Fix result of Farbar Recovery Scan Tool (x86) Version:08-10-2015
Ran by Julia (2015-10-09 22:08:27) Run:1
Running from C:\Users\Julia\Desktop
Loaded Profiles: Julia (Available Profiles: Julia)
Boot Mode: Normal

==============================================

fixlist content:
*****************
CloseProcesses:
CreateRestorePoint:
Startup: C:\Users\Julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wlanconnect.lnk [2015-10-02]
HKLM\...\Run: [] => [X]
ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => No File
ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => No File
ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => No File
ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => No File
Toolbar: HKU\S-1-5-21-3482297185-812369919-341804188-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Task: {0669CAE3-8D62-4774-B302-84C58336CA56} - System32\Tasks\{86945756-3D09-4802-87F2-A47D3F85E65B} => pcalua.exe -a C:\Windows\System32\TVWSetup.exe -d C:\Windows\System32
Task: {17AC3F7F-8C29-4B0D-9C60-C7E836F5D088} - System32\Tasks\{FF2891D5-3E53-4F84-9530-7EFF906A430D} => pcalua.exe -a "C:\Users\Julia\Desktop\cień czarnobyla\Stalker\setup.exe" -d "C:\Users\Julia\Desktop\cień czarnobyla\Stalker"
Task: {1C766A04-0982-4DA4-8613-57B58556FBD8} - System32\Tasks\C__Users_Julia_AppData_Local_Temp_nsvD015.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe => C:\Users\Julia\AppData\Local\Temp\nsvD015.tmp\fliptoast.app.13295.fliptoast-9e1f6ff0.exe <==== ATTENTION
Task: {6238AB7C-8B2B-4CA1-8AE6-3430113B4BAA} - System32\Tasks\{45F4C0D4-9E6A-450B-8471-227DC8E9A268} => pcalua.exe -a "C:\Program Files\AVAST Software\Avast\aswRunDll.exe" -c "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
Task: {AAC1A1D3-BEB0-48BB-A6DD-08C5ED31E683} - System32\Tasks\C__Users_Julia_AppData_Local_Temp_nst8FBB.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe => C:\Users\Julia\AppData\Local\Temp\nst8FBB.tmp\fliptoast.app.13295.fliptoast-9e1f6ff0.exe <==== ATTENTION
Task: {BC6050EF-6F58-42F0-BAA6-5EE768D9444F} - System32\Tasks\{AF0A5B6C-63DE-4487-9C6F-5A73A4525A62} => pcalua.exe -a "C:\Games BF\Battlefield 3™\Core\EAProxyInstaller.exe" -d "C:\Games BF\Battlefield 3™\Core"
Task: C:\windows\Tasks\C__Users_Julia_AppData_Local_Temp_nst8FBB.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe.job => C:\Users\Julia\AppData\Local\Temp\nst8FBB.tmp\fliptoast.app.13295.fliptoast-9e1f6ff0.exe <==== ATTENTION
Task: C:\windows\Tasks\C__Users_Julia_AppData_Local_Temp_nsvD015.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe.job => C:\Users\Julia\AppData\Local\Temp\nsvD015.tmp\fliptoast.app.13295.fliptoast-9e1f6ff0.exe <==== ATTENTION
S3 andnetadb; System32\Drivers\lgandnetadb.sys [X]
S3 AndNetDiag; system32\DRIVERS\lgandnetdiag.sys [X]
S3 ANDNetModem; system32\DRIVERS\lgandnetmodem.sys [X]
S3 andnetndis; system32\DRIVERS\lgandnetndis.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [X]
CMD: type C:\Users\Julia\AppData\Roaming\wlanconnect.txt
C:\Program Files\ESET
C:\ProgramData\TEMP
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\INTERIA.PL
C:\Users\Julia\AppData\Local\ESET
C:\Users\Julia\AppData\Local\Microsoft\Windows\GameExplorer\{d58eecb0-0816-11de-8c30-0800200c9a66}
C:\Users\Julia\AppData\Local\Microsoft\Windows\GameExplorer\{c3c636e0-1b04-11de-8c30-0800200c9a66}
C:\Users\Julia\AppData\Local\Microsoft\Windows\GameExplorer\{3eda1e54-8889-41f5-a649-5a306789b7ef}
C:\Users\Julia\AppData\Local\Microsoft\Windows\GameExplorer\{26352374-af55-4b53-b07b-6b0288ed97df}
C:\Users\Julia\AppData\Roaming\*.*
C:\Users\Julia\AppData\Roaming\Microsoft\Excel\SO_tematy304135693020343955\SO_tematy.xls.lnk
Reg: reg delete HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck /f
Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Anti-phishing Domain Advisor" /f
EmptyTemp:
*****************

Processes closed successfully.
Restore point was successfully created.
C:\Users\Julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wlanconnect.lnk not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GGDriveOverlay1" => key removed successfully.
HKCR\CLSID\{E68D0A50-3C40-4712-B90D-DCFA93FF2534} => key not found. 
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GGDriveOverlay2" => key removed successfully.
HKCR\CLSID\{E68D0A51-3C40-4712-B90D-DCFA93FF2534} => key not found. 
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GGDriveOverlay3" => key removed successfully.
HKCR\CLSID\{E68D0A52-3C40-4712-B90D-DCFA93FF2534} => key not found. 
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GGDriveOverlay4" => key removed successfully.
HKCR\CLSID\{E68D0A53-3C40-4712-B90D-DCFA93FF2534} => key not found. 
HKU\S-1-5-21-3482297185-812369919-341804188-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => value removed successfully.
HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => key not found. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0669CAE3-8D62-4774-B302-84C58336CA56}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0669CAE3-8D62-4774-B302-84C58336CA56}" => key removed successfully.
C:\Windows\System32\Tasks\{86945756-3D09-4802-87F2-A47D3F85E65B} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{86945756-3D09-4802-87F2-A47D3F85E65B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{17AC3F7F-8C29-4B0D-9C60-C7E836F5D088}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{17AC3F7F-8C29-4B0D-9C60-C7E836F5D088}" => key removed successfully.
C:\Windows\System32\Tasks\{FF2891D5-3E53-4F84-9530-7EFF906A430D} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FF2891D5-3E53-4F84-9530-7EFF906A430D}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1C766A04-0982-4DA4-8613-57B58556FBD8}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1C766A04-0982-4DA4-8613-57B58556FBD8}" => key removed successfully.
C:\Windows\System32\Tasks\C__Users_Julia_AppData_Local_Temp_nsvD015.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\C__Users_Julia_AppData_Local_Temp_nsvD015.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6238AB7C-8B2B-4CA1-8AE6-3430113B4BAA}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6238AB7C-8B2B-4CA1-8AE6-3430113B4BAA}" => key removed successfully.
C:\Windows\System32\Tasks\{45F4C0D4-9E6A-450B-8471-227DC8E9A268} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{45F4C0D4-9E6A-450B-8471-227DC8E9A268}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AAC1A1D3-BEB0-48BB-A6DD-08C5ED31E683}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AAC1A1D3-BEB0-48BB-A6DD-08C5ED31E683}" => key removed successfully.
C:\Windows\System32\Tasks\C__Users_Julia_AppData_Local_Temp_nst8FBB.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\C__Users_Julia_AppData_Local_Temp_nst8FBB.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BC6050EF-6F58-42F0-BAA6-5EE768D9444F}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BC6050EF-6F58-42F0-BAA6-5EE768D9444F}" => key removed successfully.
C:\Windows\System32\Tasks\{AF0A5B6C-63DE-4487-9C6F-5A73A4525A62} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{AF0A5B6C-63DE-4487-9C6F-5A73A4525A62}" => key removed successfully.
C:\windows\Tasks\C__Users_Julia_AppData_Local_Temp_nst8FBB.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe.job => moved successfully
C:\windows\Tasks\C__Users_Julia_AppData_Local_Temp_nsvD015.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe.job => moved successfully
andnetadb => service removed successfully.
AndNetDiag => service removed successfully.
ANDNetModem => service removed successfully.
andnetndis => service removed successfully.
WinRing0_1_2_0 => service removed successfully.

=========  type C:\Users\Julia\AppData\Roaming\wlanconnect.txt =========

The system cannot find the file specified.

========= End of CMD: =========

C:\Program Files\ESET => moved successfully
C:\ProgramData\TEMP => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\INTERIA.PL => moved successfully
C:\Users\Julia\AppData\Local\ESET => moved successfully
C:\Users\Julia\AppData\Local\Microsoft\Windows\GameExplorer\{d58eecb0-0816-11de-8c30-0800200c9a66} => moved successfully
C:\Users\Julia\AppData\Local\Microsoft\Windows\GameExplorer\{c3c636e0-1b04-11de-8c30-0800200c9a66} => moved successfully
C:\Users\Julia\AppData\Local\Microsoft\Windows\GameExplorer\{3eda1e54-8889-41f5-a649-5a306789b7ef} => moved successfully
C:\Users\Julia\AppData\Local\Microsoft\Windows\GameExplorer\{26352374-af55-4b53-b07b-6b0288ed97df} => moved successfully

=========== "C:\Users\Julia\AppData\Roaming\*.*" ==========

C:\Users\Julia\AppData\Roaming\9e8320c3.dat => moved successfully
C:\Users\Julia\AppData\Roaming\PnkBstrK.sys => moved successfully
C:\Users\Julia\AppData\Roaming\UserTile.png => moved successfully

========= End -> "C:\Users\Julia\AppData\Roaming\*.*" ========

C:\Users\Julia\AppData\Roaming\Microsoft\Excel\SO_tematy304135693020343955\SO_tematy.xls.lnk => moved successfully

========= reg delete HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck /f =========

The operation completed successfully.


========= End of Reg: =========


========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Anti-phishing Domain Advisor" /f =========

The operation completed successfully.


========= End of Reg: =========

EmptyTemp: => 679 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 22:09:26 ====