Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 04-01-2015 Ran by Madga at 2015-01-05 23:58:33 Run:2 Running from G:\1Służbowe\1FRST Loaded Profile: Madga (Available profiles: Madga) Boot Mode: Normal ============================================== Content of fixlist: ***************** R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [File not signed] S4 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2015-01-05] (Duplex Secure Ltd.) HKLM\...\Run: [InstallerLauncher] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-41 (the data entry has 36 more characters). HKU\S-1-5-18\...\Run: [Agent Portfela Bitdefender] => "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" HKU\S-1-5-18\...\Run: [Portfel Bitdefender] => "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard HKU\S-1-5-18\...\Run: [Agent aplikacji Portfel Bitdefender] => "C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe" Task: {60075B96-E3CE-4E0A-ADE9-650778797E24} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.6.0_07\bin\jp2ssv.dll No File FF Plugin: @java.com/DTPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll No File AlternateDataStreams: C:\Users\Madga\Downloads\bitdefender_ts.exe:BDU AlternateDataStreams: C:\Users\Madga\Downloads\Firefox Setup Stub 30.0.exe:BDU AlternateDataStreams: C:\Users\Madga\Downloads\iTunesSetup(2).exe:BDU AlternateDataStreams: C:\Users\Madga\Downloads\jdk-8u5-windows-i586.exe:BDU AlternateDataStreams: C:\Users\Madga\Downloads\MicrosoftFixit.dvd.Run.exe:BDU AlternateDataStreams: C:\Users\Madga\Downloads\sp41377.exe:BDU C:\Program Files\Adobe C:\Program Files\Bitdefender C:\Program Files\Common Files\Adobe C:\Program Files\Common Files\Bitdefender C:\Program Files\ESET C:\Program Files\Java C:\Program Files\OpenOffice.org 3 C:\ProgramData\*.bdinstall.bin C:\ProgramData\Adobe C:\ProgramData\Bitdefender C:\ProgramData\HitmanPro C:\ProgramData\Malwarebytes C:\ProgramData\RogueKiller C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.0 C:\Users\Madga\AppData\Local\Adobe C:\Users\Madga\AppData\Roaming\Bitdefender C:\Users\Madga\AppData\Roaming\Malwarebytes C:\Users\Madga\AppData\Roaming\QuickScan C:\Windows\System32\ezsvc7.dll C:\Windows\system32\Drivers\hitmanpro37.sys C:\Windows\system32\Drivers\iavtnu.sys C:\Windows\System32\Drivers\sptd.sys C:\Windows\system32\Drivers\TrueSight.sys C:\Windows\system32\Adobe C:\Windows\system32\Macromed\Flash Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\gupdate" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\gupdatem" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\gusvc" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\HWDeviceService.exe" /f CMD: C:\Users\Madga\Desktop\FIX.VBS EmptyTemp: ***************** ezSharedSvc => Unable to stop service ezSharedSvc => Service deleted successfully. sptd => Service deleted successfully. HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\InstallerLauncher => value deleted successfully. HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\Agent Portfela Bitdefender => value deleted successfully. HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\Portfel Bitdefender => value deleted successfully. HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\Agent aplikacji Portfel Bitdefender => value deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{60075B96-E3CE-4E0A-ADE9-650778797E24}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{60075B96-E3CE-4E0A-ADE9-650778797E24}" => Key deleted successfully. C:\Windows\System32\Tasks\Adobe Flash Player Updater => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully. "HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully. "HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.5.2" => Key deleted successfully. C:\Users\Madga\Downloads\bitdefender_ts.exe => ":BDU" ADS removed successfully. C:\Users\Madga\Downloads\Firefox Setup Stub 30.0.exe => ":BDU" ADS removed successfully. C:\Users\Madga\Downloads\iTunesSetup(2).exe => ":BDU" ADS removed successfully. C:\Users\Madga\Downloads\jdk-8u5-windows-i586.exe => ":BDU" ADS removed successfully. C:\Users\Madga\Downloads\MicrosoftFixit.dvd.Run.exe => ":BDU" ADS removed successfully. C:\Users\Madga\Downloads\sp41377.exe => ":BDU" ADS removed successfully. C:\Program Files\Adobe => Moved successfully. C:\Program Files\Bitdefender => Moved successfully. C:\Program Files\Common Files\Adobe => Moved successfully. C:\Program Files\Common Files\Bitdefender => Moved successfully. C:\Program Files\ESET => Moved successfully. C:\Program Files\Java => Moved successfully. C:\Program Files\OpenOffice.org 3 => Moved successfully. C:\ProgramData\*.bdinstall.bin => Moved successfully. C:\ProgramData\Adobe => Moved successfully. C:\ProgramData\Bitdefender => Moved successfully. C:\ProgramData\HitmanPro => Moved successfully. C:\ProgramData\Malwarebytes => Moved successfully. C:\ProgramData\RogueKiller => Moved successfully. "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.0" => File/Directory not found. C:\Users\Madga\AppData\Local\Adobe => Moved successfully. "C:\Users\Madga\AppData\Roaming\Bitdefender" => File/Directory not found. C:\Users\Madga\AppData\Roaming\Malwarebytes => Moved successfully. C:\Users\Madga\AppData\Roaming\QuickScan => Moved successfully. C:\Windows\System32\ezsvc7.dll => Moved successfully. C:\Windows\system32\Drivers\hitmanpro37.sys => Moved successfully. C:\Windows\system32\Drivers\iavtnu.sys => Moved successfully. C:\Windows\System32\Drivers\sptd.sys => Moved successfully. C:\Windows\system32\Drivers\TrueSight.sys => Moved successfully. C:\Windows\system32\Adobe => Moved successfully. C:\Windows\system32\Macromed\Flash => Moved successfully. ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\gupdate" /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\gupdatem" /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\gusvc" /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\HWDeviceService.exe" /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= C:\Users\Madga\Desktop\FIX.VBS ========= ========= End of CMD: ========= EmptyTemp: => Removed 54.7 MB temporary data. The system needed a reboot. ==== End of Fixlog 00:00:02 ====