Fix result of Farbar Recovery Scan Tool (x64) Version:24-06-2015
Ran by Piotr at 2015-06-29 12:32:09 Run:3
Running from C:\Users\Piotr\Desktop
Loaded Profiles: Piotr (Available Profiles: Piotr)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
HKLM\...\Policies\Explorer\Run: [1817807662] => C:\ProgramData\msqoer.exe [100130816 2010-11-21] (Redtail Technology)
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
CHR HKU\S-1-5-21-2773447309-4165682760-850709354-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fnelgfmpooffemibikhmcklfnnimgijo] - C:\Users\Piotr\AppData\Local\CRE\fnelgfmpooffemibikhmcklfnnimgijo.crx [2014-04-01]
CHR HKLM-x32\...\Chrome\Extension: [fnelgfmpooffemibikhmcklfnnimgijo] - C:\Users\Piotr\AppData\Local\CRE\fnelgfmpooffemibikhmcklfnnimgijo.crx [2014-04-01]
C:\Program Files\DSHJYB1M.exe
C:\Program Files (x86)\is.dat
C:\Program Files (x86)\uik.dat
C:\ProgramData\msivxdc.exe
C:\ProgramData\msqoer.exe
C:\Users\Piotr\AppData\Local\CRE
RemoveDirectory: J:\Autorun.inf
CMD: attrib /d /s -s -h H:\*
CMD: attrib /d /s -s -h I:\*
CMD: attrib /d /s -s -h J:\*
CMD: netsh advfirewall reset
EmptyTemp:
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\1817807662 => value removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Nvtmru => value removed successfully
"HKU\S-1-5-21-2773447309-4165682760-850709354-1000\SOFTWARE\Google\Chrome\Extensions\fnelgfmpooffemibikhmcklfnnimgijo" => key removed successfully
C:\Users\Piotr\AppData\Local\CRE\fnelgfmpooffemibikhmcklfnnimgijo.crx => moved successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fnelgfmpooffemibikhmcklfnnimgijo" => key removed successfully
"C:\Users\Piotr\AppData\Local\CRE\fnelgfmpooffemibikhmcklfnnimgijo.crx" => File/Folder not found.
C:\Program Files\DSHJYB1M.exe => moved successfully.
C:\Program Files (x86)\is.dat => moved successfully.
C:\Program Files (x86)\uik.dat => moved successfully.
C:\ProgramData\msivxdc.exe => moved successfully.
C:\ProgramData\msqoer.exe => moved successfully.
C:\Users\Piotr\AppData\Local\CRE => moved successfully.
could not remove "J:\Autorun.inf\lpt1.UsbFix" => Scheduled to remove on reboot.
"J:\Autorun.inf" => removed successfully.

=========  attrib /d /s -s -h H:\* =========


========= End of CMD: =========


=========  attrib /d /s -s -h I:\* =========


========= End of CMD: =========


=========  attrib /d /s -s -h J:\* =========


========= End of CMD: =========


=========  netsh advfirewall reset =========

Ok.


========= End of CMD: =========

EmptyTemp: => 1.1 GB temporary data Removed.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-06-29 12:34:41)<=

J:\Autorun.inf\lpt1.UsbFix => removed successfully

==== End of Fixlog 12:34:41 ====