Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-04-2015
Ran by Owner at 2015-04-13 13:15:36 Run:1
Running from C:\Users\Owner\Documents
Loaded Profiles: Owner (Available profiles: Owner)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
TTProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:47574
SearchScopes: HKLM -> {589B893E-773C-4941-88C2-0DCC718E621C} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll No File
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll No File
Tcpip\..\Interfaces\{0D051FC4-DDEB-40D0-B3EF-4963C5081C95}: [NameServer] 31.168.228.251,82.166.96.251
Tcpip\..\Interfaces\{BFCD9C25-CD0C-48EA-BE31-11B2798E19F3}: [NameServer] 31.168.228.251,82.166.96.251
S2 Update Cantataweb; "C:\Program Files (x86)\Cantataweb\updateCantataweb.exe" [X]
S2 Update Cyti Web; "C:\Program Files (x86)\Cyti Web\updateCytiWeb.exe" [X]
HKLM-x32\...\Run: [ospd_us_1004] => "C:\Program Files (x86)\ospd_us_1004\ospd_us_1004.exe"
C:\Users\Owner\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Owner\AppData\Local\Temp\drm_dyndata_7330014.dll
C:\Users\Owner\AppData\Local\Temp\KUIU.EXE
C:\Users\Owner\AppData\Local\Temp\MouseKeyboardCenterx64_1033.exe
C:\Users\Owner\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Owner\AppData\Local\Temp\Quarantine.exe
C:\Users\Owner\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Owner\AppData\Local\Temp\sqlite3.dll
Task: {12FC6FA6-6166-4AC7-AD04-46203D7F068B} - System32\Tasks\avaavaxvyy => C:\Users\Owner\AppData\Local\avaavaxvyy\avaavaxvyy.exe [2015-03-31] () <==== ATTENTION
Task: {4FE1F654-CE34-4408-83EA-E0B335410B9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-20] (Google Inc.)
Task: {944F4E31-127B-49A2-AC54-97053D5AC6FC} - System32\Tasks\{ABBB790D-0557-4CD3-A243-EF794A6C9DC5} => pcalua.exe -a "C:\Users\Public\Documents\HoMM3 WoG\allinone_358f\WoG_Install\Install.exe" -d "C:\Users\Public\Documents\HoMM3 WoG\allinone_358f\WoG_Install"
Task: {C2D31A60-9105-4A4F-84B7-7986ABFAF931} - System32\Tasks\{C1924AB3-1CD1-474D-8933-F3FF0E7D48D1} => pcalua.exe -a C:\PROGRA~2\SearchProtect\Main\bin\uninstall.exe -c /S <==== ATTENTION
Task: {F6696B49-5365-48FC-9B56-31A5F4CF6739} - \Tempo Runner coz64host No Task File <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Users\Owner\AppData\Local\avaavaxvyy
C:\Users\Owner\AppData\Local\Temp\is-L66BV.tmp
C:\PROGRA~2\SearchProtect
C:\Program Files (x86)\ospd_us_1004

*****************

HKU\TT.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => Value not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{589B893E-773C-4941-88C2-0DCC718E621C}" => Key deleted successfully.
HKCR\CLSID\{589B893E-773C-4941-88C2-0DCC718E621C} => Key not found. 
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\skypec2c" => Key deleted successfully.
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{0D051FC4-DDEB-40D0-B3EF-4963C5081C95}\\NameServer => value deleted successfully.
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{BFCD9C25-CD0C-48EA-BE31-11B2798E19F3}\\NameServer => value deleted successfully.
Update Cantataweb => Service deleted successfully.
Update Cyti Web => Service deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ospd_us_1004 => value deleted successfully.
C:\Users\Owner\AppData\Local\Temp\drm_dialogs.dll => Moved successfully.
C:\Users\Owner\AppData\Local\Temp\drm_dyndata_7330014.dll => Moved successfully.
C:\Users\Owner\AppData\Local\Temp\KUIU.EXE => Moved successfully.
C:\Users\Owner\AppData\Local\Temp\MouseKeyboardCenterx64_1033.exe => Moved successfully.
C:\Users\Owner\AppData\Local\Temp\MSETUP4.EXE => Moved successfully.
C:\Users\Owner\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Owner\AppData\Local\Temp\SkypeSetup.exe => Moved successfully.
C:\Users\Owner\AppData\Local\Temp\sqlite3.dll => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{12FC6FA6-6166-4AC7-AD04-46203D7F068B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{12FC6FA6-6166-4AC7-AD04-46203D7F068B}" => Key deleted successfully.
C:\Windows\System32\Tasks\avaavaxvyy => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\avaavaxvyy" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4FE1F654-CE34-4408-83EA-E0B335410B9E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4FE1F654-CE34-4408-83EA-E0B335410B9E}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{944F4E31-127B-49A2-AC54-97053D5AC6FC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{944F4E31-127B-49A2-AC54-97053D5AC6FC}" => Key deleted successfully.
C:\Windows\System32\Tasks\{ABBB790D-0557-4CD3-A243-EF794A6C9DC5} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ABBB790D-0557-4CD3-A243-EF794A6C9DC5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C2D31A60-9105-4A4F-84B7-7986ABFAF931}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C2D31A60-9105-4A4F-84B7-7986ABFAF931}" => Key deleted successfully.
C:\Windows\System32\Tasks\{C1924AB3-1CD1-474D-8933-F3FF0E7D48D1} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C1924AB3-1CD1-474D-8933-F3FF0E7D48D1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F6696B49-5365-48FC-9B56-31A5F4CF6739}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6696B49-5365-48FC-9B56-31A5F4CF6739}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Tempo Runner coz64host" => Key deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Users\Owner\AppData\Local\avaavaxvyy => Moved successfully.
"C:\Users\Owner\AppData\Local\Temp\is-L66BV.tmp" => File/Directory not found.
"C:\PROGRA~2\SearchProtect" => File/Directory not found.
"C:\Program Files (x86)\ospd_us_1004" => File/Directory not found.

==== End of Fixlog 13:15:40 ====