Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-02-2015 01 Ran by Proteus at 2015-02-05 17:51:09 Run:2 Running from C:\Users\Proteus\Desktop\FRST3 Loaded Profiles: UpdatusUser & Proteus (Available profiles: UpdatusUser & Proteus) Boot Mode: Normal ============================================== Content of fixlist: ***************** S1 iSafeKrnlMon; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [X] RemoveDirectory: C:\AdwCleaner RemoveDirectory: C:\FRST\Quarantine RemoveDirectory: C:\NPE RemoveDirectory: C:\Users\Proteus\AppData\Local\NPE RemoveDirectory: C:\Users\Proteus\Desktop\Stare dane programu Firefox RemoveDirectory: C:\Windows\system32\log CMD: del /q C:\ProgramData\*.* CMD: del /q C:\Users\Proteus\Downloads\yet_another_cleaner_sk_6111391.exe Reg: reg query HKLM\SOFTWARE\Google\Update\ClientState /s Reg: reg query HKLM\SOFTWARE\Wow6432Node\Google\Update\ClientState /s ***************** iSafeKrnlMon => Service deleted successfully. "C:\AdwCleaner" => Removed successfully. "C:\FRST\Quarantine" => Removed successfully. "C:\NPE" => Removed successfully. "C:\Users\Proteus\AppData\Local\NPE" => Removed successfully. "C:\Users\Proteus\Desktop\Stare dane programu Firefox" => Removed successfully. "C:\Windows\system32\log" => Removed successfully. ========= del /q C:\ProgramData\*.* ========= ========= End of CMD: ========= ========= del /q C:\Users\Proteus\Downloads\yet_another_cleaner_sk_6111391.exe ========= ========= End of CMD: ========= ========= reg query HKLM\SOFTWARE\Google\Update\ClientState /s ========= Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci. ========= End of Reg: ========= ========= reg query HKLM\SOFTWARE\Wow6432Node\Google\Update\ClientState /s ========= HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{2BF2CA35-CCAF-4E58-BAB7-4163BFA03B88} lang REG_SZ en RollCallDayStartSec REG_DWORD 0x54d322fc LastCheckSuccess REG_DWORD 0x54d394b6 pv REG_SZ 10.0.0.0 brand REG_SZ GGGE InstallTime REG_DWORD 0x4ede424e DayOfLastRollCall REG_DWORD 0xb8d HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{2BF2CA35-CCAF-4E58-BAB7-4163BFA03B88}\CurrentState StateValue REG_DWORD 0x10 HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{3C122445-AECE-4309-90B7-85A6AEF42AC0} usagestats REG_DWORD 0x0 lang REG_SZ pl brand REG_SZ GGLS InstallTime REG_DWORD 0x4fa14149 browser REG_DWORD 0x3 pv REG_SZ 1.19.8406.6504 LastCheckSuccess REG_DWORD 0x54d394b6 ActivePingDayStartSec REG_DWORD 0x54d322fc RollCallDayStartSec REG_DWORD 0x54d322fc UpdateTime REG_DWORD 0x545b2b9c DayOfLastRollCall REG_DWORD 0xb8d LastInstallerSuccessLaunchCmdLine REG_SZ "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /firstrun DayOfLastActivity REG_DWORD 0xb8d HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{3C122445-AECE-4309-90B7-85A6AEF42AC0}\CurrentState StateValue REG_DWORD 0x10 HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{430FD4D0-B729-4F61-AA34-91526481799D} pv REG_SZ 1.3.25.11 brand REG_SZ GGGE InstallTime REG_DWORD 0x4ede4228 RollCallDayStartSec REG_DWORD 0x54d322fc LastCheckSuccess REG_DWORD 0x54d394b6 experiment_labels REG_SZ omaha=long_tail_update|Wed, 05 Nov 2014 22:13:32 GMT UpdateTime REG_DWORD 0x546c4027 DayOfLastRollCall REG_DWORD 0xb8d HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{430FD4D0-B729-4F61-AA34-91526481799D}\CurrentState StateValue REG_DWORD 0x10 HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{4DC8B4CA-1BDA-483e-B5FA-D3C12E15B62D} ap REG_SZ -dev-multi-chrome HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB} usagestats REG_DWORD 0x0 lang REG_SZ en brand REG_SZ GGGE InstallTime REG_DWORD 0x4ede424e browser REG_DWORD 0x4 pv REG_SZ 7.1.2.2041 LastCheckSuccess REG_DWORD 0x54d394b6 RollCallDayStartSec REG_DWORD 0x54d322fc UpdateTime REG_DWORD 0x52bd7a66 DayOfLastRollCall REG_DWORD 0xb8d HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\CurrentState StateValue REG_DWORD 0x10 HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Update\ClientState\{8A69D345-D564-463C-AFF1-A69D9E530F96} ap REG_SZ 2.0-dev-multi-chrome ========= End of Reg: ========= ==== End of Fixlog 17:52:08 ====