﻿Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 25-12-2013
Ran by Boris at 2013-12-26 20:42:24 Run:2
Running from C:\Users\Boris\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [LManager] - [x]
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
MountPoints2: {08c87ebe-622d-11e2-be71-b888e3c69261} - "E:\StartUp.exe"
MountPoints2: {16ad33ce-0266-11e2-be69-806e6f6e6963} - "D:\Setup.exe"
MountPoints2: {d86e1043-6338-11e2-be76-b888e3c69261} - "E:\Autorun.exe"
HKU\Barborka\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd)
HKU\Barborka\...\Run: [Pando Media Booster] - C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
HKU\Barborka\...\Run: [cz.seznam.software.szndesktop] - C:\Users\Barborka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\Barborka\...\Run: [cz.seznam.software.autoupdate] - C:\Users\Barborka\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\Default\...\RunOnce: [RegAutoPlay] - C:\Program Files (x86)\Acer\clear.fi Media\RegAutoplay.exe [1845392 2012-07-21] (Acer Incorporated)
HKU\Default User\...\RunOnce: [RegAutoPlay] - C:\Program Files (x86)\Acer\clear.fi Media\RegAutoplay.exe [1845392 2012-07-21] (Acer Incorporated)
BootExecute: autocheck autochk * sdnclean64.exe

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
URLSearchHook: HKLM-x32 - Default Value = {74198672-5F7D-4FE9-A611-4AC1D5A66A15}
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll No File
SearchScopes: HKLM - DefaultScope {F4D68537-EC62-4990-823F-9F41DCC114A8} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {F4D68537-EC62-4990-823F-9F41DCC114A8} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {F4D68537-EC62-4990-823F-9F41DCC114A8} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKCU - {F4D68537-EC62-4990-823F-9F41DCC114A8} URL =
BHO-x32: Groove GFS Browser Helper - {390C7E87-153C-12DB-2EA6-0BB301EB26E9} - C:\Windows\SysWOW64\autoplayy.dll ()

FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

CHR Extension: (SimilarWeb) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoklmmgfnpapgjgcpechhaamimifchmp\2.0.0.1_0

2013-12-25 22:05 - 2013-12-25 22:05 - 00029696 _____ C:\Users\Boris\AppData\Local\MSGBOX.EXE
2013-12-25 22:05 - 2013-12-25 22:05 - 00015327 _____ C:\Users\Boris\Desktop\LM.bat
2013-12-25 19:32 - 2013-12-25 19:32 - 00112640 _____ (forum.viry.cz) C:\Users\Boris\Desktop\FRSTLauncher.exe
2013-12-21 13:03 - 2013-12-21 13:03 - 05484016 _____ (Speedchecker Limited ) C:\Users\Boris\Downloads\zrychlenipocitace_4c558abead1c43dc8df02c828af92b59_.exe
c:\Users\Barborka\AppData\Local\Temp\avgnt.exe
C:\Users\Boris\AppData\Local\Temp\avgnt.exe
C:\Users\Boris\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\Boris\AppData\Local\Temp\Quarantine.exe
C:\Users\Boris\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cef3edacb81fa4.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:DocumentSummaryInformation
AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:SummaryInformation
AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\ProgramData\Temp:12EA4DC9
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F
AlternateDataStreams: C:\ProgramData\Temp:57173DB4
AlternateDataStreams: C:\ProgramData\Temp:B2D32F1D
AlternateDataStreams: C:\ProgramData\Temp:CB959782
AlternateDataStreams: C:\ProgramData\Temp:E4BC4A41
AlternateDataStreams: C:\ProgramData\Temp:F6910DB1

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\LManager => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => Value not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Steam => Value not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{08c87ebe-622d-11e2-be71-b888e3c69261} => Key not found.
HKCR\CLSID\{08c87ebe-622d-11e2-be71-b888e3c69261} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{16ad33ce-0266-11e2-be69-806e6f6e6963} => Key deleted successfully.
HKCR\CLSID\{16ad33ce-0266-11e2-be69-806e6f6e6963} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d86e1043-6338-11e2-be76-b888e3c69261} => Key not found.
HKCR\CLSID\{d86e1043-6338-11e2-be76-b888e3c69261} => Key not found.
HKU\Barborka\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value not found.
HKU\Barborka\Software\Microsoft\Windows\CurrentVersion\Run\\Pando Media Booster => Value not found.
HKU\Barborka\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => Value not found.
HKU\Barborka\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => Value not found.
HKU\Default\Software\Microsoft\Windows\CurrentVersion\RunOnce\\RegAutoPlay => Value not found.
HKU\Default User\Software\Microsoft\Windows\CurrentVersion\RunOnce\\RegAutoPlay => Value not found.
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\URLSearchHooks\\ => Value not found.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00000000-6E41-4FD3-8538-502F5495E5FC} => Value not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F4D68537-EC62-4990-823F-9F41DCC114A8} => Key not found.
HKCR\CLSID\{F4D68537-EC62-4990-823F-9F41DCC114A8} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{F4D68537-EC62-4990-823F-9F41DCC114A8} => Key not found.
HKCR\Wow6432Node\CLSID\{F4D68537-EC62-4990-823F-9F41DCC114A8} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F4D68537-EC62-4990-823F-9F41DCC114A8} => Key not found.
HKCR\CLSID\{F4D68537-EC62-4990-823F-9F41DCC114A8} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{390C7E87-153C-12DB-2EA6-0BB301EB26E9} => Key not found.
HKCR\Wow6432Node\CLSID\{390C7E87-153C-12DB-2EA6-0BB301EB26E9} => Key not found.
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com => Value not found.
C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoklmmgfnpapgjgcpechhaamimifchmp directory not found.
"C:\Users\Boris\AppData\Local\MSGBOX.EXE" => File/Directory not found.
"C:\Users\Boris\Desktop\LM.bat" => File/Directory not found.
"C:\Users\Boris\Desktop\FRSTLauncher.exe" => File/Directory not found.
"C:\Users\Boris\Downloads\zrychlenipocitace_4c558abead1c43dc8df02c828af92b59_.exe" => File/Directory not found.
"c:\Users\Barborka\AppData\Local\Temp\avgnt.exe" => File/Directory not found.
C:\Users\Boris\AppData\Local\Temp\avgnt.exe => Moved successfully.
"C:\Users\Boris\AppData\Local\Temp\NOSEventMessages.dll" => File/Directory not found.
"C:\Users\Boris\AppData\Local\Temp\Quarantine.exe" => File/Directory not found.
"C:\Users\Boris\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" => File/Directory not found.
C:\Windows\Tasks\Adobe Flash Player Updater.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cef3edacb81fa4.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
"C:\Windows\SysWOW64\zlib.dll" => ":DocumentSummaryInformation" ADS not found.
"C:\Windows\SysWOW64\zlib.dll" => ":SummaryInformation" ADS not found.
"C:\Windows\SysWOW64\zlib.dll" => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS not found.
"C:\ProgramData\Temp" => ":12EA4DC9" ADS not found.
"C:\ProgramData\Temp" => ":2CB9631F" ADS not found.
"C:\ProgramData\Temp" => ":57173DB4" ADS not found.
"C:\ProgramData\Temp" => ":B2D32F1D" ADS not found.
"C:\ProgramData\Temp" => ":CB959782" ADS not found.
"C:\ProgramData\Temp" => ":E4BC4A41" ADS not found.
"C:\ProgramData\Temp" => ":F6910DB1" ADS not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

=========  shutdown /r /f /t 2 =========


========= End of CMD: =========


==== End of Fixlog ====