Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-01-2014
Ran by Piotr at 2014-01-21 13:02:13 Run:1
Running from C:\Program Files\FRST
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
(Microsoft Corporation) C:\Windows\System32\schtasks.exe
() C:\Windows\Temp\svchost.exe
HKCU\...\Run: [Adobe Updater] - C:\Users\Piotr\AppData\Roaming\flash_update.exe [694784 2014-01-06] (Adobe Corporation)
HKLM-x32\...\Run: [Adobe] - C:\Users\Piotr\AppData\Roaming\Adobe\color.vbe [83402 2013-07-17] ()
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
Winsock: Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 01 %SystemRoot%\System32\mswsock.dll [327168] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Task: {13376F75-8C13-4A82-9DAF-A7BCFD52E141} - System32\Tasks\{3E8ADFF9-3051-4EA5-8B1E-C145C1725597} => C:\Windows\amcap.exe
Task: {1B78ACA8-0CE0-4BD3-B8D6-06779D221CBD} - System32\Tasks\Origin => C:\Users\Piotr\AppData\Roaming\Origin\update.vbe [2013-09-28] () <==== ATTENTION
Task: {23739DB3-F664-4931-AB24-56CDEF918D97} - System32\Tasks\{70011C03-D1EB-4EC2-B806-21899F4754C9} => C:\Windows\amcap.exe
Task: {2A09C28E-60D7-4D59-B23A-3C8381268F03} - System32\Tasks\{AF1DB77C-854D-475C-92FC-5126C21804A4} => E:\Obrazy płyt\!sprawdzic\War.in.the.Pacific.Admirals.Edition\autorun.exe
Task: {395980A2-EA40-47C8-B79C-1374882A8815} - System32\Tasks\{4918E0AB-768A-4265-919C-6201C95AF8BD} => E:\Gry\X3\X3TC.exe
Task: {64918DB6-6A2B-4DD9-9F88-DF193B0B8B9D} - System32\Tasks\{60E46131-7615-402C-A435-B2DFADA31031} => E:\Gry\Panzers Cold War\Home\Game\CPCW.exe
Task: {82439095-2B5C-4FE7-99D6-F46B90A7DEA1} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2010-02-04] ()
Task: {D44BEEA7-48A4-4B0D-8BED-6FED574FC0A4} - System32\Tasks\SilverlightUpdater20110920 => c:/silverlight.exe [2012-04-07] ()
S2 Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [x]
S2 Time; C:\ProgramData\Microsoft\Windows\Time\Time-svc.exe [x]
S3 TBPanel; No ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
BHO-x32: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask.com)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - DefaultScope {73D36974-3479-47e9-9184-79AEE5B3DB41} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylon.com/?q={searchTerms}&affID=112185&tt=3612_4&babsrc=SP_ss&mntrId=0ed270e50000000000001c6f65910efc
SearchScopes: HKCU - {73D36974-3479-47e9-9184-79AEE5B3DB41} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD
SearchScopes: HKCU - {9CB15BAF-27D8-472f-ABAB-64B57C777CA5} URL = http://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=1975384696&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=pl&q={searchTerms}
C:\Windows\4F64A46D67F74497AEA2313D4305A5F6.TMP
C:\Windows\Temp\*.cl
C:\Windows\Temp\*.exe
C:\Windows\Temp\*.dll
C:\Users\Piotr\AppData\Local\Temp\*.cl
C:\Users\Piotr\AppData\Local\Temp\*.exe
C:\Users\Piotr\AppData\Local\Temp\*.dll
C:\Users\Piotr\AppData\Roaming\flash_update.exe
C:\Users\Piotr\AppData\Roaming\Adobe\*.cl
C:\Users\Piotr\AppData\Roaming\Adobe\*.exe
C:\Users\Piotr\AppData\Roaming\Adobe\*.dll
C:\Users\Piotr\AppData\Roaming\Adobe\color.vbe
C:\Users\Piotr\AppData\Roaming\Origin\update.vbe
C:\Users\Piotr\AppData\Roaming\Mozilla
C:\Program Files (x86)\mozilla firefox
*****************

[2144] C:\Windows\System32\schtasks.exe => Process closed successfully.
[4544] C:\Windows\Temp\svchost.exe => Process closed successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Updater => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\HideSCAHealth => Value deleted successfully.
Winsock: Catalog5 entry 000000000001\\LibraryPath  was set successfully to %SystemRoot%\system32\NLAapi.dll
Winsock: Catalog5-x64 entry 000000000001\\LibraryPath  was set successfully to %SystemRoot%\system32\NLAapi.dll
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13376F75-8C13-4A82-9DAF-A7BCFD52E141} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13376F75-8C13-4A82-9DAF-A7BCFD52E141} => Key deleted successfully.
C:\Windows\System32\Tasks\{3E8ADFF9-3051-4EA5-8B1E-C145C1725597} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3E8ADFF9-3051-4EA5-8B1E-C145C1725597} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1B78ACA8-0CE0-4BD3-B8D6-06779D221CBD} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1B78ACA8-0CE0-4BD3-B8D6-06779D221CBD} => Key deleted successfully.
C:\Windows\System32\Tasks\Origin => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Origin => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{23739DB3-F664-4931-AB24-56CDEF918D97} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23739DB3-F664-4931-AB24-56CDEF918D97} => Key deleted successfully.
C:\Windows\System32\Tasks\{70011C03-D1EB-4EC2-B806-21899F4754C9} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{70011C03-D1EB-4EC2-B806-21899F4754C9} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2A09C28E-60D7-4D59-B23A-3C8381268F03} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2A09C28E-60D7-4D59-B23A-3C8381268F03} => Key deleted successfully.
C:\Windows\System32\Tasks\{AF1DB77C-854D-475C-92FC-5126C21804A4} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{AF1DB77C-854D-475C-92FC-5126C21804A4} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{395980A2-EA40-47C8-B79C-1374882A8815} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{395980A2-EA40-47C8-B79C-1374882A8815} => Key deleted successfully.
C:\Windows\System32\Tasks\{4918E0AB-768A-4265-919C-6201C95AF8BD} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4918E0AB-768A-4265-919C-6201C95AF8BD} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{64918DB6-6A2B-4DD9-9F88-DF193B0B8B9D} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{64918DB6-6A2B-4DD9-9F88-DF193B0B8B9D} => Key deleted successfully.
C:\Windows\System32\Tasks\{60E46131-7615-402C-A435-B2DFADA31031} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{60E46131-7615-402C-A435-B2DFADA31031} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{82439095-2B5C-4FE7-99D6-F46B90A7DEA1} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{82439095-2B5C-4FE7-99D6-F46B90A7DEA1} => Key deleted successfully.
C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D44BEEA7-48A4-4B0D-8BED-6FED574FC0A4} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D44BEEA7-48A4-4B0D-8BED-6FED574FC0A4} => Key deleted successfully.
C:\Windows\System32\Tasks\SilverlightUpdater20110920 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SilverlightUpdater20110920 => Key deleted successfully.
Nero BackItUp Scheduler 4.0 => Service deleted successfully.
Time => Service deleted successfully.
TBPanel => Service deleted successfully.
catchme => Service deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{73D36974-3479-47e9-9184-79AEE5B3DB41} => Key deleted successfully.
HKCR\CLSID\{73D36974-3479-47e9-9184-79AEE5B3DB41} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9CB15BAF-27D8-472f-ABAB-64B57C777CA5} => Key deleted successfully.
HKCR\CLSID\{9CB15BAF-27D8-472f-ABAB-64B57C777CA5} => Key not found.
C:\Windows\4F64A46D67F74497AEA2313D4305A5F6.TMP => Moved successfully.
C:\Windows\Temp\*.cl => Moved successfully.
C:\Windows\Temp\*.exe => Moved successfully.
C:\Windows\Temp\*.dll => Moved successfully.
C:\Users\Piotr\AppData\Local\Temp\*.cl => Moved successfully.
C:\Users\Piotr\AppData\Local\Temp\*.exe => Moved successfully.
C:\Users\Piotr\AppData\Local\Temp\*.dll => Moved successfully.
C:\Users\Piotr\AppData\Roaming\flash_update.exe => Moved successfully.
"C:\Users\Piotr\AppData\Roaming\Adobe\*.cl" => File/Directory not found.
"C:\Users\Piotr\AppData\Roaming\Adobe\*.exe" => File/Directory not found.
"C:\Users\Piotr\AppData\Roaming\Adobe\*.dll" => File/Directory not found.
C:\Users\Piotr\AppData\Roaming\Adobe\color.vbe => Moved successfully.
C:\Users\Piotr\AppData\Roaming\Origin\update.vbe => Moved successfully.
C:\Users\Piotr\AppData\Roaming\Mozilla => Moved successfully.
C:\Program Files (x86)\mozilla firefox => Moved successfully.

==== End of Fixlog ====