![2 :)](./images/smilies/2.gif)
Additional scan result of Farbar Recovery Scan Tool (x86) Version:27-01-2016
Ran by adinko (2016-01-31 18:01:00)
Running from C:\Users\adinko\Desktop
Windows 7 Professional Service Pack 1 (X86) (2015-11-21 13:56:23)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
adinko (S-1-5-21-3847442437-178053374-3691882369-1001 - Administrator - Enabled) => C:\Users\adinko
Administrator (S-1-5-21-3847442437-178053374-3691882369-500 - Administrator - Disabled)
Guest (S-1-5-21-3847442437-178053374-3691882369-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-3847442437-178053374-3691882369-1003 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
Adobe Flash Player 20 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 20.0.0.228 - Adobe Systems Incorporated)
Advanced SystemCare 9 (HKLM\...\Advanced SystemCare_is1) (Version: 9.1.0 - IObit)
Age of Empires II: HD Edition (HKLM\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios)
Aktualizácie NVIDIA 2.7.4.10 (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
Armored Warfare MyCom (HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\Armored Warfare MyCom) (Version: 1.64 - My.com B.V.)
AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies)
AVG (Version: 16.12.7303 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4522 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM\...\AVG PC TuneUp) (Version: 16.13.1.47453 - AVG Technologies)
AVG PC TuneUp (Version: 16.13.3 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.12.7303 - AVG Technologies)
AVG Web TuneUp (HKLM\...\AVG Web TuneUp) (Version: 4.2.4.155 - AVG Technologies)
AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden
Brawlhalla (HKLM\...\Steam App 291550) (Version: - Blue Mammoth Games)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
Clownfish for Skype (HKLM\...\Clownfish) (Version: - )
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Dota 2 (HKLM\...\Steam App 570) (Version: - Valve)
Driver Booster 3.1 (HKLM\...\Driver Booster_is1) (Version: 3.1 - IObit)
Firestorm Launcher version 1.0 (HKLM\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.0 - Firestorm)
FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.86 - Spoločnosť Google Inc.)
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
IdleMaster (HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\1d85483b1c982d8c) (Version: 1.4.0.0 - IdleMaster)
IObit Malware Fighter 3 (HKLM\...\IObit Malware Fighter_is1) (Version: 3.4 - IObit)
IObit Uninstaller (HKLM\...\IObitUninstall) (Version: 5.2.1.126 - IObit)
Java 8 Update 65 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
League of Legends (HKLM\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (Version: 3.0.1 - Riot Games) Hidden
Malwarebytes Anti-Malware verzia 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
My.com Game Center (HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\MyComGames) (Version: 3.167 - My.com B.V.)
NVIDIA 3D Vision radič ovládača 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Grafický ovládač 341.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.92 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 341.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.92 - NVIDIA Corporation)
NVIDIA PhysX (HKLM\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Opera Stable 34.0.2036.50 (HKLM\...\Opera 34.0.2036.50) (Version: 34.0.2036.50 - Opera Software)
osu! (HKLM\...\{37504f5d-5d6f-4770-894a-a7478ae27f8e}) (Version: latest - ppy Pty Ltd)
Ovládací panel NVIDIA 341.92 (Version: 341.92 - NVIDIA Corporation) Hidden
ParkControl (HKLM\...\ParkControl) (Version: 1.0.1.4 - Bitsum)
Re 2.0 (HKLM\...\ReQuick_is1) (Version: - My Company, Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.)
Registry Repair 5.0.1.70 (HKLM\...\Registry Repair) (Version: 5.0.1.70 - Glarysoft Ltd)
Rocket League (HKLM\...\Steam App 252950) (Version: - Psyonix)
Rust (HKLM\...\Steam App 252490) (Version: - Facepunch Studios)
SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
Skype™ 7.15 (HKLM\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.15.102 - Skype Technologies S.A.)
SpeedyPC Pro (HKLM\...\{604CD5A1-4520-4844-B064-A3D884B77E91}) (Version: 3.2.15.0 - SpeedyPC Software) <==== ATTENTION
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Surfing Protection (HKLM\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
TeamSpeak 3 Client (HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM\...\TeamViewer) (Version: 11.0.52465 - TeamViewer)
The Adventures of Mr. Bobley (HKLM\...\Steam App 375710) (Version: - Jan Zizka)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3847442437-178053374-3691882369-1001_Classes\CLSID\{9FBA1E11-455C-4499-8C34-BABB1DF85598}\InprocServer32 -> C:\Users\adinko\AppData\Local\MyComGames\NPMyComDetector.dll (MY.COM B.V.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1C34FEBC-BFAB-4627-8AF1-611461CCE4F5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-11-21] (Google Inc.)
Task: {1ECBD0A3-03EB-44E8-BCD6-EDF925DB2E61} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare\Monitor.exe [2016-01-15] (IObit)
Task: {1FF110C8-915F-4955-B878-1191684BC645} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {2D69333F-B88D-4691-B118-192412433C7D} - System32\Tasks\Opera scheduled Autoupdate 1448114330 => C:\Program Files\Opera\launcher.exe [2016-01-18] (Opera Software)
Task: {310BC78E-4139-4516-A593-A71FA467CA56} - System32\Tasks\Driver Booster SkipUAC (adinko) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2015-11-18] (IObit)
Task: {353355E6-80E9-4B4B-93A1-20D937955A77} - System32\Tasks\SpeedyPC Pro_sch_FB7B39B1-9117-11E5-B2CD-60A44C2C2E60 => C:\Program Files\SpeedyPC Software\SpeedyPC\SpeedyPC.exe [2015-09-17] (SpeedyPC Software) <==== ATTENTION
Task: {3C3E4932-4A52-43A3-85A1-DF26709BDBDA} - System32\Tasks\ParkControl => C:\Program Files\ParkControl\ParkControl.exe [2016-01-22] (Bitsum LLC)
Task: {44383203-ABCB-4276-AF3B-2BD771E6BF11} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-10-06] (Oracle Corporation)
Task: {57D6A1CC-EDDA-499F-8EA4-676FE86948F7} - System32\Tasks\{DD8C8DED-9797-49C1-97C0-AFA99E406217} => C:\Program Files\driver\SmartGeniusSetup.exe [2015-12-30] (KYE Systems Corp. )
Task: {58A43EF8-B84F-4046-A032-64AE6F742E53} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files\AVG\AVG PC TuneUp\tuscanx.exe [2015-12-11] (AVG Technologies CZ, s.r.o.)
Task: {61DB7CCA-DF97-462A-9D09-9E96057004F7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-11-21] (Google Inc.)
Task: {6AEF0C98-2CB4-4B67-8C70-4C977C7355CC} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {71FB81C8-B197-477E-B21A-B38AFC532662} - System32\Tasks\SpeedyPC Registration3 => Rundll32.exe "C:\Program Files\Common Files\SpeedyPC Software\UUS3\UUS3.dll" RunUns
Task: {78FFA9C9-81D6-40C7-861E-FA4157CE3A9A} - System32\Tasks\Uninstaller_SkipUac_adinko => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-01-12] (IObit)
Task: {9705C293-28FE-4E72-9645-B647C7AA6BC7} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe [2015-12-12] (Adobe Systems Incorporated)
Task: {9A20C5A4-B65E-48C0-BBBD-CDB221B32EDC} - System32\Tasks\Driver Booster Scheduler => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2015-11-18] (IObit)
Task: {C5ACCAB1-1297-48FD-B1FF-F7C3C652436D} - System32\Tasks\{61F3FF9E-4E3C-4EDF-A157-70FC0524962D} => C:\Program Files\driver\SmartGeniusSetup.exe [2015-12-30] (KYE Systems Corp. )
Task: {D622195C-D680-4FEA-9C56-59660C7C9E94} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {EDF42B0F-08F2-49EA-9C42-15E5D90655AE} - System32\Tasks\ASC9_SkipUac_adinko => C:\Program Files\IObit\Advanced SystemCare\ASC.exe [2016-01-18] (IObit)
Task: {F9364DE9-56B1-4B28-B289-1FE22B85EDFD} - System32\Tasks\{F305D478-C73B-483F-9AD3-C7465032AA19} => C:\Program Files\driver\SmartGeniusSetup.exe [2015-12-30] (KYE Systems Corp. )
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SpeedyPC Pro_sch_FB7B39B1-9117-11E5-B2CD-60A44C2C2E60.job => C:\Program Files\SpeedyPC Software\SpeedyPC\SpeedyPC.exe <==== ATTENTION
Task: C:\Windows\Tasks\SpeedyPC Registration3.job => C:\Windows\system32\rundll32.exeGC:\Program Files\Common Files\SpeedyPC Software\UUS3\UUS3.dll <==== ATTENTION
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-12-21 18:11 - 2015-12-21 18:15 - 01164688 ____N () C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
2015-11-22 12:38 - 2015-10-13 17:47 - 00113840 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2015-12-12 19:01 - 2015-12-12 19:01 - 00018432 _____ () C:\Windows\System32\us005lm.dll
2016-01-26 20:24 - 2015-01-09 18:46 - 00517408 _____ () C:\Program Files\IObit\IObit Malware Fighter\sqlite3.dll
2016-01-26 20:22 - 2015-12-23 18:32 - 00355616 _____ () C:\Program Files\IObit\Advanced SystemCare\madExcept_.bpl
2016-01-26 20:22 - 2015-12-23 18:32 - 00190240 _____ () C:\Program Files\IObit\Advanced SystemCare\madBasic_.bpl
2016-01-26 20:22 - 2015-12-23 18:32 - 00057632 _____ () C:\Program Files\IObit\Advanced SystemCare\madDisAsm_.bpl
2015-12-21 18:28 - 2015-12-21 18:28 - 40500224 _____ () C:\Program Files\AVG\UiDll\2171\libcef.dll
2015-11-22 12:25 - 2015-11-12 19:39 - 00012080 _____ () C:\Program Files\NVIDIA Corporation\Update Core\detoured.dll
2016-01-26 20:22 - 2015-12-23 18:32 - 00355616 _____ () C:\Program Files\IObit\IObit Uninstaller\madExcept_.bpl
2016-01-26 20:22 - 2015-12-23 18:32 - 00190240 _____ () C:\Program Files\IObit\IObit Uninstaller\madBasic_.bpl
2016-01-26 20:22 - 2015-12-23 18:32 - 00057632 _____ () C:\Program Files\IObit\IObit Uninstaller\madDisAsm_.bpl
2015-11-21 15:15 - 2015-11-10 20:55 - 00778752 _____ () D:\Steam\SDL2.dll
2015-11-21 15:15 - 2015-07-03 17:12 - 04962816 _____ () D:\Steam\v8.dll
2015-11-21 15:15 - 2015-07-03 17:12 - 01556992 _____ () D:\Steam\icui18n.dll
2015-11-21 15:15 - 2015-07-03 17:12 - 01187840 _____ () D:\Steam\icuuc.dll
2015-11-21 15:15 - 2015-12-14 21:01 - 02547280 _____ () D:\Steam\video.dll
2015-11-21 15:15 - 2015-09-24 01:33 - 02549248 _____ () D:\Steam\libavcodec-56.dll
2015-11-21 15:15 - 2015-09-24 01:33 - 00442880 _____ () D:\Steam\libavutil-54.dll
2015-11-21 15:15 - 2015-09-24 01:33 - 00491008 _____ () D:\Steam\libavformat-56.dll
2015-11-21 15:15 - 2015-09-24 01:33 - 00332800 _____ () D:\Steam\libavresample-2.dll
2015-11-21 15:15 - 2015-09-24 01:33 - 00485888 _____ () D:\Steam\libswscale-3.dll
2015-11-21 15:15 - 2015-12-14 21:01 - 00804432 _____ () D:\Steam\bin\chromehtml.DLL
2015-11-21 15:15 - 2015-11-03 23:00 - 00201728 _____ () D:\Steam\bin\openvr_api.dll
2015-11-21 15:15 - 2015-11-17 01:31 - 47846176 _____ () D:\Steam\bin\libcef.dll
2015-11-21 15:15 - 2015-09-25 00:56 - 00119208 _____ () D:\Steam\winh264.dll
2015-12-12 15:23 - 2015-12-12 15:23 - 16573120 _____ () C:\Windows\system32\Macromed\Flash\pepflashplayer32_20_0_0_228.dll
2015-10-22 12:22 - 2015-10-22 12:22 - 00149480 _____ () C:\Users\adinko\AppData\Local\TeamSpeak 3 Client\quazip.dll
2015-10-22 12:21 - 2015-10-22 12:21 - 00090088 _____ () C:\Users\adinko\AppData\Local\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2015-10-22 12:21 - 2015-10-22 12:21 - 00103400 _____ () C:\Users\adinko\AppData\Local\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2015-10-22 12:22 - 2015-10-22 12:22 - 00260072 _____ () C:\Users\adinko\AppData\Local\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2015-10-22 12:22 - 2015-10-22 12:22 - 00369640 _____ () C:\Users\adinko\AppData\Local\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2015-10-22 12:22 - 2015-10-22 12:22 - 00025576 _____ () C:\Users\adinko\AppData\Local\TeamSpeak 3 Client\plugins\test_plugin.dll
2015-10-22 12:22 - 2015-10-22 12:22 - 00034280 _____ () C:\Users\adinko\AppData\Local\TeamSpeak 3 Client\plugins\ts3g15.dll
2015-09-21 14:42 - 2015-09-21 14:42 - 00270336 _____ () C:\Users\adinko\AppData\Local\TeamSpeak 3 Client\ssleay32.dll
2015-09-21 14:42 - 2015-09-21 14:42 - 01291776 _____ () C:\Users\adinko\AppData\Local\TeamSpeak 3 Client\LIBEAY32.dll
2016-01-21 14:05 - 2016-01-21 14:05 - 61568120 _____ () C:\Program Files\Opera\34.0.2036.50\opera.dll
2016-01-21 14:05 - 2016-01-21 14:05 - 01983096 _____ () C:\Program Files\Opera\34.0.2036.50\libglesv2.dll
2016-01-21 14:05 - 2016-01-21 14:05 - 00081528 _____ () C:\Program Files\Opera\34.0.2036.50\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3847442437-178053374-3691882369-1001\...\100sexlinks.com -> 100sexlinks.com
There are 4788 more sites.
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3847442437-178053374-3691882369-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: avgsvc => 2
MSCONFIG\Services: GfExperienceService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: ihpmServer => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: TrustedInstaller => 3
MSCONFIG\Services: vToolbarUpdater40.2.4 => 2
MSCONFIG\Services: WerSvc => 3
MSCONFIG\startupreg: AvgUi => "C:\Program Files\AVG\Framework\Common\avguix.exe" /fmw.trayonly
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: Clownfish =>
MSCONFIG\startupreg: gmsd_ra_005010153 =>
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "D:\Steam\steam.exe" -silent
MSCONFIG\startupreg: vProt => "C:\Program Files\AVG Web TuneUp\vprot.exe"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{2FC7E11E-CDD5-469E-B708-521B321A01A0}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{3B2B28A3-06AE-48D3-8F9C-30DDEA4A537B}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{DB980D2E-01C8-4C8F-AF80-5D3D8D4BB173}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{78B8CD05-CCD1-448D-AA86-898E3FBFB399}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{4C6599AB-EECB-423A-8287-AC24D23CB7B4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{44E55FB3-397A-4144-85BC-95C41961CC3F}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{49D70A62-9EA3-452B-BDE2-4729688DB2CB}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{36EE156A-C6D2-4438-9A0B-B58E0F6254D4}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{BE280D78-F6B8-424C-925D-B6E537ADDD27}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{E960804F-A074-49BD-985F-3802927263BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{5180B23C-F49B-47F7-9C81-F087672EF11D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{22ACE48E-47FC-49B2-8BBA-0BA22394DB8E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{6B17BC24-A251-4629-8EA8-0C08B074B92C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B6F9D73E-DB3C-4686-B23C-C33E8252135D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FD4182E8-E7B1-456E-B18A-18BD85CFEFA0}] => (Allow) C:\Program Files\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{DADFAFDA-7B7D-4CBE-A3DB-E56FC8F79E66}] => (Allow) C:\Program Files\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{8100B59F-A9F2-412E-A5D6-14203CF9BA43}] => (Allow) C:\Program Files\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{1D29B1CD-3390-406B-A3BB-DB1F7369D51F}] => (Allow) C:\Program Files\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{9FF23B6E-0951-43F4-85C5-F7838F04B8BD}] => (Allow) C:\Program Files\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{C2DBC041-65B2-45BD-BD87-D197EBABE73E}] => (Allow) C:\Program Files\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{FCEA29A5-A7BA-4F74-B680-B541128DBB32}] => (Allow) C:\Users\adinko\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BBAE009D-E42D-43EF-9E35-D72B07AFB189}] => (Allow) C:\Users\adinko\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{311589E7-DA7E-465B-BD4C-90ABF622F8D1}C:\program files\java\jre1.8.0_65\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [UDP Query User{2F393B4C-989E-4C5B-BBAD-F83E773A9A2F}C:\program files\java\jre1.8.0_65\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [{ECC45C9F-EBB0-49DC-8A1B-C164AD36A920}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{E149D2D7-1D3D-4D82-B8CE-131FF5A3B47C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{6C39B0C7-1B59-4EBF-82F2-851622A52137}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BF389C11-8E08-45EC-BEA3-B07C85371DCC}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{3BE5D093-08AD-4953-AFF9-E216340FC625}C:\program files\java\jre1.8.0_65\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_65\bin\java.exe
FirewallRules: [UDP Query User{07A08B5A-1EFA-4682-BC43-55117D09C34B}C:\program files\java\jre1.8.0_65\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_65\bin\java.exe
FirewallRules: [{20909D65-9DD9-4B61-9177-C1762B011450}] => (Allow) C:\Program Files\AVG\Av\avgnsx.exe
FirewallRules: [{18C99C50-A2C5-473B-8B08-67B3B20F1D74}] => (Allow) C:\Program Files\AVG\Av\avgnsx.exe
FirewallRules: [{A4EF2A14-1799-46DF-96CA-0642A56BE961}] => (Allow) C:\Program Files\AVG\Av\avgdiagex.exe
FirewallRules: [{DB65BE3B-695D-4307-A746-7D9AEFFE90E5}] => (Allow) C:\Program Files\AVG\Av\avgdiagex.exe
FirewallRules: [{E6D39824-0E73-4353-93BB-9417EF810ECB}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{28D25E3A-F7C1-4FD1-BA47-690DFF087A3A}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{E591FDBD-DEA1-4B72-9B7B-0C6A0BD48377}] => (Allow) C:\Program Files\AVG\Av\avgemcx.exe
FirewallRules: [{5A0567D9-9905-4D98-B4FC-57AB6D72EB54}] => (Allow) C:\Program Files\AVG\Av\avgemcx.exe
FirewallRules: [{49E61A30-F1B1-4B25-8025-AD1E318EEBBE}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EC85575A-3EDF-4661-9337-6C61CC3B5A56}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{01B002BA-64B2-4526-87E9-A43D866DE87C}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{CE92005B-2600-4333-9BE6-C243FC728818}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{C148CEA7-CF59-451B-B064-69D117C4CD47}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe
FirewallRules: [{F3FAF269-3C68-4559-B172-0687B310E796}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe
FirewallRules: [{4122DD3D-88A1-4932-82C3-4E8AB207B112}] => (Allow) D:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{85EC0546-A527-49AC-9CBF-54492713BC7B}] => (Allow) D:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
==================== Restore Points =========================
ATTENTION: System Restore is disabled
Could not list restore points
Check "winmgmt" service or repair WMI.
==================== Faulty Device Manager Devices =============
Could not list Devices. Check "winmgmt" service or repair WMI.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/31/2016 03:18:08 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (01/31/2016 03:17:57 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (01/31/2016 03:17:57 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (01/31/2016 03:17:57 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (01/31/2016 03:05:57 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (01/31/2016 03:05:45 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (01/31/2016 03:05:45 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (01/31/2016 03:05:45 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (01/30/2016 04:24:03 PM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhost (2844) WebCacheLocal: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Users\adinko\AppData\Local\Microsoft\Windows\WebCache\V01.log.
Error: (01/29/2016 01:05:32 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
System errors:
=============
Error: (01/31/2016 12:39:22 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Windows Management Instrumentation, od ktorej závisí služba Security Center, zlyhalo kvôli nasledujúcej chybe:
%%1058
Error: (01/31/2016 12:38:53 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422
Error: (01/31/2016 12:38:43 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Function Discovery Provider Host, od ktorej závisí služba HomeGroup Provider, zlyhalo kvôli nasledujúcej chybe:
%%1058
Error: (01/31/2016 12:36:44 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "60A44C2C2E60" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (01/31/2016 12:36:44 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "60A44C2C2E60" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (01/31/2016 12:36:44 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "009027905FE8" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (01/31/2016 12:36:44 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "009027905FE8" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (01/30/2016 04:29:33 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422
Error: (01/30/2016 04:25:26 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby Windows Management Instrumentation, od ktorej závisí služba Security Center, zlyhalo kvôli nasledujúcej chybe:
%%1058
Error: (01/30/2016 04:25:22 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422
==================== Memory info ===========================
Processor: AMD A4-5300 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 51%
Total physical RAM: 3049.65 MB
Available physical RAM: 1482.67 MB
Total Virtual: 6096.94 MB
Available Virtual: 3632.48 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:172.69 GB) (Free:87.44 GB) NTFS
Drive d: () (Fixed) (Total:292.97 GB) (Free:182.21 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 00000001)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=293 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=172.7 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================