Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-09-2014
Ran by USER at 2014-09-17 18:08:44 Run:1
Running from C:\Users\USER\Desktop\Nowy folder
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CloseProcesses:
HKLM-x32\...\Run: [fst_pl_171] => [X]
HKU\S-1-5-21-2090350958-2652773212-1935591002-1001\...\Run: [svchost] => regsvr32 /s "C:\Temp:162B6F02.dat"
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1407358721&from=sof&uid=HitachiXHTS545050A7E380_TEJ511390HMB0P0HMB0PX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1407358721&from=sof&uid=HitachiXHTS545050A7E380_TEJ511390HMB0P0HMB0PX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1407358721&from=sof&uid=HitachiXHTS545050A7E380_TEJ511390HMB0P0HMB0PX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1407358721&from=sof&uid=HitachiXHTS545050A7E380_TEJ511390HMB0P0HMB0PX&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com/?type=sc&ts=1407358721&from=sof&uid=HitachiXHTS545050A7E380_TEJ511390HMB0P0HMB0PX
BHO-x32: CouponDownloader -> {c817d3d8-b9da-521d-971d-2c0a747ea697} -> C:\Program Files\C78087A8-C960-4464-A618-3D351DF6C0D7\gohymlmtrh.dll ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
Task: {1A8C8425-8B12-4136-B946-980363CA1A34} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {24F88517-2C24-43F4-809B-FBEC74BA0518} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {7524AC39-61E2-43AD-88FB-BCD62CAF6943} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {97B807CA-00F1-427D-B4CF-9D8C876DEACD} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-08-06] (globalUpdate) <==== ATTENTION
Task: {E6F4A2D5-9D9A-4CEF-B84E-5C1996B8FF48} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-08-06] (globalUpdate) <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-08-06] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-08-06] (globalUpdate) [File not signed]
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [694784 2014-08-06] (Cherished Technololgy LIMITED) [File not signed]
R1 {55dce8ba-9dec-4013-937e-adbf9317d990}w64; C:\Windows\System32\drivers\{55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys [61584 2014-08-09] (StdLib)
R1 {6fcd6092-9615-4f7f-8898-8df53980e5d2}w64; C:\Windows\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}w64.sys [61624 2014-08-06] (StdLib)
U4 BthAvrcpTg; No ImagePath
U4 BthHFEnum; No ImagePath
U4 bthhfhid; No ImagePath
ShortcutWithArgument: C:\Users\USER\Documents\Pavilion G7-2210ew\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.delta-homes.com/?type=sc&ts=1384375615&from=mlv&uid=HitachiXHTS545050A7E380_TEJ511390HMB0P0HMB0PX
ShortcutWithArgument: C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.delta-homes.com/?type=sc&ts=1384375615&from=mlv&uid=HitachiXHTS545050A7E380_TEJ511390HMB0P0HMB0PX
ShortcutWithArgument: C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.delta-homes.com/?type=sc&ts=1384375615&from=mlv&uid=HitachiXHTS545050A7E380_TEJ511390HMB0P0HMB0PX
ShortcutWithArgument: C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.delta-homes.com/?type=sc&ts=1384375615&from=mlv&uid=HitachiXHTS545050A7E380_TEJ511390HMB0P0HMB0PX
ShortcutWithArgument: C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.delta-homes.com/?type=sc&ts=1384375615&from=mlv&uid=HitachiXHTS545050A7E380_TEJ511390HMB0P0HMB0PX
C:\Program Files\004
C:\Program Files (x86)\C78087A8-C960-4464-A618-3D351DF6C0D7
C:\Program Files (x86)\Bench
C:\Program Files (x86)\globalUpdate
C:\Program Files (x86)\Mozilla Firefox
C:\Program Files (x86)\predm
C:\ProgramData\IePluginServices
C:\Users\USER\AppData\Local\*.log
C:\Users\USER\AppData\Local\*.tmp
C:\Users\USER\AppData\Roaming\aps.uninstall.scan.results
C:\Users\USER\AppData\Roaming\ap_logs
C:\Users\USER\AppData\Roaming\Mozilla
C:\Users\USER\AppData\Roaming\OpenCandy
C:\Users\USER\AppData\Roaming\Opera Software
C:\Users\USER\AppData\Roaming\systweak
C:\Users\USER\Desktop\Nowy folder (2)\Bagger-Simulator 2011 (Demo).lnk
C:\Users\USER\Documents\Pavilion G7-2210ew\Desktop\VSO Downloader 3.lnk
C:\Users\USER\Documents\Pavilion G7-2210ew\Desktop\dawid\*.lnk
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\FreshDownload.lnk
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Torpedo.lnk
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Boxoft Toolbox
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\*.lnk
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mobogenie.lnk
C:\Users\USER\Downloads\yet_another_cleaner_brof.exe
C:\Temp
C:\Windows\System32\drivers\{55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys
C:\Windows\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}w64.sys
DeleteKey: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run
Reg: reg delete HKCU\Software\Mozilla /f
Reg: reg delete HKCU\Software\MozillaPlugins /f
Reg: reg delete HKLM\SOFTWARE\MozillaPlugins /f
Reg: reg delete HKLM\SOFTWARE\Wow6432Node\Mozilla /f
Reg: reg delete HKLM\SOFTWARE\Wow6432Node\mozilla.org /f
Reg: reg delete HKLM\SOFTWARE\Wow6432Node\MozillaPlugins /f
EmptyTemp:
*****************

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\fst_pl_171 => value deleted successfully.
HKU\S-1-5-21-2090350958-2652773212-1935591002-1001\Software\Microsoft\Windows\CurrentVersion\Run\\svchost => value deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c817d3d8-b9da-521d-971d-2c0a747ea697}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{c817d3d8-b9da-521d-971d-2c0a747ea697}" => Key deleted successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1A8C8425-8B12-4136-B946-980363CA1A34}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A8C8425-8B12-4136-B946-980363CA1A34}" => Key deleted successfully.
C:\Windows\System32\Tasks\APSnotifierPP2 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP2" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{24F88517-2C24-43F4-809B-FBEC74BA0518}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{24F88517-2C24-43F4-809B-FBEC74BA0518}" => Key deleted successfully.
C:\Windows\System32\Tasks\APSnotifierPP1 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP1" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7524AC39-61E2-43AD-88FB-BCD62CAF6943}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7524AC39-61E2-43AD-88FB-BCD62CAF6943}" => Key deleted successfully.
C:\Windows\System32\Tasks\APSnotifierPP3 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP3" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97B807CA-00F1-427D-B4CF-9D8C876DEACD}" => Key not found.
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6F4A2D5-9D9A-4CEF-B84E-5C1996B8FF48}" => Key not found.
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA" => Key not found.
C:\Windows\Tasks\APSnotifierPP1.job => Moved successfully.
C:\Windows\Tasks\APSnotifierPP2.job => Moved successfully.
C:\Windows\Tasks\APSnotifierPP3.job => Moved successfully.
C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job not found.
C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job not found.
globalUpdate => Service not found.
globalUpdatem => Service not found.
IePluginServices => Service deleted successfully.
{55dce8ba-9dec-4013-937e-adbf9317d990}w64 => Unable to stop service
{55dce8ba-9dec-4013-937e-adbf9317d990}w64 => Service deleted successfully.
{6fcd6092-9615-4f7f-8898-8df53980e5d2}w64 => Unable to stop service
{6fcd6092-9615-4f7f-8898-8df53980e5d2}w64 => Service deleted successfully.
BthAvrcpTg => Service deleted successfully.
BthHFEnum => Service deleted successfully.
bthhfhid => Service deleted successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\Desktop\Google Chrome.lnk => Shortcut argument was removed successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk => Shortcut argument was removed successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk => Shortcut argument was removed successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => Shortcut argument was removed successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk => Shortcut argument was removed successfully.
C:\Program Files\004 => Moved successfully.
C:\Program Files (x86)\C78087A8-C960-4464-A618-3D351DF6C0D7 => Moved successfully.
C:\Program Files (x86)\Bench => Moved successfully.
C:\Program Files (x86)\globalUpdate => Moved successfully.
"C:\Program Files (x86)\Mozilla Firefox" => File/Directory not found.
C:\Program Files (x86)\predm => Moved successfully.
C:\ProgramData\IePluginServices => Moved successfully.
C:\Users\USER\AppData\Local\*.log => Moved successfully.
C:\Users\USER\AppData\Local\*.tmp => Moved successfully.
C:\Users\USER\AppData\Roaming\aps.uninstall.scan.results => Moved successfully.
C:\Users\USER\AppData\Roaming\ap_logs => Moved successfully.
C:\Users\USER\AppData\Roaming\Mozilla => Moved successfully.
C:\Users\USER\AppData\Roaming\OpenCandy => Moved successfully.
C:\Users\USER\AppData\Roaming\Opera Software => Moved successfully.
C:\Users\USER\AppData\Roaming\systweak => Moved successfully.
C:\Users\USER\Desktop\Nowy folder (2)\Bagger-Simulator 2011 (Demo).lnk => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\Desktop\VSO Downloader 3.lnk => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\Desktop\dawid\*.lnk => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\FreshDownload.lnk => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Torpedo.lnk => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Boxoft Toolbox => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\*.lnk => Moved successfully.
C:\Users\USER\Documents\Pavilion G7-2210ew\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mobogenie.lnk => Moved successfully.
C:\Users\USER\Downloads\yet_another_cleaner_brof.exe => Moved successfully.
C:\Temp => Moved successfully.
C:\Windows\System32\drivers\{55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys => Moved successfully.
C:\Windows\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}w64.sys => Moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run => Key Deleted successfully.

========= reg delete HKCU\Software\Mozilla /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========


========= reg delete HKCU\Software\MozillaPlugins /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========


========= reg delete HKLM\SOFTWARE\MozillaPlugins /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========


========= reg delete HKLM\SOFTWARE\Wow6432Node\Mozilla /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========


========= reg delete HKLM\SOFTWARE\Wow6432Node\mozilla.org /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========


========= reg delete HKLM\SOFTWARE\Wow6432Node\MozillaPlugins /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========

EmptyTemp: => Removed 139.9 MB temporary data.


The system needed a reboot. 

==== End of Fixlog ====