Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 27-04-2015
Ran by MattAwe at 2015-04-27 13:50:57 Run:1
Running from C:\MattAwe\Pobierane
Loaded Profiles: MattAwe (Available profiles: MattAwe & Guest)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKU\S-1-5-21-266955175-3238178064-3006760222-1002\...\Run: [CMD] => cmd.exe /c start http://zenigameblinger.org&& exit <===== ATTENTION 
FF HKLM-x32\...\Firefox\Extensions: [searchengine@gmail.com] - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\j0cd978k.default\extensions\searchengine@gmail.com
FF Extension: Search Enginer - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\j0cd978k.default\Extensions\searchengine@gmail.com [2015-02-19]
FF SearchPlugin: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\j0cd978k.default\searchplugins\webssearches.xml [2015-04-14]
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll No File
FF DefaultSearchEngine: webssearches
FF SelectedSearchEngine: webssearches
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=293224&p=
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://istart.websse...91A33R6816R6816
SearchScopes: HKU\S-1-5-21-266955175-3238178064-3006760222-1002 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://istart.websse...q={searchTerms}
SearchScopes: HKU\S-1-5-21-266955175-3238178064-3006760222-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://istart.websse...q={searchTerms}
SearchScopes: HKU\S-1-5-21-266955175-3238178064-3006760222-1002 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://istart.websse...q={searchTerms}
SearchScopes: HKU\S-1-5-21-266955175-3238178064-3006760222-1002 -> {9E18BF95-6F40-4F0E-B29E-EFD91AB00D3F} URL = http://istart.websse...q={searchTerms}
SearchScopes: HKU\S-1-5-21-266955175-3238178064-3006760222-1002 -> {E3CFCA9A-D1FF-4C1E-8AE7-99D79B60FDE1} URL = http://istart.websse...q={searchTerms}
SearchScopes: HKU\S-1-5-21-266955175-3238178064-3006760222-1002 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = http://istart.websse...q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.websse...q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.websse...q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.websse...q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://istart.websse...q={searchTerms}
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
Task: {0AAE217E-1AB0-4F78-BEB1-780375FD8FB2} - \Lenovo\Lenovo-30368 No Task File <==== ATTENTION
Task: {FE049FE1-E83E-4879-919D-57877B0EDC3C} - \Lenovo\Lenovo-30310 No Task File <==== ATTENTION
EmptyTemp:
*****************

HKU\S-1-5-21-266955175-3238178064-3006760222-1002\Software\Microsoft\Windows\CurrentVersion\Run\\CMD => value deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\searchengine@gmail.com => value deleted successfully.
C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\j0cd978k.default\Extensions\searchengine@gmail.com => Moved successfully.
C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\j0cd978k.default\searchplugins\webssearches.xml => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.3.0" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.3.2" => Key deleted successfully.
Firefox DefaultSearchEngine deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox Keyword.URL deleted successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKU\S-1-5-21-266955175-3238178064-3006760222-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-266955175-3238178064-3006760222-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found. 
"HKU\S-1-5-21-266955175-3238178064-3006760222-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}" => Key deleted successfully.
HKCR\CLSID\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} => Key not found. 
"HKU\S-1-5-21-266955175-3238178064-3006760222-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9E18BF95-6F40-4F0E-B29E-EFD91AB00D3F}" => Key deleted successfully.
HKCR\CLSID\{9E18BF95-6F40-4F0E-B29E-EFD91AB00D3F} => Key not found. 
"HKU\S-1-5-21-266955175-3238178064-3006760222-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E3CFCA9A-D1FF-4C1E-8AE7-99D79B60FDE1}" => Key deleted successfully.
HKCR\CLSID\{E3CFCA9A-D1FF-4C1E-8AE7-99D79B60FDE1} => Key not found. 
"HKU\S-1-5-21-266955175-3238178064-3006760222-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}" => Key deleted successfully.
HKCR\CLSID\{E733165D-CBCF-4FDA-883E-ADEF965B476C} => Key not found. 
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
C:\WINDOWS\system32\GroupPolicy\Machine => Moved successfully.
C:\WINDOWS\system32\GroupPolicy\GPT.ini => Moved successfully.
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0AAE217E-1AB0-4F78-BEB1-780375FD8FB2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0AAE217E-1AB0-4F78-BEB1-780375FD8FB2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Lenovo-30368" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FE049FE1-E83E-4879-919D-57877B0EDC3C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE049FE1-E83E-4879-919D-57877B0EDC3C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Lenovo-30310" => Key deleted successfully.
EmptyTemp: => Removed 3 GB temporary data.


The system needed a reboot. 

==== End of Fixlog 13:51:09 ====