Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 31-08-2014 02
Ran by Differ Shop at 2014-09-02 17:03:19 Run:1
Running from C:\Users\Differ Shop\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
(Fuyu LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe
() C:\Program Files (x86)\SupTab\HpUI.exe
() C:\Program Files (x86)\SupTab\Loader64.exe
() C:\Program Files (x86)\SupTab\Loader32.exe
() C:\Users\Differ Shop\AppData\Roaming\VOPackage
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [715656 2014-09-01] (Cherished Technololgy LIMITED)
R2 servervo; C:\Users\Differ Shop\AppData\Roaming\VOPackage\VOsrv.exe [71680 2014-09-01] () [File not signed]
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [528896 2014-09-01] (Fuyu LIMITED) [File not signed]
S2 trntv; C:\Users\Differ Shop\AppData\Roaming\TornTV.com\TornTVSvc.exe [X]
R1 {55685567-4840-4a91-962b-49a412e9485a}Gw64; C:\Windows\System32\drivers\{55685567-4840-4a91-962b-49a412e9485a}Gw64.sys [61112 2014-05-26] (StdLib)
R1 {9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64; C:\Windows\System32\drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys [61112 2014-05-12] (StdLib)
Task: {19E620D6-803D-44D3-A747-35F3F4790F45} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2014-09-01] (AnyProtect.com) <==== ATTENTION
Task: {9F9CEA17-EC23-4E54-8D6A-ED8BD347DDC3} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2014-09-01] (AnyProtect.com) <==== ATTENTION
Task: {B13766DF-1561-41D0-91DC-7F0B1069EB9F} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2014-09-01] (AnyProtect.com) <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\RunOnce: [VOPackage] => C:\Users\Differ Shop\AppData\Roaming\VOPackage\VOPackage.exe [291146 2014-09-01] ( )
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-249513183-3251645164-300344122-1002\...\Run: [AdobeBridge] => [X]
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://istart.webssearches.com/?type=sc&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
ShortcutWithArgument: C:\Users\Differ Shop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://istart.webssearches.com/?type=sc&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
ShortcutWithArgument: C:\Users\Differ Shop\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://istart.webssearches.com/?type=sc&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
ShortcutWithArgument: C:\Users\Differ Shop\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://istart.webssearches.com/?type=sc&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
ShortcutWithArgument: C:\Users\Differ Shop\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://istart.webssearches.com/?type=sc&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=ds&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=ds&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=ds&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=ds&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?type=ds&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?type=ds&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9&q={searchTerms}
SearchScopes: HKLM - {E2A5A6EC-3A11-47E3-B22F-7EF96D11B6E3} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?type=ds&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?type=ds&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9&q={searchTerms}
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?type=ds&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9&q={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?type=ds&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9&q={searchTerms}
SearchScopes: HKCU - {E2A5A6EC-3A11-47E3-B22F-7EF96D11B6E3} URL =
BHO-x32: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
CHR StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://istart.webssearches.com/?type=sc&ts=1409580948&from=ild&uid=ST1000LM014-SSHD-8GB_W380YPY9XXXXW380YPY9
C:\Users\Differ Shop\AppData\Local\nsiAA82.tmp
C:\Users\Differ Shop\AppData\Roaming\ap_logs
C:\Users\Differ Shop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
C:\Users\Differ Shop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
C:\Users\Differ Shop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
C:\Users\Differ Shop\AppData\Roaming\VOPackage
C:\Users\Differ Shop\Desktop\AnyProtect.lnk
C:\Users\Differ Shop\Desktop\Continue Live Installation.lnk
C:\Users\Differ Shop\Desktop\Torntv Downloader.lnk
C:\Windows\System32\drivers\{55685567-4840-4a91-962b-49a412e9485a}Gw64.sys
C:\Windows\System32\drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys
Reboot:
*****************

[4344] C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe => Process closed successfully.
[11996] C:\ProgramData\IePluginServices\PluginService.exe => Process closed successfully.
[11004] C:\Program Files (x86)\SupTab\HpUI.exe => Process closed successfully.
[11684] C:\Program Files (x86)\SupTab\Loader64.exe => Process closed successfully.
[13060] C:\Program Files (x86)\SupTab\Loader32.exe => Process closed successfully.
C:\Users\Differ Shop\AppData\Roaming\VOPackage => No running process found
IePluginServices => Service deleted successfully.
servervo => Unable to stop service
servervo => Service deleted successfully.
WindowsMangerProtect => Service deleted successfully.
trntv => Service deleted successfully.
{55685567-4840-4a91-962b-49a412e9485a}Gw64 => Unable to stop service
{55685567-4840-4a91-962b-49a412e9485a}Gw64 => Service deleted successfully.
{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64 => Unable to stop service
{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64 => Service deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{19E620D6-803D-44D3-A747-35F3F4790F45}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{19E620D6-803D-44D3-A747-35F3F4790F45}" => Key deleted successfully.
C:\Windows\System32\Tasks\APSnotifierPP1 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP1" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9F9CEA17-EC23-4E54-8D6A-ED8BD347DDC3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9F9CEA17-EC23-4E54-8D6A-ED8BD347DDC3}" => Key deleted successfully.
C:\Windows\System32\Tasks\APSnotifierPP2 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP2" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B13766DF-1561-41D0-91DC-7F0B1069EB9F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B13766DF-1561-41D0-91DC-7F0B1069EB9F}" => Key deleted successfully.
C:\Windows\System32\Tasks\APSnotifierPP3 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP3" => Key deleted successfully.
C:\WINDOWS\Tasks\APSnotifierPP1.job => Moved successfully.
C:\WINDOWS\Tasks\APSnotifierPP2.job => Moved successfully.
C:\WINDOWS\Tasks\APSnotifierPP3.job => Moved successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc" => Key deleted successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc" => Key deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\VOPackage => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoFolderOptions => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => value deleted successfully.
HKU\S-1-5-21-249513183-3251645164-300344122-1002\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk => Shortcut argument was removed successfully.
C:\Users\Differ Shop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk => Shortcut argument was removed successfully.
C:\Users\Differ Shop\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk => Shortcut argument was removed successfully.
C:\Users\Differ Shop\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => Shortcut argument was removed successfully.
C:\Users\Differ Shop\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk => Shortcut argument was removed successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
"HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E2A5A6EC-3A11-47E3-B22F-7EF96D11B6E3}" => Key deleted successfully.
"HKCR\CLSID\{E2A5A6EC-3A11-47E3-B22F-7EF96D11B6E3}" => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
"HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E2A5A6EC-3A11-47E3-B22F-7EF96D11B6E3}" => Key deleted successfully.
"HKCR\CLSID\{E2A5A6EC-3A11-47E3-B22F-7EF96D11B6E3}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}" => Key deleted successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command\\Default => Value was restored successfully.
C:\Users\Differ Shop\AppData\Local\nsiAA82.tmp => Moved successfully.
C:\Users\Differ Shop\AppData\Roaming\ap_logs => Moved successfully.
C:\Users\Differ Shop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup => Moved successfully.
C:\Users\Differ Shop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com => Moved successfully.
C:\Users\Differ Shop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage => Moved successfully.
C:\Users\Differ Shop\AppData\Roaming\VOPackage => Moved successfully.
C:\Users\Differ Shop\Desktop\AnyProtect.lnk => Moved successfully.
C:\Users\Differ Shop\Desktop\Continue Live Installation.lnk => Moved successfully.
C:\Users\Differ Shop\Desktop\Torntv Downloader.lnk => Moved successfully.
C:\Windows\System32\drivers\{55685567-4840-4a91-962b-49a412e9485a}Gw64.sys => Moved successfully.
C:\Windows\System32\drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys => Moved successfully.


The system needed a reboot. 

==== End of Fixlog ====