Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 14-12-2014 01
Ran by Daniel at 2014-12-15 00:10:54 Run:1
Running from C:\Documents and Settings\Daniel\Pulpit\FRSt
Loaded Profile: Daniel (Available profiles: Daniel)
Boot Mode: Safe Mode (minimal)

==============================================

Content of fixlist:
*****************
CloseProcesses:
HKLM Group Policy restriction on software: C:\Program Files\Kaspersky Lab <====== ATTENTION
HKU\S-1-5-21-436374069-1284227242-1801674531-1003\...\Run: [Badoo Desktop] => C:\Documents and Settings\All Users\Dane aplikacji\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe
HKU\S-1-5-21-436374069-1284227242-1801674531-1003\...\Run: [GohoGyatr] => regsvr32.exe "C:\Documents and Settings\All Users\Dane aplikacji\GohoGyatr\GohoGyatr.dat"
HKLM\...\Run: [KTSInit] => [X]
HKLM\...\Run: [YTDownloader] => "C:\Program Files\YTDownloader\YTDownloader.exe" /boot
HKLM\...\Run: [SpyHunter Security Suite] => "C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe"
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-436374069-1284227242-1801674531-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-436374069-1284227242-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: No Name -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> No File
S2 HWDeviceService.exe; "C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe" -/service [X]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [X]
S2 VSGate; C:\ElsaWin\bin\VSgate.exe [X]
S3 EsgScanner; C:\WINDOWS\System32\DRIVERS\EsgScanner.sys [19984 2014-12-14] ()
S3 ASUSProcObsrv; \??\G:\I386\AsProcOb.sys [X]
S3 catchme; \??\C:\DOCUME~1\Daniel\USTAWI~1\Temp\catchme.sys [X]
S3 ESETCleanersDriver; \??\C:\WINDOWS\system32\Drivers\ESETCleanersDriver.sys [X]
C:\Documents and Settings\All Users\Dane aplikacji\GohoGyatr
C:\Documents and Settings\Daniel\TempWmicBatchFile.bat
C:\Documents and Settings\Daniel\Dane aplikacji\Enigma Software Group
C:\Documents and Settings\Daniel\Dane aplikacji\Opera Software
C:\Documents and Settings\Daniel\Moje dokumenty\*(*)-dp*.exe
C:\Documents and Settings\Daniel\Ustawienia lokalne\Dane aplikacji\ESET
C:\Documents and Settings\Daniel\Ustawienia lokalne\Dane aplikacji\Opera Software
C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET
C:\Program Files\D51D0083-1C6B-4CB4-8FA1-7CF891242EBD
C:\Program Files\Mozilla firefox\plugins
C:\Program Files\Opera
C:\WINDOWS\System32\DRIVERS\EsgScanner.sys
C:\sh4ldr
Reg: reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main" /f
Reg: reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main" /f
Reg: reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main" /f
Reg: reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f
Reg: reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes" /f
Reg: reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes" /f
CMD: sc config "Mobile Partner. RunOuc" start= disabled
EmptyTemp:
*****************

Processes closed successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKU\S-1-5-21-436374069-1284227242-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Badoo Desktop => Value not found.
HKU\S-1-5-21-436374069-1284227242-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run\\GohoGyatr => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\KTSInit => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\YTDownloader => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SpyHunter Security Suite => Value not found.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-436374069-1284227242-1801674531-1003\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKU\S-1-5-21-436374069-1284227242-1801674531-1003\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}" => Key deleted successfully.
"HKCR\CLSID\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}" => Key not found.
HWDeviceService.exe => Service deleted successfully.
SpyHunter 4 Service => Service deleted successfully.
VSGate => Service deleted successfully.
EsgScanner => Service deleted successfully.
ASUSProcObsrv => Service deleted successfully.
catchme => Service not found.
ESETCleanersDriver => Service deleted successfully.
"C:\Documents and Settings\All Users\Dane aplikacji\GohoGyatr" => File/Directory not found.
C:\Documents and Settings\Daniel\TempWmicBatchFile.bat => Moved successfully.
"C:\Documents and Settings\Daniel\Dane aplikacji\Enigma Software Group" => File/Directory not found.
C:\Documents and Settings\Daniel\Dane aplikacji\Opera Software => Moved successfully.
"C:\Documents and Settings\Daniel\Moje dokumenty\*(*)-dp*.exe" => File/Directory not found.
C:\Documents and Settings\Daniel\Ustawienia lokalne\Dane aplikacji\ESET => Moved successfully.
C:\Documents and Settings\Daniel\Ustawienia lokalne\Dane aplikacji\Opera Software => Moved successfully.
C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET => Moved successfully.
C:\Program Files\D51D0083-1C6B-4CB4-8FA1-7CF891242EBD => Moved successfully.
C:\Program Files\Mozilla firefox\plugins => Moved successfully.
C:\Program Files\Opera => Moved successfully.
C:\WINDOWS\System32\DRIVERS\EsgScanner.sys => Moved successfully.
"C:\sh4ldr" => File/Directory not found.

========= reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main" /f =========


Operacja ukończona pomyślnie


========= End of Reg: =========


========= reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main" /f =========


Błąd: system nie może odnaleźć określonego klucza rejestru lub wartości.


========= End of Reg: =========


========= reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main" /f =========


Operacja ukończona pomyślnie


========= End of Reg: =========


========= reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f =========


Operacja ukończona pomyślnie


========= End of Reg: =========


========= reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes" /f =========


Błąd: system nie może odnaleźć określonego klucza rejestru lub wartości.


========= End of Reg: =========


========= reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes" /f =========


Operacja ukończona pomyślnie


========= End of Reg: =========


=========  sc config "Mobile Partner. RunOuc" start= disabled =========

[SC] ChangeServiceConfig SUCCESS

========= End of CMD: =========

EmptyTemp: => Removed 233.7 MB temporary data.


The system needed a reboot. 

==== End of Fixlog ====