Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 05-09-2013
Ran by Michał at 2013-09-06 08:03:55 Run:1
Running from C:\Users\Michał\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKCU\...\Run: [Google Update*] - [x] <===== ATTENTION (ZeroAccess rootkit hidden path)
HKCR\...409d6c4515e9\InprocServer32: [Default-shell32] C:\$Recycle.Bin\S-1-5-21-1444334124-1429340301-1089822364-1001\$11f17f5708447e54188e2b3d38885f5d\n. ATTENTION! ====> ZeroAccess?
HKCU\...\Policies\Explorer: [NoDrives] 0
HKLM\...\Policies\Explorer: [NoDrives] 0
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2786678
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2786678
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\MICHA~1\AppData\Local\Temp\crx6598.tmp
Task: {D1C1C6C4-9556-4498-A26F-98E835DF64BA} - \Program aktualizacji online firmy Adobe. No Task File
C:\$Recycle.Bin\S-1-5-21-1444334124-1429340301-1089822364-1001\$11f17f5708447e54188e2b3d38885f5d
C:\Users\Michał\AppData\Local\Google\Desktop
C:\Users\Michał\AppData\Roaming\Equ
C:\Users\Michał\AppData\Roaming\Kaawgao
*****************

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update* => Value deleted successfully.
HKCU\Software\Classes\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9} => Key deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoDrives => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoDrives => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key deleted successfully.
HKCR\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Value deleted successfully.
HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => Value deleted successfully.
HKCR\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bejbohlohkkgompgecdcbbglkpjfjgdj => Key deleted successfully.
"C:\Users\MICHA~1\AppData\Local\Temp\crx6598.tmp" => File/Directory not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D1C1C6C4-9556-4498-A26F-98E835DF64BA} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D1C1C6C4-9556-4498-A26F-98E835DF64BA} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Program aktualizacji online firmy Adobe. => Key deleted successfully.
C:\$Recycle.Bin\S-1-5-21-1444334124-1429340301-1089822364-1001\$11f17f5708447e54188e2b3d38885f5d => Moved successfully.

"C:\Users\Michał\AppData\Local\Google\Desktop" directory move:

Could not move "C:\Users\Michał\AppData\Local\Google\Desktop" directory. => Scheduled to move on reboot.

C:\Users\Michał\AppData\Roaming\Equ => Moved successfully.
C:\Users\Michał\AppData\Roaming\Kaawgao => Moved successfully.

=========== Result of Scheduled Files to move ===========

C:\Users\Michał\AppData\Local\Google\Desktop => Moved successfully.

==== End of Fixlog ====