Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-02-2015 01
Ran by luq92 at 2015-02-05 12:57:16 Run:1
Running from C:\Users\luq92\Desktop
Loaded Profiles: luq92 (Available profiles: luq92)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CloseProcesses:
HKU\S-1-5-21-235181466-226106737-571907301-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp
SearchScopes: HKU\S-1-5-21-235181466-226106737-571907301-1000 -> {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = http://pl.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo
CHR HKU\S-1-5-21-235181466-226106737-571907301-1000\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - No Path
U3 ALSysIO; \??\C:\Users\luq92\AppData\Local\Temp\ALSysIO64.sys [X]
U3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
Task: {A8884416-DC46-4ED5-91B5-4CD4EBF6B306} - System32\Tasks\QTFXEQ => C:\Users\luq92\AppData\Roaming\QTFXEQ.exe <==== ATTENTION
Task: C:\Windows\Tasks\QTFXEQ.job => C:\Users\luq92\AppData\Roaming\QTFXEQ.exe <==== ATTENTION
AlternateDataStreams: C:\Windows\system32\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\nlasvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\profsvc.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\rstrui.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\srcore.dll:$CmdTcID
AlternateDataStreams: C:\Windows\system32\TSWbPrxy.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\WinUSBCoInstaller2.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ieUnatt.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ncsi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\nlaapi.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntkrnlpa.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\srclient.dll:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\WISPTIS.EXE:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mbam.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mbamchameleon.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\mwac.sys:$CmdTcID
AlternateDataStreams: C:\Users\luq92\Desktop\10861044_782117995204720_6149239789094780025_o.jpg:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\10946028_624249037704845_150336688_o.jpg:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\10947389_782118111871375_4508626304324061168_o.jpg:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\10953945_624248977704851_41166513_o.jpg:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\2v7d8gkc.exe:$CmdTcID
AlternateDataStreams: C:\Users\luq92\Desktop\2v7d8gkc.exe:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\AdwCleaner.exe:$CmdTcID
AlternateDataStreams: C:\Users\luq92\Desktop\AdwCleaner.exe:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\DSC_4667.JPG:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\FRST64.exe:$CmdTcID
AlternateDataStreams: C:\Users\luq92\Desktop\FRST64.exe:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\giphy.gif:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\Metody i techniki sztucznej inteligencji - L.Rutkowski.pdf:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\netia_25803300.pdf:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\novamod33.zip:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\odpre.zip:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\st_www.xls:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\TR_DETAILS_20150121175227.pdf:$CmdZnID
AlternateDataStreams: C:\Users\luq92\Desktop\zal_L_1b_deklaracja_2015.docx:$CmdZnID
EmptyTemp:
*****************

Processes closed successfully.
HKU\S-1-5-21-235181466-226106737-571907301-1000\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache => value deleted successfully.
"HKU\S-1-5-21-235181466-226106737-571907301-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}" => Key deleted successfully.
HKCR\CLSID\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A} => Key not found. 
"HKU\S-1-5-21-235181466-226106737-571907301-1000\SOFTWARE\Google\Chrome\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh" => Key deleted successfully.
ALSysIO => Service stopped successfully.
ALSysIO => Service deleted successfully.
VBoxNetFlt => Service deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A8884416-DC46-4ED5-91B5-4CD4EBF6B306}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8884416-DC46-4ED5-91B5-4CD4EBF6B306}" => Key deleted successfully.
C:\Windows\System32\Tasks\QTFXEQ => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\QTFXEQ" => Key deleted successfully.
C:\Windows\Tasks\QTFXEQ.job => Moved successfully.
C:\Windows\system32\ieUnatt.exe => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\MRT.exe => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\nlasvc.dll => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\ntoskrnl.exe => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\profsvc.dll => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\rstrui.exe => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\srclient.dll => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\srcore.dll => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\TSWbPrxy.exe => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\WinUSBCoInstaller2.dll => ":$CmdTcID" ADS removed successfully.
C:\Windows\SysWOW64\FlashPlayerApp.exe => ":$CmdTcID" ADS removed successfully.
C:\Windows\SysWOW64\ieUnatt.exe => ":$CmdTcID" ADS removed successfully.
C:\Windows\SysWOW64\ncsi.dll => ":$CmdTcID" ADS removed successfully.
C:\Windows\SysWOW64\nlaapi.dll => ":$CmdTcID" ADS removed successfully.
C:\Windows\SysWOW64\ntkrnlpa.exe => ":$CmdTcID" ADS removed successfully.
C:\Windows\SysWOW64\ntoskrnl.exe => ":$CmdTcID" ADS removed successfully.
C:\Windows\SysWOW64\srclient.dll => ":$CmdTcID" ADS removed successfully.
C:\Windows\SysWOW64\WISPTIS.EXE => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\Drivers\mbam.sys => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\Drivers\mbamchameleon.sys => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\Drivers\mrxdav.sys => ":$CmdTcID" ADS removed successfully.
C:\Windows\system32\Drivers\mwac.sys => ":$CmdTcID" ADS removed successfully.
C:\Users\luq92\Desktop\10861044_782117995204720_6149239789094780025_o.jpg => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\10946028_624249037704845_150336688_o.jpg => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\10947389_782118111871375_4508626304324061168_o.jpg => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\10953945_624248977704851_41166513_o.jpg => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\2v7d8gkc.exe => ":$CmdTcID" ADS removed successfully.
C:\Users\luq92\Desktop\2v7d8gkc.exe => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\AdwCleaner.exe => ":$CmdTcID" ADS removed successfully.
C:\Users\luq92\Desktop\AdwCleaner.exe => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\DSC_4667.JPG => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\FRST64.exe => ":$CmdTcID" ADS removed successfully.
C:\Users\luq92\Desktop\FRST64.exe => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\giphy.gif => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\Metody i techniki sztucznej inteligencji - L.Rutkowski.pdf => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\netia_25803300.pdf => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\novamod33.zip => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\odpre.zip => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\st_www.xls => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\TR_DETAILS_20150121175227.pdf => ":$CmdZnID" ADS removed successfully.
C:\Users\luq92\Desktop\zal_L_1b_deklaracja_2015.docx => ":$CmdZnID" ADS removed successfully.
EmptyTemp: => Removed 494.3 MB temporary data.


The system needed a reboot. 

==== End of Fixlog 12:57:29 ====