Fix result of Farbar Recovery Scan Tool (x64) Version: 02.01.2018
Ran by Lenovo (13-01-2018 02:10:11) Run:1
Running from C:\Users\Lenovo\Desktop
Loaded Profiles: Lenovo (Available Profiles: Lenovo)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
Hosts:
RemoveProxy:
EmptyTemp:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
AutoConfigURL: [S-1-5-21-2157677207-3254521782-4080970199-1000] => hxxp://web-quick.com/wpad.dat?db45962d9ca7d3b71932ac6f7249f94336778457
Toolbar: HKU\S-1-5-21-2157677207-3254521782-4080970199-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
SearchScopes: HKU\S-1-5-21-2157677207-3254521782-4080970199-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-2157677207-3254521782-4080970199-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Wondershare TunesGo (Win) - Android Devices\DriverInstall.exe [X]
2017-12-19 19:11 - 2017-12-19 19:11 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Task: {EB02381F-D652-4B1C-894A-712498C62C51} - \Microsoft\Windows\MUI\LPRemove -> No File <==== ATTENTION
Task: {F3ACF38C-3C04-4AEE-BF80-C883DFF65EED} - System32\Tasks\RunAtStartup => C:\Users\Lenovo\AppData\Roaming\Event Monitor\em.exe <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Microsoft:FNDELRHXAUKDIQJPQXSKNNO [2130]
AlternateDataStreams: C:\Users\Lenovo\AppData\Local\Temp:9F8LpAuDSqegdN1SQHc9H39bhkJ [2258]
cmd: ipconfig /flushdns
end
*****************

Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= RemoveProxy: =========

"HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies\\" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-2157677207-3254521782-4080970199-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL" => removed successfully
"HKU\S-1-5-21-2157677207-3254521782-4080970199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-2157677207-3254521782-4080970199-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

"HKLM\SOFTWARE\Policies\Microsoft\Windows Defender" => removed successfully
"HKU\S-1-5-21-2157677207-3254521782-4080970199-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL" => not found
"HKU\S-1-5-21-2157677207-3254521782-4080970199-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found
"HKU\S-1-5-21-2157677207-3254521782-4080970199-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-21-2157677207-3254521782-4080970199-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => removed successfully
HKLM\Software\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key not found
"HKLM\System\CurrentControlSet\Services\WsDrvInst" => removed successfully
WsDrvInst => service removed successfully
C:\Windows\System32\Tasks\Avast Software => moved successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg" => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg" => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{EB02381F-D652-4B1C-894A-712498C62C51} => could not remove key. ErrorCode1: 0x00000002
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EB02381F-D652-4B1C-894A-712498C62C51}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MUI\LPRemove" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F3ACF38C-3C04-4AEE-BF80-C883DFF65EED}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3ACF38C-3C04-4AEE-BF80-C883DFF65EED}" => removed successfully
C:\Windows\System32\Tasks\RunAtStartup => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RunAtStartup" => removed successfully
C:\ProgramData\Microsoft => ":FNDELRHXAUKDIQJPQXSKNNO" ADS removed successfully
C:\Users\Lenovo\AppData\Local\Temp => ":9F8LpAuDSqegdN1SQHc9H39bhkJ" ADS removed successfully

========= ipconfig /flushdns =========


Configuration IP de Windows

Cache de r‚solution DNS vid‚.

========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 100375332 B
Java, Flash, Steam htmlcache => 4606 B
Windows/system/drivers => 214888 B
Edge => 0 B
Chrome => 0 B
Firefox => 392563843 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 35460 B
systemprofile32 => 692 B
LocalService => 0 B
NetworkService => 0 B
Lenovo => 1773865451 B

RecycleBin => 467270285 B
EmptyTemp: => 2.5 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 02:12:39 ====