Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-10-2014
Ran by michal at 2014-10-12 12:37:55 Run:1
Running from C:\Users\michal\Downloads
Loaded Profile: michal (Available profiles: michal)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CloseProcesses:
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No FILE
ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => No File
ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => No File
ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => No File
ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => No File
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID=226786&Mkt=pl-PL&Src=MSE&Tid=00002D7A&OHP=http%3A%2F%2Fdomredi.com%2F1%2F&OSP=http%3A%2F%2Fwww.google.com%2Fsearch%3Fq%3D{searchTerms}%26rls%3Dcom.microsoft%3A{language}%3A{referrer%3Asource%3F}%26ie%3D{inputEncoding}%26oe%3D{outputEncoding}%26sourceid%3Die7%26rlz%3D1I7TSEH_plPL397PL397
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
StartMenuInternet: IEXPLORE.EXE - C:\PROGRAM Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKLM-x32 - {513350EB-0065-4CAC-A7BA-2B87F87F57AE} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2481033
SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - {11BEB82F-DAE2-40DF-8E4B-8F8825E74D3B} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=937811&p={searchTerms}
SearchScopes: HKCU - {513350EB-0065-4CAC-A7BA-2B87F87F57AE} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2481033
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: TinyBHO Class -> {00e71626-0bef-11dc-8314-0864264c9a64} -> C:\Users\michal\AppData\Roaming\DownloaderGold\ieplug.dll ()
BHO-x32: TinyBHO Class -> {00e71626-0bef-11dc-8314-0800200c9a66} -> C:\Users\michal\AppData\Roaming\DownloaderGold\ieplug.dll ()
BHO-x32: No Name -> {78F3A78C-DFF0-BB26-3802-C5689ACFE07E} -> No File
BHO-x32: BetTerrPriCeCheuc -> {9EC7F5CB-3A98-9475-FC4C-4010C29429CA} -> C:\ProgramData\BetTerrPriCeCheuc\xd.dll No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
Task: {6C5973AD-5634-4571-97D3-3F7A6638AF87} - \InstallerTracingAgent No Task File <==== ATTENTION
Task: {767DF1A5-2A27-40FD-94DA-C8AFE4FD282C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance => C:\Program Files (x86)\TuneUp Utilities 2010\OneClick.exe
Task: {E3DC0FE0-419F-4C76-8814-99B8D5BAE1F1} - \ALL Update No Task File <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 RSUSBSTOR; System32\Drivers\RtsUStor.sys [X]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]
C:\Program Files (x86)\Mozilla Firefox
C:\ProgramData\AVAST Software
C:\ProgramData\TEMP
C:\Users\michal\AppData\Local\Mozilla
C:\Users\michal\AppData\Roaming\DownloaderGold
C:\Users\michal\AppData\Roaming\Mozilla
C:\Users\michal\DOWNLOADS\yet_another_cleaner_avae.exe
DeleteKey: HKCU\Software\Mozilla
DeleteKey: HKLM\SOFTWARE\MozillaPlugins
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Mozilla
DeleteKey: HKLM\SOFTWARE\Wow6432Node\mozilla.org
DeleteKey: HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1C52B8B6-FFA2-12F6-0A5A-E8301F96A568}
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1
CMD: for /d %f in (C:\Users\michal\AppData\Local\{*}) do rd /s /q "%f"
EmptyTemp:
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => Key deleted successfully.
"HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GGDriveOverlay1" => Key deleted successfully.
"HKCR\CLSID\{E68D0A50-3C40-4712-B90D-DCFA93FF2534}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GGDriveOverlay2" => Key deleted successfully.
"HKCR\CLSID\{E68D0A51-3C40-4712-B90D-DCFA93FF2534}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GGDriveOverlay3" => Key deleted successfully.
"HKCR\CLSID\{E68D0A52-3C40-4712-B90D-DCFA93FF2534}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GGDriveOverlay4" => Key deleted successfully.
"HKCR\CLSID\{E68D0A53-3C40-4712-B90D-DCFA93FF2534}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\First Home Page => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2}" => Key deleted successfully.
"HKCR\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{513350EB-0065-4CAC-A7BA-2B87F87F57AE}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{513350EB-0065-4CAC-A7BA-2B87F87F57AE}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{11BEB82F-DAE2-40DF-8E4B-8F8825E74D3B}" => Key deleted successfully.
"HKCR\CLSID\{11BEB82F-DAE2-40DF-8E4B-8F8825E74D3B}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{513350EB-0065-4CAC-A7BA-2B87F87F57AE}" => Key deleted successfully.
"HKCR\CLSID\{513350EB-0065-4CAC-A7BA-2B87F87F57AE}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key deleted successfully.
"HKCR\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2}" => Key deleted successfully.
"HKCR\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00e71626-0bef-11dc-8314-0864264c9a64}" => Key deleted successfully.
"HKCR\CLSID\{00e71626-0bef-11dc-8314-0864264c9a64}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00e71626-0bef-11dc-8314-0800200c9a66}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{00e71626-0bef-11dc-8314-0800200c9a66}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{78F3A78C-DFF0-BB26-3802-C5689ACFE07E}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{78F3A78C-DFF0-BB26-3802-C5689ACFE07E}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9EC7F5CB-3A98-9475-FC4C-4010C29429CA}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{9EC7F5CB-3A98-9475-FC4C-4010C29429CA}" => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value deleted successfully.
"HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => Key not found.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6C5973AD-5634-4571-97D3-3F7A6638AF87}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C5973AD-5634-4571-97D3-3F7A6638AF87}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\InstallerTracingAgent" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{767DF1A5-2A27-40FD-94DA-C8AFE4FD282C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{767DF1A5-2A27-40FD-94DA-C8AFE4FD282C}" => Key deleted successfully.
C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\TuneUpUtilities_Task_BkGndMaintenance" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E3DC0FE0-419F-4C76-8814-99B8D5BAE1F1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E3DC0FE0-419F-4C76-8814-99B8D5BAE1F1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ALL Update" => Key deleted successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc" => Key deleted successfully.
AppMgmt => Service deleted successfully.
catchme => Service deleted successfully.
RSUSBSTOR => Service deleted successfully.
RtsUIR => Service deleted successfully.
USBCCID => Service deleted successfully.
C:\Program Files (x86)\Mozilla Firefox => Moved successfully.
C:\ProgramData\AVAST Software => Moved successfully.
C:\ProgramData\TEMP => Moved successfully.
C:\Users\michal\AppData\Local\Mozilla => Moved successfully.
C:\Users\michal\AppData\Roaming\DownloaderGold => Moved successfully.
C:\Users\michal\AppData\Roaming\Mozilla => Moved successfully.
C:\Users\michal\DOWNLOADS\yet_another_cleaner_avae.exe => Moved successfully.
HKCU\Software\Mozilla => Failed to delete key at first attempt (Error: C0000121), see next line.
HKCU\Software\Mozilla => Key Deleted Successfully.
HKLM\SOFTWARE\MozillaPlugins => Failed to delete key at first attempt (Error: C0000121), see next line.
HKLM\SOFTWARE\MozillaPlugins => Key Deleted Successfully.
HKLM\SOFTWARE\Wow6432Node\Mozilla => Failed to delete key at first attempt (Error: C0000121), see next line.
HKLM\SOFTWARE\Wow6432Node\Mozilla => Key Deleted Successfully.
HKLM\SOFTWARE\Wow6432Node\mozilla.org => Failed to delete key at first attempt (Error: C0000121), see next line.
HKLM\SOFTWARE\Wow6432Node\mozilla.org => Key Deleted Successfully.
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins => Failed to delete key at first attempt (Error: C0000121), see next line.
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins => Key Deleted Successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search => Key Deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1C52B8B6-FFA2-12F6-0A5A-E8301F96A568} => Key Deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1 => Key Deleted successfully.

=========  for /d %f in (C:\Users\michal\AppData\Local\{*}) do rd /s /q "%f" =========


========= End of CMD: =========

EmptyTemp: => Removed 137.1 MB temporary data.


The system needed a reboot. 

==== End of Fixlog ====