Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-09-2014 01 Ran by Kuba at 2014-09-08 21:30:04 Run:2 Running from E:\ Boot Mode: Normal ============================================== Content of fixlist: ***************** Task: {1E5463CA-ACC7-4E4F-B8CC-EAD15804D669} - System32\Tasks\{939270E1-3198-42D0-9E9C-2A35EF3CECB0} => C:\Users\Kuba\Desktop\StarCraft II Wings of Liberty-RELOADED Crack\StarCraft II Wings of Liberty-RELOADED Crack\StarCraft II.exe Task: {3CFEAFD2-F6D8-43D8-8D36-0086F421F6BB} - System32\Tasks\Digital Sites => C:\Users\Kuba\AppData\Roaming\DigitalSites\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION Task: {E2164964-8F02-4C16-B069-675369FE0D77} - System32\Tasks\DigitalSite => C:\Users\Kuba\AppData\Roaming\DigitalSite\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION Task: {FBA33CA3-DCD5-462C-B861-2068371782EC} - System32\Tasks\AmiUpdXp => C:\Users\Kuba\AppData\Local\SwvUpdater\Updater.exe [2013-12-16] (Amonetizé Ltd) <==== ATTENTION Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\Kuba\AppData\Local\SwvUpdater\Updater.exe <==== ATTENTION Task: C:\Windows\Tasks\Digital Sites.job => C:\Users\Kuba\AppData\Roaming\DIGITA~2\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: C:\Windows\Tasks\DigitalSite.job => C:\Users\Kuba\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION FF HKLM-x32\...\Firefox\Extensions: [ext@flash-Enhancer.com] - C:\Program Files (x86)\AmiExt\flashEnhancer\ff FF HKLM-x32\...\Firefox\Extensions: [ext@WebexpEnhancedV1alpha7988.net] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha7988\ff FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta264.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta264\ff FF HKLM-x32\...\Firefox\Extensions: [ext@MediaPlayerV1alpha636.net] - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha636\ff FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewerV1alpha986.net] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha986\ff FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha2370.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2370\ff FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha1447.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha1447\ff FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home2265.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home2265\ff FF HKLM-x32\...\Firefox\Extensions: [ext@MediaBuzzV1mode5806.net] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode5806\ff CHR HKLM-x32\...\Chrome\Extension: [bgclfemcpgkemipfhhijfpabjagbjopd] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode5806\ch\MediaBuzzV1mode5806.crx [2014-04-24] HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.doko-search.com/?babsrc=HP_ss&mntrId=C0E5002481488D21&affID=125839&tsp=5036 StartMenuInternet: IEXPLORE.EXE - c:\program files (x86)\internet explorer\iexplore.exe SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.doko-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=C0E5002481488D21&affID=125839&tsp=5036 SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.doko-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=C0E5002481488D21&affID=125839&tsp=5036 BHO-x32: Media Buzz -> {52631182-6574-4d7f-ace5-ed6b829a8571} -> C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode5806\ie\MediaBuzzV1mode5806.dll () BHO-x32: Shopping Suggestion. -> {e7e8ed77-2fba-4ec6-bc07-65de4de6709f} -> C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation) BHO-x32: Shopping Suggestion -> {F6C07882-D703-4DD5-905A-2C4E815A5066} -> C:\Users\Kuba\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4\Shopping Suggestion.dll (WW3, LLC) ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL No File ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL No File ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL No File ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL No File ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL No File ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL No File [ ] C:\Users\Kuba\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4 C:\Windows\pss\Empty.pif.Startup Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Kuba^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Empty.pif" /f EmptyTemp: ***************** "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1E5463CA-ACC7-4E4F-B8CC-EAD15804D669}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E5463CA-ACC7-4E4F-B8CC-EAD15804D669}" => Key deleted successfully. C:\Windows\System32\Tasks\{939270E1-3198-42D0-9E9C-2A35EF3CECB0} => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{939270E1-3198-42D0-9E9C-2A35EF3CECB0}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3CFEAFD2-F6D8-43D8-8D36-0086F421F6BB}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3CFEAFD2-F6D8-43D8-8D36-0086F421F6BB}" => Key deleted successfully. C:\Windows\System32\Tasks\Digital Sites => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Digital Sites" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E2164964-8F02-4C16-B069-675369FE0D77}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E2164964-8F02-4C16-B069-675369FE0D77}" => Key deleted successfully. C:\Windows\System32\Tasks\DigitalSite => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DigitalSite" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FBA33CA3-DCD5-462C-B861-2068371782EC}" => Key not found. C:\Windows\System32\Tasks\AmiUpdXp not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AmiUpdXp" => Key not found. C:\Windows\Tasks\AmiUpdXp.job not found. C:\Windows\Tasks\Digital Sites.job => Moved successfully. C:\Windows\Tasks\DigitalSite.job => Moved successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@flash-Enhancer.com => value deleted successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@WebexpEnhancedV1alpha7988.net => Value not found. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@VideoPlayerV3beta264.net => Value not found. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaPlayerV1alpha636.net => Value not found. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaViewerV1alpha986.net => Value not found. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaViewV1alpha2370.net => Value not found. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaViewV1alpha1447.net => Value not found. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaWatchV1home2265.net => Value not found. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaBuzzV1mode5806.net => Value not found. "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bgclfemcpgkemipfhhijfpabjagbjopd" => Key not found. "C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode5806\ch\MediaBuzzV1mode5806.crx" => File/Directory not found. HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully. HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" => Key deleted successfully. "HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" => Key not found. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{52631182-6574-4d7f-ace5-ed6b829a8571}" => Key not found. "HKCR\Wow6432Node\CLSID\{52631182-6574-4d7f-ace5-ed6b829a8571}" => Key not found. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e7e8ed77-2fba-4ec6-bc07-65de4de6709f}" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{e7e8ed77-2fba-4ec6-bc07-65de4de6709f}" => Key deleted successfully. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F6C07882-D703-4DD5-905A-2C4E815A5066}" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{F6C07882-D703-4DD5-905A-2C4E815A5066}" => Key deleted successfully. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub)" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}" => Key deleted successfully. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub)" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}" => Key deleted successfully. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}" => Key deleted successfully. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder)" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}" => Key deleted successfully. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark)" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}" => Key deleted successfully. HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{B5A7F190-DDA6-4420-B3BA-52453494E6CD} => value deleted successfully. "HKCR\Wow6432Node\CLSID\{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" => Key deleted successfully. C:\Users\Kuba\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4 => Moved successfully. "C:\Windows\pss\Empty.pif.Startup" => File/Directory not found. ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Kuba^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Empty.pif" /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= EmptyTemp: => Removed 1.6 GB temporary data. The system needed a reboot. ==== End of Fixlog ====