Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 25-02-2015 01
Ran by samsung at 2015-02-26 16:06:18 Run:1
Running from C:\Users\samsung\Desktop\naprawa systemu
Loaded Profiles: samsung (Available profiles: samsung)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
CloseProcesses:
CreateRestorePoint:
R1 {f4191bb0-3007-4fbd-b83f-cc45648f3845}Gw; C:\windows\System32\drivers\{f4191bb0-3007-4fbd-b83f-cc45648f3845}Gw.sys [43152 2015-02-14] (StdLib)
R2 IHProtect Service; C:\Program Files\XTab\ProtectService.exe [158896 2015-01-16] (XTab system)
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [487056 2015-02-14] (SysTool PasSame LIMITED)
S2 Update Clock Hand; "C:\Program Files\Clock Hand\updateClockHand.exe" [X]
CHR HomePage: Default -> hxxp://www.key-find.com/?type=hppp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT
CHR StartupUrls: Default -> "hxxp://www.key-find.com/?type=hppp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT"
CHR DefaultSearchKeyword: Default -> key-find
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.key-find.com/?type=hppp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.key-find.com/web/?type=dspp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.key-find.com/?type=hppp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.key-find.com/web/?type=dspp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&q={searchTerms}
HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.key-find.com/web/?type=dspp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&q={searchTerms}
HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.key-find.com/?type=hppp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT
HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.key-find.com/?type=hppp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT
HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.key-find.com/web/?type=dspp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&q={searchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.key-find.com/web/?type=dspp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.key-find.com/web/?type=dspp&ts=1423928254&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2092716530-3474641769-2676177707-1000 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&ts=1423928276&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2092716530-3474641769-2676177707-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&ts=1423928276&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2092716530-3474641769-2676177707-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&ts=1423928276&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2092716530-3474641769-2676177707-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&ts=1423928276&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2092716530-3474641769-2676177707-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&ts=1423928276&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2092716530-3474641769-2676177707-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&ts=1423928276&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2092716530-3474641769-2676177707-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = http://www.key-find.com/web/?utm_source=b&utm_medium=cor&utm_campaign=install_ie&utm_content=ds&from=cor&uid=TOSHIBAXMK3265GSX_80N5P1MLTXX80N5P1MLT&ts=1423928276&type=default&q={searchTerms}
BHO: Positive Finds -> {30c85a3d-1d96-4589-b63f-91fb7ef45a41} -> C:\Program Files\Positive Finds\Extensions\30c85a3d-1d96-4589-b63f-91fb7ef45a41.dll No File
BHO: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files\XTab\SupTab.dll (Thinknice Co. Limited)
Task: {E3800761-2128-4596-A5EF-4A6B65A8227E} - System32\Tasks\{E8C1FC11-4F63-412D-B6EB-60E47179B297} => pcalua.exe -a "D:\gry instalki\Sims.3.Razor1911.PL\Sims3_1.8.25.003002_from_1.0.631.00002.exe" -d "D:\gry instalki\Sims.3.Razor1911.PL"
C:\Program Files\Alcohol Soft
C:\Program Files\Clock Hand
C:\Program Files\XTab
C:\ProgramData\{*}.log
C:\ProgramData\Arcade Lab
C:\ProgramData\Astroburn Lite
C:\ProgramData\d2d4a9d3-f3f1-4c52-8d3f-dddc91fe0602
C:\ProgramData\IHProtectUpDate
C:\ProgramData\Temp
C:\ProgramData\WindowsMangerProtect
C:\Users\samsung\AppData\Local\Google\Chrome\User Data\Default\Preferences
C:\Users\samsung\AppData\Roaming\OpenCandy
C:\Users\samsung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lollipop.lnk
C:\Users\samsung\Desktop\Infa LAB\Infa LAB\Access\offline\htm\Notatnik.lnk
C:\Users\samsung\Desktop\downloader_for_Alcohol120_FE_2.0.3.6951.exe
C:\Users\Public\Documents\DAEMON Tools Images
C:\windows\System32\drivers\{f4191bb0-3007-4fbd-b83f-cc45648f3845}Gw.sys
EmptyTemp:
*****************

Processes closed successfully.
Restore point was successfully created.
{f4191bb0-3007-4fbd-b83f-cc45648f3845}Gw => Service stopped successfully.
{f4191bb0-3007-4fbd-b83f-cc45648f3845}Gw => Service deleted successfully.
IHProtect Service => Service deleted successfully.
WindowsMangerProtect => Service deleted successfully.
Update Clock Hand => Service deleted successfully.
Chrome HomePage deleted successfully.
Chrome StartupUrls deleted successfully.
Chrome DefaultSearchKeyword deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found. 
HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found. 
"HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}" => Key deleted successfully.
HKCR\CLSID\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} => Key not found. 
"HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found. 
"HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}" => Key deleted successfully.
HKCR\CLSID\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => Key not found. 
"HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found. 
"HKU\S-1-5-21-2092716530-3474641769-2676177707-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}" => Key deleted successfully.
HKCR\CLSID\{E733165D-CBCF-4FDA-883E-ADEF965B476C} => Key not found. 
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30c85a3d-1d96-4589-b63f-91fb7ef45a41}" => Key deleted successfully.
"HKCR\CLSID\{30c85a3d-1d96-4589-b63f-91fb7ef45a41}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}" => Key deleted successfully.
"HKCR\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E3800761-2128-4596-A5EF-4A6B65A8227E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E3800761-2128-4596-A5EF-4A6B65A8227E}" => Key deleted successfully.
C:\Windows\System32\Tasks\{E8C1FC11-4F63-412D-B6EB-60E47179B297} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E8C1FC11-4F63-412D-B6EB-60E47179B297}" => Key deleted successfully.
C:\Program Files\Alcohol Soft => Moved successfully.
C:\Program Files\Clock Hand => Moved successfully.
C:\Program Files\XTab => Moved successfully.
C:\ProgramData\{*}.log => Moved successfully.
C:\ProgramData\Arcade Lab => Moved successfully.
C:\ProgramData\Astroburn Lite => Moved successfully.
C:\ProgramData\d2d4a9d3-f3f1-4c52-8d3f-dddc91fe0602 => Moved successfully.
C:\ProgramData\IHProtectUpDate => Moved successfully.
C:\ProgramData\Temp => Moved successfully.
C:\ProgramData\WindowsMangerProtect => Moved successfully.
C:\Users\samsung\AppData\Local\Google\Chrome\User Data\Default\Preferences => Moved successfully.
C:\Users\samsung\AppData\Roaming\OpenCandy => Moved successfully.
C:\Users\samsung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lollipop.lnk => Moved successfully.
C:\Users\samsung\Desktop\Infa LAB\Infa LAB\Access\offline\htm\Notatnik.lnk => Moved successfully.
C:\Users\samsung\Desktop\downloader_for_Alcohol120_FE_2.0.3.6951.exe => Moved successfully.
C:\Users\Public\Documents\DAEMON Tools Images => Moved successfully.
C:\windows\System32\drivers\{f4191bb0-3007-4fbd-b83f-cc45648f3845}Gw.sys => Moved successfully.
EmptyTemp: => Removed 4.7 GB temporary data.


The system needed a reboot. 

==== End of Fixlog 16:07:06 ====