Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 20-11-2014 Ran by Emil at 2014-11-21 23:04:00 Run:1 Running from C:\Users\Emil\Downloads Loaded Profile: Emil (Available profiles: Emil) Boot Mode: Normal ============================================== Content of fixlist: ***************** CloseProcesses: Task: {1EC544A8-6590-448D-8ED8-A8BC77EF3FD2} - System32\Tasks\Torntv V6.0-codedownloader => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-codedownloader.exe <==== ATTENTION Task: {6C20EDCD-605C-4EFA-B821-E8C5818661C0} - System32\Tasks\Torntv V6.0-firefoxinstaller => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe <==== ATTENTION Task: {7F2C3FDB-23FF-4AB7-88B6-EF98617818CB} - System32\Tasks\Torntv V6.0-chromeinstaller => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-chromeinstaller.exe <==== ATTENTION Task: {98D4B36A-AB1A-47E7-9B5E-2731E5BCCDF3} - System32\Tasks\Torntv V6.0-enabler => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-enabler.exe <==== ATTENTION Task: {ADD2B462-29EC-4360-9746-156B0A5BE59A} - System32\Tasks\Torntv V6.0-updater => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe <==== ATTENTION Task: C:\Windows\Tasks\Torntv V6.0-chromeinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-chromeinstaller.exe <==== ATTENTION Task: C:\Windows\Tasks\Torntv V6.0-codedownloader.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\Torntv V6.0-enabler.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-enabler.exe <==== ATTENTION Task: C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe <==== ATTENTION Task: C:\Windows\Tasks\Torntv V6.0-updater.job => C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe <==== ATTENTION FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-459528966-3648623502-3207889664-1000 -> DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = SearchScopes: HKU\S-1-5-21-459528966-3648623502-3207889664-1000 -> {E45639B2-53F2-481A-96C1-DC71C6C3CC29} URL = S3 massfilter_lte; \??\C:\Windows\system32\drivers\massfilter_lte.sys [X] S3 zgdcat; system32\DRIVERS\zgdcat.sys [X] S3 zgdcdiag; system32\DRIVERS\zgdcdiag.sys [X] S3 zgdcmdm; system32\DRIVERS\zgdcmdm.sys [X] S3 zgdcnet; system32\DRIVERS\zgdcnet.sys [X] S3 zgdcnmea; system32\DRIVERS\zgdcnmea.sys [X] HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" C:\ProgramData\McAfee Reg: reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2 /f Reg: reg add "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {E45639B2-53F2-481A-96C1-DC71C6C3CC29} /f Reg: reg add "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {E45639B2-53F2-481A-96C1-DC71C6C3CC29} /f EmptyTemp: ***************** Processes closed successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1EC544A8-6590-448D-8ED8-A8BC77EF3FD2}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EC544A8-6590-448D-8ED8-A8BC77EF3FD2}" => Key deleted successfully. C:\Windows\System32\Tasks\Torntv V6.0-codedownloader => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Torntv V6.0-codedownloader" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6C20EDCD-605C-4EFA-B821-E8C5818661C0}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C20EDCD-605C-4EFA-B821-E8C5818661C0}" => Key deleted successfully. C:\Windows\System32\Tasks\Torntv V6.0-firefoxinstaller => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Torntv V6.0-firefoxinstaller" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7F2C3FDB-23FF-4AB7-88B6-EF98617818CB}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F2C3FDB-23FF-4AB7-88B6-EF98617818CB}" => Key deleted successfully. C:\Windows\System32\Tasks\Torntv V6.0-chromeinstaller => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Torntv V6.0-chromeinstaller" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{98D4B36A-AB1A-47E7-9B5E-2731E5BCCDF3}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{98D4B36A-AB1A-47E7-9B5E-2731E5BCCDF3}" => Key deleted successfully. C:\Windows\System32\Tasks\Torntv V6.0-enabler => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Torntv V6.0-enabler" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{ADD2B462-29EC-4360-9746-156B0A5BE59A}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ADD2B462-29EC-4360-9746-156B0A5BE59A}" => Key deleted successfully. C:\Windows\System32\Tasks\Torntv V6.0-updater => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Torntv V6.0-updater" => Key deleted successfully. C:\Windows\Tasks\Torntv V6.0-chromeinstaller.job => Moved successfully. C:\Windows\Tasks\Torntv V6.0-codedownloader.job => Moved successfully. C:\Windows\Tasks\Torntv V6.0-enabler.job => Moved successfully. C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job => Moved successfully. C:\Windows\Tasks\Torntv V6.0-updater.job => Moved successfully. HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com => value deleted successfully. HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully. "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully. "HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found. HKU\S-1-5-21-459528966-3648623502-3207889664-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully. "HKU\S-1-5-21-459528966-3648623502-3207889664-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E45639B2-53F2-481A-96C1-DC71C6C3CC29}" => Key deleted successfully. "HKCR\CLSID\{E45639B2-53F2-481A-96C1-DC71C6C3CC29}" => Key not found. massfilter_lte => Service deleted successfully. zgdcat => Service deleted successfully. zgdcdiag => Service deleted successfully. zgdcmdm => Service deleted successfully. zgdcnet => Service deleted successfully. zgdcnmea => Service deleted successfully. "HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc" => Key deleted successfully. "HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc" => Key deleted successfully. C:\ProgramData\McAfee => Moved successfully. ========= reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2 /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg add "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {E45639B2-53F2-481A-96C1-DC71C6C3CC29} /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg add "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {E45639B2-53F2-481A-96C1-DC71C6C3CC29} /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= EmptyTemp: => Removed 1.3 GB temporary data. The system needed a reboot. ==== End of Fixlog ====