VIRY.CZ

Ahoj,

žádám o kontrolu. Já to neumím.


Additional scan result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
Ran by SEA LION (2016-03-30 16:16:17)
Running from C:\Users\SEA LION\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-04-11 13:14:40)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1962689573-952449915-1300430135-500 - Administrator - Disabled)
Guest (S-1-5-21-1962689573-952449915-1300430135-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1962689573-952449915-1300430135-1002 - Limited - Enabled)
SEA LION (S-1-5-21-1962689573-952449915-1300430135-1000 - Administrator - Enabled) => C:\Users\SEA LION

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Alarm Clock v1.0 (HKLM-x32\...\Alarm Clock_is1) (Version: - Moore Design Lmt.)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 20.2.145.43581 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 20.2.145.43581 - Alcor Micro Corp.) Hidden
AMD Catalyst Install Manager (HKLM\...\{DDDCCFAD-2BCF-4F98-60F1-2D9262E09839}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}) (Version: 2.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI AVIVO64 Codecs (Version: 11.6.0.50825 - ATI Technologies Inc.) Hidden
Audacity 1.2.6 (HKLM-x32\...\Audacity_is1) (Version: - )
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2218 - AVAST Software)
Badoo Desktop (HKLM-x32\...\{D91D71FB-C52E-440D-8A78-5E5E05487DA0}) (Version: 1.6.58.1220 - Badoo)
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.9.9 - BitRaider, LLC)
CCleaner (HKLM\...\CCleaner) (Version: 4.01 - Piriform)
Computer Alarm Clock (HKLM-x32\...\Computer Alarm Clock) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.11 - Bloodshed Software)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Dropbox (HKU\S-1-5-21-1962689573-952449915-1300430135-1000\...\Dropbox) (Version: 3.16.1 - Dropbox, Inc.)
DVD Suite (HKLM-x32\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 5.0.1319 - CyberLink Corporation)
FaceCam 320 (HKLM-x32\...\{4F828336-82F0-4EAA-A49E-9C7457FF7A09}) (Version: 1.0.5.9 - KYE)
Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version: - )
FL Studio 10 (HKLM-x32\...\FL Studio 10) (Version: - Image-Line)
FL Studio 9 (HKLM-x32\...\FL Studio 9) (Version: - Image-Line)
FormatFactory 3.00 (HKLM-x32\...\FormatFactory) (Version: 3.00 - Free Time)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Gameforge Live 2.0.10 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.10 - Gameforge)
GIMP 2.6.8 (HKLM-x32\...\WinGimp-2.0_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Guitar Pro 5.2 (HKLM-x32\...\Guitar Pro 5_is1) (Version: - Arobas Music)
Hardcore (HKLM-x32\...\Hardcore) (Version: - Image-Line)
HP Deskjet 3050 J610 series Nápověda (HKLM-x32\...\{F7632A9B-661E-4FD9-B1A4-3B86BC99847F}) (Version: 140.0.63.63 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.${CAB_VERSION} - HP Photo Creations Powered by RocketLife)
HP Update (HKLM-x32\...\{787D1A33-A97B-4245-87C0-7174609A540C}) (Version: 5.002.005.003 - Hewlett-Packard)
HydraVision (x32 Version: 4.2.180.0 - ATI Technologies Inc.) Hidden
iCoolsoft FLV Converter 5.0.6 (HKLM-x32\...\{C76039C9-BAE0-4de3-9C49-557232E6DEF3}_is1) (Version: - )
Intel(R) Desktop Utilities (HKLM-x32\...\{73057E75-01A8-4E78-8FF3-A9F3B7072FF0}) (Version: 1.0.0 - Intel Corporation)
Intel(R) Integrator Assistant (HKLM-x32\...\{1CE76936-BE60-414E-8031-8544B2E52036}) (Version: 1.0.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Network Connections 15.3.68.0 (HKLM\...\PROSetDX) (Version: 15.3.68.0 - Intel)
Java 7 Update 13 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417013FF}) (Version: 7.0.130 - Oracle)
Java(TM) 6 Update 29 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216024FF}) (Version: 6.0.290 - Oracle)
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
K-Lite Mega Codec Pack 10.5.7 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.5.7 - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LibreOffice 3.3 (HKLM-x32\...\{8CCA4800-152A-4C51-8569-5803FBD67CC9}) (Version: 3.3.6 - LibreOffice)
LibreOffice 3.3 Help Pack (Czech) (HKLM-x32\...\{93FBCB92-7FB4-4BE1-9F28-3593636EFF0C}) (Version: 3.3.6 - LibreOffice)
LightScribe System Software 1.12.29.2 (HKLM-x32\...\{CF8C077A-B467-4C43-8DB5-3A9B94FF9681}) (Version: 1.12.29.2 - hxxp://www.lightscribe.com)
Malwarebytes Anti-Malware verze 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
ManyCam 4.1.0 (HKLM-x32\...\ManyCam) (Version: 4.1.0 - Visicom Media Inc.)
Metin2 (HKLM-x32\...\Metin2_CZ_is1) (Version: - Gameforge 4D GmbH)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0405-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-1962689573-952449915-1300430135-1000\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 45.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 45.0.1 (x86 cs)) (Version: 45.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.1.5918 - Mozilla)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Oddworld - New 'n' Tasty (HKLM-x32\...\1424782569_is1) (Version: 2.0.0.1 - GOG.com)
Opera 12.14 (HKLM-x32\...\Opera 12.14.1738) (Version: 12.14.1738 - Opera Software ASA)
Power Tab Editor 1.7 (HKLM-x32\...\{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3}) (Version: 1.7.0 - Power Tab Software)
PowerDVD (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.3409.a - CyberLink Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.5 - Power Software Ltd)
QuadcoreM2 (HKLM-x32\...\{FFC1B3B1-5A8A-4DB3-82A3-21D8614E5135}) (Version: 2.1.0 - Quadcore)
QuickTime (HKLM-x32\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6106 - Realtek Semiconductor Corp.)
Reborn Full Client 2014-02-28 version 1 (HKLM-x32\...\Reborn Full Client 2014-02-28_is1) (Version: 1 - )
Ruská - rozložení jako latinka (0.9.1) (HKLM\...\{6109059C-2784-4546-A353-7100A6882DF4}) (Version: 1.0.3.40 - Đonny)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.14.9530 - SoftEther VPN Project)
Sony PC Companion 2.10.281 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.281 - Sony)
Sony Vegas Pro 8.0 (HKLM-x32\...\{0F31532A-16F1-4812-8B7B-D321A4CE91A6}) (Version: 8.0.144 - Sony)
Spyware Terminator 2012 (HKLM-x32\...\{56736259-613E-4A3B-B428-6235F2E76F44}_is1) (Version: 3.0.0.54 - Crawler.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: - )
Unity Web Player (HKU\S-1-5-21-1962689573-952449915-1300430135-1000\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
Základní software zařízení HP Deskjet 3050 J610 series (HKLM\...\{7EC4C4BE-172D-42CE-90E2-B0B4535C183F}) (Version: 22.0.334.0 - Hewlett-Packard Co.)
Zoner Photo Studio 8 (HKLM-x32\...\Zoner Photo Studio 8_is1) (Version: - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1962689573-952449915-1300430135-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {006C335F-6C3B-4E1D-B638-BF692EACB329} - System32\Tasks\{9E289FCC-D345-423D-A513-28213B7B8219} => pcalua.exe -a "D:\Users\SEA LION\Downloads\Guitar Pro 5.2 (with complete RSE packs)\setup.exe" -d "D:\Users\SEA LION\Downloads\Guitar Pro 5.2 (with complete RSE packs)"
Task: {04B82B82-04A2-4DB0-BA3B-EFAA78DC28BC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {07D168F2-8EC0-4F3B-B065-AD972E66C663} - System32\Tasks\{374D6F9F-C4F6-48C1-8AD2-B448BD6F6076} => pcalua.exe -a C:\Dell\Drivers\V0YV4\Setup.exe -d C:\Dell\Drivers\V0YV4
Task: {0D0D0C23-5CA3-43F7-9692-7EEF7514F822} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-04-23] (Piriform Ltd)
Task: {2ABF0957-D3B0-47B6-BF9D-934D3EE91CDB} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1962689573-952449915-1300430135-1000Core => C:\Users\SEA LION\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.)
Task: {403DC5EB-C0A1-48B0-A478-5A95F99C746B} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1962689573-952449915-1300430135-1000UA => C:\Users\SEA LION\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.)
Task: {6B42B7CC-BB7D-4580-9EC7-60F5C90817B3} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-03-17] (Avast Software s.r.o.)
Task: {71EB5ED4-A996-49FF-9937-E4B0F17DE262} - System32\Tasks\{B9057BDB-A397-4227-9234-476CEF6564C7} => pcalua.exe -a "D:\Users\SEA LION\Downloads\Guitar Pro 5.2 (with complete RSE packs)\RSE_GUITARS.exe" -d "D:\Users\SEA LION\Downloads\Guitar Pro 5.2 (with complete RSE packs)"
Task: {79A49224-1D85-4C8E-AEDE-B153A537393D} - System32\Tasks\{0AF93250-328C-4E8C-B95F-046364F4F2AC} => pcalua.exe -a "D:\Users\SEA LION\Downloads\Guitar Pro 5.2 (with complete RSE packs)\RSE_BASSES.exe" -d "D:\Users\SEA LION\Downloads\Guitar Pro 5.2 (with complete RSE packs)"
Task: {C81B6BF7-52E8-4F9B-81BB-CE377E71C1AF} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-03-05] (AVAST Software)
Task: {CF80A946-6CAA-4EBC-A00B-8F1ACCBDA90A} - System32\Tasks\{9CFF31C1-5EF6-4A84-AC6E-8D87C55D32A7} => pcalua.exe -a "C:\Users\SEA LION\Downloads\Setup DT 1.09.exe" -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {F0690FD4-5FD9-462A-874E-B77770C25B50} - System32\Tasks\{154E0ADB-0CA0-4061-9159-E3C065A36D66} => pcalua.exe -a "D:\Users\SEA LION\Downloads\Guitar Pro 5.2 (with complete RSE packs)\RSE_DRUMS.exe" -d "D:\Users\SEA LION\Downloads\Guitar Pro 5.2 (with complete RSE packs)"
Task: {FA3CE399-FE3D-410F-9922-FCD0A8908FE0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {FB998CEB-7F95-45BB-82CA-FDB7907CC7A0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {FF6085EC-8ECD-4731-8871-E6262FAF04B5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-25] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1962689573-952449915-1300430135-1000Core.job => C:\Users\SEA LION\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1962689573-952449915-1300430135-1000UA.job => C:\Users\SEA LION\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2011-04-11 17:40 - 2007-05-14 02:54 - 00272024 ____N () C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
2011-04-17 19:43 - 2011-03-02 12:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2015-02-08 03:30 - 2012-01-06 18:16 - 00217088 _____ () C:\Program Files (x86)\KYE\FaceCam 320\Genius_Utility.exe
2015-06-29 15:10 - 2015-06-29 15:10 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-06-29 15:10 - 2015-06-29 15:10 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-03-29 20:03 - 2016-03-29 20:03 - 02846208 _____ () C:\Program Files\AVAST Software\Avast\defs\16032901\algo.dll
2016-03-30 16:03 - 2016-03-30 16:03 - 02846208 _____ () C:\Program Files\AVAST Software\Avast\defs\16033002\algo.dll
2010-08-25 21:34 - 2010-08-25 21:34 - 00090112 _____ () C:\Program Files (x86)\ATI Technologies\HydraVision\HydraCsy.dll
2016-03-19 19:09 - 2016-02-23 20:19 - 00034768 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2016-03-19 19:08 - 2016-02-23 20:20 - 00019408 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2016-03-19 19:08 - 2016-02-23 20:19 - 00116688 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2016-03-19 19:09 - 2016-02-23 20:19 - 00093640 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2016-03-19 19:09 - 2016-02-23 20:19 - 00018376 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\select.pyd
2016-03-19 19:09 - 2016-03-12 02:18 - 00019760 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00105928 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32api.pyd
2016-03-19 19:08 - 2016-02-23 20:19 - 00392144 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2016-03-19 19:09 - 2016-03-12 02:18 - 00381752 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2016-03-19 19:09 - 2016-02-23 20:19 - 00692688 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00020816 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2016-03-19 19:09 - 2016-02-23 20:20 - 00112592 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 01682760 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00020808 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2016-03-19 19:09 - 2016-03-12 02:18 - 00020800 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\_cffi_python_x66cf7a7cx17a72769.pyd
2016-03-19 19:09 - 2016-03-12 02:18 - 00021840 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00038696 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\fastpath.pyd
2016-03-19 19:08 - 2016-02-23 20:21 - 00020936 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00024528 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32event.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00114640 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32security.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00124880 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32file.pyd
2016-03-19 19:09 - 2016-03-12 02:18 - 00021832 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00024016 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00175560 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32gui.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00030160 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00043472 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32process.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00028616 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32ts.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00048592 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32service.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00026456 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00057808 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00024016 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\win32profile.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00117056 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00024392 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2016-03-19 19:08 - 2016-02-23 20:21 - 00036296 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\librsync.dll
2016-03-19 19:09 - 2016-03-12 02:18 - 00023376 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2016-03-19 19:09 - 2016-02-23 20:19 - 00134608 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\_elementtree.pyd
2016-03-19 19:08 - 2016-02-23 20:19 - 00134088 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2016-03-19 19:08 - 2016-02-23 20:20 - 00240584 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\jpegtran.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00052024 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2016-03-19 19:09 - 2016-03-12 02:18 - 00020800 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-03-19 19:09 - 2016-03-12 02:18 - 00021824 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\winffi.kernel32._winffi_kernel32.pyd
2016-03-19 19:09 - 2016-03-12 02:18 - 00019776 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\winffi.winerror._winffi_winerror.pyd
2016-03-19 19:09 - 2016-03-12 02:18 - 00020800 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\winffi.wininet._winffi_wininet.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00020280 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2016-03-19 19:09 - 2016-02-23 20:21 - 00350152 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2016-03-19 19:09 - 2016-03-12 02:18 - 00022352 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00084792 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2016-03-19 19:08 - 2016-03-12 02:18 - 01826096 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2016-03-19 19:09 - 2016-02-23 20:20 - 00083912 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\sip.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 03928880 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 01971504 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00531248 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00132912 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00223544 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00207672 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00158008 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00042808 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd
2016-03-19 19:08 - 2016-02-23 20:23 - 00017864 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\libEGL.dll
2016-03-19 19:08 - 2016-02-23 20:23 - 01631184 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2016-03-19 19:09 - 2016-03-12 02:18 - 00024904 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00546096 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2016-03-19 19:08 - 2016-03-12 02:18 - 00357680 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2016-03-19 19:09 - 2016-02-23 20:25 - 00697304 _____ () C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-29 15:10 - 2015-06-29 15:10 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-08 03:30 - 2012-01-06 18:16 - 00045056 _____ () C:\Program Files (x86)\KYE\FaceCam 320\XU_DLL.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:888AFB86 [110]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2011-11-30 22:41 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1962689573-952449915-1300430135-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\SEA LION\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Users^SEA LION^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Lingea Update Center.lnk => C:\Windows\pss\Lingea Update Center.lnk.Startup
MSCONFIG\startupfolder: C:^Users^SEA LION^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^My_AutoWarkey_Script.lnk => C:\Windows\pss\My_AutoWarkey_Script.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Badoo Desktop => C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe
MSCONFIG\startupreg: Bkhjymbgjf => rundll32 "C:\Users\SEA LION\AppData\Roaming\KBDCZU.dll",TBFLNMAJP
MSCONFIG\startupreg: Computer Alarm Clock => C:\PROGRA~2\COMPUT~1\cac.exe
MSCONFIG\startupreg: LanguageShortcut => "C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe"
MSCONFIG\startupreg: ManyCam => "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Sony PC Companion => "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
MSCONFIG\startupreg: SpywareTerminatorShield => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
MSCONFIG\startupreg: SpywareTerminatorUpdater => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{FC627B7A-7CE9-4D4C-81CD-0451F57F20D6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD\PowerDVD.EXE
FirewallRules: [{E8D1C8CC-122B-4651-AEF7-B86C6FBB1C0D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{E1706D84-7463-4674-BF0A-6D3E86A10CCD}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\DeviceSetup.exe
FirewallRules: [{FD50EBEF-637B-4A83-95B7-C122973F320D}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\DeviceSetup.exe
FirewallRules: [{207E3F9D-C872-4106-AD66-C4C29ED6C3D5}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{76A34A1D-07B4-46DC-A77B-34D7F5011C28}] => (Allow) C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [TCP Query User{44C85345-C4EA-4032-A77C-873641EE4B2A}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{A58D4C70-3109-41CD-8C89-E370C02254DF}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [TCP Query User{2A8BA7DC-BD49-40B1-A456-D0E48ED6D9C6}D:\program files (x86)\dead island\deadislandgame.exe] => (Allow) D:\program files (x86)\dead island\deadislandgame.exe
FirewallRules: [UDP Query User{03ED59FE-0888-4116-B131-624A681B2C8F}D:\program files (x86)\dead island\deadislandgame.exe] => (Allow) D:\program files (x86)\dead island\deadislandgame.exe
FirewallRules: [{85245AA2-EA57-4C98-9A65-5C037E8A83CB}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{F37B5C9A-31CA-4F4B-B522-DB6C35ADA73B}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{79B0A83A-53B5-44E2-9D1A-BEFE53789D91}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{EF08E6E3-0F11-410E-8B74-5ECCFCFAABF2}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [TCP Query User{D9B4292B-A923-4256-8B27-1975E616BE5B}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{016AC5DF-31FD-49E8-9AAA-28389CF5C6E1}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{C4BE9C9F-FDBB-4711-8F93-D391950B608A}C:\program files\hp\hp deskjet 3050 j610 series\bin\hpnetworkcommunicator.exe] => (Allow) C:\program files\hp\hp deskjet 3050 j610 series\bin\hpnetworkcommunicator.exe
FirewallRules: [UDP Query User{C51CD886-92C7-4296-900C-363145B5557B}C:\program files\hp\hp deskjet 3050 j610 series\bin\hpnetworkcommunicator.exe] => (Allow) C:\program files\hp\hp deskjet 3050 j610 series\bin\hpnetworkcommunicator.exe
FirewallRules: [{CD4AEA4E-736E-4E68-80FB-F779A4C7A030}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{BFD791A8-DFF9-47FE-B499-EEBAF9D4315C}] => (Allow) C:\Users\SEA LION\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{C94836AF-09CC-4556-8F94-13FF2ED2954F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{8BAFFA23-6F14-4C73-9B3B-3F1E5529EA2D}] => (Allow) LPort=2869
FirewallRules: [{37B9C5FA-F387-4D67-A68F-EA053DFF029B}] => (Allow) LPort=1900
FirewallRules: [{7E0E44F7-EA36-4E35-872A-52ED2933E0E4}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [TCP Query User{93111C26-3291-42A5-A7C6-E4A1914FC65E}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{051919A6-48A3-48CC-B1DA-52C3299ED208}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{57DF0541-A412-4188-A8B4-8741FE4A2313}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{7E0B0B1F-86A5-450A-A8B4-1BF80943F424}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{0E7C8D47-A53A-4C8D-B497-30F0197FC5F7}] => (Allow) C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{15EA49A6-F5F7-41F6-8832-702B46D63CEC}] => (Allow) C:\Users\SEA LION\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{0594F846-0037-4B8D-A193-80CAE70DEB45}D:\program files (x86)\mortal kombat complete edition\mkke.exe] => (Allow) D:\program files (x86)\mortal kombat complete edition\mkke.exe
FirewallRules: [UDP Query User{927EBAFE-A5F9-4152-A008-F652BC954B2A}D:\program files (x86)\mortal kombat complete edition\mkke.exe] => (Allow) D:\program files (x86)\mortal kombat complete edition\mkke.exe
FirewallRules: [TCP Query User{82E835A7-2783-4B06-9B3F-8D4944BD8164}C:\users\sea lion\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\sea lion\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{4232E74C-C4B9-4216-9491-B9FF6AA5F251}C:\users\sea lion\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\sea lion\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{F980898A-AA1C-4101-8E8B-5DC0DAE5A98D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6B1B136B-2BED-46B1-AA8F-565675D7EF5E}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{9291A034-ADC5-4A66-A875-6CF6E638D505}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B6CB8A1C-A641-4513-A46B-F1E9671E29A3}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{2528C520-0D92-40E0-9D7D-E6C974E0B21F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{261CEB21-BC39-462C-8EA1-7D89F8B65854}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{9B2F08C0-973A-4B67-8506-0C9625899C98}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
FirewallRules: [{B49F6624-4AA1-496E-AB81-19D3777EF66F}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe
FirewallRules: [{E09AE19E-5B73-4612-A8B6-6F7D131C6248}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe
FirewallRules: [{3B3724E2-E2EE-4C15-9A52-79C51E8D13B0}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe
FirewallRules: [{692BC14C-58D1-4C97-BD1A-60446F4412CD}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe
FirewallRules: [{25334C10-A14B-48A5-9F09-9DC8A96B38A2}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe
FirewallRules: [TCP Query User{5BAF032A-1EE5-46F7-866B-2237867E8A5F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{E21520B3-DDA2-44E4-919E-7A2FF02ADEB9}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{99FBB0A7-A2E6-42FC-BC4A-1F60D21042AB}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{93EBDC05-F385-4562-B80A-1E76A0675C59}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B1E69ABE-A48F-4A5B-BE04-F766F41992F4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C304B0A0-8185-4CDE-90A1-97F7D7E3DFDE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AB0207F2-F202-454F-B26D-5217F08ACBEB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{9F6FA3D0-5639-4AB9-AACF-71729ABB7E32}D:\program files (x86)\quadcorem2\pack\core.bin] => (Allow) D:\program files (x86)\quadcorem2\pack\core.bin
FirewallRules: [UDP Query User{A9306F3B-DAC3-432A-A25E-D32C231FF8A4}D:\program files (x86)\quadcorem2\pack\core.bin] => (Allow) D:\program files (x86)\quadcorem2\pack\core.bin
FirewallRules: [{8B6B9E72-1659-4AE0-A89F-BC52FA67C2BC}] => (Allow) D:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [TCP Query User{B21F0AFD-DC5B-4CF7-BFF1-45C9F127FDB9}C:\gog games\oddworld - new 'n' tasty\nnt.exe] => (Allow) C:\gog games\oddworld - new 'n' tasty\nnt.exe
FirewallRules: [UDP Query User{2E972FF4-42AB-47F6-A99E-FF0551240918}C:\gog games\oddworld - new 'n' tasty\nnt.exe] => (Allow) C:\gog games\oddworld - new 'n' tasty\nnt.exe

==================== Restore Points =========================

19-03-2016 15:43:19 Naplánovaný kontrolní bod
26-03-2016 21:43:22 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============

Name: ManyCam Virtual Microphone
Description: ManyCam Virtual Microphone
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Visicom Media Inc.
Service: mcaudrv_simple
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: ManyCam Virtual Webcam
Description: ManyCam Virtual Webcam
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Visicom Media Inc.
Service: ManyCam
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/26/2016 12:59:57 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: SteamService: Invalid file signature D:\Program Files (x86)\Steam\bin\SteamService.dll

Error: (03/21/2016 02:07:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 45.0.1.5918, časové razítko: 0x56e8b7df
Název chybujícího modulu: mozglue.dll, verze: 45.0.1.5918, časové razítko: 0x56e8a981
Kód výjimky: 0x80000003
Posun chyby: 0x0000f0ea
ID chybujícího procesu: 0x1478
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3

Error: (03/04/2016 04:37:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Skype.exe, verze: 7.0.0.102, časové razítko: 0x54897add
Název chybujícího modulu: mshtml.dll, verze: 11.0.9600.17842, časové razítko: 0x5565cf99
Kód výjimky: 0xc0000005
Posun chyby: 0x0021f3d4
ID chybujícího procesu: 0x1af0
Čas spuštění chybující aplikace: 0xSkype.exe0
Cesta k chybující aplikaci: Skype.exe1
Cesta k chybujícímu modulu: Skype.exe2
ID zprávy: Skype.exe3

Error: (02/27/2016 07:20:07 PM) (Source: ESENT) (EventID: 490) (User: )
Description: Windows (5044) Windows: Pokus o otevření souboru C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (02/27/2016 07:19:07 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/27/2016 07:19:07 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/27/2016 07:19:07 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.

Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/27/2016 07:19:07 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (02/27/2016 07:19:07 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)

Error: (02/27/2016 07:19:06 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (03/29/2016 04:41:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (03/29/2016 04:41:04 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).

Error: (03/29/2016 12:08:59 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.

Error: (03/29/2016 12:02:44 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (12:00:33, ‎29.‎3.‎2016) bylo neočekávané.

Error: (03/28/2016 11:25:37 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/28/2016 09:26:40 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (03/28/2016 04:26:10 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:20:14, ‎28.‎3.‎2016) bylo neočekávané.

Error: (03/27/2016 09:20:47 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (03/27/2016 03:15:03 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (03/26/2016 03:21:41 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}


CodeIntegrity:
===================================
Date: 2011-12-24 17:35:11.314
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\SEA LION\Desktop\32-Bit\Injector.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-12-24 17:35:11.275
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\SEA LION\Desktop\32-Bit\Injector.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-12-24 17:34:53.940
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\SEA LION\Desktop\32-Bit\Injector.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-12-24 17:34:53.901
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\SEA LION\Desktop\32-Bit\Injector.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-12-24 17:34:32.640
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\SEA LION\Desktop\32-Bit\Injector.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-12-24 17:34:32.605
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\SEA LION\Desktop\32-Bit\Injector.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-12-24 17:34:18.151
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\SEA LION\Desktop\32-Bit\Injector.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-12-24 17:34:18.115
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\SEA LION\Desktop\32-Bit\Injector.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-11-29 21:14:39.176
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-11-29 21:14:39.147
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3 CPU 540 @ 3.07GHz
Percentage of memory in use: 51%
Total physical RAM: 3957.4 MB
Available physical RAM: 1913.52 MB
Total Virtual: 7913 MB
Available Virtual: 5385.01 MB

==================== Drives ================================

Drive c: (SYSTEM) (Fixed) (Total:84.71 GB) (Free:11.93 GB) NTFS
Drive d: (HADR) (Fixed) (Total:332.13 GB) (Free:10.24 GB) NTFS
Drive z: (Nový svazek) (Fixed) (Total:48.83 GB) (Free:48.68 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 5B225CEC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=84.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=332.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=48.8 GB) - (Type=OF Extended)

==================== End of Addition.txt ============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v5.108 - Log soubor vytvořen 03/04/2016 o 13:19:38
# Aktualizováno 30/03/2016 by Xplode
# Databáze : 2016-03-30.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (x64)
# Jméno uživatele : SEA LION - SEALION-PC
# Spuštěno z : C:\Users\SEA LION\Desktop\adwcleaner_5.108.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum

***** [ Služby ] *****

[-] Služba smazáno : sp_rsdrv2

***** [ Složky ] *****

[-] Složka smazáno : C:\Users\SEA LION\AppData\Local\28050

***** [ Soubory ] *****


***** [ DLLs ] *****


***** [ Zástupci ] *****


***** [ Naplánované úkoly ] *****


***** [ Registr ] *****


***** [ Webové prohlížeče ] *****


*************************

:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [870 bytes] - [03/04/2016 13:19:38]
C:\AdwCleaner\AdwCleaner[R1].txt - [831 bytes] - [18/07/2015 15:13:31]
C:\AdwCleaner\AdwCleaner[S1].txt - [1848 bytes] - [18/07/2015 15:14:18]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1087 bytes] ##########

Díky že jste se toho ujal Rudy. Vypadá to čistě, že ?

Až na jednu službu a jednu složku. Dejte nový log FRST.