Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-01-2015
Ran by Adrian at 2015-01-08 22:55:27 Run:2
Running from C:\Users\Adrian\Desktop\frst
Loaded Profile: Adrian (Available profiles: Adrian)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CloseProcesses:
CreateRestorePoint:
Task: {3672EE5F-4031-4CB2-9C1C-CD077897A8ED} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {51A99528-AC3F-4E1E-9B9D-048AD1AAE92E} - System32\Tasks\Voo Update => C:\Users\Adrian\AppData\Roaming\VooUpdate\UpdateProc\UpdateTask.exe [2015-01-07] () <==== ATTENTION
Task: {585D745E-E8B5-448A-8642-86BDF01FFB23} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {79E2E7DC-B057-4BAF-96A9-EF6D000C7BEA} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {AB6DE1CB-FEC7-4958-88BA-0A2F43B37585} - System32\Tasks\OECCTZ => C:\Users\Adrian\AppData\Roaming\OECCTZ.exe [2015-01-06] (Object Browser) <==== ATTENTION
Task: {EAA2AF69-E45E-4A83-B105-1498CB5772EB} - System32\Tasks\AJGQBYXZ => C:\Users\Adrian\AppData\Roaming\AJGQBYXZ.exe [2015-01-06] (Object Browser) <==== ATTENTION
Task: C:\WINDOWS\Tasks\AJGQBYXZ.job => C:\Users\Adrian\AppData\Roaming\AJGQBYXZ.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\OECCTZ.job => C:\Users\Adrian\AppData\Roaming\OECCTZ.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Voo Update.job => C:\Users\Adrian\AppData\Roaming\VOOUPD~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
HKLM-x32\...\Run: [gmsd_pl_18] => [X]
HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\...\Run: [EpicScale] => C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe [1725776 2014-11-30] (BitTorrent Inc.)
HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=170
SearchScopes: HKU\S-1-5-21-1229153242-3201741155-1693493588-1001 -> DefaultScope {1838EEB7-D790-4C38-977B-7610FC411ABC} URL =
SearchScopes: HKU\S-1-5-21-1229153242-3201741155-1693493588-1001 -> {1838EEB7-D790-4C38-977B-7610FC411ABC} URL =
BHO: No Name -> {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} -> No File
BHO: No Name -> {FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} -> No File
C:\Program Files (x86)\globalUpdate
C:\ProgramData\EpicScale
C:\ProgramData\TEMP
C:\Users\Adrian\AppData\Local\nshEAC8.tmp
C:\Users\Adrian\AppData\Local\CrashRpt
C:\Users\Adrian\AppData\Local\globalUpdate
C:\Users\Adrian\AppData\Local\Google
C:\Users\Adrian\AppData\Roaming\*.exe
C:\Users\Adrian\AppData\Roaming\AnyProtectEx
C:\Users\Adrian\AppData\Roaming\VooUpdate
C:\Users\Adrian\AppData\Roaming\WebTest
C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Epic Scale.lnk
C:\Users\Adrian\Desktop\Continue Live Installation.lnk
C:\Users\Public\Documents\GOOBZO
C:\Users\Public\Documents\ShopperPro
C:\Users\Public\Documents\YTAHelper
C:\Users\Adrian\Downloads\SpyHunter-Installer.exe
C:\WINDOWS\patsearch.bin
EmptyTemp:
*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3672EE5F-4031-4CB2-9C1C-CD077897A8ED}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3672EE5F-4031-4CB2-9C1C-CD077897A8ED}" => Key deleted successfully.
C:\Windows\System32\Tasks\APSnotifierPP3 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP3" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{51A99528-AC3F-4E1E-9B9D-048AD1AAE92E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{51A99528-AC3F-4E1E-9B9D-048AD1AAE92E}" => Key deleted successfully.
C:\Windows\System32\Tasks\Voo Update => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Voo Update" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{585D745E-E8B5-448A-8642-86BDF01FFB23}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{585D745E-E8B5-448A-8642-86BDF01FFB23}" => Key deleted successfully.
C:\Windows\System32\Tasks\APSnotifierPP2 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP2" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{79E2E7DC-B057-4BAF-96A9-EF6D000C7BEA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{79E2E7DC-B057-4BAF-96A9-EF6D000C7BEA}" => Key deleted successfully.
C:\Windows\System32\Tasks\APSnotifierPP1 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP1" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AB6DE1CB-FEC7-4958-88BA-0A2F43B37585}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AB6DE1CB-FEC7-4958-88BA-0A2F43B37585}" => Key deleted successfully.
C:\Windows\System32\Tasks\OECCTZ => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OECCTZ" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EAA2AF69-E45E-4A83-B105-1498CB5772EB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EAA2AF69-E45E-4A83-B105-1498CB5772EB}" => Key deleted successfully.
C:\Windows\System32\Tasks\AJGQBYXZ => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AJGQBYXZ" => Key deleted successfully.
C:\WINDOWS\Tasks\AJGQBYXZ.job => Moved successfully.
C:\WINDOWS\Tasks\APSnotifierPP1.job => Moved successfully.
C:\WINDOWS\Tasks\APSnotifierPP2.job => Moved successfully.
C:\WINDOWS\Tasks\APSnotifierPP3.job => Moved successfully.
C:\WINDOWS\Tasks\OECCTZ.job => Moved successfully.
C:\WINDOWS\Tasks\Voo Update.job => Moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\gmsd_pl_18 => value deleted successfully.
HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\Software\Microsoft\Windows\CurrentVersion\Run\\EpicScale => value deleted successfully.
HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1838EEB7-D790-4C38-977B-7610FC411ABC}" => Key deleted successfully.
HKCR\CLSID\{1838EEB7-D790-4C38-977B-7610FC411ABC} => Key not found. 
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}" => Key deleted successfully.
HKCR\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} => Key not found. 
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}" => Key deleted successfully.
HKCR\CLSID\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} => Key not found. 
C:\Program Files (x86)\globalUpdate => Moved successfully.
C:\ProgramData\EpicScale => Moved successfully.
C:\ProgramData\TEMP => Moved successfully.
C:\Users\Adrian\AppData\Local\nshEAC8.tmp => Moved successfully.
C:\Users\Adrian\AppData\Local\CrashRpt => Moved successfully.
C:\Users\Adrian\AppData\Local\globalUpdate => Moved successfully.
C:\Users\Adrian\AppData\Local\Google => Moved successfully.
"C:\Users\Adrian\AppData\Roaming\*.exe" => File/Directory not found.
C:\Users\Adrian\AppData\Roaming\AnyProtectEx => Moved successfully.
C:\Users\Adrian\AppData\Roaming\VooUpdate => Moved successfully.
C:\Users\Adrian\AppData\Roaming\WebTest => Moved successfully.
"C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Epic Scale.lnk" => File/Directory not found.
C:\Users\Adrian\Desktop\Continue Live Installation.lnk => Moved successfully.
C:\Users\Public\Documents\GOOBZO => Moved successfully.
C:\Users\Public\Documents\ShopperPro => Moved successfully.
C:\Users\Public\Documents\YTAHelper => Moved successfully.
C:\Users\Adrian\Downloads\SpyHunter-Installer.exe => Moved successfully.
C:\WINDOWS\patsearch.bin => Moved successfully.
EmptyTemp: => Removed 519.7 MB temporary data.


The system needed a reboot. 

==== End of Fixlog 22:56:37 ====