Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 10-12-2013 01
Ran by Konrad at 2013-12-11 17:59:04 Run:1
Running from E:\Users\Konrad\Downloads
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
(Oracle Corporation) E:\Windows\System32\javaw.exe
HKCU\...\Run: [spoolsv32] - "E:\Windows\system32\javaw.exe" -jar "E:\Users\Konrad\AppData\Roaming\Win32\spoolsv32.jar"
Winlogon\Notify\LogonInit: logonInit.dll [X]
Task: {39D73616-7CCF-4219-BD4F-87C919A30E88} - System32\Tasks\Go for FilesUpdate => E:\Program Files\GoforFiles\GFFUpdater.exe
Task: {4A3F21DF-448B-441F-B902-2414FDF7A4EA} - System32\Tasks\{BE50B698-2E44-4BA5-8D69-56C1143058B4} => C:\Program Files\Magebot\magebotv55.exe
Task: {82D56E82-CD75-489E-9816-DD37393CEFFD} - System32\Tasks\FoxTab => E:\Users\Konrad\AppData\Roaming\FoxTab\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {CE14E623-520A-427B-B0D2-263388392142} - System32\Tasks\{E3AFC343-5EB2-479D-ACA2-D62F3B07AF6D} => E:\Users\Konrad\Desktop\ElfBot NG 8.6\loader.exe
Task: {FCBAFE06-C22E-4918-AAD3-F29729521E4E} - System32\Tasks\{7336CF3B-19BA-4477-9D82-C272181EB54A} => E:\Users\Konrad\Desktop\ElfBot NG 8.6\loader.exe
Task: E:\Windows\Tasks\FoxTab.job => E:\Users\Konrad\AppData\Roaming\FoxTab\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www2.delta-search.com/?babsrc=hp_ss&mntrid=f0c0bc5ff40b78e3&affid=119357&tt=150913_ctrl&tsp=5008
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/custom?domains=entretieneteds.to.md&q=&sitesearch=&client=pub-3439752189615153
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.golsearch.com/?q={searchTerms}&babsrc=SP_ss_Btisdt6&mntrId=F0C0BC5FF40B78E3&affID=119357&tt=150913_ctrl&tsp=5008
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.golsearch.com/?q={searchTerms}&babsrc=SP_ss_Btisdt6&mntrId=F0C0BC5FF40B78E3&affID=119357&tt=150913_ctrl&tsp=5008
S3 GGSAFERDriver; \??\C:\Garena Plus\Room\safedrv.sys [x]
S2 LMIInfo; \??\E:\Program Files\LogMeIn\x86\RaInfo.sys [x]
S4 LMIRfsClientNP; No ImagePath
E:\Users\Konrad\AppData\Roaming\AVG2013
E:\Users\Konrad\AppData\Roaming\Babylon
E:\Users\Konrad\AppData\Roaming\GoforFiles
E:\Users\Konrad\AppData\Roaming\H57srg30yihaJNCdfUfQTIddSQoDqO
E:\Users\Konrad\AppData\Roaming\MSDrvCfg
E:\Users\Konrad\AppData\Roaming\OpenCandy
E:\Users\Konrad\AppData\Roaming\Ospux
E:\Users\Konrad\AppData\Roaming\Ozin
E:\Users\Konrad\AppData\Roaming\Splashtop
E:\Users\Konrad\AppData\Roaming\Thinstall
E:\Users\Konrad\AppData\Roaming\Win32
E:\Users\Konrad\Downloads\ipchanger(3).exe
E:\Users\Konrad\Downloads\3nity-CD-DVD-BURNER(39358).exe
E:\Users\Konrad\Downloads\Norton-AntiVirus(12646).exe
E:\Users\Konrad\Downloads\Norton-AntiVirus(12646)(1).exe
E:\Users\Konrad\Downloads\Norton-AntiVirus(12646)(2).exe
E:\Users\Konrad\Downloads\Norton-AntiVirus(12646).exe.part
E:\Users\Konrad\Downloads\Norton-AntiVirus(12646)(1).exe.part
E:\Users\Konrad\Downloads\SoftonicDownloader_dla_jetclean.exe
E:\Users\Konrad\Documents\Mobogenie
E:\Users\Konrad\AppData\Local\Mobogenie
E:\Users\Konrad\AppData\Local\cache
E:\Users\Konrad\daemonprocess.txt
E:\Program Files\Mobogenie
E:\Program Files\mozilla firefox\searchplugins\babylon.xml
E:\Program Files\mozilla firefox\plugins\npwachk.dll
E:\ProgramData\McAfee
*****************

[4124] E:\Windows\System32\javaw.exe => Process closed successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\spoolsv32 => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LogonInit => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{39D73616-7CCF-4219-BD4F-87C919A30E88} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{39D73616-7CCF-4219-BD4F-87C919A30E88} => Key deleted successfully.
E:\Windows\System32\Tasks\Go for FilesUpdate => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Go for FilesUpdate => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A3F21DF-448B-441F-B902-2414FDF7A4EA} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A3F21DF-448B-441F-B902-2414FDF7A4EA} => Key deleted successfully.
E:\Windows\System32\Tasks\{BE50B698-2E44-4BA5-8D69-56C1143058B4} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BE50B698-2E44-4BA5-8D69-56C1143058B4} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{82D56E82-CD75-489E-9816-DD37393CEFFD} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{82D56E82-CD75-489E-9816-DD37393CEFFD} => Key deleted successfully.
E:\Windows\System32\Tasks\FoxTab => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FoxTab => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CE14E623-520A-427B-B0D2-263388392142} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE14E623-520A-427B-B0D2-263388392142} => Key deleted successfully.
E:\Windows\System32\Tasks\{E3AFC343-5EB2-479D-ACA2-D62F3B07AF6D} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E3AFC343-5EB2-479D-ACA2-D62F3B07AF6D} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FCBAFE06-C22E-4918-AAD3-F29729521E4E} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FCBAFE06-C22E-4918-AAD3-F29729521E4E} => Key deleted successfully.
E:\Windows\System32\Tasks\{7336CF3B-19BA-4477-9D82-C272181EB54A} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7336CF3B-19BA-4477-9D82-C272181EB54A} => Key deleted successfully.
E:\Windows\Tasks\FoxTab.job => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
GGSAFERDriver => Service deleted successfully.
LMIInfo => Service deleted successfully.
LMIRfsClientNP => Service deleted successfully.
E:\Users\Konrad\AppData\Roaming\AVG2013 => Moved successfully.
E:\Users\Konrad\AppData\Roaming\Babylon => Moved successfully.
E:\Users\Konrad\AppData\Roaming\GoforFiles => Moved successfully.
E:\Users\Konrad\AppData\Roaming\H57srg30yihaJNCdfUfQTIddSQoDqO => Moved successfully.
E:\Users\Konrad\AppData\Roaming\MSDrvCfg => Moved successfully.
E:\Users\Konrad\AppData\Roaming\OpenCandy => Moved successfully.
E:\Users\Konrad\AppData\Roaming\Ospux => Moved successfully.
E:\Users\Konrad\AppData\Roaming\Ozin => Moved successfully.
E:\Users\Konrad\AppData\Roaming\Splashtop => Moved successfully.
E:\Users\Konrad\AppData\Roaming\Thinstall => Moved successfully.
E:\Users\Konrad\AppData\Roaming\Win32 => Moved successfully.
E:\Users\Konrad\Downloads\ipchanger(3).exe => Moved successfully.
E:\Users\Konrad\Downloads\3nity-CD-DVD-BURNER(39358).exe => Moved successfully.
E:\Users\Konrad\Downloads\Norton-AntiVirus(12646).exe => Moved successfully.
E:\Users\Konrad\Downloads\Norton-AntiVirus(12646)(1).exe => Moved successfully.
E:\Users\Konrad\Downloads\Norton-AntiVirus(12646)(2).exe => Moved successfully.
E:\Users\Konrad\Downloads\Norton-AntiVirus(12646).exe.part => Moved successfully.
E:\Users\Konrad\Downloads\Norton-AntiVirus(12646)(1).exe.part => Moved successfully.
E:\Users\Konrad\Downloads\SoftonicDownloader_dla_jetclean.exe => Moved successfully.
E:\Users\Konrad\Documents\Mobogenie => Moved successfully.
E:\Users\Konrad\AppData\Local\Mobogenie => Moved successfully.
E:\Users\Konrad\AppData\Local\cache => Moved successfully.
E:\Users\Konrad\daemonprocess.txt => Moved successfully.
E:\Program Files\Mobogenie => Moved successfully.
E:\Program Files\mozilla firefox\searchplugins\babylon.xml => Moved successfully.
E:\Program Files\mozilla firefox\plugins\npwachk.dll => Moved successfully.
E:\ProgramData\McAfee => Moved successfully.

==== End of Fixlog ====