Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 11-09-2014 Ran by Paulina at 2014-09-13 07:10:08 Run:2 Running from C:\Users\Paulina\Desktop\skany antywirus\skrypt Boot Mode: Normal ============================================== Content of fixlist: ***************** CloseProcesses: R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [31576 2013-01-28] (AVG Technologies) S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X] U1 StarOpen; No ImagePath S4 UIUSys; system32\DRIVERS\UIUSYS.SYS [X] HKLM\...\Run: [hpqSRMon] => [X] HKLM\...\Run: [] => [X] Task: {A759BD0D-FA1A-476F-9AC7-3A79A56A9FEC} - System32\Tasks\{F2969681-AFC4-4B30-91D4-30E609967991} => C:\Program Files\Skype\Phone\Skype.exe Task: {E9A961FF-3463-4B9C-9B3E-FFA51FE8BD6C} - System32\Tasks\{B61FF53B-4B37-49B4-81F3-A335F0A0802C} => C:\Program Files\Skype\Phone\Skype.exe SearchScopes: HKCU - {5B291E6C-9A74-4034-971B-A4B007A0B315} URL = http://radiobar.toolbarhome.com/search.aspx?q={searchTerms}&srch=dsp BHO: No Name -> {1E8A6170-7264-4D0F-BEAE-D42A53123C75} -> No File BHO: No Name -> {6D023EBF-70B8-45A6-9ED5-556515FA0FE4} -> No File Toolbar: HKLM - No Name - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No File Toolbar: HKCU - No Name - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - No File Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Toolbar: HKCU - RadioBar Toolbar - {5B291E6C-9A74-4034-971B-A4B007A0B315} - No File C:\Program Files\Mozilla Firefox c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension C:\Windows\system32\sqlite3.dll C:\Windows\system32\drivers\avgtpx86.sys C:\Windows\system32\Drivers\etc\hosts.*.backup Reg: reg delete HKCU\Software\Mozilla /f Reg: reg delete HKLM\SOFTWARE\Mozilla /f Reg: reg delete HKLM\SOFTWARE\mozilla.org /f Reg: reg delete HKLM\SOFTWARE\MozillaPlugins /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List /f Reg: reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2 /f Reg: reg delete "HKCU\Software\Microsoft\Internet Explorer\Search" /f Reg: reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f Reg: reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes" /f Reg: reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes" /f CMD: del /q C:\Users\Paulina\AppData\Local\Temp*.html CMD: sc config "PLAY ONLINE. RunOuc" start= demand Hosts: EmptyTemp: ***************** Processes closed successfully. avgtp => Service not found. hwusbdev => Service not found. StarOpen => Service not found. UIUSys => Service not found. HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\hpqSRMon => Value not found. HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => Value not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A759BD0D-FA1A-476F-9AC7-3A79A56A9FEC}" => Key not found. C:\Windows\System32\Tasks\{F2969681-AFC4-4B30-91D4-30E609967991} not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F2969681-AFC4-4B30-91D4-30E609967991}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E9A961FF-3463-4B9C-9B3E-FFA51FE8BD6C}" => Key not found. C:\Windows\System32\Tasks\{B61FF53B-4B37-49B4-81F3-A335F0A0802C} not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B61FF53B-4B37-49B4-81F3-A335F0A0802C}" => Key not found. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5B291E6C-9A74-4034-971B-A4B007A0B315}" => Key not found. "HKCR\CLSID\{5B291E6C-9A74-4034-971B-A4B007A0B315}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1E8A6170-7264-4D0F-BEAE-D42A53123C75}" => Key not found. "HKCR\CLSID\{1E8A6170-7264-4D0F-BEAE-D42A53123C75}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D023EBF-70B8-45A6-9ED5-556515FA0FE4}" => Key not found. "HKCR\CLSID\{6D023EBF-70B8-45A6-9ED5-556515FA0FE4}" => Key not found. HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} => Value not found. "HKCR\CLSID\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}" => Key not found. HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} => Value not found. "HKCR\CLSID\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}" => Key not found. HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Value not found. "HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => Key not found. HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{5B291E6C-9A74-4034-971B-A4B007A0B315} => Value not found. "HKCR\CLSID\{5B291E6C-9A74-4034-971B-A4B007A0B315}" => Key not found. "C:\Program Files\Mozilla Firefox" => File/Directory not found. "c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" => File/Directory not found. "C:\Windows\system32\sqlite3.dll" => File/Directory not found. "C:\Windows\system32\drivers\avgtpx86.sys" => File/Directory not found. "C:\Windows\system32\Drivers\etc\hosts.*.backup" => File/Directory not found. ========= reg delete HKCU\Software\Mozilla /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\Mozilla /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\mozilla.org /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\MozillaPlugins /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2 /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete "HKCU\Software\Microsoft\Internet Explorer\Search" /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes" /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes" /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= del /q C:\Users\Paulina\AppData\Local\Temp*.html ========= Nie mo¾na odnale«† C:\Users\Paulina\AppData\Local\Temp*.html. ========= End of CMD: ========= ========= sc config "PLAY ONLINE. RunOuc" start= demand ========= [SC] ChangeServiceConfig SUKCES ========= End of CMD: ========= C:\Windows\System32\Drivers\etc\hosts => Moved successfully. Hosts was reset successfully. EmptyTemp: => Removed 15 MB temporary data. The system needed a reboot. ==== End of Fixlog ====