Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 25-09-2014 01
Ran by admin at 2014-09-25 17:49:40 Run:4
Running from C:\Documents and Settings\admin\Pulpit\frst
Loaded Profile: admin (Available profiles: admin)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
CloseProcesses:
R2 IePluginServices; C:\Documents and Settings\All Users\Dane aplikacji\IePluginServices\PluginService.exe [715656 2014-09-21] (Cherished Technololgy LIMITED)
R2 WindowsMangerProtect; C:\Documents and Settings\All Users\Dane aplikacji\WindowsMangerProtect\ProtectWindowsManager.exe [528896 2014-09-21] (Fuyu LIMITED) [File not signed]
HKU\S-1-5-21-3258611155-3004601454-3534232741-1006\...\Run: [RDReminder] => C:\Program Files\RCP\RegCleanPro.exe [8078152 2014-08-29] ()
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?tpid=ORJ-SPE&o=APN11406&pf=V7&trgb=IE&p2=^BBE^OSJ000^YY^PL&gct=hp&apn_ptnrs=BBE&apn_dtid=^OSJ000^YY^PL&apn_dbr=launcher.exe_0_24.0.1558.61&apn_uid=B7B81001-944F-47B3-A48A-A7492A087256&itbv=12.16.2.53&doi=2014-09-25&psv=&pt=tb
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1411308529&from=cor&uid=FUJITSUXMHV2080BHXPL_NW9ZT6729HY5&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1411308529&from=cor&uid=FUJITSUXMHV2080BHXPL_NW9ZT6729HY5&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKCU - (No Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - No File
URLSearchHook: HKCU - (No Name) - {5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} - C:\Program Files\Allin1Convert_8h\bar\1.bin\8hSrcAs.dll No File
SearchScopes: HKLM - {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = http://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^man000^YYA^&ptb=4DD23672-744C-499E-A903-FD938BD9A261&ind=2014092213&n=780c9bb5&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKCU - DefaultScope {3A5B682D-D4F1-477C-A829-DFEA54211D58} URL = http://www.search.ask.com/web?tpid=ORJ-SPE&o=APN11406&pf=V7&p2=^BBE^OSJ000^YY^PL&gct=sb&itbv=12.16.2.53&apn_uid=B7B81001-944F-47B3-A48A-A7492A087256&apn_ptnrs=BBE&apn_dtid=^OSJ000^YY^PL&apn_dbr=launcher.exe_0_24.0.1558.61&doi=2014-09-25&trgb=IE&q={searchTerms}&psv=&pt=tb
SearchScopes: HKCU - {3A5B682D-D4F1-477C-A829-DFEA54211D58} URL = http://www.search.ask.com/web?tpid=ORJ-SPE&o=APN11406&pf=V7&p2=^BBE^OSJ000^YY^PL&gct=sb&itbv=12.16.2.53&apn_uid=B7B81001-944F-47B3-A48A-A7492A087256&apn_ptnrs=BBE&apn_dtid=^OSJ000^YY^PL&apn_dbr=launcher.exe_0_24.0.1558.61&doi=2014-09-25&trgb=IE&q={searchTerms}&psv=&pt=tb
SearchScopes: HKCU - {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = http://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^man000^YYA^&ptb=4DD23672-744C-499E-A903-FD938BD9A261&ind=2014092213&n=780c9bb5&psa=&st=sb&searchfor={searchTerms}
BHO: Rich Media Downloader -> {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} -> C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll No File
FF Plugin: @Allin1Convert_8h.com/Plugin -> C:\Program Files\Allin1Convert_8h\bar\1.bin\NP8hStub.dll No File
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
CustomCLSID: HKU\S-1-5-21-3258611155-3004601454-3534232741-1006_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Documents and Settings\admin\Dane aplikacji\Dropbox\bin\Dropbox.exe /autoplay No File
CustomCLSID: HKU\S-1-5-21-3258611155-3004601454-3534232741-1006_Classes\CLSID\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4}\InprocServer32 -> C:\Program Files\Allin1Convert_8h\bar\1.bin\8hSrcAs.dll No File
CustomCLSID: HKU\S-1-5-21-3258611155-3004601454-3534232741-1006_Classes\CLSID\{E69341A3-E6D2-4175-B60C-C9D3D6FA40F6}\localserver32 -> C:\Documents and Settings\admin\Dane aplikacji\Dropbox\bin\Dropbox.exe /wiacallback No File
C:\Documents and Settings\admin\Dane aplikacji\PriceFountain
C:\Documents and Settings\admin\Dane aplikacji\SampleView
C:\Documents and Settings\admin\Dane aplikacji\sweet-page
C:\Documents and Settings\admin\Dane aplikacji\Systweak
C:\Documents and Settings\admin\Moje dokumenty\*.opdownload
C:\Documents and Settings\admin\Moje dokumenty\*_(www_dodane_pl).*
C:\Documents and Settings\admin\Moje dokumenty\driver*.*
C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\PriceFountain
C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
C:\Documents and Settings\All Users\Dane aplikacji\SP_FT_Logs
C:\Program Files\RCP
C:\Program Files\Mozilla Firefox
C:\WINDOWS\jumpshot.com
C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
C:\WINDOWS\system32\roboot.exe
CMD: net stop winmgmt
C:\WINDOWS\system32\wbem\Repository

*****************

Processes closed successfully.
IePluginServices => Service stopped successfully.
IePluginServices => Service deleted successfully.
WindowsMangerProtect => Service deleted successfully.
HKU\S-1-5-21-3258611155-3004601454-3534232741-1006\Software\Microsoft\Windows\CurrentVersion\Run\\RDReminder => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{D8278076-BC68-4484-9233-6E7F1628B56C} => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} => value deleted successfully.
"HKCR\CLSID\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{75b4241f-171e-44a3-bf44-23613b6e3e03}" => Key deleted successfully.
"HKCR\CLSID\{75b4241f-171e-44a3-bf44-23613b6e3e03}" => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3A5B682D-D4F1-477C-A829-DFEA54211D58}" => Key deleted successfully.
"HKCR\CLSID\{3A5B682D-D4F1-477C-A829-DFEA54211D58}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{75b4241f-171e-44a3-bf44-23613b6e3e03}" => Key deleted successfully.
"HKCR\CLSID\{75b4241f-171e-44a3-bf44-23613b6e3e03}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}" => Key deleted successfully.
"HKCR\CLSID\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@Allin1Convert_8h.com/Plugin" => Key deleted successfully.
HKLM\Software\Mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b} => value deleted successfully.
"HKU\S-1-5-21-3258611155-3004601454-3534232741-1006_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}" => Key deleted successfully.
"HKU\S-1-5-21-3258611155-3004601454-3534232741-1006_Classes\CLSID\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4}" => Key not found.
"HKU\S-1-5-21-3258611155-3004601454-3534232741-1006_Classes\CLSID\{E69341A3-E6D2-4175-B60C-C9D3D6FA40F6}" => Key deleted successfully.
C:\Documents and Settings\admin\Dane aplikacji\PriceFountain => Moved successfully.
C:\Documents and Settings\admin\Dane aplikacji\SampleView => Moved successfully.
C:\Documents and Settings\admin\Dane aplikacji\sweet-page => Moved successfully.
C:\Documents and Settings\admin\Dane aplikacji\Systweak => Moved successfully.
C:\Documents and Settings\admin\Moje dokumenty\*.opdownload => Moved successfully.
C:\Documents and Settings\admin\Moje dokumenty\*_(www_dodane_pl).* => Moved successfully.
C:\Documents and Settings\admin\Moje dokumenty\driver*.* => Moved successfully.
C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\PriceFountain => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\SP_FT_Logs => Moved successfully.
C:\Program Files\RCP => Moved successfully.
C:\Program Files\Mozilla Firefox => Moved successfully.
C:\WINDOWS\jumpshot.com => Moved successfully.
C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension => Moved successfully.
C:\WINDOWS\system32\roboot.exe => Moved successfully.

=========  net stop winmgmt =========

Nast�puj�ce us�ugi s� zale�ne od us�ugi Instrumentacja zarz�dzania Windows.
Zatrzymanie us�ugi Instrumentacja zarz�dzania Windows spowoduje tak�e zatrzymanie tych us�ug.

   Centrum zabezpiecze�
   Zapora systemu Windows/Udost�pnianie po��czenia internetowego

Czy chcesz kontynuowa� t� operacj�? (T/N) [N]: 
Nie udzielono prawid�owej odpowiedzi.

========= End of CMD: =========

C:\WINDOWS\system32\wbem\Repository => Moved successfully.


The system needed a reboot. 

==== End of Fixlog ====