Fix result of Farbar Recovery Scan Tool (x64) Version:26-07-2015
Ran by lenovo at 2015-07-26 14:22:30 Run:1
Running from C:\Users\lenovo\Desktop
Loaded Profiles: lenovo (Available Profiles: lenovo)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
CreateRestorePoint:
Task: {1A3D8FAB-1960-43F3-8897-8C22631B57B9} - System32\Tasks\{CEBB2555-A2C0-4B49-B05B-43D2C3884079} => pcalua.exe -a C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_215_pepper.exe -c -maintain pepperplugin
Task: {2BF06457-8618-4A0D-9328-6599FA37FAC8} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION
Task: {484B302C-3DA2-4B67-911B-AB57372F64B9} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION
Task: {8945D11A-022D-4CA9-8966-C3F303FB7FE9} - System32\Tasks\{B285C06A-2483-4A92-B6E8-7D5DE96BB865} => pcalua.exe -a "C:\Program Files (x86)\YTDownloader\YTDUninstall.exe"
Task: {BBEEED3E-448D-4FB8-9839-D36DBE0543A5} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 <==== ATTENTION
Task: {EA0A7552-0600-4051-8807-B84784C1872A} - System32\Tasks\YTDownloader => C:\Program Files (x86)\YTDownloader\YTDownloader.exe <==== ATTENTION
HKLM-x32\...\Run: [mcui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
HKLM-x32\...\Run: [YTDownloader] => "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1930146046-466709810-403476640-1001\...\Run: [ViStart] => C:\Users\lenovo\AppData\Roaming\ViStart\ViStart.exe
HKU\S-1-5-21-1930146046-466709810-403476640-1001\...\Run: [NukeMetro] => "C:\Users\lenovo\AppData\Roaming\ViStart\ViStart.exe" /nuke_metro
HKU\S-1-5-21-1930146046-466709810-403476640-1001\...\Run: [YTDownloader] => "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
BootExecute: ampa
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=180&d=20140617
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=180&d=20140617
HKU\S-1-5-21-1930146046-466709810-403476640-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=180&d=20140617
SearchScopes: HKU\S-1-5-21-1930146046-466709810-403476640-1001 -> DefaultScope {772EDB4B-BC96-4B94-994A-BD90363AA1FD} URL =
SearchScopes: HKU\S-1-5-21-1930146046-466709810-403476640-1001 -> {772EDB4B-BC96-4B94-994A-BD90363AA1FD} URL =
BHO: No Name -> {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} -> No File
DPF: HKLM-x32 {4FF78044-96B4-4312-A5B7-FDA3CB328095}
C:\Program Files (x86)\FreeRide Games
C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\klcp_update_1030_20140206.lnk
C:\Users\lenovo\Downloads\EDA1.tmp
Reg: reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Greener Web" /f
EmptyTemp:
*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1A3D8FAB-1960-43F3-8897-8C22631B57B9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A3D8FAB-1960-43F3-8897-8C22631B57B9}" => key removed successfully
C:\Windows\System32\Tasks\{CEBB2555-A2C0-4B49-B05B-43D2C3884079} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CEBB2555-A2C0-4B49-B05B-43D2C3884079}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2BF06457-8618-4A0D-9328-6599FA37FAC8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BF06457-8618-4A0D-9328-6599FA37FAC8}" => key removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Maintenance\SMupdate2" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{484B302C-3DA2-4B67-911B-AB57372F64B9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{484B302C-3DA2-4B67-911B-AB57372F64B9}" => key removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Multimedia\SMupdate3" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8945D11A-022D-4CA9-8966-C3F303FB7FE9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8945D11A-022D-4CA9-8966-C3F303FB7FE9}" => key removed successfully
C:\Windows\System32\Tasks\{B285C06A-2483-4A92-B6E8-7D5DE96BB865} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B285C06A-2483-4A92-B6E8-7D5DE96BB865}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BBEEED3E-448D-4FB8-9839-D36DBE0543A5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BBEEED3E-448D-4FB8-9839-D36DBE0543A5}" => key removed successfully
C:\Windows\System32\Tasks\SMupdate1 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SMupdate1" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EA0A7552-0600-4051-8807-B84784C1872A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EA0A7552-0600-4051-8807-B84784C1872A}" => key removed successfully
C:\Windows\System32\Tasks\YTDownloader not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\YTDownloader" => key removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mcui_exe => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\YTDownloader => value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => value removed successfully
HKU\S-1-5-21-1930146046-466709810-403476640-1001\Software\Microsoft\Windows\CurrentVersion\Run\\ViStart => value removed successfully
HKU\S-1-5-21-1930146046-466709810-403476640-1001\Software\Microsoft\Windows\CurrentVersion\Run\\NukeMetro => value removed successfully
HKU\S-1-5-21-1930146046-466709810-403476640-1001\Software\Microsoft\Windows\CurrentVersion\Run\\YTDownloader => value not found.
hklm\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
"HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc" => key removed successfully
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc" => key removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-1930146046-466709810-403476640-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-1930146046-466709810-403476640-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-1930146046-466709810-403476640-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{772EDB4B-BC96-4B94-994A-BD90363AA1FD}" => key removed successfully
HKCR\CLSID\{772EDB4B-BC96-4B94-994A-BD90363AA1FD} => key not found. 
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} => key not found. 
HKCR\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} => key not found. 
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{4FF78044-96B4-4312-A5B7-FDA3CB328095}" => key removed successfully
HKCR\Wow6432Node\CLSID\{4FF78044-96B4-4312-A5B7-FDA3CB328095} => key not found. 
"C:\Program Files (x86)\FreeRide Games" => File/Folder not found.
C:\Users\lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\klcp_update_1030_20140206.lnk => moved successfully.
C:\Users\lenovo\Downloads\EDA1.tmp => moved successfully.

========= reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Greener Web" /f =========

ERROR: The system was unable to find the specified registry key or value.


========= End of Reg: =========

EmptyTemp: => 567.3 MB temporary data Removed.


The system needed a reboot.. 

==== End of Fixlog 14:23:30 ====