A-BA4562C45E81}] - C:\Users\BetaVerze\AppData\Roaming\SAIG\Surfulater\FirefoxExtension\3.42.00
FF Extension: Surfulater Integration - C:\Users\BetaVerze\AppData\Roaming\SAIG\Surfulater\FirefoxExtension\3.42.00 [2011-10-29] [not signed]

Chrome:
=======
CHR Profile: C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Obchod) - C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-16]
CHR Extension: (Disk Google) - C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-16]
CHR Extension: (YouTube) - C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-16]
CHR Extension: (Vyhledávání Google) - C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-03-16]
CHR Extension: (Obchod) - C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-03-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-03-16]
CHR Extension: (Gmail) - C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-16]
CHR HKU\S-1-5-21-409041142-459604370-2198087559-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\BETAVE~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-06-26]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]

Opera:
=======
OPR Extension: (360 Internet Protection) - C:\Users\BetaVerze\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnpeghmjdfdmneiljeibjnemfdkojdhl [2016-03-15]
OPR Extension: (Record Page) - C:\Users\BetaVerze\AppData\Roaming\Opera Software\Opera Stable\Extensions\oaphlnkkagindbgmjlcnicllejgalilh [2015-05-31]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4816568 2014-10-13] (Emsisoft GmbH)
S4 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [819976 2011-09-22] (ABBYY)
S4 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [43624 2012-08-14] (ArcSoft, Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-04-05] (Advanced Micro Devices, Inc.) [File not signed]
S4 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [136616 2010-05-21] ()
S4 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [96896 2009-12-28] (ASUSTeK Computer Inc.)
R2 ASWLCCSvc; C:\Program Files (x86)\ASUS\WLAN Card Utilities\ASWLCCSVC.exe [172032 2009-05-21] () [File not signed]
R2 ATKFUSService; C:\Windows\system32\ATKFUSService.exe [63488 2009-12-01] (ASUSTeK COMPUTER INC.) [File not signed]
S4 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [29912 2013-08-26] (AOMEI Tech Co., Ltd.)
S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-06-10] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-06-10] (BlueStack Systems, Inc.)
S4 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [37448 2014-08-13] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
S4 InstallShield Licensing Service; C:\Program Files (x86)\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe [78536 2011-10-22] (Macrovision )
S4 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe [625648 2015-06-08] (Lenovo)
S4 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-11-15] (Motorola Mobility LLC)
S4 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1657640 2014-05-12] (O&O Software GmbH)
S4 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2417376 2016-01-15] (pdfforge GmbH)
S4 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [1038048 2016-01-15] (pdfforge GmbH)
S4 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [851168 2016-01-15] (pdfforge GmbH)
S4 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [959248 2015-10-05] (© pdfforge GmbH.)
S4 Printer Control; C:\Windows\system32\PrintCtrl.exe [121856 2012-10-21] (ActMask Co.,Ltd - hxxp://WWW.ALL2PDF.COM) [File not signed]
S4 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [908408 2016-02-26] (QIHU 360 SOFTWARE CO. LIMITED)
S4 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S4 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
S4 ShareItSvc; C:\Program Files (x86)\Lenovo\SHAREit\Shareit.Service.exe [31192 2016-02-02] (SHAREit Technologies Co.Ltd)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\WsAppService.exe [252816 2015-04-30] (Wondershare)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [137808 2016-02-26] (360.cn)
S3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [77904 2015-12-17] (360.cn)
S3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [77904 2015-12-17] (360.cn)
R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [319568 2016-02-26] (360.cn)
R1 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [40520 2015-06-25] (360.cn)
R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [370768 2016-02-26] (360.cn)
S3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [71472 2014-09-02] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2014-09-02] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [23088 2014-09-02] (Emsisoft GmbH)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [30648 2013-05-07] () [File not signed]
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [151480 2013-05-07] () [File not signed]
S3 ampa; C:\Windows\system32\ampa.sys [15288 2011-12-26] () [File not signed]
S3 ampa; C:\Windows\SysWOW64\ampa.sys [12728 2011-12-26] () [File not signed]
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [17848 2013-02-06] () [File not signed]
S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2011-12-14] (Google Inc)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R3 asusgsb; C:\Windows\System32\drivers\asusgsb.sys [17792 2009-02-17] (ASUSTeK Computer Inc.)
S3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [39704 2015-04-23] (Windows (R) Win 7 DDK provider)
R3 atkdisplf; C:\Windows\System32\drivers\ATKDispLowFilter.sys [39424 2009-02-17] (ASUSTeK Computer Inc.)
S3 ATP; C:\Windows\System32\DRIVERS\AsusTP.sys [67352 2015-04-23] (ASUS Corporation)
R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [181328 2016-02-26] (360.cn)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-06-10] (BlueStack Systems)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [37976 2013-05-07] (Windows (R) Win 7 DDK provider) [File not signed]
S3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2014-09-02] (Emsisoft GmbH)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [18528 2014-11-18] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14944 2014-11-18] ()
R0 EUBAKUP; C:\Windows\System32\drivers\eubakup.sys [61000 2014-08-13] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [48200 2014-08-13] () [File not signed]
R1 EUDSKACS; C:\Windows\system32\drivers\eudskacs.sys [18504 2014-08-13] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R1 EUFDDISK; C:\Windows\system32\drivers\EuFdDisk.sys [189000 2014-08-13] (CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2014-11-18] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [10208 2014-11-18] ()
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2014-11-01] (Glarysoft Ltd)
R2 LiveTunerPM; D:\Ashampoo WinOptimizer 10.02.05 CZ portable\App\WinOptimizer\LiveTunerProcessMonitor64.sys [12824 2011-03-08] ()
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus64.sys [261120 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCASp50; C:\Windows\SysWOW64\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R1 rvsmon; C:\Windows\System32\DRIVERS\rvsmon.sys [151752 2009-10-16] (CJSC Returnil Software)
R2 rvsmonf; C:\Windows\System32\DRIVERS\rvsmonf.sys [1326416 2009-10-16] (CJSC Returnil Software)
R2 rvsmonn; C:\Windows\System32\DRIVERS\rvsmonn2.sys [21936 2009-10-16] (CJSC Returnil Software)
R0 RVSystem; C:\Windows\System32\Drivers\RVSystem.sys [49736 2013-10-29] (CJSC Returnil Software)
S1 SASDIFSV; C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS [9968 2009-09-15] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [File not signed]
S3 SASENUM; C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS [7408 2009-09-15] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [File not signed]
S1 SASKUTIL; C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys [74480 2009-09-15] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [File not signed]
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2010-12-04] (Sony Ericsson Mobile Communications)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-05-06] (Duplex Secure Ltd.)
S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2015-04-19] (BitDefender S.R.L.)
S3 V0770Vid; C:\Windows\System32\DRIVERS\V0770Vid.sys [379776 2012-06-01] (Creative Technology Ltd.)
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [117768 2015-07-09] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [146072 2015-07-09] (Oracle Corporation)
R2 WiseFs; C:\Windows\WiseFs64.sys [13264 2015-08-26] (WiseCleaner.com)
S3 WiseHDInfo; C:\Windows\WiseHDInfo64.dll [14800 2015-05-19] (wisecleaner.com)
R1 WiseUnlock; C:\Windows\WiseUnlock64.sys [12240 2015-05-19] (WiseCleaner.com)
S3 catchme; \??\C:\ComboFix-2\catchme.sys [X]
U3 DfSdkS; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-16 19:41 - 2016-03-16 19:41 - 00032531 _____ C:\Users\BetaVerze\Desktop\FRST.txt
2016-03-16 19:41 - 2016-03-16 19:41 - 00000000 ____D C:\FRST
2016-03-16 19:35 - 2016-03-16 19:35 - 00112640 _____ (forum.viry.cz) C:\Users\BetaVerze\Desktop\FRSTLauncher.exe
2016-03-16 19:33 - 2016-03-16 19:33 - 02374144 _____ (Farbar) C:\Users\BetaVerze\Desktop\FRST64.exe
2016-03-16 08:49 - 2016-03-16 08:49 - 00081821 _____ C:\ComboFix.txt
2016-03-16 08:27 - 2016-03-16 08:49 - 00000000 ____D C:\ComboFix-2
2016-03-16 08:27 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2016-03-16 08:27 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2016-03-16 08:27 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2016-03-16 08:27 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2016-03-16 08:27 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2016-03-16 08:27 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2016-03-16 08:27 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2016-03-16 08:27 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2016-03-16 08:26 - 2016-03-16 08:49 - 00000000 ____D C:\Qoobox
2016-03-16 08:26 - 2016-03-16 08:47 - 00000000 ____D C:\Windows\erdnt
2016-03-16 08:15 - 2016-03-16 08:15 - 00149552 _____ C:\Users\BetaVerze\AppData\Local\GDIPFONTCACHEV1.DAT
2016-03-16 08:12 - 2016-03-16 08:13 - 00504272 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-15 00:45 - 2016-03-15 00:46 - 36135041 _____ C:\Users\BetaVerze\Downloads\SeaMonkey_Setup_2.40.exe
2016-03-14 23:36 - 2016-03-16 11:50 - 00000954 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-14 23:36 - 2016-03-14 23:36 - 00003702 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-03-14 23:35 - 2016-03-14 23:35 - 00987728 _____ (Google Inc.) C:\Users\BetaVerze\Downloads\ChromeSetup.exe
2016-03-14 19:07 - 2016-03-14 19:07 - 00000000 ____D C:\Users\BetaVerze\AppData\LocalLow\Adobe
2016-03-14 19:06 - 2016-03-14 19:06 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-03-13 23:30 - 2016-03-13 15:38 - 00001244 _____ C:\keepass.kdb
2016-03-09 16:27 - 2016-03-09 16:27 - 00009837 _____ C:\Users\BetaVerze\AppData\Local\recently-used.xbel
2016-03-07 22:48 - 2016-03-08 00:32 - 00000000 ____D C:\Karta-obnova_videa_fotky
2016-03-07 13:09 - 2016-03-07 13:09 - 00000512 _____ C:\Windows\SysWOW64\HBEDV.KEY
2016-03-03 17:23 - 2016-03-03 17:23 - 00002968 _____ C:\Windows\System32\Tasks\{890F464C-5EEF-42DC-B672-692FA921B0C8}
2016-03-03 17:22 - 2016-03-03 17:22 - 00002968 _____ C:\Windows\System32\Tasks\{4555E3B7-E1A6-42D8-9FC1-1E8215A732FA}
2016-03-01 23:17 - 2016-03-02 08:53 - 00000000 ____D C:\Program Files\Avidemux 2.6 - 64 bits
2016-03-01 23:17 - 2016-03-01 23:21 - 00000000 ____D C:\Users\BetaVerze\AppData\Roaming\avidemux
2016-03-01 17:25 - 2016-03-01 17:25 - 00000000 ____D C:\Users\BetaVerze\AppData\Local\Apowersoft
2016-03-01 17:25 - 2016-03-01 17:25 - 00000000 ____D C:\ProgramData\Apowersoft
2016-03-01 17:24 - 2016-03-02 08:52 - 00000000 ____D C:\Users\BetaVerze\AppData\Roaming\Apowersoft
2016-02-29 20:30 - 2016-02-29 20:32 - 22324543 _____ C:\Windows\REGBK03.ZIP
2016-02-29 13:46 - 2016-02-29 13:46 - 00000000 ____D C:\HoloBackup-179d978 – kopie
2016-02-29 13:46 - 2016-02-29 13:46 - 00000000 ____D C:\HoloBackup-179d978
2016-02-29 13:28 - 2016-02-29 12:39 - 33407759 _____ C:\HoloBackup-179d978.zip
2016-02-25 15:43 - 2016-02-25 15:43 - 00003584 _____ C:\Users\BetaVerze\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-02-25 15:20 - 2016-02-25 15:20 - 00004000 _____ C:\Windows\System32\Tasks\LaunchPreSignup
2016-02-25 15:19 - 2016-03-02 08:53 - 00000000 ____D C:\Program Files (x86)\OLBPre
2016-02-25 15:19 - 2016-02-25 15:19 - 00001863 _____ C:\Users\BetaVerze\Desktop\MyPC Backup.lnk
2016-02-25 09:19 - 2016-02-25 09:19 - 00001458 _____ C:\Users\BetaVerze\Desktop\EaseUS Partition Master 10.8.lnk
2016-02-25 08:12 - 2016-02-25 08:12 - 00001384 _____ C:\Users\Public\Desktop\EaseUS Partition Master 10.8.lnk
2016-02-25 08:12 - 2016-02-25 08:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.8
2016-02-25 08:12 - 2015-09-21 00:30 - 03557000 _____ C:\Windows\system32\BootMan.exe
2016-02-25 08:12 - 2015-09-21 00:19 - 02658952 _____ C:\Windows\SysWOW64\BootMan.exe
2016-02-25 08:12 - 2014-11-18 14:46 - 00021088 _____ C:\Windows\SysWOW64\EuEpmGdi.dll
2016-02-25 08:12 - 2014-11-18 14:46 - 00017504 _____ C:\Windows\system32\EuEpmGdi.dll
2016-02-25 08:12 - 2014-11-18 14:39 - 00018528 _____ C:\Windows\system32\epmntdrv.sys
2016-02-25 08:12 - 2014-11-18 14:39 - 00014944 _____ C:\Windows\SysWOW64\epmntdrv.sys
2016-02-25 08:12 - 2014-11-18 14:39 - 00010848 _____ C:\Windows\system32\EuGdiDrv.sys
2016-02-25 08:12 - 2014-11-18 14:39 - 00010208 _____ C:\Windows\SysWOW64\EuGdiDrv.sys
2016-02-25 08:12 - 2014-11-18 14:38 - 00101984 _____ C:\Windows\system32\setupempdrvx64.exe
2016-02-25 08:12 - 2014-11-18 14:38 - 00088160 _____ C:\Windows\SysWOW64\setupempdrv03.exe
2016-02-24 21:36 - 2016-02-24 21:36 - 00000000 ____D C:\Users\BetaVerze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ClockworkMod
2016-02-24 21:36 - 2016-02-24 21:36 - 00000000 ____D C:\Program Files (x86)\ClockworkMod
2016-02-22 08:19 - 2016-02-22 08:19 - 00000000 ____D C:\Users\BetaVerze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-02-15 20:53 - 2016-02-15 20:53 - 00000000 ____D C:\Users\BetaVerze\AppData\Local\SHAREit
2016-02-15 20:53 - 2016-02-15 20:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LenovoSHAREit
2016-02-15 20:53 - 2016-02-15 20:53 - 00000000 ____D C:\ProgramData\Lenovo

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-16 19:41 - 2014-05-09 23:42 - 00000958 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-16 19:24 - 2014-05-23 13:46 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-16 19:12 - 2015-06-18 20:01 - 00000934 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-409041142-459604370-2198087559-1000UA.job
2016-03-16 18:12 - 2015-06-18 20:01 - 00000882 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-409041142-459604370-2198087559-1000Core.job
2016-03-16 17:22 - 2015-07-07 19:00 - 00000000 ____D C:\Users\BetaVerze\AppData\LocalLow\360WD
2016-03-16 14:11 - 2014-10-13 22:03 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-16 11:57 - 2009-07-14 05:45 - 00014256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-16 11:57 - 2009-07-14 05:45 - 00014256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-16 11:54 - 2012-01-10 21:18 - 00000436 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2016-03-16 11:50 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-16 09:10 - 2011-10-11 21:32 - 00000000 ___HD C:\Users\BetaVerze\AppData\Local\CrashDumps
2016-03-16 08:43 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2016-03-16 08:39 - 2009-07-14 03:34 - 99090432 _____ C:\Windows\system32\config\SOFTWARE.bak
2016-03-16 08:39 - 2009-07-14 03:34 - 28835840 _____ C:\Windows\system32\config\SYSTEM.bak
2016-03-16 08:39 - 2009-07-14 03:34 - 01310720 _____ C:\Windows\system32\config\DEFAULT.bak
2016-03-16 08:39 - 2009-07-14 03:34 - 00028672 _____ C:\Windows\system32\config\SECURITY.bak
2016-03-16 08:39 - 2009-07-14 03:34 - 00028672 _____ C:\Windows\system32\config\SAM.bak
2016-03-16 08:35 - 2015-01-15 22:27 - 00000000 ____D C:\ProgramData\Temp
2016-03-16 08:26 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-03-16 08:16 - 2016-01-04 12:44 - 00000000 ____D C:\Users\BetaVerze\AppData\Roaming\365dni
2016-03-16 08:15 - 2013-03-30 17:26 - 00000000 ____D C:\Users\BetaVerze\AppData\Roaming\Wise Care 365
2016-03-16 08:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2016-03-15 11:31 - 2012-01-13 10:41 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-15 11:23 - 2012-01-07 22:38 - 00000000 ____D C:\Program Files (x86)\SeaMonkey
2016-03-15 11:19 - 2011-10-25 23:43 - 00000000 ____D C:\Windows\Minidump
2016-03-15 11:16 - 2015-04-23 10:08 - 00002058 _____ C:\Users\BetaVerze\Desktop\Wise Care 365.lnk
2016-03-15 09:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-03-15 01:58 - 2014-05-06 00:22 - 00000410 _____ C:\Windows\Tasks\Wise Turbo Checker.job
2016-03-15 00:55 - 2015-09-29 16:43 - 00001982 _____ C:\Users\Public\Desktop\SeaMonkey.lnk
2016-03-15 00:55 - 2012-01-07 22:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SeaMonkey
2016-03-15 00:07 - 2014-05-10 09:55 - 00000056 _____ C:\Windows\Lic.xxx
2016-03-14 23:59 - 2009-07-14 03:34 - 00001045 _____ C:\Windows\win.ini
2016-03-14 23:38 - 2015-04-23 10:06 - 00000000 ____D C:\Users\BetaVerze\AppData\Roaming\WiseUpdate
2016-03-14 23:36 - 2013-05-22 10:36 - 00003954 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-03-14 23:27 - 2011-10-07 21:14 - 00000000 ____D C:\Users\BetaVerze
2016-03-14 19:07 - 2014-10-20 22:09 - 00000000 ____D C:\Users\BetaVerze\AppData\Local\Adobe
2016-03-14 19:07 - 2011-10-07 22:00 - 00000000 ___HD C:\Users\BetaVerze\AppData\Roaming\Adobe
2016-03-14 19:05 - 2012-09-04 07:03 - 00000000 ____D C:\ProgramData\Adobe
2016-03-14 18:47 - 2015-04-07 19:30 - 00000000 ____D C:\Users\BetaVerze\Downloads\Shareit
2016-03-13 23:38 - 2011-10-19 22:35 - 00000000 ___HD C:\Users\BetaVerze\AppData\Roaming\KeePass
2016-03-13 10:50 - 2013-01-10 21:55 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-03-13 10:50 - 2012-04-02 06:11 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-03-13 10:50 - 2011-10-07 22:00 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-09 16:32 - 2012-04-12 06:53 - 00000000 ____D C:\Users\BetaVerze\.gimp-2.8
2016-03-09 16:27 - 2014-01-06 22:59 - 00000000 ____D C:\Users\BetaVerze\AppData\Local\gtk-2.0
2016-03-08 00:34 - 2015-12-11 09:44 - 00000000 ____D C:\Users\BetaVerze\AppData\Roaming\vlc
2016-03-07 23:14 - 2013-10-10 07:21 - 00000000 ____D C:\1989c5bf6cc10c89bc90
2016-03-07 21:10 - 2009-07-14 16:18 - 00670658 _____ C:\Windows\system32\perfh005.dat
2016-03-07 21:10 - 2009-07-14 16:18 - 00142270 _____ C:\Windows\system32\perfc005.dat
2016-03-07 21:10 - 2009-07-14 06:13 - 01584554 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-07 21:06 - 2011-10-12 06:13 - 00000000 ____D C:\Program Files\Recuva
2016-03-03 18:30 - 2015-07-07 19:00 - 00001149 _____ C:\Users\Public\Desktop\360 Total Security.lnk
2016-03-03 18:30 - 2015-07-07 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2016-03-03 17:00 - 2014-06-01 07:50 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-03 16:38 - 2015-07-08 07:55 - 00000000 _RSHD C:\360SANDBOX
2016-03-02 09:25 - 2015-07-07 21:27 - 00000000 ____D C:\$360Section
2016-03-02 09:25 - 2015-07-07 21:24 - 00000000 ____D C:\ProgramData\360Quarant
2016-03-02 09:21 - 2015-06-15 20:00 - 00000476 __RSH C:\ProgramData\ntuser.pol
2016-03-02 08:53 - 2016-02-04 15:38 - 00000000 ____D C:\ProgramData\pdfforge
2016-03-02 08:53 - 2015-06-15 11:03 - 00000000 ____D C:\Program Files (x86)\The KMPlayer
2016-03-02 08:53 - 2011-10-12 05:50 - 00000000 ___HD C:\Users\BetaVerze\AppData\Roaming\GHISLER
2016-03-02 08:53 - 2011-10-11 21:23 - 00000000 ___HD C:\Users\BetaVerze\AppData\Roaming\Audacity
2016-03-02 08:53 - 2011-10-08 23:08 - 00000000 ___HD C:\Users\BetaVerze\AppData\Roaming\IrfanView
2016-03-02 08:53 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-02-29 23:58 - 2015-01-14 08:12 - 00000000 ____D C:\AdwCleaner
2016-02-29 23:28 - 2012-01-07 08:25 - 00785075 _____ C:\Users\BetaVerze\Documents\pinfect.zip
2016-02-29 16:45 - 2016-01-23 00:21 - 00000000 ____D C:\ASUS záloha
2016-02-29 09:08 - 2014-03-03 21:51 - 00000000 ____D C:\JY-G4
2016-02-28 21:27 - 2013-06-24 05:56 - 00000000 ____D C:\Users\BetaVerze\AppData\Local\Windows Live
2016-02-28 18:27 - 2012-01-18 09:34 - 00000000 ____D C:\Windows\pss
2016-02-26 11:56 - 2015-07-07 19:00 - 00370768 _____ (360.cn) C:\Windows\system32\Drivers\360fsflt.sys
2016-02-26 11:56 - 2015-07-07 19:00 - 00319568 _____ (360.cn) C:\Windows\system32\Drivers\360Box64.sys
2016-02-26 11:56 - 2015-07-07 19:00 - 00181328 _____ (360.cn) C:\Windows\system32\Drivers\BAPIDRV64.SYS
2016-02-26 11:56 - 2015-07-07 19:00 - 00137808 _____ (360.cn) C:\Windows\system32\Drivers\360AntiHacker64.sys
2016-02-25 15:25 - 2015-06-15 11:04 - 00000000 ____D C:\Users\BetaVerze\Documents\The KMPlayer
2016-02-25 15:24 - 2015-06-15 11:03 - 00001035 _____ C:\Users\BetaVerze\Desktop\KMPlayer.lnk
2016-02-25 15:19 - 2015-06-15 12:40 - 00001209 _____ C:\Users\BetaVerze\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2016-02-25 15:19 - 2015-06-15 12:40 - 00001185 _____ C:\Users\Public\Desktop\GOM Player.lnk
2016-02-25 08:39 - 2013-10-03 20:57 - 00000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant Standard Edition 5.2
2016-02-25 08:12 - 2012-01-31 11:33 - 00000000 ____D C:\Program Files (x86)\EASEUS
2016-02-22 08:19 - 2012-05-13 11:19 - 00000000 ____D C:\Users\BetaVerze\AppData\Roaming\Dropbox
2016-02-18 12:03 - 2016-02-11 12:03 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2016-02-17 16:34 - 2016-02-04 15:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2016-02-17 16:34 - 2015-04-07 17:07 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo
2016-02-15 20:53 - 2015-04-07 17:06 - 00001106 _____ C:\Users\Public\Desktop\SHAREit.lnk
2016-02-15 20:53 - 2015-04-07 17:06 - 00000000 ____D C:\Program Files (x86)\Lenovo

==================== Files in the root of some directories =======

2015-07-19 23:12 - 2009-02-26 19:57 - 0652884 _____ ( ) C:\Program Files\Vypínač na dobrou noc verze 2.0.exe
2014-02-28 10:36 - 2014-02-28 10:35 - 0581632 _____ (Joshua F. Madison) C:\Program Files (x86)\convert.exe
2014-09-05 08:21 - 2013-08-22 19:50 - 0357337 _____ () C:\Program Files (x86)\EAM-TR.exe
2014-05-01 19:10 - 2013-03-29 23:23 - 1563968 _____ (IObit) C:\Program Files (x86)\Iobit......HANZY.exe
2011-10-26 22:41 - 1997-12-01 01:00 - 2954628 ____R () C:\Program Files (x86)\Mtran.dic
2011-10-26 22:37 - 1997-12-01 01:00 - 0317440 ____R () C:\Program Files (x86)\Mtran.exe
2014-05-03 21:21 - 2014-04-16 13:04 - 7953080 _____ (DonationCoder) C:\Program Files (x86)\ScreenshotCaptor.exe
2005-03-05 17:21 - 2002-09-17 11:20 - 0035456 _____ () C:\Program Files (x86)\Common Files\EXIF Glossar.HLP
2005-03-05 17:21 - 2005-03-12 14:39 - 1347584 _____ (Ralf Bibinger) C:\Program Files (x86)\Common Files\EXIF Viewer.exe
2005-03-05 17:21 - 2005-03-12 14:49 - 0609358 _____ () C:\Program Files (x86)\Common Files\EXIF Viewer.HLP
2005-03-05 17:21 - 2005-03-22 12:47 - 0014790 _____ () C:\Program Files (x86)\Common Files\Kamera2.Cfg
2005-03-05 17:21 - 2004-08-19 17:40 - 0029532 _____ () C:\Program Files (x86)\Common Files\Nikon.jpg
2005-03-05 17:21 - 2005-02-03 18:45 - 0026097 _____ () C:\Program Files (x86)\Common Files\TIF.jpg
2013-10-04 22:42 - 2013-10-04 23:22 - 0012926 _____ () C:\Users\BetaVerze\AppData\Roaming\Microsoft Excel 97-2003.CAL
2014-04-05 17:52 - 2015-01-16 00:42 - 0000134 _____ () C:\Users\BetaVerze\AppData\Roaming\PDFShaper.ini
2014-07-31 13:08 - 2014-07-31 13:08 - 0000024 ___SH () C:\Users\BetaVerze\AppData\Roaming\System5908ConfigCollection.dat
2011-10-29 20:40 - 2015-08-30 15:01 - 0000202 _____ () C:\Users\BetaVerze\AppData\Roaming\varicad-work.ini
2012-07-19 23:34 - 2012-07-19 23:34 - 0000118 _____ () C:\Users\BetaVerze\AppData\Local\Config_4E29823E.dat
2016-02-25 15:43 - 2016-02-25 15:43 - 0003584 _____ () C:\Users\BetaVerze\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-04 19:44 - 2014-05-04 19:44 - 0000058 _____ () C:\Users\BetaVerze\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2012-07-19 23:34 - 2012-07-19 23:34 - 0000038 _____ () C:\Users\BetaVerze\AppData\Local\Index_4E29823E.dat
2016-03-09 16:27 - 2016-03-09 16:27 - 0009837 _____ () C:\Users\BetaVerze\AppData\Local\recently-used.xbel
2011-10-29 20:35 - 2014-01-11 00:35 - 0007597 _____ () C:\Users\BetaVerze\AppData\Local\Resmon.ResmonCfg
2013-11-04 12:39 - 2013-11-04 12:39 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2011-10-13 19:47 - 2011-10-13 19:47 - 0000114 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

ZeroAccess:
C:\Users\BetaVerze\AppData\Local\01ea421c
C:\Users\BetaVerze\AppData\Local\01ea421c\@

Files to move or delete:
====================
C:\Users\BetaVerze\wmpfirefoxplugin.exe


Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\msicwj32.dll
C:\Windows\SysWOW64\runouce.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-409041142-459604370-2198087559-1000Core.job => C:\Users\BetaVerze\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-409041142-459604370-2198087559-1000UA.job => C:\Users\BetaVerze\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0]
AlternateDataStreams: C:\ProgramData\Temp:BC359956 [126]

==================== Security Center ==================

AV: Emsisoft Anti-Malware (Disabled - Out of date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: 360 Total Security (Disabled - Up to date) {2B66EE1E-E5C8-C2F7-648F-4E55AC68D37D}
AS: 360 Total Security (Disabled - Up to date) {90070FFA-C3F2-CD79-5E3F-7527D7EF99C0}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Disabled - Out of date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\BetaVerze\Desktop" je 27 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCU
"C:\Users\BetaVerze\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dropbox Update
"C:\Program Files (x86)\EAM-TR.exe" /autoreset [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EAM Trial Reset
"C:\Program Files (x86)\EaseUS\TrayPopup\TrayTipAgent.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS TB Tray Agent
"c:\program files (x86)\emsisoft anti-malware\a2guard.exe" /d=60 [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\emsisoft anti-malware
"C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GUDelayStartup
C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HKCU
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HKLM
C:\Windows\inf\msjpoxh.vbe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HOSTS Anti-Adware_PUPs
C:\Windows\inf\msstp.vbe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mnctielipSrv
Re�im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncvubtdtSrv
Re�im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msjpoxhSrv
Re�im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSStp
Re�im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NtVdmSrv
Re�im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray
Re�im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings
Re�im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SFAUpdater
Re�im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Smart File Advisor
Re�im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk
C:\PROGRA~1\MCAFEE~1\38A880~1.141\SSSCHE~1.EXE [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^BetaVerze^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk
C:\Users\BETAVE~1\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^BetaVerze^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteTray.lnk
C:\PROGRA~2\Evernote\Evernote\EVC5D8~1.EXE


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DisableUnicastResponsesToMulticastBroadcast REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[Rudy]

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[goha]

Během "práce" došlo k restartu, tak snad to tak má být.
Přikládám příslušný log:

# AdwCleaner v5.102 - Logfile created 16/03/2016 at 21:17:50
# Updated 13/03/2016 by Xplode
# Database : 2016-03-16.1 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : BetaVerze - BETAVERZE-PC
# Running from : C:\Users\BetaVerze\Desktop\adwcleaner_5.102.exe
# Option : Clean
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\OLBPre

***** [ Files ] *****

[#] File Deleted : C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hbcennhacfaagdopikcegfcobcadeocj
[#] File Deleted : C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\icdlfehblmklkikfigmjhbmmpmkmpooj
[#] File Deleted : C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\mhkaekfpcppmmioggniknbnbdbcigpkk
[#] File Deleted : C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pfndaklgolladniicklehhancnlgocpp
[-] File Deleted : C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_oaphlnkkagindbgmjlcnicllejgalilh_0.localstorage
[-] File Deleted : C:\Users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\searchplugins\default.xml
[-] File Deleted : C:\Users\BetaVerze\AppData\Roaming\Opera Software\Opera Stable\Local Storage\chrome-extension_oaphlnkkagindbgmjlcnicllejgalilh_0.localstorage
[-] File Deleted : C:\Users\BetaVerze\Desktop\MyPC Backup.lnk

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : LaunchPreSignup

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Key Deleted : HKCU\Software\OB
[-] Key Deleted : HKCU\Software\PRODUCTSETUP
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OLBPre
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-409041142-459604370-2198087559-1000\Software\AVG Secure Search
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-409041142-459604370-2198087559-1000\Software\SweetIM
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\euask.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.euask.com
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\BCU
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\SearchSettings

***** [ Web browsers ] *****

[-] [C:\Users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\prefs.js] [Preference] Deleted : user_pref("browser.newtab.url", "hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAcQcwteAFxEDAdFcwkVVQtGRBgbcAELTAtJFgJAcA8AAA5IFhNBNARaB0tXUUEeGGlxR1dMc1BAL0tcMVgWRA==");
[-] [C:\Users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\prefs.js] [Preference] Deleted : user_pref("browser.startup.homepage", "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggRcwoKB1gUFBgRJgoITA1DFlAOeAkAUhRDGQIUIwkOWVhGGAIFIk0FA18DB0VXfWFoKB8fHGdGI1ZKBWkQRlA=");
[-] [C:\Users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\prefs.js] [Preference] Deleted : user_pref("extensions.a0f1ebb0b873c4137a5f19b9ca22849971152da4e8ec5417f9a4b8c7bbf9cb4a4com51382.51382.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
[-] [C:\Users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\prefs.js] [Preference] Deleted : user_pref("network.hxxp.request.max-start-delay", 0);
[-] [C:\Users\BetaVerze\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : yahoo.com Search

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

*************************

C:\Program Files (x86)\AdwCleaner\AdwCleaner[C1].txt - [4315 bytes] - [16/03/2016 21:17:50]
C:\Program Files (x86)\AdwCleaner\AdwCleaner[S1].txt - [4420 bytes] - [16/03/2016 21:16:38]

########## EOF - C:\Program Files (x86)\AdwCleaner\AdwCleaner[C1].txt - [4501 bytes] ##########

[Rudy]

Dejte nový log FRST.

[goha]

Tady je:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
Ran by BetaVerze (2016-03-16 21:58:54)
Running from C:\Users\BetaVerze\Desktop
Windows 7 Professional Service Pack 1 (X64) (2011-10-07 20:14:00)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-409041142-459604370-2198087559-500 - Administrator - Disabled)
BetaVerze (S-1-5-21-409041142-459604370-2198087559-1000 - Administrator - Enabled) => C:\Users\BetaVerze
Guest (S-1-5-21-409041142-459604370-2198087559-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-409041142-459604370-2198087559-1009 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Emsisoft Anti-Malware (Disabled - Out of date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: 360 Total Security (Disabled - Up to date) {2B66EE1E-E5C8-C2F7-648F-4E55AC68D37D}
AS: 360 Total Security (Disabled - Up to date) {90070FFA-C3F2-CD79-5E3F-7527D7EF99C0}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Disabled - Out of date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 8.2.0.1031 - 360 Security Center)
3PigsCasino.cs (HKLM-x32\...\{B6092C00-7224-46B5-A6C9-8B579BB89976}) (Version: 1.0.0 - 3PigsCasino.cs)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
ABBYY FineReader 11 (HKLM-x32\...\{F1100000-0008-0000-0001-074957833700}) (Version: 11.0.338 - ABBYY)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISER_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISER_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISER_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AMD OverDrive (HKLM-x32\...\{FFC93940-E059-4CDA-8385-1E95B1731148}) (Version: 3.2.2.0452 - Advanced Micro Devices, Inc.)
AndroidTodayCZ verze 1.0 (HKLM-x32\...\{5F8CB5A8-374D-4C4C-9C9B-DECB03A25065}_is1) (Version: 1.0 - RoboCockroach)
AnyToISO (HKLM-x32\...\AnyToISO_is1) (Version: 3.2.2 - CrystalIdea Software, Inc.)
AOMEI Backupper (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536C09D}_is1) (Version: - AOMEI Technology Co., Ltd.)
AOMEI Partition Assistant Standard Edition 5.2 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - Aomei Technology Co., Ltd.)
ArcSoft Portrait+ (HKLM-x32\...\{056B67F7-A993-4720-BCA3-0316E81D75C4}) (Version: 1.5.0.155 - ArcSoft, Inc.)
Ashampoo WinOptimizer 12 (HKLM-x32\...\{4209F371-15B6-1CE4-15F7-A7BA46F431E3}_is1) (Version: 12.00.45 - Ashampoo GmbH & Co. KG)
ASUS Gamer OSD (HKLM-x32\...\{7F88C9E5-12BD-404F-AC6A-108BAAC9B708}) (Version: 3.07.0419 - ASUSTeK COMPUTER INC.)
ASUS VGA Driver (x32 Version: 3.0.0.1 - ASUSTek) Hidden
ASUS WLAN Card USB-N13 Manuals (HKLM-x32\...\{71410690-26E6-4166-94AA-1B03AC0A6115}) (Version: 1.00.000 - ASUS)
ASUS WLAN Card Utilities/Driver (HKLM-x32\...\{8F722FA9-B994-4C9B-B292-FD32D6206EDF}) (Version: 4.3.0.6 - ASUS)
ATI AVIVO64 Codecs (Version: 11.6.0.10405 - ATI Technologies Inc.) Hidden
ATI Catalyst Install Manager (HKLM\...\{6312C9B9-3093-9BB0-AAE0-9A801045A6C6}) (Version: 3.0.820.0 - ATI Technologies, Inc.)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Autopano Pro (HKLM-x32\...\Autopano Pro) (Version: V1.3.0 - Kolor)
Balíček ovladače systému Windows - OLYMPUS IMAGING CORP. (OlyFirCam) OlyFirCam (06/21/2007 2.2.0.0) (HKLM\...\1F83630F1D96893C47BCF19B627F1BBA13E0DAF7) (Version: 06/21/2007 2.2.0.0 - OLYMPUS IMAGING CORP.)
Balíček ovladače systému Windows - OLYMPUS IMAGING CORP. (OlyUsbCam) OlyUsbCam (12/28/2006 1.0.0.0) (HKLM\...\D4D93CD19C3E3B78F95D0606CD187BDE3317187F) (Version: 12/28/2006 1.0.0.0 - OLYMPUS IMAGING CORP.)
Bandizip (HKLM\...\Bandizip) (Version: 5.0 - Bandisoft.com)
Blender (HKLM\...\Blender) (Version: 2.73 - Blender Foundation)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.7.13.899 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{6397E61B-A6B5-4479-85A4-0F746D6B328F}) (Version: 0.7.13.899 - BlueStack Systems, Inc.)
calibre 64bit (HKLM\...\{715E9C5E-2008-46A2-84CD-89B99251D1B1}) (Version: 0.9.43 - Kovid Goyal)
CardCasino Poker 2.41 build 639 (HKLM-x32\...\CardCasino Poker) (Version: 2.41 build 639 - CardCasino Poker)
CCleaner (HKLM\...\CCleaner) (Version: 4.05 - Piriform)
Compiled Driver Disc (Full) 1.0 (HKLM\...\{3DCF00F5-04A5-4543-A088-70548081120E}_is1) (Version: 1.0.2.0 - COMPELSON Labs)
Compiled Driver Disk (Android) 1.0 (HKLM\...\{759A91E8-0024-45F3-A8F3-CDC5E13B4425}_is1) (Version: 1.0.2.0 - COMPELSON Labs)
Compiled Driver Disk (Sony Ericsson) 1.0 (HKLM\...\{3DCF00F5-04A5-4543-A088-705480811201}_is1) (Version: 1.0.0.0 - COMPELSON Labs)
Compiled Driver Disk(Motorola) 1.0 (HKLM\...\{3DCF00F5-04A5-4543-A088-705480811202}_is1) (Version: 1.0.2.0 - COMPELSON Labs)
CoreAAC (HKLM-x32\...\CoreAAC) (Version: - )
Creative Live! Central 3 (HKLM-x32\...\Creative Live! Central 2) (Version: 3.01.21 - Creative Technology Ltd)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DCoder Image Source (remove only) (HKLM-x32\...\DCoder Image Source) (Version: - )
Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 2.26 - NCH Software)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
DOFMaster (HKLM-x32\...\DOFMaster) (Version: - )
DriveImage XML (Private Edition) (HKLM-x32\...\{F7E1CA14-B39D-452A-960B-39423DDDD933}) (Version: 2.50.000 - Runtime Software)
DRIVERfighter (x32 Version: 1.1.160 - SPAMfighter ApS) Hidden
Dropbox (HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\Dropbox) (Version: 3.14.7 - Dropbox, Inc.)
EaseUS Partition Master 10.8 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
EaseUS Todo Backup Free 7.0 (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 7.0 - CHENGDU YIWO Tech Development Co., Ltd)
EGR-ShellExtension (HKLM-x32\...\EGR-ShellExtension) (Version: 1.2.0.101 - EasternGraphics)
EMcalc 3.7 (HKLM-x32\...\EMcalc_is1) (Version: - )
Emsisoft Anti-Malware (HKLM-x32\...\{BC30E5E7-047D-4232-A7E8-F2CB7CC7B2E0}_is1) (Version: 8.0 - Emsisoft GmbH)
Eraser 6.0.8.2273 (HKLM\...\{A7EEF79E-06B2-4382-9D2E-39DBA0F72D50}) (Version: 6.0.2273 - The Eraser Project)
Eurotran 2003 (HKLM-x32\...\Eurotran 2003) (Version: - )
Evernote v. 5.9.6 (HKLM-x32\...\{A542D366-9877-11E5-B101-005056951CAD}) (Version: 5.9.6.9494 - Evernote Corp.)
Exifer (HKLM-x32\...\Exifer_is1) (Version: - Friedemann Schmidt)
FairStars Audio Converter 2.00 (HKLM-x32\...\FairStars Audio Converter_is1) (Version: - FairStars Soft)
Far Cry 2 (HKLM-x32\...\{F2835483-37F2-4123-B4FE-0E77D58447F2}) (Version: 1.03.00 - Ubisoft)
FBReader for Windows (HKLM-x32\...\FBReader for Windows) (Version: - )
Flamingo 2.0 (HKLM-x32\...\{C475527D-AB5C-47D8-8C25-85CA3E42B5A4}) (Version: 2.0.30724.0 - Robert McNeel & Associates)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free Video Dub version 1.2 (HKLM-x32\...\Free Video Dub_is1) (Version: - DVD Video Soft Limited.)
Freemake Video Converter verze 4.1.3 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.3 - Ellora Assets Corporation)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Glary Duplicate Cleaner 5.0.1.20 (HKLM-x32\...\Glary Duplicate Cleaner) (Version: 5.0.1.20 - Glarysoft Ltd)
Glary Utilities 5.11 (HKLM-x32\...\Glary Utilities 5) (Version: 5.11.0.23 - Glarysoft Ltd)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.2.77.5240 - Gretech Corporation)
Google Drive (HKLM-x32\...\{6C36881B-0E51-4231-9D02-BF2149664D34}) (Version: 1.20.8672.3137 - Google, Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.131 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
Google+ Auto Backup (HKLM-x32\...\{D1D4D7EA-62B8-4665-9FF7-02A91B925CC9}) (Version: 1.0.18.74 - Google)
Helicon Filter 4.86.1 (HKLM-x32\...\Helicon Filter_is1) (Version: - Helicon Soft Ltd.)
Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)
HEXelon MAX 6.07 (HKLM-x32\...\HEXelon MAX_is1) (Version: 6.07 - Jerzy Znamirowski)
HydraVision (x32 Version: 4.2.188.0 - ATI Technologies Inc.) Hidden
Image Composite Editor (HKLM\...\{380B7D01-4411-4D5D-AB9A-2A12FA315481}) (Version: 2.0.2 - Microsoft Corporation)
Imagenomic Noiseware 4.2 Professional Plug-in (build 4205) (HKLM\...\ImagenomicNoisewareProPlugin) (Version: - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Incomedia WebSite X5 v10 - Evolution (HKLM-x32\...\{0A53AC6C-9E9D-451D-AB28-F5D1427C4D56}_is1) (Version: 10.1.2.42 - Incomedia s.r.l.)
Inkscape 0.91 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.91 - inkscape.org)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
KeyboardTest V3.1 (HKLM\...\KeyboardTest_is1) (Version: 3.1 - PassMark Software)
Kingo Android ROOT version 1.1.4.1785 (HKLM-x32\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.1.4.1785 - Kingosoft Technology Ltd.)
K-Lite Codec Pack 11.3.8 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.3.8 - )
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.0.5.3 - PandoraTV)
Knight's Gambit (HKLM-x32\...\Knight's Gambit_is1) (Version: 1.0 - MyPlayCity, Inc.)
Leawo Total Media Converter Ultimate version 5.2.0.1 (HKLM-x32\...\{A5F041A4-812A-47C2-AD53-8893A81019FB}_is1) (Version: - )
linguatec Voice Reader (HKLM-x32\...\{93293322-B694-4270-B7FE-DDE1A681ACCA}) (Version: 1.00.0000 - linguatec)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.8 - Thibaut Lauziere)
Live! Cam Sync HD VF0770 Driver (1.00.02.00) (HKLM\...\Creative VF0770) (Version: - Creative Technology Ltd.)
Loco Panda Casino (HKLM-x32\...\{27b156e9-869a-4e09-baea-b4fb3e9b1d27}) (Version: 11.1.0 - RealTimeGaming Software)
MadVR (remove only) (HKLM-x32\...\MadVR) (Version: - )
MailStore Home 8.0.5.8779 (HKLM-x32\...\MailStore Home_universal1) (Version: 8.0.5.8779 - MailStore Software GmbH)
Manager (x32 Version: 4.0.1.25166 - 2015 pdfforge GmbH. All rights reserved) Hidden
Mathematica Extras 8.0 (2427702) (HKLM\...\A-WIN-Extras 8.0.3 2427702_is1) (Version: 8.0.3 - Wolfram Research, Inc.)
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 CSY Language Pack (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0405-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
MobileCamStreamer (HKLM-x32\...\{2F0ED3F6-08DE-44A3-ACE3-88F7B76BCB7D}) (Version: 1.5.0 - Mobideos)
MotoCast (HKLM-x32\...\{5401CEE8-3C2D-4835-A802-213306537FF4}) (Version: 2.0.31 - Motorola Mobility)
MotoHelper MergeModules (x32 Version: 1.2.0 - Motorola) Hidden
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.4.5 - Motorola Mobility)
Motorola Device Software Update (x32 Version: 13.09.3001 - Motorola Mobility) Hidden
MOTOROLA MEDIA LINK (x32 Version: 1.9.0002.0 - Motorola) Hidden
Motorola Mobile Drivers Installation 6.3.0 (HKLM\...\{759E6A2F-1F01-45EF-A0C4-22F1B56CB975}) (Version: 6.3.0 - Motorola Mobility LLC)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 19.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 19.0.2 (x86 cs)) (Version: 19.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.0.3 - Mozilla)
Mozilla Thunderbird 17.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 17.0 (x86 cs)) (Version: 17.0 - Mozilla)
MPEG2 Codec(libmpeg2/mad) (HKLM-x32\...\MPEG2 Codec(libmpeg2/mad)) (Version: - )
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MyDefrag v4.3.1 (HKLM\...\MyDefrag v4.3.1_is1) (Version: 4.0.0.0 - J.C. Kessels)
Neat Image v6.0 Pro+ (HKLM-x32\...\Neat Image_is1) (Version: - Neat Image team, ABSoft)
NetTVPlayer 1.01 (HKLM-x32\...\{1B0CC28A-0EFA-49E3-BC88-D174DE70FAF1}_is1) (Version: - NetTVPlayer)
Noiseware Professional Edition (HKLM-x32\...\{554EB98C-D995-471F-8874-D2BA7BF5EB3E}) (Version: 2.6.0.1 - Imagenomic)
O&O Defrag Professional (HKLM\...\{3A59346C-DE9E-4F25-BDEE-F8229A2AF582}) (Version: 17.5.559 - O&O Software GmbH)
OLYMPUS Studio 2 (HKLM-x32\...\{80958B03-07E3-4F0A-8950-4F709899F321}) (Version: 1.0.2 - OLYMPUS IMAGING CORP.)
Opera Stable 32.0.1948.69 (HKLM-x32\...\Opera 32.0.1948.69) (Version: 32.0.1948.69 - Opera Software)
Oracle VM VirtualBox 5.0.0 (HKLM\...\{FCD0B365-2189-45F3-9AF2-2BCED86C121A}) (Version: 5.0.0 - Oracle Corporation)
OUTDATEfighter (x32 Version: 1.1.82 - SPAMfighter ApS) Hidden
ParadisePoker (HKLM-x32\...\ParadisePoker ) (Version: - Boss Media AB)
Password Safe (HKLM-x32\...\Password Safe) (Version: - )
pCon.planner STD (HKLM-x32\...\{A3BE153B-2244-45E8-851B-65A085C0D92A}) (Version: 7.1.0.101 - EasternGraphics)
PDF Architect 4 (HKLM-x32\...\PDF Architect 4) (Version: 4.0.34.26215 - pdfforge GmbH)
PDF Architect 4 Create Module (Version: 4.0.12.26604 - pdfforge GmbH) Hidden
PDF Architect 4 Edit Module (Version: 4.0.12.26604 - pdfforge GmbH) Hidden
PDF Architect 4 View Module (Version: 4.0.12.26604 - pdfforge GmbH) Hidden
PDF Shaper 2.3 (HKLM-x32\...\PDF Shaper_is1) (Version: - Glorylogic)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.2 - pdfforge)
PDFrizator 0.6.0.29 (HKLM-x32\...\PDFrizator_is1) (Version: - RTT)
PDF-Viewer (HKLM\...\{8D273DE5-ABFA-4BD0-A9D7-EE9C971438C4}_is1) (Version: 2.0.51.0 - Tracker Software Products Ltd)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.214.2 - Tracker Software Products Ltd)
PerfectDisk 12.5 Professional (HKLM\...\{FD310764-B3E5-430F-980E-D6C0016B2660}) (Version: 12.05.312 - Raxco Software Inc.)
Phone Drivers Downloader 1.1 (HKLM\...\{BDDB58A5-F98E-4D3C-B554-4A4D31C6D405}_is1) (Version: 1.1.0.0 - COMPELSON Labs)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Portrait Professional Studio 9.8 (HKLM-x32\...\PortraitProfessionalStudio9_is1) (Version: 9.8 - Anthropics Technology Ltd.)
Print Envelope 3.2.1.0 (HKLM-x32\...\Print Envelope_is1) (Version: 3.2.1.0 - Mgr. Radovan Kraus)
Privacy Eraser Pro (HKLM-x32\...\{F7AD1EF2-2670-40C2-A541-939265AF2F18}_is1) (Version: Privacy Eraser Pro 9.80 - PrivacyEraser Computing, Inc.)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 6.6.0.92 - Bitsum)
PROFIT 2015.02 (HKLM-x32\...\{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1) (Version: - LPsoft)
Program 365dní (HKLM-x32\...\{9A4CBA78-CFAD-4058-9AB8-532F5DF44682}_is1) (Version: 7.1.0.6 - goNet s.r.o.)
RadioSure (HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\RadioSure) (Version: - )
RAR Password Unlocker (HKLM-x32\...\{69B77D45-F5AD-4AB9-933D-352703324469}_is1) (Version: - RAR Password Unlocker, Inc.)
RawTherapee verze 4.0.12 (HKLM\...\{128459AB-59A7-430A-8BD0-3D8803D50400}_is1) (Version: 4.0.12 - rawtherapee.com)
Real Alternative 2.0.2 (HKLM-x32\...\RealAlt_is1) (Version: 2.0.2 - )
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.23.623.2010 - Realtek)
Realtek Ethernet Diagnostic Utility (HKLM-x32\...\{7236672F-6430-439E-9B27-27EDEAF1D676}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7183 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Rhinoceros 4.0 (HKLM-x32\...\{5C2CBFFD-FC3B-4AA9-993B-CE2B8DA25B87}) (Version: 4.0.20118 - McNeel & Associates)
Rhinoceros 4.0 SR5 (HKLM-x32\...\{D686199B-882E-4550-92C4-BD99A8C295D0}) (Version: 4.0.31215 - Robert McNeel & Associates)
Samsung ML-1865W Series (HKLM-x32\...\Samsung ML-1865W Series) (Version: - Samsung Electronics Co., Ltd.)
Scribus 1.4.4 (64bit) (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team)
SDFormatter (HKLM-x32\...\{A5355F15-F98B-4704-9BAE-E53B9FE48F48}) (Version: 3.1.0 - SD Association)
SeaMonkey 2.38 (x86 cs) (HKLM-x32\...\SeaMonkey 2.38 (x86 cs)) (Version: 2.38 - Mozilla)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 3.3.0.658 - Lenovo)
Should I Remove It (HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\Should I Remove It 1.0.4) (Version: 1.0.4 - Reason Software Company Inc.)
Should I Remove It (x32 Version: 1.0.4 - Reason Software Company Inc.) Hidden
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.13.13771 - Skype Technologies S.A.)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Slovník Verdict Free (a internetový překladač) (HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\Verdict Free) (Version: - )
SnapPea (HKLM-x32\...\Wandoujia2) (Version: - Wandou Labs)
SpeQ Mathematics 3.4 (HKLM-x32\...\SpeQ Mathematics) (Version: 3.4 - )
Spesoft Free CD Ripper Version 2.40 (HKLM-x32\...\Spesoft Free CD Ripper_is1) (Version: - Spesoft)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.92.107379 - SugarSync, Inc.)
SUPERAntiSpyware Professional (HKLM-x32\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 4.29.0.1002 - SUPERAntiSpyware.com)
SuperBeam version 1.2.0 (HKLM-x32\...\{1E690789-503A-4733-B224-7FE1DA597F2A}_is1) (Version: 1.2.0 - MukaBits)
Sweet Home 3D version 4.2 (HKLM-x32\...\Sweet Home 3D_is1) (Version: - eTeks)
Sweet Home 3D version 4.6 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks)
Teleport Pro (HKLM-x32\...\Teleport Pro) (Version: 1.64 - Tennyson Maxwell Information Systems, Inc.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 rc3 - Ghisler Software GmbH)
Tpv výpočty 3.1.3 (HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\{6FA7A8AF-EABC-4BB6-968D-9C4D157AF08E}_is1) (Version: - Radek Jureček)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
UFRaw 0.19.2 (HKLM-x32\...\UFRaw_is1) (Version: - Udi Fuchs)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Utility (x32 Version: 1.00.0002 - ASUSTek) Hidden
VC80_CRT_x86 (HKLM-x32\...\{AFC02C27-473F-4EC5-9372-30771EFFB35F}) (Version: 1.0.0 - kolor)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
V-Ray for Rhinoceros 4.0 (HKLM-x32\...\{54DBAF71-635A-45CB-A7DD-7EAB60F5C460}) (Version: 1.00.0000 - ASGvis, LLC)
Vypínač na dobrou noc verze 2.0 (HKLM-x32\...\Vypínač na dobrou noc_is1) (Version: - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Repair File Association verze 1.5 (HKLM-x32\...\{D6F880AC-E031-4B70-89C1-792A017AEE42}_is1) (Version: 1.5 - Daniel Tengler - Iva Janoušková)
WinPatrol (HKLM\...\{84481A87-2316-4923-8FAB-3BA8CA29323D}) (Version: 29.0.2013 - BillP Studios)
WinPatrol (HKLM\...\{A62F9CD0-B2E0-4F2A-88F2-79254A3C8539}) (Version: 25.0.2012.5 - BillP Studios)
WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DB}) (Version: 17.5.10480 - WinZip Computing, S.L. )
Wise Auto Shutdown 1.46 (HKLM-x32\...\Wise Auto Shutdown_is1) (Version: 1.46 - WiseCleaner.com, Inc.)
Wise Care 365 3.98 (HKLM-x32\...\Wise Care 365_is1) (Version: 3.98 - WiseCleaner.com, Inc.)
Wise Care 365 version 2.02 (HKLM-x32\...\{E864A1C8-EEE1-47D0-A7F8-00CC86D26D5E}_is1) (Version: 3.9.8 - WiseCleaner.com, Inc.)
Wise Data Recovery 3.72 (HKLM-x32\...\Wise Data Recovery_is1) (Version: 3.72 - WiseCleaner.com, Inc.)
Wise Folder Hider 3.22 (HKLM-x32\...\Wise Folder Hider_is1) (Version: 3.22 - WiseCleaner.com, Inc.)
Wise Force Deleter 1.22 (HKLM-x32\...\Wise Force Deleter_is1) (Version: 1.22 - WiseCleaner.com, Inc.)
Wise JetSearch 2.14 (HKLM-x32\...\Wise JetSearch_is1) (Version: 2.14 - WiseCleaner.com, Inc.)
Wise Memory Optimizer 3.36 (HKLM-x32\...\Wise Memory Optimizer_is1) (Version: 3.36 - WiseCleaner.com, Inc.)
Wolfram CDF Player (M-WIN-D 8.0.3 2427703) (HKLM-x32\...\M-WIN-D 8.0.3 2427703_is1) (Version: 8.0.3 - Wolfram Research, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{3560575F-7C2D-48AE-AB45-DAD430A95EBE}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll ()
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{5B69A6B4-393B-459C-8EBB-214237A9E7AC}\InprocServer32 -> C:\Users\BetaVerze\AppData\Local\Bandizip\bdzshl64.dll (Bandisoft.com)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{DEDBE4C9-9E87-40C5-B437-9AAB7EB9C667}\InprocServer32 -> C:\Program Files (x86)\EasternGraphics\EGR-ShellExtension\Win64\egr_se.dll (EasternGraphics)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-409041142-459604370-2198087559-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03850E7B-F865-42BC-A048-07A37BF44EC5} - System32\Tasks\{C216D868-6C00-4EF8-A8E1-F7AEA535BBE4} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {052C7117-0FD8-42E9-9DB9-5D4D9E777546} - System32\Tasks\{307B0610-6280-4378-9110-0C4B0A2AA117} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {0B289C30-3A87-4D56-8518-2A52A6F854F9} - System32\Tasks\{5232BDE1-874C-4000-A4AE-402189FA45C2} => pcalua.exe -a "D:\Windows XP Pro SP3 Cz+serial\SETUP.EXE" -d "D:\Windows XP Pro SP3 Cz+serial"
Task: {0BEF8F96-C85C-4161-BCB4-2D66969E00F5} - System32\Tasks\{3DC5B183-01FD-4E8B-B2F5-294F1BC52CEE} => pcalua.exe -a D:\VMware-player-6.0.0-1295980.exe -d D:\
Task: {113BA783-E03B-4B20-8BA8-B988F24F7E94} - System32\Tasks\{1AADF472-968B-4065-9F95-382B021D4E88} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {128E5F25-0D6C-4012-9905-2754FC452403} - \ParetoLogic Update Version3 Startup Task -> No File <==== ATTENTION
Task: {1438D58D-297D-4FC3-83BB-DFD03A766EBA} - System32\Tasks\ASUS\Launch PC Probe II => C:\Program Files (x86)\ASUS\PC Probe II\Probe2.exe [2009-11-02] (ASUSTeK Computer Inc.)
Task: {14C6580A-2842-41C8-AE6D-23D8E917C993} - System32\Tasks\{500C80A8-7996-4C54-A597-30170BB34BFD} => pcalua.exe -a C:\Users\BetaVerze\Desktop\FreeRapid-0.9........HANZY\FreeRapid-0.9\frd.exe -d C:\Users\BetaVerze\Desktop\FreeRapid-0.9........HANZY\FreeRapid-0.9
Task: {1AFB8A9C-E5B6-4DCB-840E-A1BF7CB13A57} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files (x86)\ASUS\AASP\1.01.05\AsLoader.exe [2010-01-13] (ASUSTeK Computer Inc.)
Task: {1E1C252E-B1BE-491E-ABBB-11632E27A5D7} - System32\Tasks\{3E84789D-FCA2-4B52-A43E-15E6C20764A3} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {202D5BF4-99AE-4666-BCB2-3E4EF96015E1} - System32\Tasks\{AA5A9E50-D862-406F-820E-BB4D0F2A0DD6} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {20E10162-D630-4490-AB5E-ED40FAFD8E93} - System32\Tasks\{06556119-8107-4EBF-BF73-F6E787A5F37F} => pcalua.exe -a "Z:\SEAGATE\UTILITY\Stahování kompletních webových stránek!!!!!\Teleport Pro\teleportpro162cz\pro.exe" -d "Z:\SEAGATE\UTILITY\Stahování kompletních webových stránek!!!!!\Teleport Pro\teleportpro162cz"
Task: {21F1D39B-1470-426F-BD68-DA628B943449} - System32\Tasks\{42507B06-8D2D-4042-9A8A-C4057413B5B3} => pcalua.exe -a "D:\SUPERAntiSpyware.Professional.v4.27.1000.Multilenguaje.Incl.KeyGen-CRD (2)\SUPERAntiSpywarePro.exe" -d "D:\SUPERAntiSpyware.Professional.v4.27.1000.Multilenguaje.Incl.KeyGen-CRD (2)"
Task: {22C1C4C6-5EDB-4A49-AF8C-67E2325F55B1} - System32\Tasks\Motorola Device Manager Engine => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {22D4225E-036A-4DE5-9CD8-11438E608631} - System32\Tasks\{C6272FE6-9C95-4D7F-B5B9-9871CDC2E6D2} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {2325DD0C-F7EE-448B-96D1-9832EC48753D} - System32\Tasks\MotoCast Update => C:\Program Files (x86)\Motorola Mobility\MotoCast\LiveUpdate\MotoCastUpdate.exe [2012-07-24] ()
Task: {25B6C25A-790F-4A70-93CE-DA3C99FB78BB} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {28ECE74C-4C6F-46D3-B6B7-60F4EF132915} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-14] (Google Inc.)
Task: {2A71DF22-BAE4-4C62-B600-33C6386F217C} - System32\Tasks\{ABC07578-4F7F-4FD5-8F4E-C14156246682} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {306825CB-9288-4410-9EC8-C72EA9453DC7} - \ParetoLogic Registration3 -> No File <==== ATTENTION
Task: {3178120D-F4A7-4380-90C4-35DFB5832B79} - System32\Tasks\{E2D0376C-0C46-4CE2-9897-B452C961A624} => pcalua.exe -a D:\oodefragpro17555964bitcz\oodefragpro17555964bitcz.exe -d D:\oodefragpro17555964bitcz
Task: {31C52009-5427-4513-B9FC-5E75F30DA898} - System32\Tasks\{7B2077EB-EF2E-4D3D-8326-58F8F28153FD} => C:\Program Files (x86)\SeaMonkey\seamonkey.exe [2015-09-24] (mozilla.org)
Task: {34A2C5EE-CFEB-4F5E-9320-C54725D170E9} - \MyDefrag v4.3.1 Daily -> No File <==== ATTENTION
Task: {35F8B958-3EA8-4A82-B545-6944F18FE342} - System32\Tasks\{6C2ACAB4-8522-494C-BB7A-65DA43F06D85} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {3886CDF1-3B8E-4884-96C8-72A95240B57B} - System32\Tasks\{BF22CF32-DC1F-4391-902B-B21008609F6D} => pcalua.exe -a E:\Teleport.Pro.1.61.keygen\Teleport.Pro.1.61.keygen.exe -d E:\Teleport.Pro.1.61.keygen
Task: {3E960984-C247-4EAF-8CDA-FEAC153DF0E9} - System32\Tasks\{EEE30F8F-58C4-431F-BA06-FA8621222240} => pcalua.exe -a D:\STAHOVÁNÍ\HANZY\FreeRapid-0.9........HANZY\FreeRapid-0.9\frd.exe -d D:\STAHOVÁNÍ\HANZY\FreeRapid-0.9........HANZY\FreeRapid-0.9
Task: {3EAF8CE9-8552-42B2-9177-33A1694A9FE1} - System32\Tasks\{890F464C-5EEF-42DC-B672-692FA921B0C8} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {3FCDC451-A81B-4576-AA9A-488EB175BDCD} - System32\Tasks\{A2CFB56B-108A-49C6-A4F5-7AB49383220C} => pcalua.exe -a "E:\Portable Teleport Pro 1.63\Portable Teleport Pro 1.63\Teleport Pro.exe" -d "E:\Portable Teleport Pro 1.63\Portable Teleport Pro 1.63"
Task: {46F7B37A-0AEA-42C8-B85A-58BD8BF5998B} - System32\Tasks\{40344327-7B6A-47E3-ADA9-B54276378DF5} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {53EB9396-2EE8-4E3E-960B-7F7829CE7E97} - System32\Tasks\{950C7E1F-C08A-4737-ACE2-4ED3F3622126} => pcalua.exe -a D:\mwav.exe -d D:\
Task: {576F973F-8329-42B6-A44F-88BC992AD4B0} - System32\Tasks\{FE448813-7496-45D2-B669-0EFF7A05BC34} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {5BB01082-4933-4B66-ACB3-6BB85427767E} - \{D19E9874-A56E-4832-A37A-F88CF3DBF352} -> No File <==== ATTENTION
Task: {60726519-1704-4C5C-A755-F2B895D2118F} - System32\Tasks\{DB81DAA3-C106-4941-85EB-F667B39A01B3} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {626B687A-C62B-4AEA-BBF3-C3764890FBD4} - System32\Tasks\{BE59E8C0-A9CE-4778-BA6B-2E8FF5100782} => pcalua.exe -a D:\gpg4win-2.0.3.exe -d "C:\Program Files\VS Revo Group\Revo Uninstaller Pro"
Task: {6445E62B-DA59-4DF0-BB35-C828F0FC10E1} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-409041142-459604370-2198087559-1000Core => C:\Users\BetaVerze\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {64653F50-4282-4963-8793-26B81B466A51} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2014-10-28] (Glarysoft Ltd)
Task: {674351DA-CFA0-4720-BF8A-A90468A00CD0} - System32\Tasks\Opera scheduled Autoupdate 1413234228 => C:\Program Files (x86)\Opera\launcher.exe [2015-09-25] (Opera Software)
Task: {6761FB9C-5C72-4FC3-8A1C-F69B016AE760} - System32\Tasks\{8B4334A7-E7F8-434D-BDFC-B3BF586CC53F} => pcalua.exe -a "Z:\SEAGATE\UTILITY\SW\RHINOCEROS\Rhinoceros 3.0 SR3_CRC\Flamingo Setup.exe" -d "Z:\SEAGATE\UTILITY\SW\RHINOCEROS\Rhinoceros 3.0 SR3_CRC"
Task: {67DFA670-0630-42E7-BCBB-2E7B18EA5051} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-03] ()
Task: {6CBBC07F-A9B4-4864-9916-3FB350C7FB0E} - \MyDefrag v4.3.1 Monthly -> No File <==== ATTENTION
Task: {7D166DDF-0078-4B5F-8AA2-495DA5D222BD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-14] (Google Inc.)
Task: {7D865C8E-7C1C-48EE-8081-1DE97C8CBB5E} - System32\Tasks\WiseCleaner\WMOSkipUAC => C:\Program Files (x86)\Wise\Wise Memory Optimizer\WiseMemoryOptimzer.exe [2015-07-02] (WiseCleaner.com)
Task: {7E373036-1E8F-4182-A97C-BE757F715A4C} - \{0BA09B85-21D1-4DB4-AE3D-FA94A5678BAE} -> No File <==== ATTENTION
Task: {80FD89B6-F7C0-4C69-B2FC-233B0A6D7366} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-409041142-459604370-2198087559-1000UA => C:\Users\BetaVerze\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {8692F9BA-4425-4217-9E3E-DA1A3E7DE3B3} - System32\Tasks\WiseCleaner\WFHFreeSkipUAC => C:\Program Files (x86)\Wise\Wise Folder Hider\WiseFolderHider.exe [2015-08-13] (WiseCleaner.com)
Task: {86B7F5E8-6F8E-46EA-A870-AA198FC35317} - System32\Tasks\{9F9E83FA-7EC0-483B-A870-5756D32597B5} => pcalua.exe -a C:\MWAV\mwav.exe -d C:\MWAV
Task: {88DE4A98-BEF3-4BF2-9240-481748177BAE} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe [2009-12-28] (ASUSTeK Computer Inc.)
Task: {891459AF-2AD8-48BC-8FDA-A659625A2E42} - System32\Tasks\{8528AF5F-98B7-4C04-8F6B-3F5C4F06993F} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {9129657D-9032-4DAD-A5B7-683316744DD0} - \ParetoLogic Update Version3 -> No File <==== ATTENTION
Task: {9561793E-66DC-4A03-BB51-AAE9A11160A5} - System32\Tasks\{9BE4CF6C-286B-430A-B8E2-EA761A6DA118} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {98260037-9002-4373-8771-3F7A61C0FE01} - System32\Tasks\{47C81379-C35C-4B53-AB21-5FBF89AE7A7E} => C:\Program Files (x86)\EMcalc\emcalc.exe [2009-06-01] (Ing. Petr Baxant - EMDAT (distribuce))
Task: {9839561E-8924-4402-9382-B50CCC77A6B1} - System32\Tasks\{081FEA3F-DBB9-4B4A-95DC-069E6EC8F64B} => E:\Teleport.Pro.1.61.keygen\Teleport.Pro.1.61.keygen.exe
Task: {99296FD6-3391-4365-811D-3DA82192854B} - System32\Tasks\{3C8BCBE7-FF4C-45F0-A594-1815A68EA633} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {99FE6FB4-5A86-4D1C-8052-317920CF6F7F} - System32\Tasks\{54A8BA02-A16D-42DB-BA59-66FA16625528} => pcalua.exe -a D:\VMware-player-6.0.0-1295980.exe -d D:\
Task: {9BE6D10B-73C9-4A19-8450-CEB2ADFA5FE6} - System32\Tasks\{96F05330-174C-440C-9B40-9B86D68F135B} => E:\Teleport.Pro.1.61.keygen\Teleport.Pro.1.61.keygen.exe
Task: {9C7B8E15-0047-4F24-9FBE-9A00920B0761} - System32\Tasks\{FEC856CB-033B-422D-93EC-D529A2B2C84C} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {A6737C8F-4A48-4D92-B937-1E2E91F0A2E4} - System32\Tasks\{24C8F85D-5976-4427-8E79-ECB66E64E21F} => pcalua.exe -a "Z:\SEAGATE\UTILITY\Stahování kompletních webových stránek!!!!!\Teleport Pro\teleportpro162cz\teleportpro162cz – kopie.exe" -d "Z:\SEAGATE\UTILITY\Stahování kompletních webových stránek!!!!!\Teleport Pro\teleportpro162cz"
Task: {A796CA62-3811-4542-90E5-F5900E0E07C5} - System32\Tasks\{9486A275-13A2-41B2-8BF5-23DA7C829B84} => pcalua.exe -a D:\Penden\VMware-player-7.1.0-2496824.exe -d D:\Penden
Task: {A94E2E5B-37E6-4125-8BA1-7FE7C82B5F04} - System32\Tasks\{4BCFC428-3220-4C5F-B0EB-D8463EFD8536} => pcalua.exe -a C:\Users\BetaVerze\VMware-workstation-full-11.1.0-2496824.exe -d C:\Users\BetaVerze
Task: {ABF92AB8-1472-4F58-B3F1-C7DB29651F49} - System32\Tasks\{0D650E71-AA08-4442-982E-E7F6AAE2F3F3} => pcalua.exe -a E:\PC.Translator.2010.25_full\PC.Translator.2010.25_full\AktFF36.exe -d "C:\Program Files\VS Revo Group\Revo Uninstaller Pro"
Task: {ADE2B09B-B087-4A5F-A7B2-18485781B68E} - System32\Tasks\{1325B8D9-6840-464E-B5AB-4F3D13291375} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {AE1BF6D4-1693-44EA-B6F9-BA0FB31C01CE} - System32\Tasks\{978748DB-7C97-47A6-836B-9D58DF75E21A} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {AE6F4797-9905-4B51-AC8F-A3360B2FF644} - \{B054E334-0D41-4F18-9438-1A3D2A8BCF76} -> No File <==== ATTENTION
Task: {B091AB72-55B4-4002-A904-468FAB7B56A4} - System32\Tasks\{9513F336-4C84-4BE4-B31D-87670AA8C2B1} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {B599CF9C-612C-4CDD-B273-B623F933CC60} - System32\Tasks\{4B1A827E-853C-4461-B9FD-556F450390FA} => E:\Teleport.Pro.1.61.keygen\Teleport.Pro.1.61.keygen.exe
Task: {B5C21D15-8C03-4A53-87D2-73F8E5221111} - System32\Tasks\{E670AF60-FB60-4C64-B91B-83EB94AD45BB} => E:\Teleport.Pro.1.61.keygen\Teleport.Pro.1.61.keygen.exe
Task: {B8FE38D7-DBB7-4364-BCDE-1907B1F77964} - System32\Tasks\{BA31746A-8EB2-4661-9FB7-07E3AD18D096} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {BA9E2557-1979-4795-A6C2-4BDE2402EAAA} - System32\Tasks\{9DCA9FC1-E279-46CD-B385-BD9257C7CDCE} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {BC74BE5C-23DE-4A11-870A-EC6F87638A16} - System32\Tasks\{0F08C359-ECFD-4792-B786-059F6E5D90BE} => pcalua.exe -a "E:\Teleport-Pro-1.61-serial+čeština\Teleport Pro 1.61\Teleport Pro 1.61 čeština.exe" -d "E:\Teleport-Pro-1.61-serial+čeština\Teleport Pro 1.61"
Task: {BD84C058-EBB4-48D4-AC2C-2C692B483707} - System32\Tasks\{8630B9EA-FABB-4750-A191-A9DDD46B3BD2} => pcalua.exe -a "C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpywareFREE_CZ_401154.exe" -d "C:\Program Files (x86)\SUPERAntiSpyware"
Task: {BE11FBE7-9156-4465-9C41-A56BBF94591F} - System32\Tasks\{49541B6B-16A5-4D80-B609-19E2D1098D78} => pcalua.exe -a "Z:\SEAGATE\UTILITY\Stahování kompletních webových stránek!!!!!\Teleport Pro\teleportpro162cz\teleportpro162cz.exe" -d "Z:\SEAGATE\UTILITY\Stahování kompletních webových stránek!!!!!\Teleport Pro\teleportpro162cz"
Task: {BE34444D-A62E-450B-BD63-DF97A5D458B3} - System32\Tasks\WiseCleaner\WFDSkipUAC => C:\Program Files (x86)\Wise\Wise Force Deleter\WiseDeleter.exe [2015-07-27] (WiseCleaner.com)
Task: {C16778E4-9F96-4D44-A6C4-C8DA9305A4EF} - System32\Tasks\{5AC35FE5-0F73-4483-A158-CA58C2172BC2} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {C3946A8A-4F4E-436C-AABB-258BA7E19910} - System32\Tasks\{4BEDCEF3-EB00-41AC-944B-F3D704D9AAA2} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {C5D990B1-29F4-45A8-A6B1-E39A23EC6470} - System32\Tasks\{325A9A30-61AF-4538-BA02-1990579AE4F0} => pcalua.exe -a F:\setup.exe -d F:\
Task: {C7653B3B-DE2B-4240-B1EF-D40558CF778F} - System32\Tasks\{D5EB32E7-7E9E-41AD-B312-48D6D6F16CBA} => pcalua.exe -a "E:\Uniblue-2009-(SpeedUpMyPC-+-RegistryBooster-+-DriverScanner)\Uniblue 2009 (SpeedUpMyPC + RegistryBooster + DriverScanner){H33T}{JOHNCANADUDE}\driverscanner.exe" -d "C:\Program Files\VS Revo Group\Revo Uninstaller Pro"
Task: {C98551D7-8E1C-4B45-94E4-E3980D58C9A0} - System32\Tasks\{9CC35384-4345-477D-9457-1D850F870125} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {C9C99D46-3F1A-4A34-B533-9CEF2D2F0521} - System32\Tasks\WiseCleaner\WDRSkipUAC => C:\Program Files (x86)\Wise\Wise Data Recovery\WiseDataRecovery.exe [2015-07-03] (WiseCleaner.com)
Task: {CA58D8DC-3340-4842-8037-97C37A1AE277} - System32\Tasks\WiseCleaner\WJSSkipUAC => C:\Program Files (x86)\Wise\Wise JetSearch\WiseJetSearch.exe [2015-08-24] (WiseCleaner.com)
Task: {CB55BE80-9799-45FE-8A25-6438DDEEC4FA} - System32\Tasks\{F1302B45-30D3-49C2-90F8-7A95E8FFC673} => pcalua.exe -a "D:\O&O Defrag 17 Professional 32-64bit + Serial key\64bit\CZ\oodefragpro17042064bitcz.exe" -d "D:\O&O Defrag 17 Professional 32-64bit + Serial key\64bit\CZ"
Task: {D2026E5C-339D-4330-9060-A37299694350} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
Task: {D3CDFF06-B4E6-46E9-9DF2-4244759B5DCB} - System32\Tasks\{2FC94B57-5E72-45C7-AFDF-B8CDEE488B11} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {D47272EA-08F3-4B8E-AC78-0941E98E285C} - System32\Tasks\{4555E3B7-E1A6-42D8-9FC1-1E8215A732FA} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {D81E7651-3009-46C6-83C0-9E7658A7235D} - System32\Tasks\Wise Care 365 PC Checkup Task => C:\Program Files (x86)\Wise\Wise Care 365\WiseCare365.exe [2016-03-04] (WiseCleaner.com)
Task: {DE6DD6CF-A98C-4624-8048-A57F397AC17B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-13] (Adobe Systems Incorporated)
Task: {E0427126-B223-4ADE-ABC4-EE1CEE8D3551} - System32\Tasks\{C3694A12-2111-4E1B-8B48-BA20E286B326} => pcalua.exe -a D:\Penden\VMware-workstation-full-11.1.0-2496824.exe -d D:\Penden
Task: {E09D0397-9EE1-4BF3-9FDE-434D8E3D5E3B} - System32\Tasks\{C0653E87-539C-44D7-86D8-AA0976B70551} => pcalua.exe -a E:\SpeedUpMyPC\SpeedUpMyPC\speedupmypc3.exe -d "C:\Program Files\VS Revo Group\Revo Uninstaller Pro"
Task: {E23D0C6B-0A62-4D73-859C-5BA97044FA77} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {E50D90BB-C5B7-4F05-9AD6-FD5DBF95376A} - System32\Tasks\{8D67390D-3B93-45E9-9BFE-717F6B8E738E} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {E632290B-2093-44D3-BDFF-A2392FDBE16F} - System32\Tasks\{1E69BE88-A6D3-4FB8-B676-BE4795756ADC} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {E6E3718A-73BE-4A38-9BA5-7C4699A0DB8A} - System32\Tasks\{93970B8E-44BD-4C19-A85D-42FB40ED9538} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {E737E05A-C1F2-4B0E-A3B6-28118C9E4805} - System32\Tasks\ASUS\Gpu Boost Driver => C:\Program Files\ASUS\GPU Boost Driver\GpuBoostServer.exe [2010-03-27] (
ASUSTeK Computer Inc.)
Task: {EB21FE53-DDCE-4CB4-95A9-4E2108EB7895} - System32\Tasks\{29B94447-562B-4906-AEFF-D488083DC664} => D:\Penden\Penden\PENDEN\PENDEN.EXE [2008-04-09] ()
Task: {F31C6A35-945C-4DB6-8706-2A5660F6A78C} - System32\Tasks\{10D0E847-580D-4E65-AC2C-D02146ABCCAB} => pcalua.exe -a D:\STAHOVÁNÍ\FreeRapid-0.9u3\frd.exe -d D:\STAHOVÁNÍ\FreeRapid-0.9u3
Task: {F55F461B-1A93-4585-8A9D-1226A992AC40} - System32\Tasks\{9DDEFC85-6699-4FBA-B5E4-7E0F2F31FCF0} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {FB66C343-F968-477A-B6F7-ED1D7D383137} - System32\Tasks\Wise Turbo Checker => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [2015-12-18] (WiseCleaner.COM)
Task: {FB872ECA-73BE-4F1C-B949-F550053978F9} - System32\Tasks\{1CA826C2-D52E-4EA4-96FC-ECF59B5EA402} => C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13] (Microsoft)
Task: {FD4BBE35-292E-4EC5-AC05-F0FBBB88C1C4} - System32\Tasks\Ad-Aware Update (Daily) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-409041142-459604370-2198087559-1000Core.job => C:\Users\BetaVerze\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-409041142-459604370-2198087559-1000UA.job => C:\Users\BetaVerze\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2011-10-07 22:09 - 2010-04-06 14:33 - 00477184 _____ () C:\Program Files\ASUS\GamerOSD\ATKFastUserSwitching.exe
2010-07-15 05:44 - 2010-07-15 05:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2015-07-07 19:00 - 2016-02-26 11:56 - 00614480 _____ () C:\Program Files (x86)\360\Total Security\MenuEx64.dll
2012-01-10 10:26 - 2011-06-17 08:49 - 00034304 _____ () C:\Windows\System32\ssp8ml6.dll
2011-04-05 21:14 - 2011-04-05 21:14 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2011-12-13 09:44 - 2009-05-21 15:09 - 00172032 _____ () C:\Program Files (x86)\ASUS\WLAN Card Utilities\ASWLCCSVC.exe
2016-02-25 08:12 - 2014-11-18 14:44 - 00255072 _____ () C:\Program Files (x86)\EASEUS\EaseUS Partition Master 10.8\bin\TrayPopupE\TrayTipAgentE.exe
2015-07-07 19:00 - 2016-02-26 11:56 - 00088184 _____ () C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll
2016-02-25 08:12 - 2014-02-13 15:27 - 00222792 _____ () C:\Program Files (x86)\EASEUS\EaseUS Partition Master 10.8\bin\TrayPopupE\traynet.dll
2016-02-25 08:12 - 2014-02-13 15:27 - 00275528 _____ () C:\Program Files (x86)\EASEUS\EaseUS Partition Master 10.8\bin\TrayPopupE\libcurl.dll
2016-02-25 08:12 - 2014-02-13 15:27 - 00113166 _____ () C:\Program Files (x86)\EASEUS\EaseUS Partition Master 10.8\bin\TrayPopupE\zlib1.dll
2016-02-25 08:12 - 2014-02-13 15:27 - 00249928 _____ () C:\Program Files (x86)\EASEUS\EaseUS Partition Master 10.8\bin\TrayPopupE\uexper.dll
2015-12-01 15:37 - 2015-12-01 15:37 - 21120208 _____ () C:\Program Files (x86)\Evernote\Evernote\libcef.dll
2015-12-01 15:37 - 2015-12-01 15:37 - 00212688 _____ () C:\Program Files (x86)\Evernote\Evernote\websockets.dll
2015-12-01 15:37 - 2015-12-01 15:37 - 00439504 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
2015-12-01 15:37 - 2015-12-01 15:37 - 00321232 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
2015-12-01 15:37 - 2015-12-01 15:37 - 00988896 _____ () C:\Program Files (x86)\Evernote\Evernote\avcodec-54.dll
2015-12-01 15:37 - 2015-12-01 15:37 - 00138976 _____ () C:\Program Files (x86)\Evernote\Evernote\avutil-51.dll
2015-12-01 15:37 - 2015-12-01 15:37 - 00195296 _____ () C:\Program Files (x86)\Evernote\Evernote\avformat-54.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0]
AlternateDataStreams: C:\ProgramData\Temp:BC359956 [126]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> 008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> 00hq.com
IE restricted site: HKU\.DEFAULT\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\.DEFAULT\...\01i.info -> 01i.info
IE restricted site: HKU\.DEFAULT\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\.DEFAULT\...\05p.com -> 05p.com
IE restricted site: HKU\.DEFAULT\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\.DEFAULT\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\.DEFAULT\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\.DEFAULT\...\0calories.net -> 0calories.net
IE restricted site: HKU\.DEFAULT\...\0cj.net -> 0cj.net
IE restricted site: HKU\.DEFAULT\...\0scan.com -> 0scan.com
IE restricted site: HKU\.DEFAULT\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1-se.com -> 1-se.com
IE restricted site: HKU\.DEFAULT\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\.DEFAULT\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\.DEFAULT\...\100gal.net -> 100gal.net
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> 100sexlinks.com

There are 4784 more sites.

IE trusted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\samsungsetup.com -> hxxp://www.samsungsetup.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-409041142-459604370-2198087559-1000\...\100sexlinks.com -> 100sexlinks.com

There are 4791 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2016-03-16 08:42 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-409041142-459604370-2198087559-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\BetaVerze\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: !SASCORE => 2
MSCONFIG\Services: a2AntiMalware => 3
MSCONFIG\Services: ABBYY.Licensing.FineReader.Professional.11.0 => 2
MSCONFIG\Services: ADExchange => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AdvancedSystemCareService6 => 2
MSCONFIG\Services: AdvancedSystemCareService7 => 2
MSCONFIG\Services: AODService => 2
MSCONFIG\Services: AsSysCtrlService => 2
MSCONFIG\Services: Backupper Service => 2
MSCONFIG\Services: Browser => 2
MSCONFIG\Services: BstHdAndroidSvc => 2
MSCONFIG\Services: CryptSvc => 3
MSCONFIG\Services: defragsvc => 3
MSCONFIG\Services: DeviceMonitorService => 2
MSCONFIG\Services: DfSdkS => 2
MSCONFIG\Services: DragonUpdater => 2
MSCONFIG\Services: EaseUS Agent => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\Services: IMFservice => 2
MSCONFIG\Services: InstallShield Licensing Service => 3
MSCONFIG\Services: Lenovo EasyPlus Hotspot => 3
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: Motorola Device Manager => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NitroDriverReadSpool9 => 2
MSCONFIG\Services: NitroReaderDriverReadSpool2 => 2
MSCONFIG\Services: NitroReaderDriverReadSpool3 => 2
MSCONFIG\Services: nlsX86cc => 2
MSCONFIG\Services: OODefragAgent => 2
MSCONFIG\Services: PanService => 2
MSCONFIG\Services: PDAgent => 2
MSCONFIG\Services: PDEngine => 3
MSCONFIG\Services: PDF Architect 2 => 3
MSCONFIG\Services: PDF Architect 2 Creator => 2
MSCONFIG\Services: PDF Architect 4 => 3
MSCONFIG\Services: PDF Architect 4 CrashHandler => 3
MSCONFIG\Services: PDF Architect 4 Creator => 2
MSCONFIG\Services: PDF Architect 4 Manager => 2
MSCONFIG\Services: PDF Architect Helper Service => 2
MSCONFIG\Services: PDF Architect Service => 2
MSCONFIG\Services: pdfforge CrashHandler => 3
MSCONFIG\Services: PolicyAgent => 3
MSCONFIG\Services: Printer Control => 2
MSCONFIG\Services: PST Service => 2
MSCONFIG\Services: RVSMONBL => 2
MSCONFIG\Services: SDScannerService => 2
MSCONFIG\Services: SDUpdateService => 2
MSCONFIG\Services: SDWSCService => 2
MSCONFIG\Services: Secunia PSI Agent => 2
MSCONFIG\Services: Secunia Update Agent => 2
MSCONFIG\Services: ShareItSvc => 3
MSCONFIG\Services: Skype C2C Service => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: ufad-ws60 => 3
MSCONFIG\Services: VMAuthdService => 2
MSCONFIG\Services: VMUSBArbService => 2
MSCONFIG\Services: WerSvc => 3
MSCONFIG\Services: WinDefend => 3
MSCONFIG\Services: WiseBootAssistant => 2
MSCONFIG\Services: WO_LiveService => 2
MSCONFIG\Services: WO_LiveService2 => 2
MSCONFIG\Services: WsAppService => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^BetaVerze^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^BetaVerze^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteTray.lnk => C:\Windows\pss\EvernoteTray.lnk.Startup
MSCONFIG\startupfolder: C:^Users^BetaVerze^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MyPC Backup.lnk => C:\Windows\pss\MyPC Backup.lnk.Startup
MSCONFIG\startupreg: Dropbox Update => "C:\Users\BetaVerze\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
MSCONFIG\startupreg: EAM Trial Reset => "C:\Program Files (x86)\EAM-TR.exe" /autoreset
MSCONFIG\startupreg: EaseUS TB Tray Agent => "C:\Program Files (x86)\EaseUS\TrayPopup\TrayTipAgent.exe"
MSCONFIG\startupreg: emsisoft anti-malware => "c:\program files (x86)\emsisoft anti-malware\a2guard.exe" /d=60
MSCONFIG\startupreg: GUDelayStartup => "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun
MSCONFIG\startupreg: HKCU =>
MSCONFIG\startupreg: HKLM =>
MSCONFIG\startupreg: HOSTS Anti-Adware_PUPs => C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe
MSCONFIG\startupreg: IObit Malware Fighter => "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
MSCONFIG\startupreg: mnctielipSrv =>
MSCONFIG\startupreg: mncvubtdtSrv =>
MSCONFIG\startupreg: msjpoxhSrv => C:\Windows\inf\msjpoxh.vbe
MSCONFIG\startupreg: MSStp => C:\Windows\inf\msstp.vbe
MSCONFIG\startupreg: NtVdmSrv =>
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: SFAUpdater =>
MSCONFIG\startupreg: Smart File Advisor =>

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{9FFB6D92-EA36-42FB-8D6C-02611FBE4592}] => (Allow) C:\Program Files (x86)\Wolfram Research\Wolfram CDF Player\8.0\WolframCDFPlayer.exe
FirewallRules: [{2FB0280F-98FB-4681-87AF-854DD9992A13}] => (Allow) C:\Program Files (x86)\Wolfram Research\Wolfram CDF Player\8.0\WolframCDFPlayer.exe
FirewallRules: [{A506F4D5-B5D8-4993-8924-EF2540D2D066}] => (Allow) C:\Program Files (x86)\Wolfram Research\Wolfram CDF Player\8.0\math.exe
FirewallRules: [{861FB882-60AE-4F29-81E0-7E660B93E53D}] => (Allow) C:\Program Files (x86)\Wolfram Research\Wolfram CDF Player\8.0\math.exe
FirewallRules: [TCP Query User{847B3607-3E6F-4E6F-A741-B8F307CC5A72}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe
FirewallRules: [UDP Query User{6ED0BCEC-C891-4328-B823-AC041D9BE546}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe
FirewallRules: [{B4D26A33-45BA-4363-BBE3-2A5B1045B36D}] => (Block) C:\windows\explorer.exe
FirewallRules: [{6F0E47C6-5547-450B-98D0-0C18F305DEA8}] => (Block) C:\windows\explorer.exe
FirewallRules: [TCP Query User{2EC53F12-DEA2-4A4C-B563-7678619C77DE}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{CA32198E-D448-4103-B839-8CA5EEF6EB93}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{DB17F13C-FE03-4E44-888E-26048A9AC126}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{A8D0D3BC-BB73-4AE5-B4A3-05A6671BEB18}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{6EF1B7FC-2DA4-477C-ADBB-600EE1D7CAE0}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{F6516E8E-AE94-49AD-AF6C-09EFCA2C8B1E}C:\program files (x86)\motorola media link\lite\mml.exe] => (Allow) C:\program files (x86)\motorola media link\lite\mml.exe
FirewallRules: [UDP Query User{1159B3FB-2D7C-48B7-9E2D-786739428157}C:\program files (x86)\motorola media link\lite\mml.exe] => (Allow) C:\program files (x86)\motorola media link\lite\mml.exe
FirewallRules: [{ED13E5A7-7327-4EB6-9FCD-51DFE647A1A3}] => (Allow) C:\Users\BetaVerze\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{056CF85D-3454-4BED-AB53-06081A2B5D8A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5EE9B6A5-5E97-4B84-8A7E-5A31B0B127A8}] => (Allow) LPort=2869
FirewallRules: [{2A8E14C3-FB9C-4A76-883D-86607DBA2793}] => (Allow) LPort=1900
FirewallRules: [{54EF2B92-7035-436C-B071-52BFB888C7F5}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [TCP Query User{5CD8E64D-4AA3-4C17-A0C8-EA32CABE2828}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{0945825B-90A8-4ADE-AE79-ED1B47F0A6E6}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{3A11CD18-BDED-4169-A07A-3CF6E2B3C7C1}] => (Allow) C:\Program Files (x86)\WandouLabs\wandoujia2.exe
FirewallRules: [{9EAE446E-23EC-41BF-8137-333C362E3918}] => (Allow) C:\Program Files (x86)\WandouLabs\wandoujia2.exe
FirewallRules: [{37E3F20F-DE20-4516-B208-CC46191BDD72}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{AD29B28E-7AA3-4C13-8BCB-E7373F378ED2}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{DC5FA52D-2EA4-4A63-8CD3-CE3CF4B3D717}] => (Allow) LPort=2869
FirewallRules: [{8C4C9F01-E6ED-4EE4-A861-ED9D6069E637}] => (Allow) LPort=1900
FirewallRules: [{AF4AE69A-970E-423A-BC81-27A1EA6D36DD}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{3733C92E-EC05-4014-B40F-9E9C9CEC76FE}] => (Allow) LPort=48113
FirewallRules: [{740197B5-9B91-43DC-9448-5F2FAA99E4ED}] => (Allow) LPort=48113
FirewallRules: [{2BB6BD1C-EEEB-4227-A307-9A99CAC16712}] => (Allow) LPort=9091
FirewallRules: [{C02F1DC4-ADFC-4752-9C9C-FAAAE251D9B3}] => (Allow) LPort=135
FirewallRules: [{88D2FA78-4ABF-4813-961A-5C0F6BC6F91E}] => (Allow) LPort=445
FirewallRules: [{04FBD323-9A82-420E-A911-9A3A73031C15}] => (Allow) C:\Program Files (x86)\EASEUS\Todo Backup\bin\TbService.exe
FirewallRules: [{85CE6660-1DEF-4E30-AD48-F8AA5C8C310D}] => (Allow) C:\Program Files (x86)\EASEUS\Todo Backup\bin\TbService.exe
FirewallRules: [{2691F0D6-5C36-42CE-8DD7-B9E44067DC52}] => (Allow) C:\Program Files (x86)\EASEUS\Todo Backup\bin\TBConsoleUI.exe
FirewallRules: [{4EDA89DD-1AB6-4A8B-93BC-199267A704EB}] => (Allow) C:\Program Files (x86)\EASEUS\Todo Backup\bin\TBConsoleUI.exe
FirewallRules: [{15C20844-9F53-4BF3-A1D4-E3624787BE4B}] => (Allow) C:\Program Files (x86)\EASEUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{84E6114D-7986-483A-B1F2-D9179FE27BD5}] => (Allow) C:\Program Files (x86)\EASEUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{8057241F-C866-47DE-A3B3-204D2B6685A4}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [TCP Query User{35A57096-5A4F-4F3C-9367-19EAF23A4A57}C:\users\betaverze\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\betaverze\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{20624B84-97CD-4D4B-932A-44C15368760F}C:\users\betaverze\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\betaverze\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{6880D63E-1FE6-4E2E-89B1-6960AD08E425}C:\users\betaverze\desktop\myphoneexplorer portable\myphoneexplorer portable.exe] => (Allow) C:\users\betaverze\desktop\myphoneexplorer portable\myphoneexplorer portable.exe
FirewallRules: [UDP Query User{09A7787A-D26C-4710-802B-A8F922D293EB}C:\users\betaverze\desktop\myphoneexplorer portable\myphoneexplorer portable.exe] => (Allow) C:\users\betaverze\desktop\myphoneexplorer portable\myphoneexplorer portable.exe
FirewallRules: [{6A480CAD-0732-472E-A092-52091959F740}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
FirewallRules: [{14F941D2-5517-413A-9252-7916B40E5C88}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
FirewallRules: [{C85C13F9-BE50-48C3-878C-95D75DE90191}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{760F64D8-A101-4124-89F9-D24C263AA568}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{AB4BE4A5-1A67-4589-945A-45659C631270}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
FirewallRules: [{FC53ED5C-BADC-4AC6-A044-648BFA37064C}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe

==================== Restore Points =========================

29-02-2016 23:17:04 Created by Wise Care 365
02-03-2016 08:48:48 Operace obnovení
14-03-2016 19:05:54 Installed Adobe Reader XI - Czech.
14-03-2016 23:23:26 Operace obnovení
15-03-2016 11:30:37 Removed Java 8 Update 73

==================== Faulty Device Manager Devices =============

Name: %TsUsbGD.DeviceDesc.Generic%
Description: %TsUsbGD.DeviceDesc.Generic%
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: %StdMfg%
Service: TsUsbGD
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Sony Ericsson sa0101 ADB Interface Driver
Description: Sony Ericsson sa0101 ADB Interface Driver
Class Guid: {325ae82f-639b-4c7e-9092-b2f2b6a136d9}
Manufacturer: Sony Ericsson
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Sony Ericsson sa0102 ADB Interface Driver
Description: Sony Ericsson sa0102 ADB Interface Driver
Class Guid: {d7c65d5d-29eb-4751-b3d4-28a027a3e8ac}
Manufacturer: Sony Ericsson
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Sony Ericsson Device 091010 USB Application Port (COM3)
Description: Sony Ericsson Device 091010 USB Application Port
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: Sony Ericsson Mobile Communications AB
Service: usbser
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Sony Ericsson Device 091010 USB OBEX Port (COM4)
Description: Sony Ericsson Device 091010 USB OBEX Port
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: Sony Ericsson Mobile Communications AB
Service: usbser
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Sony Ericsson Device 091010 USB Serial Port (COM5)
Description: Sony Ericsson Device 091010 USB Serial Port
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: Sony Ericsson Mobile Communications AB
Service: usbser
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Adaptér tunelového režimu Microsoft Teredo
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Sony Ericsson sa0101 ADB Interface Driver
Description: Sony Ericsson sa0101 ADB Interface Driver
Class Guid: {325ae82f-639b-4c7e-9092-b2f2b6a136d9}
Manufacturer: Sony Ericsson
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/16/2016 02:33:15 PM) (Source: SideBySide) (EventID: 9) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Kořenový prvek souboru manifestu musí být symbolická adresa.

Error: (03/16/2016 01:13:11 PM) (Source: SideBySide) (EventID: 9) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Kořenový prvek souboru manifestu musí být symbolická adresa.

Error: (03/16/2016 09:10:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 6.1.7601.17567, časové razítko: 0x4d672ee4
Název chybujícího modulu: taskbarcpl.dll, verze: 6.1.7601.17514, časové razítko: 0x4ce7c9da
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000c12f
ID chybujícího procesu: 0x1394
Čas spuštění chybující aplikace: 0xexplorer.exe0
Cesta k chybující aplikaci: explorer.exe1
Cesta k chybujícímu modulu: explorer.exe2
ID zprávy: explorer.exe3

Error: (03/15/2016 10:08:04 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Kořenový prvek souboru manifestu musí být symbolická adresa.

Error: (03/14/2016 11:45:42 PM) (Source: WNIW) (EventID: 17) (User: )
Description: parse error from 1915:57-1915:58 in IStream

Error: (03/14/2016 11:45:42 PM) (Source: WNIW) (EventID: 17) (User: )
Description: parse error from 1964:57-1964:58 in IStream

Error: (03/14/2016 11:45:42 PM) (Source: WNIW) (EventID: 17) (User: )
Description: parse error from 10944:48-10944:49 in IStream

Error: (03/14/2016 11:45:42 PM) (Source: WNIW) (EventID: 17) (User: )
Description: parse error from 2548:71-2548:72 in IStream

Error: (03/14/2016 11:45:42 PM) (Source: WNIW) (EventID: 17) (User: )
Description: parse error from 4993:32-4993:33 in IStream

Error: (03/14/2016 11:45:42 PM) (Source: WNIW) (EventID: 17) (User: )
Description: parse error from 2522:22-2522:23 in IStream


System errors:
=============
Error: (03/16/2016 09:22:03 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
SASDIFSV
SASKUTIL

Error: (03/16/2016 09:21:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Systém barev systému Windows neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (03/16/2016 09:21:03 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Systém barev systému Windows bylo dosaženo časového limitu (30000 ms).

Error: (03/16/2016 09:20:47 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Služba Adaptér naslouchání Net.Tcp závisí na následující službě: was. Tato služba pravděpodobně není nainstalována.

Error: (03/16/2016 09:20:47 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Služba Adaptér naslouchání Net.Pipe závisí na následující službě: was. Tato služba pravděpodobně není nainstalována.

Error: (03/16/2016 09:20:47 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Služba Adaptér naslouchání Net.Msmq závisí na následující službě: msmq. Tato služba pravděpodobně není nainstalována.

Error: (03/16/2016 09:20:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Windows CardSpace neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (03/16/2016 09:20:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Windows CardSpace bylo dosaženo časového limitu (30000 ms).

Error: (03/16/2016 09:19:57 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Tento počítač je nakonfigurován jako člen pracovní skupiny, nikoliv jako
člen domény. Přihlašovací služba Netlogon nepotřebuje být spuštěna v této
konfiguraci.

Error: (03/16/2016 09:19:20 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.


CodeIntegrity:
===================================
Date: 2016-03-16 21:19:20.497
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-03-16 21:19:20.372
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-03-16 21:19:20.232
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-03-16 21:19:20.076
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-03-16 11:50:13.996
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-03-16 11:50:13.872
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-03-16 11:50:13.716
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-03-16 11:50:13.560
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-03-16 08:41:55.263
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-03-16 08:41:55.154
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SUPERAntiSpyware\sasdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: AMD Phenom(tm) II X4 955 Processor
Percentage of memory in use: 26%
Total physical RAM: 8191.14 MB
Available physical RAM: 6036.54 MB
Total Virtual: 14331.32 MB
Available Virtual: 11853.75 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:390.53 GB) (Free:24.1 GB) NTFS
Drive d: () (Fixed) (Total:540.89 GB) (Free:3.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E143B27D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=390.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=540.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[Rudy]

Toto je pouze Addition. Potřebuji ještě log FRST (logy jsou 2).

[goha]

Ten "launcher" nebo jak se to jmenovalo mi po spuštění z plochy zmizel, tak jsem spustil přímo ten FRST64 a ten vytvořil jen jeden log.

[goha]

Znovu jsem stáhl Launcher a vše provedl znovu. Log mi to ale nechce odeslat, píše to, že: "Vaše zpráva obsahuje 116304 znaků. Maximální povolený počet znaků je 100000.".