Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-10-2013
Ran by SYSTEM at 2013-10-11 16:11:12 Run:1
Running from F:\
Boot Mode: Recovery
==============================================

Content of fixlist:
*****************
HKLM\...\Run: [AS2014] - C:\ProgramData\gX337333\gX337333.exe
C:\ProgramData\gX337333
HKU\admin\...\Run: [AS2014] - C:\ProgramData\gX337333\gX337333.exe

HKLM\...\Winlogon: [Userinit] C:\ProgramData\gX337333\gX337333.exe -sm,
HKU\admin\...\Run: [crediles] - rundll32 "C:\Users\admin\AppData\Local\Temp\explmmc64.dll",CreateProcessNotify <===== ATTENTION
C:\Users\admin\AppData\Local\Temp\explmmc64.dll
S2 *etadpug; "C:\Program Files (x86)\Google\Desktop\Install\{44ed8363-71b7-b030-c4a3-bda14e250c8f}\   \...\???\{44ed8363-71b7-b030-c4a3-bda14e250c8f}\GoogleUpdate.exe" < <==== ATTENTION (ZeroAccess)
S1 pnhynwsk; \??\C:\Windows\system32\drivers\pnhynwsk.sys [x]
S1 rdcjrmhm; \??\C:\Windows\system32\drivers\rdcjrmhm.sys [x]
S1 sqgbkqyb; \??\C:\Windows\system32\drivers\sqgbkqyb.sys [x]
S1 wyemuqbr; \??\C:\Windows\system32\drivers\wyemuqbr.sys [x]
C:\Program Files (x86)\BonanzaDeals
C:\Users\admin\AppData\Local\Google\Desktop\Install
C:\Program Files (x86)\Google\Desktop\Install
C:\ProgramData\dsgsdgdsgdsgw.bat
C:\ProgramData\dsgsdgdsgdsgw.reg

*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AS2014 => Value deleted successfully.
C:\ProgramData\gX337333 => Moved successfully.
HKU\admin\Software\Microsoft\Windows\CurrentVersion\Run\\AS2014 => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => Value was restored successfully.
HKU\admin\Software\Microsoft\Windows\CurrentVersion\Run\\crediles => Value deleted successfully.
C:\Users\admin\AppData\Local\Temp\explmmc64.dll => Moved successfully.
*etadpug => Unable to delete service
*etadpug => Service should be removed with FRST outside recovery mode.
pnhynwsk => Service deleted successfully.
rdcjrmhm => Service deleted successfully.
sqgbkqyb => Service deleted successfully.
wyemuqbr => Service deleted successfully.
C:\Program Files (x86)\BonanzaDeals => Moved successfully.
C:\Users\admin\AppData\Local\Google\Desktop\Install => Moved successfully.
C:\Program Files (x86)\Google\Desktop\Install => Moved successfully.
C:\ProgramData\dsgsdgdsgdsgw.bat => Moved successfully.
C:\ProgramData\dsgsdgdsgdsgw.reg => Moved successfully.

==== End of Fixlog ====