prosim o kontrolu logu...zpomalení notebooku
Napsal: 02 bře 2019 22:06
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-03-2019
Ran by Lucinka (administrator) on HP (02-03-2019 21:59:19)
Running from C:\Users\Lucinka\Downloads
Loaded Profiles: Lucinka (Available Profiles: Lucinka)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "C:\Users\Lucinka\AppData\Roaming\Seznam Browser\Seznam.cz.exe"-surl="%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Windows\System32\hpservice.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(Teruten) [File not signed] C:\Windows\System32\FsUsbExService.Exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(PDF Complete -> PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
(PS Media s.r.o. -> PS Media s.r.o.) C:\Windows\System32\ssins.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Crawler Group, LLC -> Crawler Group, LLC) C:\Program Files\Spyware Terminator\st_rsser.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Nokia) [File not signed] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Crawler Group, LLC -> Crawler Group, LLC) C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
(Crawler Group, LLC -> Crawler Group, LLC) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\aswidsagent.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company -> ) C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [288312 2009-07-27] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-08-25] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-06-18] (PDF Complete -> PDF Complete Inc)
HKLM\...\Run: [WirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-30] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-08-04] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [SoundMAX] => C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [3866624 2009-05-18] (Analog Devices, Inc.) [File not signed]
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG -> Nero AG)
HKLM\...\Run: [NetFxUpdate_v1.1.4322] => C:\Windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe [106496 2004-08-10] (Microsoft) [File not signed]
HKLM\...\Run: [NokiaMServer] => C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles
HKLM\...\Run: [NokiaMusic FastStart] => C:\Program Files\Nokia\Nokia Music\NokiaMusic.exe [2331936 2009-07-22] (Nokia -> Nokia)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
HKLM\...\Run: [NPSStartup] => [X]
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [5349128 2017-03-16] (Crawler Group, LLC -> Crawler Group, LLC)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [5585664 2017-03-16] (Crawler Group, LLC -> Crawler Group, LLC)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [221576 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [HPADVISOR] => C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1668664 2009-07-16] (Hewlett-Packard Company -> Hewlett-Packard)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [LightScribe Control Panel] => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-06-17] (Hewlett-Packard Company) [File not signed]
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [IncrediMail] => C:\Program Files\IncrediMail\bin\IncMail.exe /c
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [AutoStartNPSAgent] => C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [102400 2009-04-02] (Samsung Electronics Co., Ltd.) [File not signed]
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [Facebook Update] => C:\Users\Lucinka\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook, Inc. -> Facebook Inc.)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30872168 2014-12-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\MountPoints2: {e32a091e-2c66-11e0-ba95-00247ef7aec9} - D:\AutoRun.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files\Common Files\LightScribe\LSRunOnce.exe [2009-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\71.0.1037.98\Installer\chrmstp.exe [2019-01-16] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\72.0.3626.119\Installer\chrmstp.exe [2019-02-26] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{07AA0886-CC8D-4e19-A410-1C75AF686E62}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{33c86cd6-705f-4ba1-9adb-67070b837775}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2009-07-30] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{edd749de-2ef1-4a80-98d1-81f20e6df58e}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
BootExecute: autocheck autochk * C:\PROGRA~2\SPYWAR~1\st_rsdel.exe "\??\C:\ProgramData\Spyware Terminator\st_rsdel.dat"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{418BB993-84E9-4BFB-831F-6F9E0F9E5422}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{FB22F6A6-3CB5-49E5-8BD1-C7C7F538D972}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_CZ&c=92&bd=all&pf=cmnb
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.seznam.cz/
hxxp://www.seznam.cz/
URLSearchHook: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 - (No Name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL No File
SearchScopes: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredimail.com/?search={searchTerms}&loc=search_box_im2_test_v2
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files\Spyware Terminator\STInternetGuard.dll [2015-07-28] (Crawler Group, LLC -> Crawler Group, LLC)
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation -> Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies SA -> Skype Technologies S.A.)
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 -> No Name - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - No File
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies SA -> Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Software Sarl -> Skype Technologies)
FireFox:
========
FF DefaultProfile: fs479jo3.default-1546575944067
FF ProfilePath: C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\fs479jo3.default-1546575944067 [2019-03-02]
FF Extension: (Avast Online Security) - C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\fs479jo3.default-1546575944067\Extensions\wrc@avast.com.xpi [2018-07-17]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-12] (Adobe Systems Incorporated -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2854377482-2471292144-1422266838-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Lucinka\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl -> Skype Limited)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://mystart.incredimail.com/"
CHR Profile: C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default [2019-03-02]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-03-02]
CHR Extension: (Procházení pomocí kurzoru) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fklpgenihifpccgiifchnihilipmbffg [2018-09-03]
CHR Extension: (Skype) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-09-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-03]
CHR Extension: (Chrome Media Router) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-02]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2011-10-10]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AEADIFilters; C:\windows\system32\AEADISRV.EXE [90112 2008-07-15] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-07-27] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R2 AMD External Events Utility; C:\windows\system32\atiesrxx.exe [176128 2009-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [5458712 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-07-14] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [309480 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-07-14] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\71.0.1037.98\elevation_service.exe [390552 2019-01-09] (AVAST Software s.r.o. -> AVAST Software)
R2 FsUsbExService; C:\windows\system32\FsUsbExService.Exe [233472 2009-03-31] (Teruten) [File not signed]
S2 gupdate1ca711254f1434f; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-02] (Google Inc -> Google Inc.)
R2 HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-06-17] (Hewlett-Packard Company) [File not signed]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe [235696 2015-07-31] (McAfee, Inc. -> McAfee, Inc.)
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [635416 2009-06-18] (PDF Complete -> PDF Complete Inc)
S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [637952 2009-06-02] (Nokia.) [File not signed]
R2 ssinstall; C:\windows\System32\ssins.exe [4696960 2016-11-29] (PS Media s.r.o. -> PS Media s.r.o.)
R2 ST2012_Svc; C:\Program Files\Spyware Terminator\st_rsser.exe [2133768 2017-03-16] (Crawler Group, LLC -> Crawler Group, LLC)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 yksvc; C:\windows\System32\yk62x86.dll [282624 2009-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Marvell)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 5U876UVC; C:\windows\System32\DRIVERS\5U876.sys [118656 2009-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
R3 Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [33848 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)
R3 ADIHdAudAddService; C:\windows\System32\drivers\ADIHdAud.sys [381440 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R3 AgereSoftModem; C:\windows\System32\DRIVERS\AGRSM.sys [1161664 2009-07-27] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [34488 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [171128 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [188784 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [158096 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\windows\System32\drivers\aswblog.sys [255224 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [51128 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\windows\System32\drivers\aswHdsKe.sys [188712 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [40688 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [139296 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [100984 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [72800 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [785584 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\windows\System32\drivers\aswSP.sys [401632 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\windows\System32\drivers\aswStm.sys [162632 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [310200 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R3 atikmdag; C:\windows\System32\DRIVERS\atikmdag.sys [4994048 2009-08-04] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 BCM43XX; C:\windows\System32\DRIVERS\bcmwl6.sys [2506232 2009-11-25] (Broadcom Corporation -> Broadcom Corporation)
S3 btwaudio; C:\windows\System32\drivers\btwaudio.sys [86056 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwavdt; C:\windows\System32\DRIVERS\btwavdt.sys [108072 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwl2cap; C:\windows\System32\DRIVERS\btwl2cap.sys [29472 2009-04-08] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwrchid; C:\windows\System32\DRIVERS\btwrchid.sys [18344 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [198656 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 FsUsbExDisk; C:\windows\system32\FsUsbExDisk.SYS [36608 2009-03-31] () [File not signed]
R0 hpdskflt; C:\windows\System32\DRIVERS\hpdskflt.sys [25656 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)
R3 HpqKbFiltr; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [15872 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [23424 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Tech. Co., Ltd.)
S3 hwdatacard; C:\windows\System32\DRIVERS\ewusbmdm.sys [102912 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusbdev; C:\windows\System32\DRIVERS\ewusbdev.sys [101120 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 k750bus; C:\windows\System32\DRIVERS\k750bus.sys [55216 2005-02-11] (Microsoft Windows Hardware Compatibility Publisher -> MCCI)
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 nmwcd; C:\windows\System32\drivers\ccdcmb.sys [17664 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbo.sys [22016 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfd.sys [18816 2008-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 Ser2plx86; C:\windows\System32\DRIVERS\ser2pl.sys [132608 2012-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
R1 sp_rsdrv2; C:\windows\system32\drivers\sp_rsdrv2.sys [32768 2011-06-21] () [File not signed]
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerflt.sys [7808 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [313856 2009-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Marvell)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-03-02 21:57 - 2019-03-02 21:59 - 000069589 _____ C:\Users\Lucinka\Downloads\Addition.txt
2019-03-02 21:55 - 2019-03-02 22:00 - 000027953 _____ C:\Users\Lucinka\Downloads\FRST.txt
2019-03-02 21:55 - 2019-03-02 21:59 - 000000000 ____D C:\FRST
2019-03-02 21:55 - 2019-03-02 21:55 - 001793024 _____ (Farbar) C:\Users\Lucinka\Downloads\FRST (2).exe
2019-03-02 21:54 - 2019-03-02 21:55 - 001793024 _____ (Farbar) C:\Users\Lucinka\Downloads\FRST (1).exe
2019-03-02 21:51 - 2019-03-02 21:51 - 001793024 _____ (Farbar) C:\Users\Lucinka\Downloads\FRST.exe
2019-02-20 15:07 - 2019-02-27 14:07 - 000000000 ____D C:\Users\Lucinka\AppData\Roaming\Seznam Browser
2019-02-20 07:05 - 2019-02-20 07:05 - 000188712 _____ (AVAST Software) C:\windows\system32\Drivers\aswHdsKe.sys
2019-02-20 07:04 - 2019-02-20 07:04 - 000047720 _____ () C:\windows\system32\Drivers\staport.sys
2019-02-20 07:03 - 2019-02-20 07:02 - 000310664 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2019-02-19 13:09 - 2019-02-19 13:10 - 000143272 _____ C:\windows\Minidump\021919-23805-01.dmp
2019-02-12 13:07 - 2019-02-12 13:07 - 000143272 _____ C:\windows\Minidump\021219-21777-01.dmp
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-03-02 21:55 - 2009-07-14 03:37 - 000000000 ____D C:\windows\tracing
2019-03-02 21:54 - 2009-07-14 05:34 - 000023024 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-02 21:54 - 2009-07-14 05:34 - 000023024 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-02 21:51 - 2016-12-31 10:04 - 000000000 ____D C:\Users\Lucinka\AppData\LocalLow\Mozilla
2019-03-02 21:28 - 2009-11-29 17:15 - 000000000 ____D C:\Users\Lucinka\AppData\Roaming\Skype
2019-03-02 21:23 - 2018-07-14 07:51 - 000000000 ____D C:\Users\Lucinka\AppData\Local\AVAST Software
2019-03-02 21:21 - 2016-05-31 09:44 - 000065536 _____ C:\windows\system32\Ikeext.etl
2019-03-02 21:21 - 2011-10-20 11:01 - 000000968 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001Core.job
2019-03-02 21:21 - 2009-07-14 05:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-03-02 09:11 - 2011-10-20 11:01 - 000000990 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001UA.job
2019-02-28 08:57 - 2012-08-05 12:01 - 000000000 ____D C:\ProgramData\Spyware Terminator
2019-02-26 09:42 - 2009-11-29 17:38 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-26 09:42 - 2009-11-29 17:38 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-02-24 07:10 - 2009-09-20 08:18 - 000000000 ____D C:\ProgramData\PDFC
2019-02-20 07:06 - 2009-11-28 15:07 - 000401632 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2019-02-20 07:02 - 2019-01-16 14:04 - 000188784 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsdriver.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000255224 _____ (AVAST Software) C:\windows\system32\Drivers\aswblog.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000158096 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsh.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000051128 _____ (AVAST Software) C:\windows\system32\Drivers\aswbuniv.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000034488 _____ (AVAST Software) C:\windows\system32\Drivers\aswArDisk.sys
2019-02-20 07:02 - 2018-10-24 14:39 - 000040688 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2019-02-20 07:02 - 2018-06-03 20:19 - 000171128 _____ (AVAST Software) C:\windows\system32\Drivers\aswArPot.sys
2019-02-20 07:02 - 2014-12-13 09:55 - 000162632 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2019-02-20 07:02 - 2013-05-25 16:31 - 000310200 _____ (AVAST Software) C:\windows\system32\Drivers\aswVmm.sys
2019-02-20 07:02 - 2013-05-25 16:31 - 000072800 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2019-02-20 07:02 - 2012-08-01 07:25 - 000100984 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2019-02-20 07:02 - 2012-01-03 23:17 - 000785584 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2019-02-20 07:02 - 2009-11-28 15:07 - 000139296 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2019-02-19 13:09 - 2011-09-09 22:26 - 365968686 _____ C:\windows\MEMORY.DMP
2019-02-19 13:09 - 2011-09-09 22:26 - 000000000 ____D C:\windows\Minidump
2019-02-12 18:31 - 2012-08-12 14:28 - 000842240 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2019-02-12 18:31 - 2012-02-05 17:46 - 000175104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2019-02-12 18:31 - 2009-09-20 08:18 - 000000000 ____D C:\windows\system32\Macromed
==================== Files in the root of some directories =======
2018-06-03 15:18 - 2018-06-03 15:18 - 007649280 _____ () C:\Program Files\GUT362D.tmp
2018-02-12 15:54 - 2018-02-12 15:54 - 007649280 _____ () C:\Program Files\GUT928F.tmp
2011-03-16 16:24 - 2012-04-24 09:05 - 000001849 _____ () C:\Users\Lucinka\AppData\Roaming\GhostObjGAFix.xml
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\AtStart.txt
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\DSwitch.txt
2009-12-23 16:59 - 2009-12-23 16:59 - 000000095 _____ () C:\Users\Lucinka\AppData\Local\fusioncache.dat
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\QSwitch.txt
2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{84B6C474-2FFF-4C62-A43C-0B7B3012F464}
2016-06-28 05:11 - 2016-06-28 05:11 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{AD27140C-0996-42D4-B0FE-F078ADE76FA0}
2018-11-22 23:05 - 2018-11-22 23:05 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{E32DFEF3-4145-446E-BDC9-CC07E51FE517}
2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{F7C8B676-2569-4715-9309-23D33FB681CD}
Some files in TEMP:
====================
2015-02-01 11:37 - 2015-02-01 11:37 - 038624400 _____ (Adobe Systems Incorporated) C:\Users\Lucinka\AppData\Local\Temp\AdbeRdr11000_cs_CZ.exe
2011-01-16 13:22 - 2011-01-16 13:22 - 000005120 _____ (ALWIL Software) C:\Users\Lucinka\AppData\Local\Temp\aswV5Hlp.dll
2012-02-20 21:34 - 2012-10-02 05:30 - 000987080 _____ (McAfee, Inc.) C:\Users\Lucinka\AppData\Local\Temp\contentDATs.exe
2011-01-30 12:51 - 2009-04-02 16:07 - 000110592 ____R (Huawei Technologies Co., Ltd.) C:\Users\Lucinka\AppData\Local\Temp\DataCard_Setup.exe
2010-02-25 06:09 - 2010-02-25 06:09 - 001955784 _____ (Adobe Systems Incorporated) C:\Users\Lucinka\AppData\Local\Temp\FlashPlayerUpdate.exe
2010-08-31 19:48 - 2010-08-31 19:48 - 002826192 _____ (Adobe Systems, Inc.) C:\Users\Lucinka\AppData\Local\Temp\FlashPlayerUpdate01.exe
2009-11-29 17:38 - 2009-11-29 17:38 - 000559280 _____ () C:\Users\Lucinka\AppData\Local\Temp\GoogleChromeInstaller.exe
2009-11-29 17:15 - 2009-11-29 17:15 - 000200816 _____ (Google Inc.) C:\Users\Lucinka\AppData\Local\Temp\GoogleToolbarInstaller.exe
2009-11-25 18:28 - 2008-01-14 23:28 - 000069632 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\HPQSi.exe
2010-04-28 18:34 - 2010-04-28 18:34 - 000001536 _____ () C:\Users\Lucinka\AppData\Local\Temp\NEventMessages.dll
2011-01-30 12:51 - 2009-03-18 11:46 - 000007168 ____R () C:\Users\Lucinka\AppData\Local\Temp\ResetDevice.exe
2012-06-27 14:34 - 2012-05-04 01:24 - 000031616 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\Resource.exe
2010-09-17 05:49 - 2010-09-17 05:49 - 000426552 _____ (Google Inc.) C:\Users\Lucinka\AppData\Local\Temp\SearchWithGoogleUpdate.exe
2012-02-05 17:37 - 2013-01-29 18:35 - 003787456 _____ (McAfee, Inc.) C:\Users\Lucinka\AppData\Local\Temp\SecurityScan_Release.exe
2010-04-03 07:04 - 2010-04-03 07:04 - 021705696 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp47326.exe
2010-04-21 14:55 - 2010-04-21 14:56 - 022610224 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp48071.exe
2010-12-18 08:28 - 2010-12-18 08:29 - 035845112 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp50843.exe.exe
2012-06-27 14:32 - 2012-06-27 14:33 - 048868760 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp54620.exe
2013-04-14 09:42 - 2013-04-14 09:44 - 041580520 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp58915.exe
2014-08-18 23:00 - 2014-08-18 23:00 - 044799704 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp64126.exe
2015-02-01 11:36 - 2016-11-29 21:32 - 004696960 _____ (PS Media s.r.o.) C:\Users\Lucinka\AppData\Local\Temp\ssins.exe
2012-06-27 14:33 - 2013-11-04 19:15 - 000123192 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\UninstallHPSA.exe
2010-12-18 08:29 - 2011-09-09 16:07 - 000449592 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\UninstallHPTCA.exe
2014-06-17 14:36 - 2014-06-17 14:36 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\Temp\v2tdkc0p.dll
2011-06-10 14:01 - 2011-06-10 14:01 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\Temp\{AC584489-8367-46D9-B84F-39CE6B3A16C1}-chrome_installer.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\dllhost.exe => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2019-02-13 15:05
==================== End of FRST.txt ============================
Ran by Lucinka (administrator) on HP (02-03-2019 21:59:19)
Running from C:\Users\Lucinka\Downloads
Loaded Profiles: Lucinka (Available Profiles: Lucinka)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "C:\Users\Lucinka\AppData\Roaming\Seznam Browser\Seznam.cz.exe"-surl="%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Windows\System32\hpservice.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(Teruten) [File not signed] C:\Windows\System32\FsUsbExService.Exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(PDF Complete -> PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
(PS Media s.r.o. -> PS Media s.r.o.) C:\Windows\System32\ssins.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Crawler Group, LLC -> Crawler Group, LLC) C:\Program Files\Spyware Terminator\st_rsser.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Nokia) [File not signed] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Crawler Group, LLC -> Crawler Group, LLC) C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
(Crawler Group, LLC -> Crawler Group, LLC) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\aswidsagent.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company -> ) C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [288312 2009-07-27] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-08-25] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-06-18] (PDF Complete -> PDF Complete Inc)
HKLM\...\Run: [WirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-30] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-08-04] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [SoundMAX] => C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [3866624 2009-05-18] (Analog Devices, Inc.) [File not signed]
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG -> Nero AG)
HKLM\...\Run: [NetFxUpdate_v1.1.4322] => C:\Windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe [106496 2004-08-10] (Microsoft) [File not signed]
HKLM\...\Run: [NokiaMServer] => C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles
HKLM\...\Run: [NokiaMusic FastStart] => C:\Program Files\Nokia\Nokia Music\NokiaMusic.exe [2331936 2009-07-22] (Nokia -> Nokia)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
HKLM\...\Run: [NPSStartup] => [X]
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [5349128 2017-03-16] (Crawler Group, LLC -> Crawler Group, LLC)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [5585664 2017-03-16] (Crawler Group, LLC -> Crawler Group, LLC)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [221576 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [HPADVISOR] => C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1668664 2009-07-16] (Hewlett-Packard Company -> Hewlett-Packard)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [LightScribe Control Panel] => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-06-17] (Hewlett-Packard Company) [File not signed]
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [IncrediMail] => C:\Program Files\IncrediMail\bin\IncMail.exe /c
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [AutoStartNPSAgent] => C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [102400 2009-04-02] (Samsung Electronics Co., Ltd.) [File not signed]
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [Facebook Update] => C:\Users\Lucinka\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook, Inc. -> Facebook Inc.)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30872168 2014-12-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\...\MountPoints2: {e32a091e-2c66-11e0-ba95-00247ef7aec9} - D:\AutoRun.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files\Common Files\LightScribe\LSRunOnce.exe [2009-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\71.0.1037.98\Installer\chrmstp.exe [2019-01-16] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\72.0.3626.119\Installer\chrmstp.exe [2019-02-26] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{07AA0886-CC8D-4e19-A410-1C75AF686E62}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{33c86cd6-705f-4ba1-9adb-67070b837775}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2009-07-30] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{edd749de-2ef1-4a80-98d1-81f20e6df58e}] -> C:\Windows\System32\l2nacp.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
BootExecute: autocheck autochk * C:\PROGRA~2\SPYWAR~1\st_rsdel.exe "\??\C:\ProgramData\Spyware Terminator\st_rsdel.dat"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{418BB993-84E9-4BFB-831F-6F9E0F9E5422}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{FB22F6A6-3CB5-49E5-8BD1-C7C7F538D972}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_CZ&c=92&bd=all&pf=cmnb
HKU\S-1-5-21-2854377482-2471292144-1422266838-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.seznam.cz/
hxxp://www.seznam.cz/
URLSearchHook: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 - (No Name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL No File
SearchScopes: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredimail.com/?search={searchTerms}&loc=search_box_im2_test_v2
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files\Spyware Terminator\STInternetGuard.dll [2015-07-28] (Crawler Group, LLC -> Crawler Group, LLC)
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation -> Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies SA -> Skype Technologies S.A.)
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2854377482-2471292144-1422266838-1001 -> No Name - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - No File
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies SA -> Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Software Sarl -> Skype Technologies)
FireFox:
========
FF DefaultProfile: fs479jo3.default-1546575944067
FF ProfilePath: C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\fs479jo3.default-1546575944067 [2019-03-02]
FF Extension: (Avast Online Security) - C:\Users\Lucinka\AppData\Roaming\Mozilla\Firefox\Profiles\fs479jo3.default-1546575944067\Extensions\wrc@avast.com.xpi [2018-07-17]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-12] (Adobe Systems Incorporated -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2854377482-2471292144-1422266838-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Lucinka\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl -> Skype Limited)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://mystart.incredimail.com/"
CHR Profile: C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default [2019-03-02]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-03-02]
CHR Extension: (Procházení pomocí kurzoru) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fklpgenihifpccgiifchnihilipmbffg [2018-09-03]
CHR Extension: (Skype) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-09-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-03]
CHR Extension: (Chrome Media Router) - C:\Users\Lucinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-02]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2011-10-10]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AEADIFilters; C:\windows\system32\AEADISRV.EXE [90112 2008-07-15] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-07-27] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R2 AMD External Events Utility; C:\windows\system32\atiesrxx.exe [176128 2009-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [5458712 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-07-14] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [309480 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-07-14] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\71.0.1037.98\elevation_service.exe [390552 2019-01-09] (AVAST Software s.r.o. -> AVAST Software)
R2 FsUsbExService; C:\windows\system32\FsUsbExService.Exe [233472 2009-03-31] (Teruten) [File not signed]
S2 gupdate1ca711254f1434f; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-02] (Google Inc -> Google Inc.)
R2 HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-06-17] (Hewlett-Packard Company) [File not signed]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe [235696 2015-07-31] (McAfee, Inc. -> McAfee, Inc.)
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [635416 2009-06-18] (PDF Complete -> PDF Complete Inc)
S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [637952 2009-06-02] (Nokia.) [File not signed]
R2 ssinstall; C:\windows\System32\ssins.exe [4696960 2016-11-29] (PS Media s.r.o. -> PS Media s.r.o.)
R2 ST2012_Svc; C:\Program Files\Spyware Terminator\st_rsser.exe [2133768 2017-03-16] (Crawler Group, LLC -> Crawler Group, LLC)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 yksvc; C:\windows\System32\yk62x86.dll [282624 2009-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Marvell)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 5U876UVC; C:\windows\System32\DRIVERS\5U876.sys [118656 2009-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
R3 Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [33848 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)
R3 ADIHdAudAddService; C:\windows\System32\drivers\ADIHdAud.sys [381440 2009-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R3 AgereSoftModem; C:\windows\System32\DRIVERS\AGRSM.sys [1161664 2009-07-27] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [34488 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [171128 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [188784 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [158096 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\windows\System32\drivers\aswblog.sys [255224 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [51128 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\windows\System32\drivers\aswHdsKe.sys [188712 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [40688 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [139296 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [100984 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [72800 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [785584 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\windows\System32\drivers\aswSP.sys [401632 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\windows\System32\drivers\aswStm.sys [162632 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [310200 2019-02-20] (AVAST Software s.r.o. -> AVAST Software)
R3 atikmdag; C:\windows\System32\DRIVERS\atikmdag.sys [4994048 2009-08-04] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 BCM43XX; C:\windows\System32\DRIVERS\bcmwl6.sys [2506232 2009-11-25] (Broadcom Corporation -> Broadcom Corporation)
S3 btwaudio; C:\windows\System32\drivers\btwaudio.sys [86056 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwavdt; C:\windows\System32\DRIVERS\btwavdt.sys [108072 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwl2cap; C:\windows\System32\DRIVERS\btwl2cap.sys [29472 2009-04-08] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwrchid; C:\windows\System32\DRIVERS\btwrchid.sys [18344 2009-07-01] (Broadcom Corporation -> Broadcom Corporation.)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [198656 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 FsUsbExDisk; C:\windows\system32\FsUsbExDisk.SYS [36608 2009-03-31] () [File not signed]
R0 hpdskflt; C:\windows\System32\DRIVERS\hpdskflt.sys [25656 2009-07-08] (Hewlett-Packard Company -> Hewlett-Packard)
R3 HpqKbFiltr; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [15872 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
S3 Huawei; C:\windows\System32\DRIVERS\ewdcsc.sys [23424 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Tech. Co., Ltd.)
S3 hwdatacard; C:\windows\System32\DRIVERS\ewusbmdm.sys [102912 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusbdev; C:\windows\System32\DRIVERS\ewusbdev.sys [101120 2009-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 k750bus; C:\windows\System32\DRIVERS\k750bus.sys [55216 2005-02-11] (Microsoft Windows Hardware Compatibility Publisher -> MCCI)
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc. -> McAfee, Inc.)
S3 nmwcd; C:\windows\System32\drivers\ccdcmb.sys [17664 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbo.sys [22016 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfd.sys [18816 2008-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 Ser2plx86; C:\windows\System32\DRIVERS\ser2pl.sys [132608 2012-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
R1 sp_rsdrv2; C:\windows\system32\drivers\sp_rsdrv2.sys [32768 2011-06-21] () [File not signed]
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerflt.sys [7808 2009-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [313856 2009-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Marvell)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-03-02 21:57 - 2019-03-02 21:59 - 000069589 _____ C:\Users\Lucinka\Downloads\Addition.txt
2019-03-02 21:55 - 2019-03-02 22:00 - 000027953 _____ C:\Users\Lucinka\Downloads\FRST.txt
2019-03-02 21:55 - 2019-03-02 21:59 - 000000000 ____D C:\FRST
2019-03-02 21:55 - 2019-03-02 21:55 - 001793024 _____ (Farbar) C:\Users\Lucinka\Downloads\FRST (2).exe
2019-03-02 21:54 - 2019-03-02 21:55 - 001793024 _____ (Farbar) C:\Users\Lucinka\Downloads\FRST (1).exe
2019-03-02 21:51 - 2019-03-02 21:51 - 001793024 _____ (Farbar) C:\Users\Lucinka\Downloads\FRST.exe
2019-02-20 15:07 - 2019-02-27 14:07 - 000000000 ____D C:\Users\Lucinka\AppData\Roaming\Seznam Browser
2019-02-20 07:05 - 2019-02-20 07:05 - 000188712 _____ (AVAST Software) C:\windows\system32\Drivers\aswHdsKe.sys
2019-02-20 07:04 - 2019-02-20 07:04 - 000047720 _____ () C:\windows\system32\Drivers\staport.sys
2019-02-20 07:03 - 2019-02-20 07:02 - 000310664 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2019-02-19 13:09 - 2019-02-19 13:10 - 000143272 _____ C:\windows\Minidump\021919-23805-01.dmp
2019-02-12 13:07 - 2019-02-12 13:07 - 000143272 _____ C:\windows\Minidump\021219-21777-01.dmp
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-03-02 21:55 - 2009-07-14 03:37 - 000000000 ____D C:\windows\tracing
2019-03-02 21:54 - 2009-07-14 05:34 - 000023024 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-02 21:54 - 2009-07-14 05:34 - 000023024 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-02 21:51 - 2016-12-31 10:04 - 000000000 ____D C:\Users\Lucinka\AppData\LocalLow\Mozilla
2019-03-02 21:28 - 2009-11-29 17:15 - 000000000 ____D C:\Users\Lucinka\AppData\Roaming\Skype
2019-03-02 21:23 - 2018-07-14 07:51 - 000000000 ____D C:\Users\Lucinka\AppData\Local\AVAST Software
2019-03-02 21:21 - 2016-05-31 09:44 - 000065536 _____ C:\windows\system32\Ikeext.etl
2019-03-02 21:21 - 2011-10-20 11:01 - 000000968 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001Core.job
2019-03-02 21:21 - 2009-07-14 05:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-03-02 09:11 - 2011-10-20 11:01 - 000000990 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2854377482-2471292144-1422266838-1001UA.job
2019-02-28 08:57 - 2012-08-05 12:01 - 000000000 ____D C:\ProgramData\Spyware Terminator
2019-02-26 09:42 - 2009-11-29 17:38 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-26 09:42 - 2009-11-29 17:38 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-02-24 07:10 - 2009-09-20 08:18 - 000000000 ____D C:\ProgramData\PDFC
2019-02-20 07:06 - 2009-11-28 15:07 - 000401632 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2019-02-20 07:02 - 2019-01-16 14:04 - 000188784 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsdriver.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000255224 _____ (AVAST Software) C:\windows\system32\Drivers\aswblog.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000158096 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsh.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000051128 _____ (AVAST Software) C:\windows\system32\Drivers\aswbuniv.sys
2019-02-20 07:02 - 2019-01-16 14:03 - 000034488 _____ (AVAST Software) C:\windows\system32\Drivers\aswArDisk.sys
2019-02-20 07:02 - 2018-10-24 14:39 - 000040688 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2019-02-20 07:02 - 2018-06-03 20:19 - 000171128 _____ (AVAST Software) C:\windows\system32\Drivers\aswArPot.sys
2019-02-20 07:02 - 2014-12-13 09:55 - 000162632 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2019-02-20 07:02 - 2013-05-25 16:31 - 000310200 _____ (AVAST Software) C:\windows\system32\Drivers\aswVmm.sys
2019-02-20 07:02 - 2013-05-25 16:31 - 000072800 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2019-02-20 07:02 - 2012-08-01 07:25 - 000100984 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2019-02-20 07:02 - 2012-01-03 23:17 - 000785584 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2019-02-20 07:02 - 2009-11-28 15:07 - 000139296 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2019-02-19 13:09 - 2011-09-09 22:26 - 365968686 _____ C:\windows\MEMORY.DMP
2019-02-19 13:09 - 2011-09-09 22:26 - 000000000 ____D C:\windows\Minidump
2019-02-12 18:31 - 2012-08-12 14:28 - 000842240 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2019-02-12 18:31 - 2012-02-05 17:46 - 000175104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2019-02-12 18:31 - 2009-09-20 08:18 - 000000000 ____D C:\windows\system32\Macromed
==================== Files in the root of some directories =======
2018-06-03 15:18 - 2018-06-03 15:18 - 007649280 _____ () C:\Program Files\GUT362D.tmp
2018-02-12 15:54 - 2018-02-12 15:54 - 007649280 _____ () C:\Program Files\GUT928F.tmp
2011-03-16 16:24 - 2012-04-24 09:05 - 000001849 _____ () C:\Users\Lucinka\AppData\Roaming\GhostObjGAFix.xml
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\AtStart.txt
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\DSwitch.txt
2009-12-23 16:59 - 2009-12-23 16:59 - 000000095 _____ () C:\Users\Lucinka\AppData\Local\fusioncache.dat
2009-11-25 18:34 - 2009-11-25 18:34 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\QSwitch.txt
2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{84B6C474-2FFF-4C62-A43C-0B7B3012F464}
2016-06-28 05:11 - 2016-06-28 05:11 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{AD27140C-0996-42D4-B0FE-F078ADE76FA0}
2018-11-22 23:05 - 2018-11-22 23:05 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{E32DFEF3-4145-446E-BDC9-CC07E51FE517}
2018-09-24 16:03 - 2018-09-24 16:03 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\{F7C8B676-2569-4715-9309-23D33FB681CD}
Some files in TEMP:
====================
2015-02-01 11:37 - 2015-02-01 11:37 - 038624400 _____ (Adobe Systems Incorporated) C:\Users\Lucinka\AppData\Local\Temp\AdbeRdr11000_cs_CZ.exe
2011-01-16 13:22 - 2011-01-16 13:22 - 000005120 _____ (ALWIL Software) C:\Users\Lucinka\AppData\Local\Temp\aswV5Hlp.dll
2012-02-20 21:34 - 2012-10-02 05:30 - 000987080 _____ (McAfee, Inc.) C:\Users\Lucinka\AppData\Local\Temp\contentDATs.exe
2011-01-30 12:51 - 2009-04-02 16:07 - 000110592 ____R (Huawei Technologies Co., Ltd.) C:\Users\Lucinka\AppData\Local\Temp\DataCard_Setup.exe
2010-02-25 06:09 - 2010-02-25 06:09 - 001955784 _____ (Adobe Systems Incorporated) C:\Users\Lucinka\AppData\Local\Temp\FlashPlayerUpdate.exe
2010-08-31 19:48 - 2010-08-31 19:48 - 002826192 _____ (Adobe Systems, Inc.) C:\Users\Lucinka\AppData\Local\Temp\FlashPlayerUpdate01.exe
2009-11-29 17:38 - 2009-11-29 17:38 - 000559280 _____ () C:\Users\Lucinka\AppData\Local\Temp\GoogleChromeInstaller.exe
2009-11-29 17:15 - 2009-11-29 17:15 - 000200816 _____ (Google Inc.) C:\Users\Lucinka\AppData\Local\Temp\GoogleToolbarInstaller.exe
2009-11-25 18:28 - 2008-01-14 23:28 - 000069632 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\HPQSi.exe
2010-04-28 18:34 - 2010-04-28 18:34 - 000001536 _____ () C:\Users\Lucinka\AppData\Local\Temp\NEventMessages.dll
2011-01-30 12:51 - 2009-03-18 11:46 - 000007168 ____R () C:\Users\Lucinka\AppData\Local\Temp\ResetDevice.exe
2012-06-27 14:34 - 2012-05-04 01:24 - 000031616 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\Resource.exe
2010-09-17 05:49 - 2010-09-17 05:49 - 000426552 _____ (Google Inc.) C:\Users\Lucinka\AppData\Local\Temp\SearchWithGoogleUpdate.exe
2012-02-05 17:37 - 2013-01-29 18:35 - 003787456 _____ (McAfee, Inc.) C:\Users\Lucinka\AppData\Local\Temp\SecurityScan_Release.exe
2010-04-03 07:04 - 2010-04-03 07:04 - 021705696 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp47326.exe
2010-04-21 14:55 - 2010-04-21 14:56 - 022610224 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp48071.exe
2010-12-18 08:28 - 2010-12-18 08:29 - 035845112 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp50843.exe.exe
2012-06-27 14:32 - 2012-06-27 14:33 - 048868760 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp54620.exe
2013-04-14 09:42 - 2013-04-14 09:44 - 041580520 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp58915.exe
2014-08-18 23:00 - 2014-08-18 23:00 - 044799704 _____ (Hewlett-Packard ) C:\Users\Lucinka\AppData\Local\Temp\sp64126.exe
2015-02-01 11:36 - 2016-11-29 21:32 - 004696960 _____ (PS Media s.r.o.) C:\Users\Lucinka\AppData\Local\Temp\ssins.exe
2012-06-27 14:33 - 2013-11-04 19:15 - 000123192 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\UninstallHPSA.exe
2010-12-18 08:29 - 2011-09-09 16:07 - 000449592 _____ (Hewlett-Packard Company) C:\Users\Lucinka\AppData\Local\Temp\UninstallHPTCA.exe
2014-06-17 14:36 - 2014-06-17 14:36 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\Temp\v2tdkc0p.dll
2011-06-10 14:01 - 2011-06-10 14:01 - 000000000 _____ () C:\Users\Lucinka\AppData\Local\Temp\{AC584489-8367-46D9-B84F-39CE6B3A16C1}-chrome_installer.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\dllhost.exe => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2019-02-13 15:05
==================== End of FRST.txt ============================