Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-09-2014
Ran by Grzegorz at 2014-09-21 23:53:15 Run:1
Running from C:\Users\Grzegorz\Downloads\FRST
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CloseProcesses:
Startup: C:\Users\Grzegorz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ctfmon.lnk
ShortcutTarget: ctfmon.lnk -> C:\ProgramData\lsass.exe (Microsoft Corporation)
URLSearchHook: HKCU - (No Name) - {cd90bf73-20f6-44ef-993d-bb920303bd2e} - No File
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2653012
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2653012
SearchScopes: HKCU - DefaultScope {3D0ADA0E-CF63-448F-AD14-702B047A72B2} URL = http://search.avg.com/route/?d=4dbacf3a&v=6.103.18.1&i=23&tp=chrome&q={searchTerms}&lng={language}&iy=&ychte=us
SearchScopes: HKCU - {3D0ADA0E-CF63-448F-AD14-702B047A72B2} URL = http://search.avg.com/route/?d=4dbacf3a&v=6.103.18.1&i=23&tp=chrome&q={searchTerms}&lng={language}&iy=&ychte=us
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
Toolbar: HKLM-x32 - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X]
S3 IT9135BDA; System32\Drivers\IT9135BDA.sys [X]
Task: {3CBB3667-DC99-4631-BD03-074E49EC8722} - System32\Tasks\{5A0AA3BC-A62E-40ED-AF4D-6926C40CC4CB} => C:\Program Files\Winamp\winamp.exe
Task: {4BE6768F-F669-4D76-9BBA-AFE72B5AE18A} - System32\Tasks\ROC_REG_JAN_DELETE => C:\ProgramData\AVG January 2013 Campaign\ROC.exe [2013-01-16] ()
Task: {F9871E36-DE70-4DCE-9279-CF27F28FB4A0} - System32\Tasks\{0BA92086-42AB-4578-B486-F46535931108} => C:\Program Files\Winamp\winamp.exe
Task: C:\Windows\Tasks\ROC_REG_JAN_DELETE.job => C:\ProgramData\AVG January 2013 Campaign\ROC.exe
C:\Program Files (x86)\Mozilla Firefox.bak
C:\Program Files (x86)\Mozilla Firefox\extensions
C:\ProgramData\TEMP
C:\Users\Grzegorz\Firefox Setup 4.0.1.exe
C:\Users\Grzegorz\AppData\Roaming\jaws
Reg: reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks" /v {A3BC75A2-1F87-4686-AA43-5347D756017C} /f
CMD: fsutil resource setautoreset true c:\
*****************

Processes closed successfully.
C:\Users\Grzegorz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ctfmon.lnk => Moved successfully.
C:\ProgramData\lsass.exe => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{cd90bf73-20f6-44ef-993d-bb920303bd2e} => value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}" => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3D0ADA0E-CF63-448F-AD14-702B047A72B2}" => Key deleted successfully.
"HKCR\CLSID\{3D0ADA0E-CF63-448F-AD14-702B047A72B2}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}" => Key deleted successfully.
"HKCR\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}" => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} => value deleted successfully.
"HKCR\Wow6432Node\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} => value deleted successfully.
"HKCR\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => value deleted successfully.
"HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}" => Key not found.
ACDaemon => Service deleted successfully.
IT9135BDA => Service deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3CBB3667-DC99-4631-BD03-074E49EC8722}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3CBB3667-DC99-4631-BD03-074E49EC8722}" => Key deleted successfully.
C:\Windows\System32\Tasks\{5A0AA3BC-A62E-40ED-AF4D-6926C40CC4CB} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5A0AA3BC-A62E-40ED-AF4D-6926C40CC4CB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4BE6768F-F669-4D76-9BBA-AFE72B5AE18A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4BE6768F-F669-4D76-9BBA-AFE72B5AE18A}" => Key deleted successfully.
C:\Windows\System32\Tasks\ROC_REG_JAN_DELETE => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ROC_REG_JAN_DELETE" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F9871E36-DE70-4DCE-9279-CF27F28FB4A0}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9871E36-DE70-4DCE-9279-CF27F28FB4A0}" => Key deleted successfully.
C:\Windows\System32\Tasks\{0BA92086-42AB-4578-B486-F46535931108} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0BA92086-42AB-4578-B486-F46535931108}" => Key deleted successfully.
C:\Windows\Tasks\ROC_REG_JAN_DELETE.job => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox.bak => Moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions => Moved successfully.
C:\ProgramData\TEMP => Moved successfully.
C:\Users\Grzegorz\Firefox Setup 4.0.1.exe => Moved successfully.
C:\Users\Grzegorz\AppData\Roaming\jaws => Moved successfully.

========= reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks" /v {A3BC75A2-1F87-4686-AA43-5347D756017C} /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========


=========  fsutil resource setautoreset true c:\ =========

Operacja zako�czy�a si� pomy�lnie.

========= End of CMD: =========



The system needed a reboot. 

==== End of Fixlog ====