Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-11-2016
Ran by CesarAnDrOiD (01-12-2016 22:07:31)
Running from C:\Users\CesarAnDrOiD\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2016-10-29 17:37:25)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3632631583-3328051805-244849390-500 - Administrator - Disabled)
CesarAnDrOiD (S-1-5-21-3632631583-3328051805-244849390-1000 - Administrator - Enabled) => C:\Users\CesarAnDrOiD
Guest (S-1-5-21-3632631583-3328051805-244849390-501 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 10.0.369.0 (Disabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Smart Security 10.0.369.0 (Disabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personal firewall (Disabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3632631583-3328051805-244849390-1000\...\uTorrent) (Version: 3.4.9.42973 - BitTorrent Inc.)
7-Zip 16.04 (HKLM-x32\...\7-Zip) (Version: 16.04 - Igor Pavlov)
A.M.T.T Volcano Box (HKLM\...\A.M.T.T Volcano Box 2.2.9) (Version: 2.2.9 - ALL MOBILE TIPS AND TRICKS)
A.M.T.T Volcano Box (Version: 2.2.9 - ALL MOBILE TIPS AND TRICKS) Hidden
ABBYY FineReader 12 Professional (HKLM-x32\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.1.625 - ABBYY Production LLC)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.00 - Adobe Systems)
Adobe Flash Player 23 ActiveX & Plugins 64-bit (HKLM\...\Adobe Flash Player ActiveX) (Version: 23.0.0.185 - Adobe Systems Incorporated)
AIMP (HKLM-x32\...\AIMP) (Version: v4.11.1841, 08.10.2016 - AIMP DevTeam)
Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite DCP-J172W (HKLM-x32\...\{B742757A-7658-4E09-A51A-085CF0F7F4D3}) (Version: 1.0.0.0 - Brother Industries, Ltd.)
Call of Duty: Modern Warfare 2 (HKLM-x32\...\Call of Duty: Modern Warfare 2_is1) (Version: - )
Camtasia 9 (HKLM-x32\...\{48cb006a-7b5b-4a48-98fd-fbd7af456b0d}) (Version: 9.0.1.1422 - TechSmith Corporation)
Camtasia 9 (Version: 9.0.1.1422 - TechSmith Corporation) Hidden
Care Suite PST 5 (HKLM-x32\...\{7009DB7B-2D9C-454C-ABF7-E29A542A09FD}) (Version: 5.6.134.1513 - Nokia)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
CrystalDiskInfo 7.0.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.0 - Crystal Dew World)
EaseUS Partition Master 11.0 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
Eassos PartitionGuru 4.9.1 (HKLM\...\{FC4FF5F4-2265-4E18-8BBC-12CBA9794388}_is1) (Version: - Eassos Co., Ltd.)
Emergency Download Driver (HKLM-x32\...\{05DBF996-83D0-4C40-8D3A-A6850800BC88}) (Version: 1.1.7.1439 - Nokia)
ESET Smart Security (HKLM\...\{25238D9A-1A44-4D60-BA3A-163CB995C763}) (Version: 10.0.369.0 - ESET, spol. s r.o.)
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.20.0 - Androxyde)
FormatFactory 3.9.5.2 (HKLM-x32\...\FormatFactory) (Version: 3.9.5.2 - Free Time)
Fuse Drivers x64 (HKLM-x32\...\{06904B2B-5000-4C58-9471-256BA1A303BE}) (Version: 11.34.1 - Nokia)
Google Chrome (HKU\S-1-5-21-3632631583-3328051805-244849390-1000\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Herramientas de corrección de Microsoft Office 2016: español (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Intel Android Device USB driver (HKLM\...\Intel Android Device USB driver) (Version: 1.3.3 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
iSocUSB Driver version 1.0.3 (HKLM\...\iSocUSB Driver_is1) (Version: 1.0.3 - Intel Corporation 2013)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Lumia UEFI Blue Driver (HKLM-x32\...\{9E37C8B7-50A6-422A-96C1-7BC43F2242F4}) (Version: 1.1.7.1439 - Nokia)
Manufacturing Flash Tool version 6.0.11 (HKLM-x32\...\Manufacturing Flash Tool_is1) (Version: 6.0.11 - Intel Corporation)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 4.6.1 Hotfix Rollup (KB3146716) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01078 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{0513c9cf-7191-45a7-ace9-ecdad03c93a4}) (Version: 12.0.40660.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{10dc8dbf-d3d7-4e23-be07-120fe5c66b78}) (Version: 12.0.40660.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24516 (HKLM-x32\...\{b8e12890-118d-4721-8e54-05d978086712}) (Version: 14.0.24516.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24516 (HKLM-x32\...\{c325004c-5538-45b3-a7ad-94473a4dcd3b}) (Version: 14.0.24516.0 - Microsoft Corporation)
Miracle Box 1.00 (HKLM-x32\...\Miracle Box 1.00) (Version: 1.00 - BASSAM ELBADWY)
Mozilla Firefox 50.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 50.0.2 (x64 en-US)) (Version: 50.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
NOKIA 3806 USB DRIVER Ver:1.5 (HKLM-x32\...\{6AE35C55-F02A-41EE-B694-8F2706FE4819}) (Version: 2.00.0000 - NOKIA)
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Nokia Pure Fonts (HKLM-x32\...\{8EA78811-A19B-4AB5-AE42-D90DF178DE2B}) (Version: 1.1.0.1 - Microsoft)
Opera Stable 41.0.2353.69 (HKLM-x32\...\Opera 41.0.2353.69) (Version: 41.0.2353.69 - Opera Software)
Oracle VM VirtualBox 5.1.8 (HKLM\...\{65402252-5DA1-4360-A144-E09BB16AC7A9}) (Version: 5.1.8 - Oracle Corporation)
Outils de vérification linguistique 2016 de Microsoft Office - Français (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
PC Connectivity Solution (HKLM-x32\...\{9590C850-8A55-43DB-A413-DFF6E5636570}) (Version: 10.30.0.0 - Nokia)
PES Professionals Patch 2017 FIX V1 (HKLM-x32\...\PES Professionals Patch 2017 FIX V1) (Version: V1 - PES Professionals)
PES Professionals Patch 2017 V1 V1 (HKLM-x32\...\PES Professionals Patch 2017 V1 V1) (Version: V1 - PES Professionals)
Pinnacle Game Profiler (HKLM-x32\...\{49BF48CC-ABB6-4795-9B35-B5DE005D8612}) (Version: 8.2.8 - PowerUp Software)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.3.0 - Prolific Technology INC)
PotPlayer v1.6.63638 Stable x86 (HKLM-x32\...\PotPlayer) (Version: v1.6.63638 Stable x86 - Daum Corp.)
Pro Evolution Soccer 2017 (HKLM-x32\...\Pro Evolution Soccer 2017_is1) (Version: - )
SAM CoDeC Pack (HKLM\...\SAM CoDeC Pack) (Version: 5.85 - www.SamLab.ws)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16061.19 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.4.16061.19 - Samsung Electronics Co., Ltd.) Hidden
Samsung Tool PRO 24.3 (HKLM-x32\...\44676886-FD7F-4C53-B188-BC86EED9BBC1_is1) (Version: - z3x-team)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 3.5.0.1144 - Lenovo)
Snagit 13 (HKLM-x32\...\{5acd453a-fa98-417a-b893-31468cbdd0e5}) (Version: 13.0.3.7115 - TechSmith Corporation)
Snagit 13 (x32 Version: 13.0.3 - TechSmith Corporation) Hidden
Sony Mobile Emma (HKLM-x32\...\Emma) (Version: 2.16.10.201607130957 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.275 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.275 - Sony)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Telegram Desktop version 0.10.19 (HKU\S-1-5-21-3632631583-3328051805-244849390-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.10.19 - Telegram Messenger LLP)
Type Label Fonts (HKLM-x32\...\{799BF338-BC01-4F7A-BC79-A67B75E772CB}) (Version: 1.1.0.1 - Microsoft)
UltraISO Premium V9.66 (HKLM-x32\...\UltraISO_is1) (Version: - )
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-012B-0401-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-012B-0409-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
USB Serial Port Driver (x64) (HKLM-x32\...\{53012BD2-D1A3-4530-9AE2-B0C503B5C1C2}) (Version: 2013.30.0.313 - Nokia)
Viber (HKU\S-1-5-21-3632631583-3328051805-244849390-1000\...\{6b606ee6-b468-4418-a3fe-711a4251f673}) (Version: 6.4.1.1 - Viber Media Inc.)
Viber (x32 Version: 6.4.1.1 - Viber Media Inc.) Hidden
Windows Driver Package - Condor (gnusbnet) Net (11/11/2013 1.2.0.0) (HKLM\...\350179D4FEEF8D83146365E4FD7427A21F5D955A) (Version: 11/11/2013 1.2.0.0 - Condor)
Windows Driver Package - Condor Communication Equipment Co.,Ltd. (gnusbser) Modem (11/11/2013 1.2.0.0) (HKLM\...\FD4B3DDA263F0DD0154678E963EE8341AB29EAFE) (Version: 11/11/2013 1.2.0.0 - Condor Communication Equipment Co.,Ltd.)
Windows Driver Package - Condor Communication Equipment Co.,Ltd. (gnusbser) Ports (11/11/2013 1.2.0.0) (HKLM\...\760ECD7B4391C69CC34B300D57CAAE1D7BF4D16B) (Version: 11/11/2013 1.2.0.0 - Condor Communication Equipment Co.,Ltd.)
Windows Driver Package - Condor Corporation Net (11/11/2013 1.2.0.0) (HKLM\...\E304C591E3B27BA4FEDE756A7033259C81448FE5) (Version: 11/11/2013 1.2.0.0 - Condor Corporation)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Windows Driver Package - MediaTek Inc. (usbser) Ports (01/05/2012 2.0000.0.1) (HKLM\...\49D9ABA9270C5BDFD7AE1BEB607D36B26BB90235) (Version: 01/05/2012 2.0000.0.1 - MediaTek Inc.)
Windows Driver Package - MediaTek Inc. (usbser) Ports (12/24/2011 2.0000.0.0) (HKLM\...\D0E6296D177F42BB31C0200E49412003DB6C4633) (Version: 12/24/2011 2.0000.0.0 - MediaTek Inc.)
Windows Driver Package - Microsoft (WUDFRd) WPD (11/11/2013 1.2.0.0) (HKLM\...\0DB207BF709605C62C08D44DD3A953D00A924560) (Version: 11/11/2013 1.2.0.0 - Microsoft)
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
Windows Driver Package - SPA Condor Electronics (WinUSB) AndroidUsbDeviceClass (11/11/2013 1.2.0.0) (HKLM\...\EA52A0024D67167EA2BC865080C775727661BB60) (Version: 11/11/2013 1.2.0.0 - SPA Condor Electronics)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinUsb CoInstallers (HKLM-x32\...\{B7D4B08A-9D89-4369-B51C-92CF8C03D2F8}) (Version: 1.1.8.1406 - Nokia)
WinUSB Compatible ID Drivers (HKLM-x32\...\{316ED84C-ACDA-4F1F-8E64-52B7AFF8677D}) (Version: 1.1.9.1439 - Nokia)
WinUSB Drivers ext (HKLM-x32\...\{238EAE31-4E9E-43CF-B244-C4879279E6AF}) (Version: 1.1.12.1439 - Nokia)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3632631583-3328051805-244849390-1000_Classes\CLSID\{1EA7E802-F4FD-E6E4-B0BB-2DBB95F2248D}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3632631583-3328051805-244849390-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {10AA1212-DB87-4BB5-9E47-5919C7F0D3DE} - System32\Tasks\TechSmith Updater => C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [2016-09-06] (TechSmith Corporation)
Task: {32D75014-8BEA-47D1-B681-E4B3212CD430} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {3EBCE7BC-D031-4A3C-B3B2-3396ED5789F1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-22] (Adobe Systems Incorporated)
Task: {4649284F-9420-4FBB-9E24-1EB5C4ABF5A9} - \psv_Stim-Fresh -> No File <==== ATTENTION
Task: {5FDE0BED-F6A0-40FA-B7CE-353543E2E628} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {8E53D4A7-D466-423A-BB0F-4FD9E39A4685} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-15] (Piriform Ltd)
Task: {8FDA0869-7325-4FFA-96F9-D4E2255C2B6B} - System32\Tasks\Cherlesenaerly Controls => C:\Program Files (x86)\Chidry\rtit.exe [2016-11-29] (Glarysoft Ltd)
Task: {90321BDB-6838-43DC-BF1E-0806CDB0F37D} - System32\Tasks\d55d54fadd454b4024be170002ed6b6c => Rundll32.exe "C:\Program Files (x86)\Samsung\pootgo.dll",e62dc6c6547f46bda862da2d05af6862 <==== ATTENTION
Task: {95A11C8D-90DB-4420-993E-0C6646F1E940} - \psv_Subing -> No File <==== ATTENTION
Task: {A0F70DFF-05D6-4E39-A841-E81EFC51C41B} - System32\Tasks\Opera scheduled Autoupdate 1477763557 => C:\Program Files (x86)\Opera\launcher.exe [2016-11-21] (Opera Software)
Task: {B9D29AEB-5935-4042-981A-A991F68358AB} - \psv_Techhome -> No File <==== ATTENTION
Task: {BA252C9C-E13B-466C-869F-30DEDA303060} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {C1D391F9-3FB2-4144-949D-132AAEF69A93} - \psv_Vento-Stock -> No File <==== ATTENTION
Task: {DBC48E3E-8D70-4E29-9A1B-2878CB992BE4} - \psv_Fixeco -> No File <==== ATTENTION
Task: {DF824635-8A1B-4751-A025-CD8059B56AF6} - \psv_Trescore -> No File <==== ATTENTION
Task: {E706A48F-C585-4612-BCF0-5BE6F1A939D2} - \psv_Lexikix -> No File <==== ATTENTION
Task: {EB636F5F-2748-40BE-8273-71370F7939CD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-10-05 18:17 - 2016-10-05 18:17 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-06-30 09:23 - 2016-11-14 06:15 - 00592384 _____ () C:\Users\CesarAnDrOiD\AppData\Local\MEGAsync\ShellExtX64.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\office.odf
2010-10-20 15:23 - 2010-10-20 15:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2016-11-30 14:32 - 2016-05-24 08:44 - 00020288 _____ () C:\Program Files\CCleaner\branding.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\office14\Cultures\office.odf
2012-09-23 20:44 - 2012-09-23 20:44 - 00100352 _____ () C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Locale\en_AE\PDFMaker\PDFMOfficeAddin.MEA
2016-06-30 12:24 - 2016-11-14 06:15 - 00564736 _____ () C:\Users\CesarAnDrOiD\AppData\Local\MEGAsync\ShellExtX32.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\office.odf
2010-10-20 15:45 - 2010-10-20 15:45 - 08801120 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2016-11-03 16:28 - 2016-11-03 16:28 - 08968192 _____ () C:\Program Files (x86)\TechSmith\Snagit 13\opencv_core300.dll
2016-11-03 16:28 - 2016-11-03 16:28 - 20629504 _____ () C:\Program Files (x86)\TechSmith\Snagit 13\opencv_imgproc300.dll
2016-11-03 16:30 - 2016-11-03 16:30 - 01152512 _____ () C:\Program Files (x86)\TechSmith\Snagit 13\cairo.dll
2016-11-03 16:30 - 2016-11-03 16:30 - 00601088 _____ () C:\Program Files (x86)\TechSmith\Snagit 13\fontconfig.dll
2016-11-03 16:30 - 2016-11-03 16:30 - 01015296 _____ () C:\Program Files (x86)\TechSmith\Snagit 13\libxml2.dll
2016-11-03 16:30 - 2016-11-03 16:30 - 00023552 _____ () C:\Program Files (x86)\TechSmith\Snagit 13\iconv.dll
2016-11-03 16:30 - 2016-11-03 16:30 - 00588288 _____ () C:\Program Files (x86)\TechSmith\Snagit 13\pixman-1.dll
2016-11-03 16:30 - 2016-11-03 16:30 - 00165888 _____ () C:\Program Files (x86)\TechSmith\Snagit 13\libpng16.dll
2016-11-03 16:30 - 2016-11-03 16:30 - 00071680 _____ () C:\Program Files (x86)\TechSmith\Snagit 13\zlib1.dll
2016-11-03 16:30 - 2016-11-03 16:30 - 00778240 _____ () C:\Program Files (x86)\TechSmith\Snagit 13\harfbuzz.dll
2016-04-13 09:38 - 2016-04-13 09:38 - 00482304 _____ () C:\Users\CesarAnDrOiD\AppData\Local\MEGAsync\libsodium.dll
2016-11-01 13:11 - 2016-03-16 17:24 - 00877056 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\platforms\qwindows.dll
2016-11-01 13:11 - 2016-04-26 09:28 - 00308928 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\GarbageGather.dll
2016-11-01 13:11 - 2016-04-26 09:28 - 00110272 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\FHProcess.dll
2016-11-01 13:11 - 2016-03-16 17:24 - 00013824 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\fsclog.dll
2016-11-01 13:11 - 2016-04-26 09:27 - 00174784 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\BigFileGather.dll
2016-11-01 13:11 - 2016-04-26 09:28 - 00088256 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\EnumVolumes.dll
2016-11-01 13:11 - 2016-04-26 09:28 - 00168128 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\FragAnalysis.dll
2016-11-01 13:11 - 2016-03-25 09:00 - 00024064 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\imageformats\qico.dll
2016-11-01 13:11 - 2016-03-25 09:00 - 00023552 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\imageformats\qgif.dll
2016-11-25 23:22 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:DocumentSummaryInformation [63]
AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:SummaryInformation [63]
AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3632631583-3328051805-244849390-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\CesarAnDrOiD\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupfolder: C:^Users^CesarAnDrOiD^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Telegram.lnk => C:\Windows\pss\Telegram.lnk.Startup
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Bonus.SSR.FR12 => "C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe" /autorun
MSCONFIG\startupreg: EaseUS EPM Tray Agent => "C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\TrayPopupE\TrayTipAgentE.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Viber => "C:\Users\CesarAnDrOiD\AppData\Local\Viber\Viber.exe" StartMinimized

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{71F52C03-5238-4EA4-B48F-0D358905006E}] => C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{35B340D4-3DAC-41D3-A38E-F62AE343B36D}] => C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{02B7F551-48D4-4C54-A206-6A585F8AF2B0}] => C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{A9154F08-8866-47F6-94B2-C5DBAA33DCB2}] => C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{5D58EF13-189B-4437-A8AB-09EEBD4B4F2D}] => C:\Users\CesarAnDrOiD\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D5D344F4-4B7D-46F2-A9B1-39C7E67119C6}] => C:\Users\CesarAnDrOiD\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8AAED048-9D66-4B89-98BF-DA1C063DF5A3}] => C:\Users\CesarAnDrOiD\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B7901B9F-14D0-4BB7-900D-CB892E767846}] => C:\Users\CesarAnDrOiD\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{08458C52-7AEB-4CBD-BEF5-E1A7F7FB2C42}] => C:\Users\CesarAnDrOiD\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{16374540-968C-476A-8662-CF6D22665BD4}] => C:\Users\CesarAnDrOiD\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{34AF2154-70D3-4B09-8461-DC7E5DD3307B}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [UDP Query User{FE905933-5946-43D4-A1F8-4C4DCEA29086}C:\program files (x86)\common files\nokia\fuse\fuseservice.exe] => C:\program files (x86)\common files\nokia\fuse\fuseservice.exe
FirewallRules: [TCP Query User{B7C85926-CF45-452B-9EA2-F48934FDB00F}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [UDP Query User{91D041C4-B18E-474D-A4CC-F9800FEE6E28}C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe] => C:\program files (x86)\nokia\nokia care suite\product support tool for store 5\productsupporttoolforstore.exe
FirewallRules: [{B559C5C0-FC11-430E-9923-40F52E448A2D}] => C:\Program Files\Sony Mobile\Emma\Emma.exe
FirewallRules: [{8A269D69-9369-4602-B9F2-60B367EAF337}] => C:\Program Files\Sony Mobile\Emma\Emma.exe
FirewallRules: [{49E730C6-D643-43E1-8A34-68EB9718A567}] => C:\Program Files (x86)\SHAREit\SHAREit\SHAREit.exe
FirewallRules: [{961787E1-CB81-4285-B57A-2B318B10A43A}] => C:\Program Files (x86)\SHAREit\SHAREit\SHAREit.exe
FirewallRules: [{F8FEDB52-A463-492F-8B16-3F48744E50F6}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{36E25BDA-5395-4954-9673-D5ED547602DC}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{7AB7DC2F-2954-4CC8-BED4-A467802D833A}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{077A9819-0B11-4CC9-B8B0-D1FF074B51B1}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A9A07E03-E66D-47A4-A4BA-9DA7ACB93215}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{B3A54A75-2337-4618-801A-48FC41D41CDB}] => LPort=8298
FirewallRules: [{1FCD6332-E1A0-407E-8966-67FEA556CD82}] => LPort=8318
FirewallRules: [{C4DE64F1-FBA0-46C8-B70F-834455066164}] => C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{AB35D9AD-C05A-4F87-9416-FD659522557E}] => C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{1984972A-33F6-4784-B34A-A75CACFBCB0F}] => C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{5CA1F07C-FDD2-4DB1-B160-F3F1F6425A89}] => C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{DEB9DC17-1246-4B9C-B97C-BA9999AA3950}] => C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe
FirewallRules: [{95065F0B-C34F-4173-9629-088442004151}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{EF374A8A-A078-4762-B9AD-645A48F42C8A}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{F174EF02-51CF-4B7B-9F46-71D408F86670}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A173BCA7-F139-41FB-8A8B-D391DB01DE77}] => C:\Program Files\Mozilla Firefox\firefox.exe

==================== Restore Points =========================

27-11-2016 10:29:47 Installed Microsoft Office Professional Plus 2010
29-11-2016 07:31:01 Camtasia 9
29-11-2016 07:40:42 Camtasia 9
29-11-2016 07:45:28 Removed Traffic Exchange
29-11-2016 07:56:58 Removed Traffic Exchange
29-11-2016 07:58:56 Camtasia 9
29-11-2016 08:08:08 Restore Operation
29-11-2016 10:44:34 Camtasia 9
29-11-2016 13:47:52 Installed ESET Smart Security
29-11-2016 16:00:03 Installed Pinnacle Game Profiler

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/01/2016 08:48:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/01/2016 07:57:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/01/2016 03:40:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/01/2016 12:04:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/01/2016 10:33:32 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/30/2016 07:34:40 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/30/2016 07:07:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/30/2016 03:54:58 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/30/2016 11:28:28 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/30/2016 10:00:11 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4087


System errors:
=============
Error: (12/01/2016 09:09:50 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (12/01/2016 09:09:47 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (12/01/2016 09:09:46 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (12/01/2016 09:09:46 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (12/01/2016 09:07:49 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (12/01/2016 08:48:08 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (12/01/2016 08:47:55 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (12/01/2016 08:47:52 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (12/01/2016 08:47:52 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (12/01/2016 08:47:49 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 77%
Total physical RAM: 3914.36 MB
Available physical RAM: 868.14 MB
Total Virtual: 7826.89 MB
Available Virtual: 5104.32 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:146.14 GB) (Free:19.29 GB) NTFS
Drive d: () (Fixed) (Total:195.31 GB) (Free:79.95 GB) NTFS
Drive e: () (Fixed) (Total:123.96 GB) (Free:123.81 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 9B65F6AE)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=146.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=124 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================