Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 13-03-2014  01
Ran by Marzena i Tomek at 2014-04-06 17:53:43 Run:2
Running from D:\programy\użytki\bezpieczeństwo_diagnostyka\farbar
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
() C:\Documents and Settings\Marzena i Tomek\Ustawienia lokalne\Dane aplikacji\fst_pl_72\upfst_pl_72.exe
HKLM\...\Run: [upfst_pl_72.exe] - C:\Documents and Settings\Marzena i Tomek\Ustawienia lokalne\Dane aplikacji\fst_pl_72\upfst_pl_72.exe [3234288 2014-02-26] ()
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [fst_pl_72] - [X]
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
HKLM\...\AppCertDlls: [x64] -> c:\program files\settings manager\systemk\x64\sysapcrt.dll
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_medium=prs&from=prs&uid=ST3500320AS_5QM3TYN8XXXX5QM3TYN8&ts=1369586887
SearchScopes: HKCU - DefaultScope {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = http://pl.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo
SearchScopes: HKCU - {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = http://pl.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\default-search.xml
Task: C:\WINDOWS\Tasks\ROC_REG_JAN_DELETE.job => C:\Documents and Settings\All Users\Dane aplikacji\AVG January 2013 Campaign\ROC.exe
Unlock: HKLM\SYSTEM\CurrentControlSet\Services\sptd
S3 iSafeFsFlt; C:\Program Files\iSafe\iSafeFsFlt.sys [X]
S4 sptd; \SystemRoot\System32\Drivers\sptd.sys [X]
C:\Documents and Settings\All Users\Dane aplikacji\188F1432-103A-4ffb-80F1-36B633C5C9E1
C:\Documents and Settings\All Users\Dane aplikacji\ArcaBit
C:\Documents and Settings\All Users\Dane aplikacji\AVG
C:\Documents and Settings\All Users\Dane aplikacji\AVG January 2013 Campaign
C:\Documents and Settings\All Users\Dane aplikacji\AVG2014
C:\Documents and Settings\All Users\Dane aplikacji\Common Files
C:\Documents and Settings\All Users\Dane aplikacji\MFAData
C:\Documents and Settings\All Users\Dane aplikacji\TEMP
C:\Documents and Settings\Marzena i Tomek\.android
C:\Documents and Settings\Marzena i Tomek\daemonprocess.txt
C:\Documents and Settings\Marzena i Tomek\Dane aplikacji\ArcaBit
C:\Documents and Settings\Marzena i Tomek\Dane aplikacji\ArcaVirMicroScan
C:\Documents and Settings\Marzena i Tomek\Dane aplikacji\AVG
C:\Documents and Settings\Marzena i Tomek\Dane aplikacji\OpenCandy
C:\Documents and Settings\Marzena i Tomek\Ustawienia lokalne\Dane aplikacji\cache
C:\Documents and Settings\Marzena i Tomek\Ustawienia lokalne\Dane aplikacji\fst_pl_72
C:\Program Files\AVG
C:\Program Files\fst_pl_72
C:\Program Files\iExplorer
C:\Program Files\predm
C:\Program Files\Settings Manager
Reg: reg delete "HKLM\SOFTWARE\Microsoft\Internet Explorer\Search" /f
CMD: netsh firewall reset
Reboot:
*****************

C:\Documents and Settings\Marzena i Tomek\Ustawienia lokalne\Dane aplikacji\fst_pl_72\upfst_pl_72.exe => No running process found
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\upfst_pl_72.exe => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\fst_pl_72 => Value not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bitguard.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bprotect.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bpsvc.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserdefender.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserprotect.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsersafeguard.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\dprotectsvc.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\protectedsearch.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotection.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotector.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\snapdo.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst32.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst64.exe => Key not found.
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\utiljumpflip.exe => Key not found.
HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls\\x64 => Value not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A} => Key not found.
HKCR\Wow6432Node\CLSID\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A} => Key not found.
"C:\Program Files\mozilla firefox\browser\searchplugins\default-search.xml" => not found.
C:\WINDOWS\Tasks\ROC_REG_JAN_DELETE.job not found.
"HKLM\SYSTEM\CurrentControlSet\Services\sptd" => Key unlocked successfully.
iSafeFsFlt => Service deleted successfully.
sptd => Service deleted successfully.
C:\Documents and Settings\All Users\Dane aplikacji\188F1432-103A-4ffb-80F1-36B633C5C9E1 => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\ArcaBit => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\AVG => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\AVG January 2013 Campaign => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\AVG2014 => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\Common Files => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\MFAData => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\TEMP => Moved successfully.
C:\Documents and Settings\Marzena i Tomek\.android => Moved successfully.
C:\Documents and Settings\Marzena i Tomek\daemonprocess.txt => Moved successfully.
C:\Documents and Settings\Marzena i Tomek\Dane aplikacji\ArcaBit => Moved successfully.
C:\Documents and Settings\Marzena i Tomek\Dane aplikacji\ArcaVirMicroScan => Moved successfully.
C:\Documents and Settings\Marzena i Tomek\Dane aplikacji\AVG => Moved successfully.
C:\Documents and Settings\Marzena i Tomek\Dane aplikacji\OpenCandy => Moved successfully.
C:\Documents and Settings\Marzena i Tomek\Ustawienia lokalne\Dane aplikacji\cache => Moved successfully.
"C:\Documents and Settings\Marzena i Tomek\Ustawienia lokalne\Dane aplikacji\fst_pl_72" => File/Directory not found.
"C:\Program Files\AVG" => File/Directory not found.
"C:\Program Files\fst_pl_72" => File/Directory not found.
C:\Program Files\iExplorer => Moved successfully.
C:\Program Files\predm => Moved successfully.
C:\Program Files\Settings Manager => Moved successfully.

========= reg delete "HKLM\SOFTWARE\Microsoft\Internet Explorer\Search" /f =========


Operacja ukończona pomyślnie


========= End of Reg: =========


=========  netsh firewall reset =========

Ok.


========= End of CMD: =========



The system needed a reboot. 

==== End of Fixlog ====