Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 22-04-2014 Ran by Zbyszek at 2014-04-26 14:20:49 Run:2 Running from C:\Users\Zbyszek\Desktop Boot Mode: Safe Mode (minimal) ============================================== Content of fixlist: ***************** IFEO\bitguard.exe: [Debugger] tasklist.exe IFEO\bprotect.exe: [Debugger] tasklist.exe IFEO\bpsvc.exe: [Debugger] tasklist.exe IFEO\browserdefender.exe: [Debugger] tasklist.exe IFEO\browserprotect.exe: [Debugger] tasklist.exe IFEO\browsersafeguard.exe: [Debugger] tasklist.exe IFEO\dprotectsvc.exe: [Debugger] tasklist.exe IFEO\jumpflip: [Debugger] tasklist.exe IFEO\protectedsearch.exe: [Debugger] tasklist.exe IFEO\searchinstaller.exe: [Debugger] tasklist.exe IFEO\searchprotection.exe: [Debugger] tasklist.exe IFEO\searchprotector.exe: [Debugger] tasklist.exe IFEO\searchsettings.exe: [Debugger] tasklist.exe IFEO\searchsettings64.exe: [Debugger] tasklist.exe IFEO\snapdo.exe: [Debugger] tasklist.exe IFEO\stinst32.exe: [Debugger] tasklist.exe IFEO\stinst64.exe: [Debugger] tasklist.exe IFEO\umbrella.exe: [Debugger] tasklist.exe IFEO\utiljumpflip.exe: [Debugger] tasklist.exe IFEO\volaro: [Debugger] tasklist.exe IFEO\vonteera: [Debugger] tasklist.exe IFEO\websteroids.exe: [Debugger] tasklist.exe IFEO\websteroidsservice.exe: [Debugger] tasklist.exe HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Movies Toolbar\Datamngr\apcrtldr.dll <===== ATTENTION HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Movies Toolbar\Datamngr\x64\apcrtldr.dll <===== ATTENTION HKU\S-1-5-21-1751857310-1762546769-714495607-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-1751857310-1762546769-714495607-1000\...\RunOnce: [Application Restart #2] - C:\Users\Zbyszek\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\Zbyszek\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --flag-switches-begin --flag-switches-end --restore-last-session Task: {0717AFE2-86C7-4DD1-863F-64A01085F8B0} - System32\Tasks\{FF4A44F3-7C42-4DED-B0CB-905F65E700F9} => C:\Program Files (x86)\SubEdit-Player\subedit.exe Task: {48A861F8-9B42-4599-A3C0-9C2A9109DE76} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline No Task File <==== ATTENTION Task: {68813FAD-EC33-46F0-BE58-5FE67DED34B4} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask No Task File <==== ATTENTION Task: {F90EC15B-F0FF-484F-964B-BD193F3CB5AC} - System32\Tasks\{47612CA9-601F-4AF5-B3C1-862DDB771E93} => C:\Program Files (x86)\SubEdit-Player\subedit.exe CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com URLSearchHook: HKLM-x32 - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871} URLSearchHook: HKCU - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871} SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://mixidj.delta-search.com/?q={searchTerms}&affID=121136&tt=gc_&babsrc=SP_ss&mntrId=A6CFB482FE1A1D6F SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {B9197AF3-9B1C-475F-AED1-42A15F875551} URL = http://www.mysearchresults.com/search?c=2402&t=01&q={searchTerms} BHO-x32: No Name - {7825CFB6-490A-436B-9F26-4A7B5CFC01A9} - No File Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File C:\avast! sandbox C:\end C:\Program Files (x86)\LPT C:\Program Files (x86)\Kingsoft C:\Program Files (x86)\Mozilla Firefox\extensions C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml C:\Program Files (x86)\Movies Toolbar C:\ProgramData\AVAST Software C:\ProgramData\Datamngr C:\ProgramData\Kingsoft C:\Users\UpdatusUser\AppData\LocalGoogle C:\Users\Zbyszek\AppData\Local\Google\Chrome\User Data\Default\Extensions\hidjnkeodmholilgafgdlgmgggbhnigl C:\Users\Zbyszek\AppData\Local\WebPlayer C:\Users\Zbyszek\AppData\Roaming\Babylon C:\Users\Zbyszek\AppData\Roaming\Kingsoft C:\Users\Zbyszek\AppData\Roaming\OpenCandy C:\Users\Zbyszek\AppData\Roaming\Optimizer Pro C:\Users\Zbyszek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat S2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X] S2 avast! Firewall; "C:\Program Files\AVAST Software\Avast\afwServ.exe" [X] S2 DatamngrCoordinator; C:\Program Files (x86)\Movies Toolbar\Datamngr\DatamngrCoordinator.exe [X] S0 aswRvrt; No ImagePath S0 aswVmm; No ImagePath R1 F06DEFF2-5B9C-490D-910F-35D3A9119622; C:\Program Files (x86)\Movies Toolbar\Datamngr\x64\setmgrc1.cfg [36216 2014-04-06] (Bandoo Media Inc) S1 aswKbd; \SystemRoot\system32\drivers\aswKbd.sys [X] S2 aswMonFlt; \SystemRoot\system32\drivers\aswMonFlt.sys [X] S0 aswNdisFlt; system32\DRIVERS\aswNdisFlt.sys [X] S1 aswRdr; \SystemRoot\system32\drivers\aswRdr2.sys [X] S1 aswSnx; \SystemRoot\system32\drivers\aswSnx.sys [X] S1 aswSP; \SystemRoot\system32\drivers\aswSP.sys [X] S3 aswStm; \SystemRoot\system32\drivers\aswStm.sys [X] R4 KProcessHacker2; \??\C:\Users\Zbyszek\Desktop\processhacker-2.33-bin\x64\kprocesshacker.sys [X] Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWFSBLK Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWFW Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMONFLT Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWNDIS2 Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWNDISFLT Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRDR Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRVRT Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSNX Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSP Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSTM Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWTDI Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWVMM Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622 Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_KPROCESSHACKER2 Unlock: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PWDIIFOC Reg: reg delete HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilividmoviestoolbar181FF /f Reg: reg add HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96B-E325-11CE-BFC1-08002BE10318} /v UpperFilters /t REG_MULTI_SZ /d SynTP\0kbdclass /f Reg: reg add HKLM\SYSTEM\CurrentControlSet\Control\Class\{71A27CDD-812A-11D0-BEC7-08002BE2092F} /v LowerFilters /t REG_MULTI_SZ /d fvevol\0rdyboost /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Control\Class\{71A27CDD-812A-11D0-BEC7-08002BE2092F} /v UpperFilters /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Control\Network /v Config /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWFSBLK /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWFW /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMONFLT /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWNDIS2 /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWNDISFLT /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRDR /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRVRT /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSNX /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSP /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSTM /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWTDI /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWVMM /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622 /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_KPROCESSHACKER2 /f Reg: reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PWDIIFOC /f Reg: reg query HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318} /s ***************** HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bitguard.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bprotect.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bpsvc.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserdefender.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserprotect.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsersafeguard.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\dprotectsvc.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\jumpflip => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\protectedsearch.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchinstaller.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotection.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotector.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchsettings.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchsettings64.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\snapdo.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst32.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst64.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\umbrella.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\utiljumpflip.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\volaro => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\vonteera => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\websteroids.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\websteroidsservice.exe => Key deleted successfully. HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls\\x86 => Value deleted successfully. HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls\\x64 => Value deleted successfully. HKU\S-1-5-21-1751857310-1762546769-714495607-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => Value deleted successfully. HKU\S-1-5-21-1751857310-1762546769-714495607-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Application Restart #2 => Value deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0717AFE2-86C7-4DD1-863F-64A01085F8B0} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0717AFE2-86C7-4DD1-863F-64A01085F8B0} => Key deleted successfully. C:\Windows\System32\Tasks\{FF4A44F3-7C42-4DED-B0CB-905F65E700F9} => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FF4A44F3-7C42-4DED-B0CB-905F65E700F9} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{48A861F8-9B42-4599-A3C0-9C2A9109DE76} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48A861F8-9B42-4599-A3C0-9C2A9109DE76} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{68813FAD-EC33-46F0-BE58-5FE67DED34B4} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{68813FAD-EC33-46F0-BE58-5FE67DED34B4} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTask => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F90EC15B-F0FF-484F-964B-BD193F3CB5AC} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F90EC15B-F0FF-484F-964B-BD193F3CB5AC} => Key deleted successfully. C:\Windows\System32\Tasks\{47612CA9-601F-4AF5-B3C1-862DDB771E93} => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{47612CA9-601F-4AF5-B3C1-862DDB771E93} => Key deleted successfully. HKLM\SOFTWARE\Policies\Google => Key deleted successfully. HKCU\SOFTWARE\Policies\Google => Key deleted successfully. HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar => Value deleted successfully. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\URLSearchHooks\\ => Value deleted successfully. HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\ => Value deleted successfully. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully. HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} => Key deleted successfully. HKCR\CLSID\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} => Key deleted successfully. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B9197AF3-9B1C-475F-AED1-42A15F875551} => Key deleted successfully. HKCR\CLSID\{B9197AF3-9B1C-475F-AED1-42A15F875551} => Key deleted successfully. HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9} => Key deleted successfully. HKCR\Wow6432Node\CLSID\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => Value deleted successfully. HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => Value deleted successfully. HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => Key deleted successfully. C:\avast! sandbox => Moved successfully. C:\end => Moved successfully. C:\Program Files (x86)\LPT => Moved successfully. C:\Program Files (x86)\Kingsoft => Moved successfully. C:\Program Files (x86)\Mozilla Firefox\extensions => Moved successfully. C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml => Moved successfully. C:\Program Files (x86)\Movies Toolbar => Moved successfully. C:\ProgramData\AVAST Software => Moved successfully. C:\ProgramData\Datamngr => Moved successfully. C:\ProgramData\Kingsoft => Moved successfully. C:\Users\UpdatusUser\AppData\LocalGoogle => Moved successfully. C:\Users\Zbyszek\AppData\Local\Google\Chrome\User Data\Default\Extensions\hidjnkeodmholilgafgdlgmgggbhnigl => Moved successfully. C:\Users\Zbyszek\AppData\Local\WebPlayer => Moved successfully. C:\Users\Zbyszek\AppData\Roaming\Babylon => Moved successfully. C:\Users\Zbyszek\AppData\Roaming\Kingsoft => Moved successfully. C:\Users\Zbyszek\AppData\Roaming\OpenCandy => Moved successfully. C:\Users\Zbyszek\AppData\Roaming\Optimizer Pro => Moved successfully. C:\Users\Zbyszek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat => Moved successfully. avast! Antivirus => Service deleted successfully. avast! Firewall => Service deleted successfully. DatamngrCoordinator => Service deleted successfully. aswRvrt => Service deleted successfully. aswVmm => Service deleted successfully. F06DEFF2-5B9C-490D-910F-35D3A9119622 => Service deleted successfully. aswKbd => Service deleted successfully. aswMonFlt => Service deleted successfully. aswNdisFlt => Service deleted successfully. aswRdr => Service deleted successfully. aswSnx => Service deleted successfully. aswSP => Service deleted successfully. aswStm => Service deleted successfully. KProcessHacker2 => Service not found. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWFSBLK" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWFW" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMONFLT" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWNDIS2" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWNDISFLT" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRDR" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRVRT" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSNX" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSP" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSTM" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWTDI" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWVMM" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_KPROCESSHACKER2" => Key unlocked successfully. "HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PWDIIFOC" => Key unlocked successfully. ========= reg delete HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilividmoviestoolbar181FF /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg add HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96B-E325-11CE-BFC1-08002BE10318} /v UpperFilters /t REG_MULTI_SZ /d SynTP\0kbdclass /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg add HKLM\SYSTEM\CurrentControlSet\Control\Class\{71A27CDD-812A-11D0-BEC7-08002BE2092F} /v LowerFilters /t REG_MULTI_SZ /d fvevol\0rdyboost /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Control\Class\{71A27CDD-812A-11D0-BEC7-08002BE2092F} /v UpperFilters /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Control\Network /v Config /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWFSBLK /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWFW /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMONFLT /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWNDIS2 /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWNDISFLT /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRDR /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRVRT /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSNX /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSP /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSTM /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWTDI /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWVMM /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622 /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_KPROCESSHACKER2 /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PWDIIFOC /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg query HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318} /s ========= HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318} Class REG_SZ DiskDrive ClassDesc REG_SZ @%SystemRoot%\System32\StorProp.dll,-17000 (domy˜lny) REG_SZ Disk drives IconPath REG_MULTI_SZ %SystemRoot%\System32\imageres.dll,-32 Installer32 REG_SZ StorProp.Dll,DiskClassInstaller NoInstallClass REG_SZ 1 SilentInstall REG_SZ 1 UpperFilters REG_MULTI_SZ PartMgr HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0000 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0001 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0002 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0003 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0004 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0005 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0006 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0007 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0008 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0009 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0010 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0011 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0012 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0013 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0014 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0015 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0016 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0017 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0018 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\0019 InfPath REG_SZ disk.inf InfSection REG_SZ disk_install InfSectionExt REG_SZ .NT ProviderName REG_SZ Microsoft DriverDateData REG_BINARY 00808CA3C594C601 DriverDate REG_SZ 6-21-2006 DriverVersion REG_SZ 6.1.7600.16385 MatchingDeviceId REG_SZ gendisk DriverDesc REG_SZ Disk drive HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}\Properties ========= End of Reg: ========= ==== End of Fixlog ====