Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 27-10-2014 01 Ran by Kamil at 2014-10-28 16:36:28 Run:1 Running from C:\Users\Kamil\Downloads Loaded Profile: Kamil (Available profiles: Kamil) Boot Mode: Normal ============================================== Content of fixlist: ***************** CloseProcesses: R1 {972b8ad0-9d6f-4688-9227-759df6914df4}w64; C:\Windows\System32\drivers\{972b8ad0-9d6f-4688-9227-759df6914df4}w64.sys [48776 2014-10-24] (StdLib) R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [705416 2014-09-24] (Cherished Technololgy LIMITED) R2 YouTubeAcceleratorService; C:\Program Files (x86)\YouTube Accelerator\YouTubeAcceleratorService.exe [1510248 2014-10-24] (GOOBZO) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1413460407&from=cor&uid=ST3500418AS_6VMGGVAGXXXX6VMGGVAG&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1413460407&from=cor&uid=ST3500418AS_6VMGGVAGXXXX6VMGGVAG&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1413460407&from=cor&uid=ST3500418AS_6VMGGVAGXXXX6VMGGVAG&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1413460407&from=cor&uid=ST3500418AS_6VMGGVAGXXXX6VMGGVAG&q={searchTerms} StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com/?type=sc&ts=1413460407&from=cor&uid=ST3500418AS_6VMGGVAGXXXX6VMGGVAG Startup: C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Menedżer Realtek HD Audio.lnk Task: C:\WINDOWS\Tasks\Opera N.job => C:\Program Files (x86)\Opera\launcher.exe C:\Program Files (x86)\Apps Hat C:\Program Files (x86)\globalUpdate C:\Program Files (x86)\Opera C:\Program Files (x86)\Temp C:\Program Files (x86)\YTAHelper C:\ProgramData\374311380 C:\ProgramData\IePluginServices C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator C:\ProgramData\TEMP C:\ProgramData\WindowsMangerProtect C:\ProgramData\YTAHelper C:\Users\Kamil\AppData\Local\globalUpdate C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Preferences C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences C:\Users\Kamil\AppData\Local\Opera Software C:\Users\Kamil\AppData\Roaming\Opera Software C:\Users\Kamil\AppData\Roaming\Systweak C:\Users\Kamil\Downloads\*_downloader*.exe C:\Users\Public\Documents\GOOBZO C:\Users\Public\Documents\ShopperPro C:\Users\Public\Documents\YTAHelper C:\WINDOWS\system32\netcfg-*.txt C:\WINDOWS\system32\roboot64.exe C:\Windows\System32\drivers\{972b8ad0-9d6f-4688-9227-759df6914df4}w64.sys CMD: netsh winsock reset CMD: dir /a "C:\Program Files" CMD: dir /a "C:\Program Files (x86)" CMD: dir /a C:\ProgramData CMD: dir /a C:\Users\Kamil\AppData\Local CMD: dir /a C:\Users\Kamil\AppData\LocalLow CMD: dir /a C:\Users\Kamil\AppData\Roaming EmptyTemp: ***************** Processes closed successfully. {972b8ad0-9d6f-4688-9227-759df6914df4}w64 => Unable to stop service {972b8ad0-9d6f-4688-9227-759df6914df4}w64 => Service deleted successfully. IePluginServices => Service deleted successfully. YouTubeAcceleratorService => Service deleted successfully. "HKLM\Software\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10" => Key deleted successfully. C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll => Moved successfully. "HKLM\Software\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4" => Key deleted successfully. C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll not found. HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully. HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully. C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Menedżer Realtek HD Audio.lnk => Moved successfully. C:\WINDOWS\Tasks\Opera N.job => Moved successfully. C:\Program Files (x86)\Apps Hat => Moved successfully. C:\Program Files (x86)\globalUpdate => Moved successfully. C:\Program Files (x86)\Opera => Moved successfully. C:\Program Files (x86)\Temp => Moved successfully. C:\Program Files (x86)\YTAHelper => Moved successfully. C:\ProgramData\374311380 => Moved successfully. C:\ProgramData\IePluginServices => Moved successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator => Moved successfully. C:\ProgramData\TEMP => Moved successfully. C:\ProgramData\WindowsMangerProtect => Moved successfully. C:\ProgramData\YTAHelper => Moved successfully. C:\Users\Kamil\AppData\Local\globalUpdate => Moved successfully. C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Preferences => Moved successfully. C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences => Moved successfully. C:\Users\Kamil\AppData\Local\Opera Software => Moved successfully. C:\Users\Kamil\AppData\Roaming\Opera Software => Moved successfully. C:\Users\Kamil\AppData\Roaming\Systweak => Moved successfully. C:\Users\Kamil\Downloads\*_downloader*.exe => Moved successfully. C:\Users\Public\Documents\GOOBZO => Moved successfully. C:\Users\Public\Documents\ShopperPro => Moved successfully. C:\Users\Public\Documents\YTAHelper => Moved successfully. C:\WINDOWS\system32\netcfg-*.txt => Moved successfully. C:\WINDOWS\system32\roboot64.exe => Moved successfully. C:\Windows\System32\drivers\{972b8ad0-9d6f-4688-9227-759df6914df4}w64.sys => Moved successfully. ========= netsh winsock reset ========= Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. ========= End of CMD: ========= ========= dir /a "C:\Program Files" ========= Volume in drive C has no label. Volume Serial Number is 4826-7A4E Directory of C:\Program Files 2014-10-23 16:19 . 2014-10-23 16:19 .. 2014-10-23 16:19 Adobe 2014-09-27 19:56 AMD 2014-09-27 19:57 ATI Technologies 2014-10-07 22:03 CCleaner 2014-10-24 14:07 Common Files 2013-08-22 16:35 174 desktop.ini 2014-10-16 11:39 Internet Explorer 2014-10-23 16:19 Magic Bullet Looks Vegas 2014-10-16 13:02 MSBuild 2014-09-27 23:08 Realtek 2014-10-16 13:02 Reference Assemblies 2014-09-28 15:05 Sony 2012-07-26 08:22 Uninstall Information 2014-09-27 20:40 Windows Defender 2014-09-27 23:14 Windows Journal 2014-03-18 10:28 Windows Mail 2014-09-27 20:01 Windows Media Player 2014-03-18 11:09 Windows Multimedia Platform 2014-09-27 20:06 Windows NT 2014-03-18 10:28 Windows Photo Viewer 2014-03-18 11:09 Windows Portable Devices 2014-09-27 20:01 Windows Sidebar 2014-10-28 07:58 WindowsApps 2013-08-22 16:36 WindowsPowerShell 2014-10-18 16:37 WinRAR 1 File(s) 174 bytes 26 Dir(s) 70ÿ868ÿ094ÿ976 bytes free ========= End of CMD: ========= ========= dir /a "C:\Program Files (x86)" ========= Volume in drive C has no label. Volume Serial Number is 4826-7A4E Directory of C:\Program Files (x86) 2014-10-28 16:36 . 2014-10-28 16:36 .. 2014-10-24 15:38 Adobe 2014-09-27 19:57 ATI Technologies 2014-10-04 12:17 Common Files 2013-08-22 16:34 174 desktop.ini 2014-09-29 22:41 Google 2014-10-23 16:19 InstallShield Installation Information 2014-10-16 11:39 Internet Explorer 2014-09-27 20:31 Java 2014-10-16 22:34 K-Lite Codec Pack 2014-10-23 16:19 LooksBuilder 2013-08-22 16:36 Microsoft.NET 2014-09-28 16:49 Mp3tag 2014-10-16 13:03 MSBuild 2014-09-27 23:07 Realtek 2014-10-23 16:19 Red Giant Link 2014-10-16 13:03 Reference Assemblies 2014-10-09 09:58 SamsungPrinterLiveUpdate 2014-10-09 09:58 SamsungPrinterLiveUpdateInstaller 2014-09-28 15:05 Sony 2014-09-27 20:40 Windows Defender 2014-03-18 10:28 Windows Mail 2014-09-27 20:01 Windows Media Player 2014-03-18 11:09 Windows Multimedia Platform 2013-08-22 16:36 Windows NT 2014-03-18 10:28 Windows Photo Viewer 2014-03-18 11:09 Windows Portable Devices 2014-09-27 20:01 Windows Sidebar 2013-08-22 16:36 WindowsPowerShell 2014-10-24 11:48 YouTube Accelerator 1 File(s) 174 bytes 30 Dir(s) 70ÿ868ÿ094ÿ976 bytes free ========= End of CMD: ========= ========= dir /a C:\ProgramData ========= Volume in drive C has no label. Volume Serial Number is 4826-7A4E Directory of C:\ProgramData 2014-10-28 16:36 . 2014-10-28 16:36 .. 2014-10-04 12:19 Adobe 2014-09-27 19:57 AMD 2013-08-22 15:45 Application Data [C:\ProgramData] 2014-09-27 20:14 ATI 2014-09-27 13:16 Dane aplikacji [C:\ProgramData] 2013-08-22 15:45 Desktop [C:\Users\Public\Desktop] 2013-08-22 15:45 Documents [C:\Users\Public\Documents] 2014-09-27 13:16 Dokumenty [C:\Users\Public\Documents] 2014-09-27 20:18 Electronic Arts 2014-09-27 13:16 Menu Start [C:\ProgramData\Microsoft\Windows\Start Menu] 2014-10-28 11:33 Microsoft 2014-09-27 20:21 Mirillis 2014-09-27 20:31 Oracle 2014-09-27 20:18 Origin 2014-09-27 19:57 Package Cache 2014-09-27 20:01 PRICache 2014-09-27 13:16 Pulpit [C:\Users\Public\Desktop] 2014-10-23 16:17 RedGiant 2014-10-04 12:19 regid.1986-12.com.adobe 2014-03-18 10:40 regid.1991-06.com.microsoft 2014-09-27 20:46 Riot Games 2014-10-09 09:58 Samsung 2014-10-01 10:37 SlimWare Utilities Inc 2014-09-28 15:05 Sony 2013-08-22 15:45 Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu] 2014-09-27 20:31 Sun 2014-09-27 13:16 Szablony [C:\ProgramData\Microsoft\Windows\Templates] 2013-08-22 15:45 Templates [C:\ProgramData\Microsoft\Windows\Templates] 0 File(s) 0 bytes 30 Dir(s) 70ÿ868ÿ094ÿ976 bytes free ========= End of CMD: ========= ========= dir /a C:\Users\Kamil\AppData\Local ========= Volume in drive C has no label. Volume Serial Number is 4826-7A4E Directory of C:\Users\Kamil\AppData\Local 2014-10-28 16:36 . 2014-10-28 16:36 .. 2014-10-24 16:52 Adobe 2014-09-27 20:15 AMD 2014-09-27 20:14 ATI 2014-10-24 11:47 CrashRpt 2014-09-27 20:00 Dane aplikacji [C:\Users\Kamil\AppData\Local] 2014-10-09 07:36 Diagnostics 2014-10-23 16:15 Downloaded Installations 2014-09-29 10:05 EmieSiteList 2014-09-29 10:05 EmieUserList 2014-10-06 18:31 fontconfig 2014-10-06 18:31 gegl-0.2 2014-09-29 22:42 Google 2014-10-26 23:15 gtk-2.0 2014-09-27 20:00 Historia [C:\Users\Kamil\AppData\Local\Microsoft\Windows\History] 2014-10-28 08:23 122ÿ598 IconCache.db 2014-10-24 11:47 Installer 2014-10-24 20:26 LooksBuilder 2014-10-24 11:47 Microsoft 2014-09-27 20:21 Mirillis 2014-09-28 11:57 Packages 2014-09-28 02:15 PackageStaging 2014-09-27 20:20 Programs 2014-10-26 23:15 12ÿ019 recently-used.xbel 2014-10-02 11:24 17 resmon.resmoncfg 2014-10-01 10:37 SlimWare Utilities Inc 2014-09-28 15:10 Sony 2014-10-28 16:36 Temp 2014-09-27 20:00 Temporary Internet Files [C:\Users\Kamil\AppData\Local\Microsoft\Windows\INetCache] 2014-10-11 14:42 VirtualStore 2014-10-16 12:54 WorldofTanks 3 File(s) 134ÿ634 bytes 29 Dir(s) 70ÿ868ÿ090ÿ880 bytes free ========= End of CMD: ========= ========= dir /a C:\Users\Kamil\AppData\LocalLow ========= Volume in drive C has no label. Volume Serial Number is 4826-7A4E Directory of C:\Users\Kamil\AppData\LocalLow 2014-10-24 11:48 . 2014-10-24 11:48 .. 2014-10-15 11:05 EmieSiteList 2014-10-15 11:05 EmieUserList 2014-10-24 11:48 Goobzo 2014-10-13 09:33 Microsoft 2014-09-27 20:28 Sun 0 File(s) 0 bytes 7 Dir(s) 70ÿ868ÿ090ÿ880 bytes free ========= End of CMD: ========= ========= dir /a C:\Users\Kamil\AppData\Roaming ========= Volume in drive C has no label. Volume Serial Number is 4826-7A4E Directory of C:\Users\Kamil\AppData\Roaming 2014-10-28 16:36 . 2014-10-28 16:36 .. 2014-10-24 20:38 Adobe 2014-09-27 20:14 ATI 2014-09-27 20:14 Identities 2014-09-27 22:42 Macromedia 2014-09-29 10:06 Microsoft 2014-09-27 20:21 Mirillis 2014-09-28 22:02 Mp3tag 2014-10-24 12:00 MPC-HC 2014-09-28 00:13 NapiProjekt 2014-09-28 15:11 Publish Providers 2014-10-23 16:19 Red Giant Link 2014-09-27 20:31 Riot Games 2014-10-04 12:50 Sony 2014-10-18 12:48 Sony Creative Software Inc 2014-10-27 22:15 TS3Client 2014-10-24 11:39 uTorrent 2014-10-04 12:33 WinRAR 0 File(s) 0 bytes 19 Dir(s) 70ÿ868ÿ090ÿ880 bytes free ========= End of CMD: ========= EmptyTemp: => Removed 60.6 MB temporary data. The system needed a reboot. ==== End of Fixlog ====