Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-09-2013
Ran by admin at 2013-09-22 18:53:13 Run:1
Running from C:\Users\admin\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\Users\admin\AppData\Local\avgchrome
C:\Users\admin\AppData\Local\Temp\*.com
C:\Users\admin\AppData\Local\Temp\*.exe
C:\Users\admin\AppData\Local\Temp\*.pif
C:\Users\admin\AppData\Roaming\*.exe
C:\Users\admin\AppData\Roaming\0F1F1C2Y1H1P1C0I0T
C:\Users\admin\AppData\Roaming\245E05C3
C:\Users\admin\AppData\Roaming\asfattsadfsat
C:\Users\admin\AppData\Roaming\BabSolution
C:\Users\admin\AppData\Roaming\Babylon
C:\Users\admin\AppData\Roaming\dclogs
C:\Users\admin\AppData\Roaming\OpenCandy
C:\Users\admin\AppData\Roaming\Systweak
C:\Users\admin\Downloads\Dr.WEB-CureIt*.exe
C:\ProgramData\DSearchLink
C:\ProgramData\Babylon
C:\adfsadjfosag
HKCU\...\Run: [MSConfig] - C:\Users\admin\AppData\Roaming\MSconfig.exe
HKCU\...\Run: [MSUpdate] - C:\Users\admin\AppData\Roaming\MSUpdate.exe [1099182 2013-09-14] ()
HKCU\...\Run: [AudioDrivers] - C:\Users\admin\AppData\Roaming\AudioDriver.exe [1079350 2013-09-17] ()
HKCU\...\CurrentVersion\Windows: [Load] C:\Users\admin\LOCALS~1\Temp\msbenov.com <===== ATTENTION
HKCU\...\Run: [ALLUpdate] - "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep"
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnUpdater] - "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" [x]
Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\config.exe ()
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www2.delta-search.com/?babsrc=HP_ss&mntrId=245E5404A6A21426&affID=119357&tsp=5008
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www2.delta-search.com/?babsrc=HP_ss&mntrId=245E5404A6A21426&affID=119357&tsp=5008
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - No File
SearchScopes: HKLM-x32 - DefaultScope {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20121224150743260&tb_oid=24-12-2012&tb_mrud=24-12-2012
SearchScopes: HKLM-x32 - {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20121224150743260&tb_oid=24-12-2012&tb_mrud=24-12-2012
SearchScopes: HKCU - DefaultScope {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20121224150743260&tb_oid=24-12-2012&tb_mrud=24-12-2012
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=245E5404A6A21426&affID=119357&tsp=5008
SearchScopes: HKCU - {1DF7221F-7D5E-4BA1-8614-A91A676BC539} URL = http://websearch.ask.com/redirect?client=ie&tb=FXTV5&o=101699&src=kw&q={searchTerms}&locale=&apn_ptnrs=^F4&apn_dtid=^YYYYYY^YY^PL&apn_uid=97d1547d-adee-4e42-bfe8-f43e434b64d9&apn_sauid=61639FE7-1AF1-4AC6-8C2C-BA4FD546B18C
SearchScopes: HKCU - {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20121224150743260&tb_oid=24-12-2012&tb_mrud=24-12-2012
BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.6\bh\delta.dll (Delta-search.com)
BHO-x32: Foxit PDF Creator Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll No File
Toolbar: HKLM-x32 - Foxit PDF Creator Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll No File
Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.24.6\deltaTlbr.dll (Delta-search.com)
CHR HKLM-x32\...\Chrome\Extension: [aaaaoiagmlcohkmjodefppbmpjdiocmh] - C:\Users\admin\AppData\Local\APN\GoogleCRXs\aaaaoiagmlcohkmjodefppbmpjdiocmh_7.17.6.0.crx
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\admin\AppData\Roaming\BabSolution\CR\Delta.crx
Task: {752B905C-7DB3-45E6-81DD-9F2D7500E15A} - System32\Tasks\RegClean Pro_UPDATES => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe
Task: {972ACA7D-A1B7-4E85-A947-514FF274B7E2} - System32\Tasks\RegClean Pro_DEFAULT => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe
Task: {9F4443AC-4D7B-473E-B2A8-4E3C1CD477D4} - System32\Tasks\BitGuard => Sc.exe start BitGuard
Task: {B9C8E597-DC9D-4C88-B9FC-340FC9826B9C} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe
Task: {F30FC943-E824-41C8-A2DB-F694D2150355} - System32\Tasks\RegClean Pro => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe
Task: C:\Windows\Tasks\RegClean Pro_DEFAULT.job => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe
Task: C:\Windows\Tasks\RegClean Pro_UPDATES.job => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe
R2 BitGuard; C:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [2845152 2013-09-10] ()
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [x]
S3 ALSysIO; \??\C:\Users\admin\AppData\Local\Temp\ALSysIO64.sys [x]
CMD: netsh advfirewall reset
*****************

C:\Users\admin\AppData\Local\avgchrome => Moved successfully.
"C:\Users\admin\AppData\Local\Temp\*.com" => File/Directory not found.
C:\Users\admin\AppData\Local\Temp\*.exe => Moved successfully.
"C:\Users\admin\AppData\Local\Temp\*.pif" => File/Directory not found.
C:\Users\admin\AppData\Roaming\*.exe => Moved successfully.
C:\Users\admin\AppData\Roaming\0F1F1C2Y1H1P1C0I0T => Moved successfully.
C:\Users\admin\AppData\Roaming\245E05C3 => Moved successfully.
C:\Users\admin\AppData\Roaming\asfattsadfsat => Moved successfully.
C:\Users\admin\AppData\Roaming\BabSolution => Moved successfully.
C:\Users\admin\AppData\Roaming\Babylon => Moved successfully.
C:\Users\admin\AppData\Roaming\dclogs => Moved successfully.
C:\Users\admin\AppData\Roaming\OpenCandy => Moved successfully.
C:\Users\admin\AppData\Roaming\Systweak => Moved successfully.
C:\Users\admin\Downloads\Dr.WEB-CureIt*.exe => Moved successfully.
C:\ProgramData\DSearchLink => Moved successfully.
C:\ProgramData\Babylon => Moved successfully.
C:\adfsadjfosag => Moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\MSConfig => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\MSUpdate => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\AudioDrivers => Value deleted successfully.
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\\Load => Value was restored successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\ALLUpdate => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater => Value deleted successfully.
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\config.exe => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\bProtector Start Page => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\\{00000000-6E41-4FD3-8538-502F5495E5FC} => Value deleted successfully.
HKCR\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\bProtectorDefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1DF7221F-7D5E-4BA1-8614-A91A676BC539} => Key deleted successfully.
HKCR\CLSID\{1DF7221F-7D5E-4BA1-8614-A91A676BC539} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} => Key deleted successfully.
HKCR\CLSID\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{82E1477C-B154-48D3-9891-33D83C26BCD3} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\aaaaoiagmlcohkmjodefppbmpjdiocmh => Key deleted successfully.
C:\Users\admin\AppData\Local\APN\GoogleCRXs\aaaaoiagmlcohkmjodefppbmpjdiocmh_7.17.6.0.crx => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde => Key deleted successfully.
"C:\Users\admin\AppData\Roaming\BabSolution\CR\Delta.crx" => File/Directory not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{752B905C-7DB3-45E6-81DD-9F2D7500E15A} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{752B905C-7DB3-45E6-81DD-9F2D7500E15A} => Key deleted successfully.
C:\Windows\System32\Tasks\RegClean Pro_UPDATES => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegClean Pro_UPDATES => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{972ACA7D-A1B7-4E85-A947-514FF274B7E2} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{972ACA7D-A1B7-4E85-A947-514FF274B7E2} => Key deleted successfully.
C:\Windows\System32\Tasks\RegClean Pro_DEFAULT => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegClean Pro_DEFAULT => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9F4443AC-4D7B-473E-B2A8-4E3C1CD477D4} => Key not found.
C:\Windows\System32\Tasks\BitGuard => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BitGuard => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B9C8E597-DC9D-4C88-B9FC-340FC9826B9C} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9C8E597-DC9D-4C88-B9FC-340FC9826B9C} => Key deleted successfully.
C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F30FC943-E824-41C8-A2DB-F694D2150355} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F30FC943-E824-41C8-A2DB-F694D2150355} => Key deleted successfully.
C:\Windows\System32\Tasks\RegClean Pro => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegClean Pro => Key deleted successfully.
C:\Windows\Tasks\RegClean Pro_DEFAULT.job => Moved successfully.
C:\Windows\Tasks\RegClean Pro_UPDATES.job => Moved successfully.
BitGuard => Service deleted successfully.
ACDaemon => Service deleted successfully.
ALSysIO => Service deleted successfully.

=========  netsh advfirewall reset =========

Ok.


========= End of CMD: =========



The system needs a manual reboot. 

==== End of Fixlog ====