﻿Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 06-09-2014
Ran by vodka lemon at 2014-09-07 14:53:14 Run:1
Running from C:\Users\vodka lemon\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-04-03] (DivX, LLC)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-08-19] (Hewlett-Packard)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-758965938-1497452166-1016383648-1001\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-758965938-1497452166-1016383648-1001\...\Run: [] => [X]
HKU\S-1-5-21-758965938-1497452166-1016383648-1001\...\MountPoints2: {03ca1521-c4c7-11de-94b4-00247eef65d9} - H:\Toshiba\more4you.exe
HKU\S-1-5-21-758965938-1497452166-1016383648-1001\...\MountPoints2: {cb546911-02ea-11e0-8790-002655cbf46a} - G:\LaunchU3.exe -a
HKU\S-1-5-21-758965938-1497452166-1016383648-1002\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://ie.redirect.hp.com/svs/rdr?type= ... ll&pf=cmnb

2014-09-06 17:54 - 2014-09-06 17:56 - 00026284 _____ () C:\Users\vodka lemon\Desktop\FRST.txt
2014-09-06 17:51 - 2014-09-06 17:51 - 00112640 _____ (forum.viry.cz) C:\Users\vodka lemon\Desktop\FRSTLauncher.exe
2014-09-06 16:30 - 2014-09-06 16:07 - 00024064 _____ () C:\windows\zoek-delete.exe
2014-09-06 16:11 - 2014-09-06 16:33 - 00011849 _____ () C:\zoek-results.log
2014-09-06 16:07 - 2014-09-06 16:26 - 00000000 ____D () C:\zoek_backup
2014-09-06 16:05 - 2014-09-06 16:05 - 01288704 _____ () C:\Users\vodka lemon\Desktop\zoek.exe
2014-09-06 15:31 - 2014-09-06 15:43 - 00000000 ____D () C:\AdwCleaner
2014-09-06 15:29 - 2014-09-06 15:29 - 01370467 _____ () C:\Users\vodka lemon\Desktop\adwcleaner_3.309.exe
2014-09-06 15:17 - 2014-09-06 15:17 - 00006486 _____ () C:\Users\vodka lemon\Desktop\JRT.txt
2014-09-06 15:06 - 2014-09-06 15:06 - 00000000 ____D () C:\windows\ERUNT
2014-09-06 15:04 - 2014-09-06 15:05 - 01016261 _____ (Thisisu) C:\Users\vodka lemon\Desktop\JRT.exe
2014-09-06 14:10 - 2014-09-06 14:11 - 00000000 ____D () C:\rsit
2014-09-06 14:10 - 2014-09-06 14:11 - 00000000 ____D () C:\Program Files\trend micro
2014-09-06 16:33 - 2010-02-14 19:17 - 00000946 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-06 17:48 - 2010-02-14 19:17 - 00000950 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Hosts:
Reboot:
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\BCSSync => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Acrobat Assistant 8.0 => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\DivXMediaServer => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\DivXUpdate => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\NCPluginUpdater => value deleted successfully.
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run\\WindowsWelcomeCenter => value deleted successfully.
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run\\WindowsWelcomeCenter => value deleted successfully.
HKU\S-1-5-21-758965938-1497452166-1016383648-1001\Software\Microsoft\Windows\CurrentVersion\Run\\WindowsWelcomeCenter => value deleted successfully.
HKU\S-1-5-21-758965938-1497452166-1016383648-1001\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
"HKU\S-1-5-21-758965938-1497452166-1016383648-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{03ca1521-c4c7-11de-94b4-00247eef65d9}" => Key deleted successfully.
"HKCR\CLSID\{03ca1521-c4c7-11de-94b4-00247eef65d9}" => Key not found.
"HKU\S-1-5-21-758965938-1497452166-1016383648-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cb546911-02ea-11e0-8790-002655cbf46a}" => Key deleted successfully.
"HKCR\CLSID\{cb546911-02ea-11e0-8790-002655cbf46a}" => Key not found.
HKU\S-1-5-21-758965938-1497452166-1016383648-1002\Software\Microsoft\Windows\CurrentVersion\Run\\WindowsWelcomeCenter => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages => value deleted successfully.
"C:\Users\vodka lemon\Desktop\FRST.txt" => File/Directory not found.
C:\Users\vodka lemon\Desktop\FRSTLauncher.exe => Moved successfully.
C:\windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\vodka lemon\Desktop\zoek.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\vodka lemon\Desktop\adwcleaner_3.309.exe => Moved successfully.
C:\Users\vodka lemon\Desktop\JRT.txt => Moved successfully.
C:\windows\ERUNT => Moved successfully.
C:\Users\vodka lemon\Desktop\JRT.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.


The system needed a reboot. 

==== End of Fixlog ====