Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 20-12-2014
Ran by admin at 2014-12-21 12:55:07 Run:2
Running from C:\Users\admin\Desktop
Loaded Profile: admin (Available profiles: admin)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
CloseProcesses:
HKU\S-1-5-21-3731321512-1432075017-1604789293-1000\...\Run: [CMD] => cmd.exe /c start http://adverttraff.org && exit <===== ATTENTION
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
C:\ProgramData\TEMP
C:\Users\admin\AppData\Local\Google
C:\Users\admin\AppData\Roaming\0F1F1C2Y1H1P1C0I0T
C:\Users\admin\AppData\Roaming\dl_0
Reg: reg delete HKLM\SOFTWARE\Wow6432Node\Google /f
Reg: reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f
CMD: netsh advfirewall reset
EmptyTemp:
*****************

Processes closed successfully.
HKU\S-1-5-21-3731321512-1432075017-1604789293-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CMD => value deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0" => Key deleted successfully.
EagleX64 => Service deleted successfully.
C:\ProgramData\TEMP => Moved successfully.
C:\Users\admin\AppData\Local\Google => Moved successfully.
C:\Users\admin\AppData\Roaming\0F1F1C2Y1H1P1C0I0T => Moved successfully.
C:\Users\admin\AppData\Roaming\dl_0 => Moved successfully.

========= reg delete HKLM\SOFTWARE\Wow6432Node\Google /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========


========= reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========


=========  netsh advfirewall reset =========

Ok.


========= End of CMD: =========

EmptyTemp: => Removed 390.3 MB temporary data.


The system needed a reboot. 

==== End of Fixlog ====