﻿Fix result of Farbar Recovery Scan Tool (x64) Version:17-08-2015
Ran by Lukas (2015-08-18 13:36:25) Run:1
Running from D:\Desktop
Loaded Profiles: Lukas (Available Profiles: Lukas)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
File: C:\ProgramData\1-0-0-0.txt
File: C:\Users\Lukas\AppData\Roaming\Adobe\start.bat
File: C:\Users\Lukas\AppData\Roaming\Adobe\nircmd.exe
CMD: dir C:\Users\Lukas\AppData\Roaming\Adobe
File: C:\Users\Lukas\AppData\Roaming\Adobe\libidn-11.dll
File: C:\Users\Lukas\AppData\Roaming\Adobe\zlib1.dll
File: C:\Users\Lukas\AppData\Roaming\Adobe\libgcc_s_dw2-1.dll
File: C:\Users\Lukas\AppData\Roaming\Adobe\libpdcurses.dll

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-09-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] => D:\Programs\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKU\S-1-5-21-3343877709-3063114829-576677117-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-3343877709-3063114829-576677117-1000\...\Run: [FlashPlayerManager] => C:\Users\Lukas\AppData\Roaming\Adobe\nircmd.exe [43520 2012-10-29] (NirSoft)
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKU\S-1-5-21-3343877709-3063114829-576677117-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-30] (IObit)
C:\Program Files (x86)\IObit
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [X]

2015-08-18 12:34 - 2015-08-18 12:46 - 00029696 _____ C:\Users\Lukas\AppData\Local\MSGBOX.EXE
2015-08-18 12:00 - 2015-08-18 12:00 - 00005395 _____ C:\AdwCleaner[C1].txt
2015-08-18 11:59 - 2015-08-18 12:00 - 00000000 ____D C:\AdwCleaner
2015-08-18 11:59 - 2015-08-18 11:59 - 00007186 _____ C:\AdwCleaner[S1].txt
2015-08-17 23:32 - 2015-08-17 23:36 - 00000000 ____D C:\Program Files\trend micro
2015-08-17 23:32 - 2015-08-17 23:32 - 00000000 ____D C:\rsit
2015-01-30 22:11 - 2015-01-30 22:11 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Task: {28BFB92C-89D3-4483-970F-D9A0493FC3B0} - System32\Tasks\Wise Turbo Checker => D:\Programs\Wise Care 365\WiseTurbo.exe
Task: {6ED2C9D6-E504-4AE2-84A0-A0424436A3A2} - System32\Tasks\Driver Booster SkipUAC (Lukas) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {796AE874-13F1-42DF-A0C0-A618FB6C07CE} - System32\Tasks\Wise Care 365 => D:\Programs\Wise Care 365\WiseTray.exe
Task: {9CC6DCB5-87C3-4131-88BA-BF53C2D3B7F9} - System32\Tasks\Wise Care 365 PC Checkup Task => D:\Programs\Wise Care 365\WiseCare365.exe
Task: {ACEF8288-98A7-4E39-8957-5C43DCCE3085} - System32\Tasks\{DCBBCB6A-8018-49CF-B165-042F9CC14C06} => pcalua.exe -a D:\Downloads\insta\install.exe -d D:\Downloads\insta
Task: {DC94CFF6-B13C-4C6C-8C68-8610FE412E91} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Wise Care 365 PC Checkup Task.job => D:\Programs\Wise Care 365\WiseCare365.exe
Task: C:\Windows\Tasks\Wise Care 365.job => D:\Programs\Wise Care 365\WiseTray.exe
Task: C:\Windows\Tasks\Wise Turbo Checker.job => D:\Programs\Wise Care 365\WiseTurbo.exe
D:\Programs\Wise Care 365
AlternateDataStreams: C:\Users\Lukas\AppData\Local\Temporary Internet Files:mL9VkYRyvYsC9Q820
EmptyTemp:
End
*****************

Processes closed successfully.

========================= File: C:\ProgramData\1-0-0-0.txt ========================

File not signed
MD5: 0A3311696FE314718EDA7CAEB5269F7C
Creation and modification date: 2015-03-06 23:38 - 2015-03-06 23:38
Size: 0000379
Attributes: ---AH
Company Name: 
Internal Name: 
Original Name: 
Product Name: 
Description: 
File Version: 
Product Version: 
Copyright: 

====== End of File: ======


========================= File: C:\Users\Lukas\AppData\Roaming\Adobe\start.bat ========================

File not signed
MD5: BE977E7ACDFF83187401C44FFD392087
Creation and modification date: 2015-08-17 18:06 - 2015-04-21 22:38
Size: 0000165
Attributes: ----A
Company Name: 
Internal Name: 
Original Name: 
Product Name: 
Description: 
File Version: 
Product Version: 
Copyright: 

====== End of File: ======


========================= File: C:\Users\Lukas\AppData\Roaming\Adobe\nircmd.exe ========================

File not signed
MD5: 466A42AEA0ABDF4C6B610F0F5E61CFA2
Creation and modification date: 2015-08-17 18:06 - 2012-10-29 20:08
Size: 0043520
Attributes: ----A
Company Name: NirSoft
Internal Name: NirCmd
Original Name: NirCmd.exe
Product Name: NirCmd
Description: NirCmd
File Version: 2.71
Product Version: 2.71
Copyright: Copyright © 2003 - 2012 Nir Sofer

====== End of File: ======


=========  dir C:\Users\Lukas\AppData\Roaming\Adobe =========

 Svazek v jednotce C je System.
 S�riov� ��slo svazku je 82C3-B884.

 V�pis adres��e C:\Users\Lukas\AppData\Roaming\Adobe

17.08.2015  18:06    <DIR>          .
17.08.2015  18:06    <DIR>          ..
31.01.2015  12:35    <DIR>          Acrobat
31.01.2015  23:55    <DIR>          ACSL
05.04.2015  12:41    <DIR>          Adobe Illustrator
05.04.2015  12:41    <DIR>          Adobe Illustrator CS6 Settings
09.02.2015  14:22    <DIR>          Adobe Media Encoder
01.02.2015  01:02    <DIR>          Adobe PDF
03.02.2015  19:27    <DIR>          Adobe Photoshop CC 2014
09.02.2015  10:57    <DIR>          Adobe QT32 Server
09.02.2015  10:58    <DIR>          After Effects
11.05.2015  21:02    <DIR>          AIR
13.05.2015  18:51    <DIR>          Bridge CS6
13.05.2015  18:50    <DIR>          CameraRaw
25.07.2015  19:19    <DIR>          Color
21.06.2015  10:41    <DIR>          Common
18.08.2015  11:45    <DIR>          CoreSync
01.02.2015  11:57    <DIR>          Creative Cloud Libraries
09.02.2015  14:22    <DIR>          CS6ServiceManager
10.02.2014  19:20            44�727 diablo130302.cl
10.02.2014  19:20            30�802 diakgcn121016.cl
01.02.2015  01:57    <DIR>          DVAAudioFilterScan
09.02.2015  10:57    <DIR>          dynamiclinkmanager
09.02.2015  10:57    <DIR>          dynamiclinkmediaserver
09.02.2015  10:57    <DIR>          ExtendScript Toolkit
31.01.2015  23:55    <DIR>          Extension Manager CC
09.02.2015  14:22    <DIR>          Extension Manager CS6
31.01.2015  12:35    <DIR>          Flash Player
24.02.2014  01:04           494�606 FlashPlayerManager_11_3_280.exe
05.04.2015  12:41    <DIR>          Fonts
09.02.2015  14:23    <DIR>          GPUSniffer
31.01.2015  12:35    <DIR>          Headlights
10.02.2014  19:20             4�758 keccak130718.cl
10.02.2014  19:18           626�176 libcurl.dll
10.02.2014  19:18         1�704�448 libeay32.dll
05.10.2013  22:17           112�142 libgcc_s_dw2-1.dll
10.02.2014  19:18           279�955 libidn-11.dll
11.06.2010  12:48           148�760 libpdcurses.dll
31.01.2015  12:35    <DIR>          Linguistics
05.04.2015  12:41    <DIR>          Logs
01.02.2015  00:28    <DIR>          LogTransport2
01.02.2015  01:02    <DIR>          LogTransport2CC
01.02.2015  01:57    <DIR>          Lumetri
29.10.2012  20:08            43�520 nircmd.exe
10.02.2014  19:20            13�062 phatk121016.cl
15.02.2015  11:43    <DIR>          Photoshop
10.02.2014  19:20            43�810 poclbm130302.cl
09.02.2015  14:22    <DIR>          Premiere Pro
22.08.2013  16:34           119�704 pthreadGC2.dll
15.02.2015  14:01           499�288 rar.exe
05.04.2015  12:41    <DIR>          Save For Web AI
10.02.2014  19:20            23�825 scrypt130511.cl
21.04.2015  22:39         1�429�989 setup.rar
23.02.2014  13:57            21�201 skein.cl
01.02.2015  01:02    <DIR>          Sonar
10.02.2014  19:18           364�544 ssleay32.dll
21.04.2015  22:38               165 start.bat
09.02.2015  14:22    <DIR>          SwitchBoard
31.01.2015  23:55    <DIR>          SynKit
13.05.2015  18:50    <DIR>          XMP
26.08.2013  04:02           131�598 zlib1.dll
           Soubor�:     20,   Bajt�:              6�137�080
           Adres���:    41,   Voln�ch bajt�: 43�625�656�320

========= End of CMD: =========


========================= File: C:\Users\Lukas\AppData\Roaming\Adobe\libidn-11.dll ========================

File not signed
MD5: 56295C7AFE3F0542D59D12CA955380DB
Creation and modification date: 2015-08-17 18:06 - 2014-02-10 19:18
Size: 0279955
Attributes: ----A
Company Name: 
Internal Name: 
Original Name: 
Product Name: 
Description: 
File Version: 
Product Version: 
Copyright: 

====== End of File: ======


========================= File: C:\Users\Lukas\AppData\Roaming\Adobe\zlib1.dll ========================

File not signed
MD5: 5FF2481C69E5DD4107C44AB42CC27BA2
Creation and modification date: 2015-08-17 18:06 - 2013-08-26 04:02
Size: 0131598
Attributes: ----A
Company Name: 
Internal Name: zlib1.dll
Original Name: zlib1.dll
Product Name: zlib
Description: zlib data compression library
File Version: 1.2.8
Product Version: 1.2.8
Copyright: (C) 1995-2013 Jean-loup Gailly & Mark Adler

====== End of File: ======


========================= File: C:\Users\Lukas\AppData\Roaming\Adobe\libgcc_s_dw2-1.dll ========================

File not signed
MD5: E2AC23418781F632311513944EDD0A4C
Creation and modification date: 2015-08-17 18:06 - 2013-10-05 22:17
Size: 0112142
Attributes: ----A
Company Name: 
Internal Name: 
Original Name: 
Product Name: 
Description: 
File Version: 
Product Version: 
Copyright: 

====== End of File: ======


========================= File: C:\Users\Lukas\AppData\Roaming\Adobe\libpdcurses.dll ========================

File not signed
MD5: 9A9BC5D53331E893FCB7D15BFCD0879D
Creation and modification date: 2015-08-17 18:06 - 2010-06-11 12:48
Size: 0148760
Attributes: ----A
Company Name: 
Internal Name: 
Original Name: 
Product Name: 
Description: 
File Version: 
Product Version: 
Copyright: 

====== End of File: ======

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AdobeCS6ServiceManager => value removed successfully
HKU\S-1-5-21-3343877709-3063114829-576677117-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully
HKU\S-1-5-21-3343877709-3063114829-576677117-1000\Software\Microsoft\Windows\CurrentVersion\Run\\FlashPlayerManager => value removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => key removed successfully
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key not found. 
HKU\S-1-5-21-3343877709-3063114829-576677117-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
LiveUpdateSvc => service removed successfully
C:\Program Files (x86)\IObit => moved successfully.
WinRing0_1_2_0 => service removed successfully
C:\Users\Lukas\AppData\Local\MSGBOX.EXE => moved successfully.
C:\AdwCleaner[C1].txt => moved successfully.
C:\AdwCleaner => moved successfully.
C:\AdwCleaner[S1].txt => moved successfully.
C:\Program Files\trend micro => moved successfully.
C:\rsit => moved successfully.
C:\ProgramData\DP45977C.lfl => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{28BFB92C-89D3-4483-970F-D9A0493FC3B0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{28BFB92C-89D3-4483-970F-D9A0493FC3B0}" => key removed successfully
C:\Windows\System32\Tasks\Wise Turbo Checker => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Wise Turbo Checker" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6ED2C9D6-E504-4AE2-84A0-A0424436A3A2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6ED2C9D6-E504-4AE2-84A0-A0424436A3A2}" => key removed successfully
C:\Windows\System32\Tasks\Driver Booster SkipUAC (Lukas) => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (Lukas)" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{796AE874-13F1-42DF-A0C0-A618FB6C07CE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{796AE874-13F1-42DF-A0C0-A618FB6C07CE}" => key removed successfully
C:\Windows\System32\Tasks\Wise Care 365 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Wise Care 365" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9CC6DCB5-87C3-4131-88BA-BF53C2D3B7F9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9CC6DCB5-87C3-4131-88BA-BF53C2D3B7F9}" => key removed successfully
C:\Windows\System32\Tasks\Wise Care 365 PC Checkup Task => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Wise Care 365 PC Checkup Task" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ACEF8288-98A7-4E39-8957-5C43DCCE3085}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ACEF8288-98A7-4E39-8957-5C43DCCE3085}" => key removed successfully
C:\Windows\System32\Tasks\{DCBBCB6A-8018-49CF-B165-042F9CC14C06} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DCBBCB6A-8018-49CF-B165-042F9CC14C06}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DC94CFF6-B13C-4C6C-8C68-8610FE412E91}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DC94CFF6-B13C-4C6C-8C68-8610FE412E91}" => key removed successfully
C:\Windows\System32\Tasks\Game_Booster_AutoUpdate => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Game_Booster_AutoUpdate" => key removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\Windows\Tasks\Wise Care 365 PC Checkup Task.job => moved successfully.
C:\Windows\Tasks\Wise Care 365.job => moved successfully.
C:\Windows\Tasks\Wise Turbo Checker.job => moved successfully.
"D:\Programs\Wise Care 365" => File/Folder not found.
"C:\Users\Lukas\AppData\Local\Temporary Internet Files" => ":mL9VkYRyvYsC9Q820" ADS not found.
EmptyTemp: => 327.3 MB temporary data Removed.


The system needed a reboot.. 

==== End of Fixlog 13:36:29 ====