Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 26-11-2014 01 Ran by TDK at 2014-11-27 18:16:50 Run:1 Running from C:\Users\TDK\Desktop\a\frst Loaded Profile: TDK (Available profiles: TDK) Boot Mode: Normal ============================================== Content of fixlist: ***************** CloseProcesses: R2 70e6ca8c; c:\program files (x86)\Optimizer Pro\OptProCrashSvc.dll [186496 2014-03-29] () HKU\S-1-5-21-2617819357-3465552758-715086167-1000\...\Run: [Optimizer Pro] => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [135160 2014-01-28] (PC Utilities Software Limited) AppInit_DLLs: C:\Program Files (x86)\OPTIMI~1\OPTPRO~2.DLL => C:\Program Files (x86)\OPTIMI~1\OPTPRO~2.DLL File Not Found AppInit_DLLs-x32: c:\program files (x86)\optimi~1\optpro~1.dll => c:\program files (x86)\Optimizer Pro\OptProCrash.dll [2961368 2014-03-29] () HKU\S-1-5-21-2617819357-3465552758-715086167-1000\...\MountPoints2: {ec3030c5-b39f-11e3-a194-806e6f6e6963} - D:\Run.exe HKU\S-1-5-21-2617819357-3465552758-715086167-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/?aff=p HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/?aff=p HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/?aff=p BHO: LeuckyCoupOn -> {7F4D3423-9FF0-17DF-B7DF-8E3D4DD93CA9} -> C:\ProgramData\LeuckyCoupOn\eaUnk.x64.dll () BHO: LucKyShoopper -> {ED3BE0F8-7644-86D0-A181-EC07F68D55CC} -> C:\ProgramData\LucKyShoopper\UXo.x64.dll () BHO-x32: LeuckyCoupOn -> {7F4D3423-9FF0-17DF-B7DF-8E3D4DD93CA9} -> C:\ProgramData\LeuckyCoupOn\eaUnk.dll () CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKU\S-1-5-21-2617819357-3465552758-715086167-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION C:\program files (x86)\Optimizer Pro C:\ProgramData\ec691b4734542d85 C:\ProgramData\LeuckyCoupOn C:\ProgramData\LucKyShoopper C:\ProgramData\SharkManCoupon C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveSupport C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2 C:\Users\TDK\AppData\Local\Google Reg: reg delete HKCU\Software\Google /f Reg: reg delete HKLM\SOFTWARE\Wow6432Node\Google /f Reg: reg delete HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1 /f Reg: reg delete HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1 /f Reg: reg delete "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1" /f CMD: dir /a "C:\Program Files" CMD: dir /a "C:\Program Files (x86)" CMD: dir /a C:\ProgramData CMD: dir /a C:\Users\TDK\AppData\Local CMD: dir /a C:\Users\TDK\AppData\LocalLow CMD: dir /a C:\Users\TDK\AppData\Roaming EmptyTemp: ***************** Processes closed successfully. 70e6ca8c => Service not found. HKU\S-1-5-21-2617819357-3465552758-715086167-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Optimizer Pro => Value not found. "C:\Program Files (x86)\OPTIMI~1\OPTPRO~2.DLL" => Value Data not found. "c:\program files (x86)\optimi~1\optpro~1.dll" => Value Data not found. "HKU\S-1-5-21-2617819357-3465552758-715086167-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ec3030c5-b39f-11e3-a194-806e6f6e6963}" => Key deleted successfully. "HKCR\CLSID\{ec3030c5-b39f-11e3-a194-806e6f6e6963}" => Key not found. HKU\S-1-5-21-2617819357-3465552758-715086167-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F4D3423-9FF0-17DF-B7DF-8E3D4DD93CA9}" => Key deleted successfully. "HKCR\CLSID\{7F4D3423-9FF0-17DF-B7DF-8E3D4DD93CA9}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ED3BE0F8-7644-86D0-A181-EC07F68D55CC}" => Key deleted successfully. "HKCR\CLSID\{ED3BE0F8-7644-86D0-A181-EC07F68D55CC}" => Key deleted successfully. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F4D3423-9FF0-17DF-B7DF-8E3D4DD93CA9}" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{7F4D3423-9FF0-17DF-B7DF-8E3D4DD93CA9}" => Key deleted successfully. "HKLM\SOFTWARE\Policies\Google" => Key deleted successfully. "HKU\S-1-5-21-2617819357-3465552758-715086167-1000\SOFTWARE\Policies\Google" => Key deleted successfully. "C:\program files (x86)\Optimizer Pro" => File/Directory not found. C:\ProgramData\ec691b4734542d85 => Moved successfully. C:\ProgramData\LeuckyCoupOn => Moved successfully. C:\ProgramData\LucKyShoopper => Moved successfully. C:\ProgramData\SharkManCoupon => Moved successfully. "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveSupport" => File/Directory not found. "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2" => File/Directory not found. C:\Users\TDK\AppData\Local\Google => Moved successfully. ========= reg delete HKCU\Software\Google /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\Wow6432Node\Google /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1 /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1 /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= reg delete "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1" /f ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= dir /a "C:\Program Files" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 5EA1-34DA Katalog: C:\Program Files 2014-09-24 08:15 . 2014-09-24 08:15 .. 2014-06-27 19:50 AVAST Software 2014-04-06 22:41 Bonjour 2014-06-27 19:46 Common Files 2009-07-14 05:54 174 desktop.ini 2011-02-04 18:42 DVD Maker 2014-03-24 23:44 GIGABYTE 2014-03-24 23:44 Intel 2014-11-14 21:42 Internet Explorer 2014-03-28 10:40 Microsoft Office 2014-04-06 22:41 Microsoft Visual Studio 8 2009-07-14 06:32 MSBuild 2014-03-26 11:10 NVIDIA Corporation 2014-03-24 23:41 Realtek 2009-07-14 06:32 Reference Assemblies 2014-05-18 10:32 Siemens 2014-05-18 11:29 SolidCAM2013 2014-04-06 22:54 SolidWorks Corp 2009-07-14 06:09 Uninstall Information 2014-03-28 00:22 Windows Defender 2014-07-09 20:53 Windows Journal 2011-02-04 18:42 Windows Mail 2014-03-29 22:58 Windows Media Player 2014-03-24 23:07 Windows NT 2011-02-04 18:42 Windows Photo Viewer 2010-11-21 04:31 Windows Portable Devices 2011-02-04 18:42 Windows Sidebar 2014-04-25 22:11 Windows.Loader.v2.0.9-Daz 2014-09-24 08:15 WinPcap 2014-11-27 09:26 WinRAR 1 plik(¢w) 174 bajt¢w 30 katalog(¢w) 12ÿ698ÿ320ÿ896 bajt¢w wolnych ========= End of CMD: ========= ========= dir /a "C:\Program Files (x86)" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 5EA1-34DA Katalog: C:\Program Files (x86) 2014-11-27 17:24 . 2014-11-27 17:24 .. 2014-06-06 23:22 Adobe 2014-03-26 11:30 AGEIA Technologies 2014-03-24 23:53 AMD 2014-06-14 22:05 AnvSoft 2014-04-06 22:41 Bonjour 2014-06-16 22:52 CncSimulator 2014-06-06 23:22 Common Files 2014-03-29 23:40 DAEMON Tools Lite 2009-07-14 05:54 174 desktop.ini 2014-09-24 08:15 Freemake 2014-03-24 23:54 GIGABYTE 2014-10-21 11:41 Gofin 2014-11-27 17:26 Google 2014-05-18 11:29 InstallShield Installation Information 2014-03-24 23:53 Intel 2014-11-14 21:42 Internet Explorer 2014-03-28 10:39 Microsoft Analysis Services 2014-04-07 23:48 Microsoft CAPICOM 2.1.0.2 2014-04-06 22:40 Microsoft Office 2014-03-28 10:43 Microsoft SQL Server Compact Edition 2014-03-28 10:43 Microsoft Sync Framework 2014-03-28 10:43 Microsoft Synchronization Services 2014-04-06 22:40 Microsoft Visual Studio 8 2014-03-28 10:43 Microsoft.NET 2014-03-28 10:43 MSBuild 2014-04-06 22:39 MSECache 2014-04-07 23:48 MSXML 4.0 2014-03-28 09:26 Nero 2014-03-26 11:30 NVIDIA Corporation 2014-03-24 23:42 Realtek 2009-07-14 06:32 Reference Assemblies 2014-04-06 22:53 SolidWorks Corp 2014-03-24 23:41 Temp 2014-03-25 00:06 Thunder Master 2014-05-18 10:52 UGS 2009-07-14 05:57 Uninstall Information 2014-03-28 00:22 Windows Defender 2011-02-04 18:42 Windows Mail 2014-03-29 22:58 Windows Media Player 2009-07-14 06:32 Windows NT 2011-02-04 18:42 Windows Photo Viewer 2010-11-21 04:31 Windows Portable Devices 2011-02-04 18:42 Windows Sidebar 1 plik(¢w) 174 bajt¢w 44 katalog(¢w) 12ÿ698ÿ316ÿ800 bajt¢w wolnych ========= End of CMD: ========= ========= dir /a C:\ProgramData ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 5EA1-34DA Katalog: C:\ProgramData 2014-11-27 18:16 . 2014-11-27 18:16 .. 2014-06-06 23:24 Adobe 2014-04-06 22:41 Apple 2009-07-14 06:08 Application Data [C:\ProgramData] 2014-06-27 19:50 AVAST Software 2014-08-10 22:23 ChampionDeals 2014-06-27 19:54 CLicKForSalee 2014-03-29 23:40 DAEMON Tools Lite 2014-03-24 23:07 Dane aplikacji [C:\ProgramData] 2014-04-06 22:49 DassaultSystemes 2009-07-14 06:08 Desktop [C:\Users\Public\Desktop] 2009-07-14 06:08 Documents [C:\Users\Public\Documents] 2014-03-24 23:07 Dokumenty [C:\Users\Public\Documents] 2009-07-14 06:08 Favorites [C:\Users\Public\Favorites] 2014-06-27 20:43 FlashCoupoon 2014-06-08 10:15 FLEXnet 2014-09-24 08:16 Freemake 2014-07-27 20:54 Hewlett-Packard 2014-03-24 23:44 Intel 2014-05-18 10:53 Macrovision 2014-03-24 23:07 Menu Start [C:\ProgramData\Microsoft\Windows\Start Menu] 2014-06-16 22:52 Microsoft 2014-11-13 05:37 Microsoft Help 2014-03-28 09:33 Nero 2014-06-27 21:46 Norton 2014-03-24 23:39 NortonInstaller 2014-11-27 17:37 NVIDIA 2014-03-26 11:12 NVIDIA Corporation 2014-03-24 23:07 Pulpit [C:\Users\Public\Desktop] 2014-08-07 17:49 QeuueeenCoupon 2014-03-29 23:56 SafeNet Sentinel 2014-04-06 22:54 Simpoe 2014-04-06 22:41 SolidWorks 2009-07-14 06:08 Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu] 2014-03-24 23:07 Szablony [C:\ProgramData\Microsoft\Windows\Templates] 2009-07-14 06:08 Templates [C:\ProgramData\Microsoft\Windows\Templates] 2014-06-27 19:54 topDeeal 2014-03-24 23:07 Ulubione [C:\Users\Public\Favorites] 0 plik(¢w) 0 bajt¢w 39 katalog(¢w) 12ÿ698ÿ312ÿ704 bajt¢w wolnych ========= End of CMD: ========= ========= dir /a C:\Users\TDK\AppData\Local ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 5EA1-34DA Katalog: C:\Users\TDK\AppData\Local 2014-11-27 18:16 . 2014-11-27 18:16 .. 2014-06-06 23:24 Adobe 2014-11-07 08:04 CrashDumps 2014-03-30 00:51 CrashRpt 2014-03-24 23:07 Dane aplikacji [C:\Users\TDK\AppData\Local] 2014-04-06 22:49 DassaultSystemes 2014-10-14 07:33 Diagnostics 2014-05-02 21:09 ElevatedDiagnostics 2014-11-27 17:26 EmieBrowserModeList 2014-04-11 06:31 EmieSiteList 2014-04-11 06:31 EmieUserList 2014-11-14 21:45 123ÿ408 GDIPFONTCACHEV1.DAT 2014-03-24 23:07 Historia [C:\Users\TDK\AppData\Local\Microsoft\Windows\History] 2014-11-27 15:20 2ÿ713ÿ150 IconCache.db 2014-11-26 11:06 Microsoft 2014-03-28 10:38 Microsoft Help 2014-03-26 11:12 NVIDIA 2014-03-26 11:12 NVIDIA Corporation 2014-04-21 20:10 Packages 2014-03-25 00:06 Programs 2014-03-27 22:45 17 resmon.resmoncfg 2014-03-29 23:56 SafeNet Sentinel 2014-04-13 13:00 SolidCAM 2014-06-12 20:29 SolidCAM Temporary Files 2014-04-12 20:38 SolidWorks 2014-11-27 18:16 Temp 2014-03-24 23:07 Temporary Internet Files [C:\Users\TDK\AppData\Local\Microsoft\Windows\Temporary Internet Files] 2014-06-12 19:39 TempSW Katalog dla kopii zapasowych 2014-05-18 10:56 Unigraphics Solutions 2014-06-14 06:48 VirtualStore 3 plik(¢w) 2ÿ836ÿ575 bajt¢w 28 katalog(¢w) 12ÿ698ÿ312ÿ704 bajt¢w wolnych ========= End of CMD: ========= ========= dir /a C:\Users\TDK\AppData\LocalLow ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 5EA1-34DA Katalog: C:\Users\TDK\AppData\LocalLow 2014-11-27 10:56 . 2014-11-27 10:56 .. 2014-06-06 23:24 Adobe 2014-11-27 17:40 EmieBrowserModeList 2014-04-11 06:31 EmieSiteList 2014-04-11 06:31 EmieUserList 2014-04-11 06:31 Microsoft 2014-11-06 16:49 Temp 2014-04-25 20:48 {3C848861-A7B8-7675-A37E-503FD4A18E63} 2014-05-20 20:27 {5CA171C3-21BB-C492-5495-4A9B432D8E51} 2014-04-21 20:10 {A0CAF048-28BF-6B2C-D6BE-F0F69807432C} 2014-07-06 21:47 {ED3BE0F8-7644-86D0-A181-EC07F68D55CC} 0 plik(¢w) 0 bajt¢w 12 katalog(¢w) 12ÿ698ÿ312ÿ704 bajt¢w wolnych ========= End of CMD: ========= ========= dir /a C:\Users\TDK\AppData\Roaming ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: 5EA1-34DA Katalog: C:\Users\TDK\AppData\Roaming 2014-10-07 08:30 . 2014-10-07 08:30 .. 2014-06-06 23:24 Adobe 2014-06-14 22:06 AnvSoft 2014-10-07 08:30 4 appdataFr2.bin 2014-06-27 19:52 AVAST Software 2014-11-27 11:04 DAEMON Tools Lite 2014-04-06 22:49 DassaultSystemes 2014-04-06 22:50 help_images_otherUI 2014-03-24 23:07 Identities 2014-03-24 23:43 InstallShield 2014-03-24 23:59 Intel Corporation 2014-08-16 21:33 4ÿ725 LiveSupport.exe_log.txt 2010-11-21 08:16 Media Center Programs 2014-06-06 23:24 Microsoft 2014-03-28 09:38 Nero 2014-03-30 00:54 NVIDIA 2014-11-27 17:21 92 regsvr32.exe_log.txt 2014-06-12 19:22 SolidWorks 2014-04-06 23:49 SolidWorks 2013 2014-11-27 17:39 uTorrent 2014-03-28 09:12 WinRAR 3 plik(¢w) 4ÿ821 bajt¢w 19 katalog(¢w) 12ÿ698ÿ308ÿ608 bajt¢w wolnych ========= End of CMD: ========= EmptyTemp: => Removed 282 MB temporary data. The system needed a reboot. ==== End of Fixlog ====