Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-09-2014
Ran by User at 2014-09-24 09:03:17 Run:1
Running from C:\Users\User\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
emptytemp:
closeprocesses:
AlternateDataStreams: C:\Users\User\Desktop\ICR Specie 1.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\User\Desktop\ICR Specie 1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\User\Desktop\ICR Specie 2.jpeg.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\User\Desktop\ICR Specie 2.jpeg.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
HKU\S-1-5-21-160737971-826714552-99421468-1000\...\MountPoints2: {8a8aa9b8-fcb1-11e3-ad92-94de8051fc16} - I:\Startme.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.nab.com.au/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
http://ninemsn.com.au/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB2F120F10C72CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-au
CHR Extension: (GoSavee) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\libnnhcjnneacolcaboopclimgobmcla [2014-09-17]
CHR Extension: (GoSavee) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\libnnhcjnneacolcaboopclimgobmcla\2.0 [2014-09-17]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\User\AppData\Local\Comodo
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Google
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\HomeGroupUser$
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Chromatic Browser
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\Guest
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\Users\Administrator
2014-09-17 09:21 - 2014-09-17 09:21 - 00000000 ____D () C:\ProgramData\b74dce3aff54b6c0
*****************
Processes closed successfully.
C:\Users\User\Desktop\ICR Specie 1.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS removed successfully.
C:\Users\User\Desktop\ICR Specie 1.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully.
C:\Users\User\Desktop\ICR Specie 2.jpeg.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS removed successfully.
C:\Users\User\Desktop\ICR Specie 2.jpeg.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully.
"HKU\S-1-5-21-160737971-826714552-99421468-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8a8aa9b8-fcb1-11e3-ad92-94de8051fc16}" => Key deleted successfully.
"HKCR\CLSID\{8a8aa9b8-fcb1-11e3-ad92-94de8051fc16}" => Key not found.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache AcceptLangs => value deleted successfully.
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\libnnhcjnneacolcaboopclimgobmcla => Moved successfully.
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\libnnhcjnneacolcaboopclimgobmcla\2.0 directory not found.
gupdate => Service deleted successfully.
gupdatem => Service deleted successfully.
C:\Users\User\AppData\Local\Comodo => Moved successfully.
C:\Users\HomeGroupUser$\AppData\Local\Torch => Moved successfully.
C:\Users\HomeGroupUser$\AppData\Local\Google => Moved successfully.
C:\Users\HomeGroupUser$\AppData\Local\Comodo => Moved successfully.
C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser => Moved successfully.
C:\Users\HomeGroupUser$ => Moved successfully.
C:\Users\Guest\AppData\Local\Torch => Moved successfully.
C:\Users\Guest\AppData\Local\Google => Moved successfully.
C:\Users\Guest\AppData\Local\Comodo => Moved successfully.
C:\Users\Guest\AppData\Local\Chromatic Browser => Moved successfully.
C:\Users\Guest => Moved successfully.
C:\Users\Administrator\AppData\Local\Torch => Moved successfully.
C:\Users\Administrator\AppData\Local\Google => Moved successfully.
C:\Users\Administrator\AppData\Local\Comodo => Moved successfully.
C:\Users\Administrator\AppData\Local\Chromatic Browser => Moved successfully.
C:\Users\Administrator => Moved successfully.
C:\ProgramData\b74dce3aff54b6c0 => Moved successfully.
EmptyTemp: => Removed 5.3 GB temporary data.
The system needed a reboot.
==== End of Fixlog ====
# AdwCleaner v3.310 - Report created 24/09/2014 at 08:52:08
# Updated 12/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : User - USER-PC
# Running from : C:\Users\User\Desktop\adwcleaner_3.310.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17280
-\\ Google Chrome v37.0.2062.120
[ File : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1445 octets] - [21/09/2014 16:18:02]
AdwCleaner[R1].txt - [926 octets] - [21/09/2014 18:16:40]
AdwCleaner[R2].txt - [985 octets] - [21/09/2014 18:23:23]
AdwCleaner[R3].txt - [1099 octets] - [24/09/2014 08:50:45]
AdwCleaner[S0].txt - [1245 octets] - [21/09/2014 17:11:27]
AdwCleaner[S1].txt - [1045 octets] - [21/09/2014 18:24:17]
AdwCleaner[S2].txt - [1021 octets] - [24/09/2014 08:52:08]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1081 octets] ##########