Zdravim v posledni dobe se mi zacal pocitac sam os sebe vypinat a zacal taky zamrzat. A jeste wifi ma signal 1 carku i kdyz router je cca 2 metry od PC.
-------------------------------------------------------------------------------------------------------------------------------------------------------
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-11-2014 01
Ran by hp (administrator) on HP-HP on 22-11-2014 21:32:15
Running from C:\Users\hp\Desktop
Loaded Profile: hp (Available profiles: hp & Sabina & Sandra & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Blue Coat Systems, Inc.) C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Roxio) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectify.exe
(Connectify) C:\Program Files (x86)\Connectify\DispatchUI.exe
(Google Inc.) C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Gridspot) C:\Program Files (x86)\Gridspot\Gridspot.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(VTech) C:\Program Files (x86)\VTech\Community\System\PCTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\hp\Desktop\FRSTLauncher(1).exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [3755296 2013-12-23] (Connectify)
HKLM\...\Run: [Connectify Dispatch] => C:\Program Files (x86)\Connectify\DispatchUI.exe [1685280 2013-12-23] (Connectify)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [658424 2011-05-06] (PDF Complete Inc)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-05-30] (Apple Inc.)
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103896 2011-12-12] (PC Tools)
HKLM-x32\...\Run: [Gridspot] => C:\Program Files (x86)\Gridspot\Gridspot.exe [525168 2012-03-20] (Gridspot)
HKLM-x32\...\Run: [MyPublicWiFi] => C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe [2002944 2011-12-22] ()
HKLM-x32\...\Run: [CommunityTray] => C:\Program Files (x86)\VTech\Community\System\Startup.exe [11776 2008-03-15] (VTech)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064 2014-11-20] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Run: [Google Update] => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-03-30] (Google Inc.)
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: J - J:\autorun.exe
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: {7aad374a-d8b4-11e0-883b-806e6f6e6963} - E:\autorun.exe /autorun
HKU\TS_KeyLodaded\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Guest\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\TS_KeyLodaded\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Guest\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\TS_KeyLodaded\...\Run: [uTorrent] => C:\Users\Guest\AppData\Roaming\uTorrent\uTorrent.exe [1418832 2014-09-13] (BitTorrent Inc.)
HKU\TS_KeyLodaded\...\Run: [{79BF4901-1EC4-4726-B3C2-A7859706C6E7}] => C:\Users\Guest\Downloads\LeagueofLegends_NA_Installer_05_07_13.exe [32229024 2014-08-24] (Riot Games)
HKU\S-1-5-18\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-18\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:8555;https=127.0.0.1:8555
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
HKU\TS_KeyLodaded\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_s ... 3&tsp=5251
HKU\TS_KeyLodaded\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDF
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {3F278E8A-B758-4500-9313-D8816127BE5C} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {4078FCEF-4277-4536-9AF4-E43B8C9CD31F} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {469F2D02-4102-462B-BC70-05874251F5C6} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {8B271665-4F14-423A-9407-4EB479FFE068} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {A746493B-761D-48B1-A411-3EA766F01B98} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {AD1D4CB3-4B37-41B1-A3FE-EC2443002EE1} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {E7F7AF4D-EF6E-4026-BE17-436B91CD2DB3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {F3395D6F-8E8F-485A-A71D-5A84B9819E1B} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTe ... 3&tsp=5251
SearchScopes: HKU\TS_KeyLodaded -> {2DD496D4-B21F-4B9E-9D45-80B9312FE9E4} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF
SearchScopes: HKU\TS_KeyLodaded -> {57892B23-E393-474C-987A-97BD8C62A4B5} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {5E129CDA-ABEB-48C5-8BCF-355EEA567284} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {5F744618-9107-4298-B619-5D4923892A5D} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKU\TS_KeyLodaded -> {84699356-C568-40CE-A470-5826CE3FC720} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {98EBCEF3-DBEE-46BF-BAE4-52BDF1FE601A} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {AE2D1DB3-E531-41BB-948A-D669DE7AC53C} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://uk.search.yahoo.com/search?p={se ... ype=HPDTDF
SearchScopes: HKU\TS_KeyLodaded -> {C5582402-4283-4A58-94CF-DBA7EDE77AF5} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {CBA77424-721E-46F1-8D4D-2F37D5516DFC} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {D2831001-D38E-40BF-B263-9CAFAC74383E} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://en.wikipedia.org/wiki/Special:Se ... earchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192
FF NewTab: hxxp://www.google.com/
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1214154.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll ()
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\hp\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\hp\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @talk.google.com/O1DPlugin -> C:\Users\hp\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @tools.google.com/Google Update;version=3 -> C:\Users\hp\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @tools.google.com/Google Update;version=9 -> C:\Users\hp\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\hp\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\TS_KeyLodaded: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Guest\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\hp\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\hp\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\badoo.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\firmycz.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\mapycz.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\zbocz.xml
FF Extension: Seznam lištička - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-06-08]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com [2014-11-22]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-05-19]
FF HKU\.DEFAULT\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF HKU\TS_KeyLodaded\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
Chrome:
=======
CHR HomePage: Default ->
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-21]
CHR Extension: (Google Docs) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-21]
CHR Extension: (Google Drive) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-21]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-31]
CHR Extension: (YouTube) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-21]
CHR Extension: (Google Search) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-21]
CHR Extension: (Google Sheets) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-21]
CHR Extension: (Google Wallet) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (Gmail) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-21]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-20]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [538000 2012-06-10] (Protection Technology)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-20] (AVAST Software)
R2 bckwfs; C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe [2647256 2014-01-24] (Blue Coat Systems, Inc.)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2013-12-23] (Connectify) [File not signed]
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227936 2013-11-16] (WildTangent)
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [578264 2011-12-22] (Pandora.TV)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2011-12-12] (PC Tools)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-05-06] (PDF Complete Inc)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2013-01-12] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [2687592 2012-06-10] (Protection Technology)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-20] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-20] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-20] ()
R2 bckd; C:\Windows\System32\drivers\bckd.sys [126168 2014-01-24] (Blue Coat Systems, Inc.)
R1 cnnctfy3; C:\Windows\System32\DRIVERS\cnnctfy3.sys [35352 2013-12-25] (Connectify)
R2 GridspotVMDriver; C:\Program Files (x86)\Gridspot\VMRuntime\VBoxDrv.sys [224048 2011-11-04] (Oracle Corporation)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-08-25] ()
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-06-10] (Duplex Secure Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 21:32 - 2014-11-22 21:32 - 00025923 _____ () C:\Users\hp\Desktop\FRST.txt
2014-11-22 21:32 - 2014-11-22 21:32 - 00000000 ____D () C:\FRST
2014-11-22 21:31 - 2014-11-22 21:31 - 00029696 _____ () C:\Users\hp\AppData\Local\MSGBOX.EXE
2014-11-22 21:31 - 2014-11-22 21:31 - 00015327 _____ () C:\Users\hp\Desktop\LM.bat
2014-11-22 21:30 - 2014-11-22 21:30 - 00112640 _____ (forum.viry.cz) C:\Users\hp\Downloads\FRSTLauncher.exe
2014-11-22 21:30 - 2014-11-22 21:30 - 00112640 _____ (forum.viry.cz) C:\Users\hp\Desktop\FRSTLauncher(1).exe
2014-11-22 21:29 - 2014-11-22 21:29 - 02118144 _____ (Farbar) C:\Users\hp\Desktop\FRST64.exe
2014-11-22 17:27 - 2014-11-22 17:27 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\MMFApplications
2014-11-22 17:26 - 2014-11-22 17:26 - 00000809 _____ () C:\Users\Sabina\Desktop\Five Nights at Freddy's.lnk
2014-11-22 17:26 - 2014-11-22 17:26 - 00000000 ____D () C:\Users\Sabina\Desktop\Five Nights at Freddy's
2014-11-22 17:26 - 2014-11-22 17:26 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Five Nights at Freddy's
2014-11-22 17:15 - 2014-11-22 17:24 - 229915398 ____R () C:\Users\Sabina\Downloads\Five_Nights_at_Freddys.exe
2014-11-22 17:14 - 2014-11-22 17:14 - 00000853 _____ () C:\Users\Sabina\Desktop\µTorrent.lnk
2014-11-22 17:14 - 2014-11-22 17:14 - 00000833 _____ () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-11-22 17:14 - 2014-11-22 17:14 - 00000000 ____D () C:\Users\Sabina\Downloads\F10RIDA
2014-11-22 17:13 - 2014-11-22 21:15 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\uTorrent
2014-11-22 17:13 - 2014-11-22 17:13 - 00000000 ____D () C:\ProgramData\APN
2014-11-22 17:11 - 2014-11-22 17:11 - 01720912 _____ (BitTorrent Inc.) C:\Users\Sabina\Downloads\uTorrent.exe
2014-11-22 17:07 - 2014-11-22 17:07 - 00911360 _____ (Megarapid.cz) C:\Users\Sabina\Downloads\MRDownloader.exe
2014-11-22 13:20 - 2014-11-22 13:20 - 00274587 _____ () C:\Users\Sandra\Downloads\Transformice.exe
2014-11-20 13:35 - 2014-11-20 13:35 - 00107368 _____ () C:\Windows\PFRO.log
2014-11-20 12:11 - 2014-11-20 12:11 - 00001926 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-11-20 12:08 - 2014-11-20 12:08 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-11-20 12:08 - 2014-11-20 12:08 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-11-19 15:49 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 15:49 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 15:49 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 15:49 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 19:39 - 2014-11-18 19:39 - 05008056 _____ (Adobe Systems Inc.) C:\Users\Sabina\Downloads\Shockwave_Installer_Slim.exe
2014-11-18 16:58 - 2014-11-18 16:58 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\WildTangent
2014-11-16 17:26 - 2014-11-16 17:26 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\WildTangent
2014-11-16 17:26 - 2014-11-16 17:26 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-15 22:34 - 2014-11-15 22:34 - 04159264 _____ (Mindspark Interactive Network) C:\Users\Sandra\Downloads\EliteUnzipSetup.EliteUnzip_aa.gpdjcoccminpbgmiffhifdcnelpojeeb.ch.exe
2014-11-15 12:25 - 2014-11-15 12:25 - 00000000 __SHD () C:\Users\Sandra\AppData\Local\EmieBrowserModeList
2014-11-14 22:42 - 2014-11-14 22:49 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\vlc
2014-11-14 22:42 - 2014-11-14 22:42 - 00406303 _____ () C:\Users\Sabina\Downloads\Minecraft-1.7.5-Cracked-Launcher-[AUTO-UPDATES]-by-Racad- (1).zip
2014-11-14 22:41 - 2014-11-14 22:41 - 00406303 _____ () C:\Users\Sabina\Downloads\Minecraft-1.7.5-Cracked-Launcher-[AUTO-UPDATES]-by-Racad-.zip
2014-11-14 17:21 - 2014-11-14 17:21 - 00001350 _____ () C:\Users\Sabina\Desktop\ROBLOX Player.lnk
2014-11-14 17:21 - 2014-11-14 17:21 - 00001169 _____ () C:\Users\Sabina\Desktop\ROBLOX Studio.lnk
2014-11-14 17:21 - 2014-11-14 17:21 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2014-11-14 17:21 - 2014-11-14 17:21 - 00000000 ____D () C:\Users\Sabina\AppData\Local\Roblox
2014-11-14 17:20 - 2014-11-14 17:21 - 00639344 _____ (ROBLOX Corporation) C:\Users\Sabina\Downloads\RobloxPlayerLauncher.exe
2014-11-14 17:11 - 2014-11-14 17:20 - 229919200 _____ () C:\Users\Sabina\Downloads\FiveNightsDEMO_INSTALL.exe
2014-11-13 20:45 - 2014-11-13 20:45 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-13 19:44 - 2014-11-13 19:44 - 00000000 __SHD () C:\Users\Sabina\AppData\Local\EmieBrowserModeList
2014-11-12 12:58 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 12:58 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 12:58 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 12:58 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 12:58 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 12:58 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 12:58 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 12:58 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 12:58 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 12:58 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 12:58 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 12:58 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 12:58 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 12:58 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 12:58 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 12:58 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 12:58 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 12:58 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 12:58 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 12:58 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 12:58 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 12:58 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 12:58 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 12:58 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 12:58 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 12:58 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 12:58 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 12:58 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 12:58 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 12:58 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 12:58 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 12:58 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 12:58 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 12:58 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 12:58 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 12:58 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 12:58 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 12:58 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 12:58 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 12:58 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 12:58 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 12:58 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 12:58 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 12:58 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 12:58 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 12:58 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 12:58 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 12:58 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 12:58 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 12:58 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 12:58 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 12:58 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 12:58 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 12:58 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 12:58 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 12:58 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 12:58 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-12 12:58 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-12 12:58 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-12 12:58 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 12:58 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 12:58 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 12:58 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 12:58 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 12:58 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 12:58 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 12:58 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 12:58 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 12:58 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 12:58 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 12:58 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 12:58 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 12:58 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 12:58 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 12:58 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 12:58 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 12:58 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 12:58 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 12:58 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 12:58 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 12:58 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 12:57 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 12:57 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 12:57 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 12:57 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 12:57 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 12:57 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-03 11:12 - 2014-11-03 11:12 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-03 08:09 - 2014-11-22 21:12 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job
2014-11-03 08:09 - 2014-11-18 22:07 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job
2014-10-30 15:36 - 2014-10-30 15:36 - 00000222 _____ () C:\Users\Sabina\Desktop\Counter-Strike Nexon Zombies.url
2014-10-30 15:36 - 2014-10-30 15:36 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-30 15:30 - 2014-10-30 15:31 - 00790240 _____ (Shark Labs) C:\Users\Sabina\Downloads\CFSetup360 (1).exe
2014-10-30 15:27 - 2014-10-30 15:27 - 00790240 _____ (Shark Labs) C:\Users\Sabina\Downloads\CFSetup360.exe
2014-10-27 21:45 - 2014-10-27 21:45 - 00000538 _____ () C:\Users\Sabina\Downloads\url (1).htm
2014-10-27 21:43 - 2014-10-27 21:43 - 00000221 _____ () C:\Users\Sabina\Desktop\Grand Theft Auto 2.url
2014-10-27 21:13 - 2014-10-27 21:13 - 00000000 ____D () C:\Users\Sabina\Documents\My Games
2014-10-27 20:51 - 2014-10-27 20:51 - 00000222 _____ () C:\Users\Sabina\Desktop\Goat Simulator.url
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 21:30 - 2012-02-15 19:58 - 00003902 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5476B59C-F8DD-4429-96C2-6BFF815825C1}
2014-11-22 21:30 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-22 21:30 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-22 21:26 - 2012-02-15 19:51 - 01221368 _____ () C:\Windows\WindowsUpdate.log
2014-11-22 21:25 - 2012-07-11 08:29 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-11-22 21:23 - 2014-10-18 22:34 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-22 21:23 - 2013-11-01 20:07 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-11-22 21:23 - 2011-08-25 17:19 - 00000000 ____D () C:\ProgramData\PDFC
2014-11-22 21:22 - 2014-09-23 18:31 - 00010808 _____ () C:\Windows\setupact.log
2014-11-22 21:22 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-22 20:45 - 2014-10-18 22:34 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-22 20:43 - 2012-04-14 03:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-22 19:52 - 2014-09-21 16:55 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Skype
2014-11-22 19:04 - 2014-09-21 16:45 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{F8DFF3C6-CD79-4584-AC22-822C0B72B262}
2014-11-22 18:36 - 2012-12-18 00:19 - 00000000 ____D () C:\Windows\Minidump
2014-11-22 18:35 - 2011-09-06 19:17 - 00287898 ____N () C:\Windows\Minidump\112214-32729-01.dmp
2014-11-22 18:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-22 17:03 - 2013-11-16 19:17 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-11-22 16:16 - 2014-09-21 18:39 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Skype
2014-11-22 13:18 - 2014-09-21 18:39 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Seznam.cz
2014-11-22 12:12 - 2014-09-21 18:38 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{E5128A28-09FA-4B04-B4DE-030771CB111E}
2014-11-22 10:20 - 2012-04-14 11:00 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-11-22 08:05 - 2011-08-25 17:23 - 00000000 ____D () C:\ProgramData\truesuite
2014-11-21 21:56 - 2011-08-25 17:12 - 00000000 ____D () C:\ProgramData\Temp
2014-11-21 19:46 - 2012-04-28 05:06 - 00002104 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-20 13:40 - 2014-09-21 16:44 - 00000906 __RSH () C:\Users\Sabina\ntuser.pol
2014-11-20 13:40 - 2014-09-21 16:44 - 00000000 ____D () C:\Users\Sabina
2014-11-20 12:15 - 2014-09-21 18:38 - 00000906 __RSH () C:\Users\Sandra\ntuser.pol
2014-11-20 12:15 - 2014-09-21 18:38 - 00000000 ____D () C:\Users\Sandra
2014-11-20 12:13 - 2012-04-14 02:51 - 00000632 __RSH () C:\Users\hp\ntuser.pol
2014-11-20 12:13 - 2012-02-15 19:53 - 00000000 ____D () C:\Users\hp
2014-11-20 12:08 - 2014-05-28 21:33 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-11-20 12:08 - 2014-05-28 21:33 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-11-20 12:08 - 2013-07-04 09:29 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-11-20 12:08 - 2013-07-04 09:29 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-11-18 22:13 - 2012-04-15 02:03 - 00000000 ____D () C:\Users\hp\AppData\Roaming\Mozilla
2014-11-18 22:07 - 2014-03-31 07:40 - 00003918 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA
2014-11-18 22:07 - 2014-03-31 07:40 - 00003522 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core
2014-11-15 12:07 - 2009-07-14 06:13 - 00786622 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-15 09:40 - 2012-04-28 05:06 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-15 09:40 - 2012-04-28 05:06 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-13 20:43 - 2012-04-14 03:05 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-13 20:43 - 2012-04-14 03:05 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-13 20:43 - 2011-08-25 17:17 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-13 17:14 - 2014-10-18 15:30 - 00000000 ____D () C:\Users\Sabina\AppData\Local\CrashDumps
2014-11-12 19:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-12 18:07 - 2009-07-14 05:45 - 04970952 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-12 18:05 - 2014-05-18 05:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-12 16:17 - 2012-07-20 11:20 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-12 16:15 - 2013-08-14 23:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 16:07 - 2012-05-19 20:20 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-05 16:05 - 2009-07-14 06:08 - 00032618 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-03 19:32 - 2012-04-14 04:05 - 00000000 ____D () C:\Users\hp\AppData\Roaming\Skype
2014-11-03 11:10 - 2012-10-16 18:23 - 00000000 ____D () C:\Users\hp\AppData\Roaming\.minecraft
2014-10-26 13:09 - 2014-09-21 16:45 - 00000000 ____D () C:\Users\Sabina\AppData\Local\PDFC
Some content of TEMP:
====================
C:\Users\hp\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sabina\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sabina\AppData\Local\Temp\uttF9A1.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-15 09:12
==================== End Of Log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Resetovani
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119555
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Resetovani
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Resetovani
# AdwCleaner v4.101 - Report created 22/11/2014 at 22:19:13
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : hp - HP-HP
# Running from : C:\Users\hp\Desktop\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\Program Files (x86)\PANDORA.TV
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\clbfjfbnelcflpgpklppgplejolacbej
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjpdnoojnohifgekbkmnfbiobhcbedka
Folder Deleted : C:\Users\Sabina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Mindspark
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17420
-\\ Mozilla Firefox v32.0.3 (x86 en-US)
-\\ Google Chrome v39.0.2171.65
[C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&tt=010412_crm&babsrc=SP_crm
[C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&tt=010412_crm&babsrc=SP_crm
*************************
AdwCleaner[R1].txt - [1871 octets] - [22/11/2014 22:16:35]
AdwCleaner[S1].txt - [1808 octets] - [22/11/2014 22:19:13]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1868 octets] ##########
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : hp - HP-HP
# Running from : C:\Users\hp\Desktop\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\Program Files (x86)\PANDORA.TV
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\clbfjfbnelcflpgpklppgplejolacbej
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjpdnoojnohifgekbkmnfbiobhcbedka
Folder Deleted : C:\Users\Sabina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Mindspark
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17420
-\\ Mozilla Firefox v32.0.3 (x86 en-US)
-\\ Google Chrome v39.0.2171.65
[C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&tt=010412_crm&babsrc=SP_crm
[C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&tt=010412_crm&babsrc=SP_crm
*************************
AdwCleaner[R1].txt - [1871 octets] - [22/11/2014 22:16:35]
AdwCleaner[S1].txt - [1808 octets] - [22/11/2014 22:19:13]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1868 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119555
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Resetovani
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Resetovani
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-11-2014 01
Ran by hp (administrator) on HP-HP on 22-11-2014 23:00:21
Running from C:\Users\hp\Desktop
Loaded Profile: hp (Available profiles: hp & Sabina & Sandra & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Blue Coat Systems, Inc.) C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Roxio) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectify.exe
(Connectify) C:\Program Files (x86)\Connectify\DispatchUI.exe
(Google Inc.) C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Gridspot) C:\Program Files (x86)\Gridspot\Gridspot.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(VTech) C:\Program Files (x86)\VTech\Community\System\PCTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Facebook Inc.) C:\Users\hp\AppData\Local\Facebook\Update\FacebookUpdate.exe
(forum.viry.cz) C:\Users\hp\Desktop\FRSTLauncher(1).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [3755296 2013-12-23] (Connectify)
HKLM\...\Run: [Connectify Dispatch] => C:\Program Files (x86)\Connectify\DispatchUI.exe [1685280 2013-12-23] (Connectify)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [658424 2011-05-06] (PDF Complete Inc)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-05-30] (Apple Inc.)
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103896 2011-12-12] (PC Tools)
HKLM-x32\...\Run: [Gridspot] => C:\Program Files (x86)\Gridspot\Gridspot.exe [525168 2012-03-20] (Gridspot)
HKLM-x32\...\Run: [MyPublicWiFi] => C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe [2002944 2011-12-22] ()
HKLM-x32\...\Run: [CommunityTray] => C:\Program Files (x86)\VTech\Community\System\Startup.exe [11776 2008-03-15] (VTech)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064 2014-11-20] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Run: [Google Update] => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-03-30] (Google Inc.)
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: J - J:\autorun.exe
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: {7aad374a-d8b4-11e0-883b-806e6f6e6963} - E:\autorun.exe /autorun
HKU\S-1-5-18\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-18\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:8555;https=127.0.0.1:8555
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {3F278E8A-B758-4500-9313-D8816127BE5C} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {4078FCEF-4277-4536-9AF4-E43B8C9CD31F} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {469F2D02-4102-462B-BC70-05874251F5C6} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {8B271665-4F14-423A-9407-4EB479FFE068} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {A746493B-761D-48B1-A411-3EA766F01B98} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {AD1D4CB3-4B37-41B1-A3FE-EC2443002EE1} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {E7F7AF4D-EF6E-4026-BE17-436B91CD2DB3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {F3395D6F-8E8F-485A-A71D-5A84B9819E1B} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192
FF NewTab: hxxp://www.google.com/
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1214154.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll ()
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\hp\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\hp\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @talk.google.com/O1DPlugin -> C:\Users\hp\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @tools.google.com/Google Update;version=3 -> C:\Users\hp\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @tools.google.com/Google Update;version=9 -> C:\Users\hp\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\hp\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\hp\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\hp\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\badoo.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\firmycz.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\mapycz.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\zbocz.xml
FF Extension: Seznam lištička - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-06-08]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com [2014-11-22]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-05-19]
FF HKU\.DEFAULT\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
Chrome:
=======
CHR HomePage: Default ->
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-21]
CHR Extension: (Google Docs) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-21]
CHR Extension: (Google Drive) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-21]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-31]
CHR Extension: (YouTube) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-21]
CHR Extension: (Google Search) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-21]
CHR Extension: (Google Sheets) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-21]
CHR Extension: (Google Wallet) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (Gmail) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-21]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-20]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [538000 2012-06-10] (Protection Technology)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-20] (AVAST Software)
R2 bckwfs; C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe [2647256 2014-01-24] (Blue Coat Systems, Inc.)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2013-12-23] (Connectify) [File not signed]
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227936 2013-11-16] (WildTangent)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2011-12-12] (PC Tools)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-05-06] (PDF Complete Inc)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2013-01-12] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [2687592 2012-06-10] (Protection Technology)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-20] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-20] ()
R2 bckd; C:\Windows\System32\drivers\bckd.sys [126168 2014-01-24] (Blue Coat Systems, Inc.)
R1 cnnctfy3; C:\Windows\System32\DRIVERS\cnnctfy3.sys [35352 2013-12-25] (Connectify)
R2 GridspotVMDriver; C:\Program Files (x86)\Gridspot\VMRuntime\VBoxDrv.sys [224048 2011-11-04] (Oracle Corporation)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-08-25] ()
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-06-10] (Duplex Secure Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 22:31 - 2014-11-22 22:31 - 00000000 ____D () C:\Users\hp\AppData\Roaming\MMFApplications
2014-11-22 22:27 - 2014-11-22 22:27 - 00000000 ____D () C:\Windows\LastGood
2014-11-22 22:16 - 2014-11-22 22:19 - 00000000 ____D () C:\AdwCleaner
2014-11-22 22:16 - 2014-11-22 22:16 - 02140160 _____ () C:\Users\hp\Desktop\adwcleaner_4.101.exe
2014-11-22 21:33 - 2014-11-22 21:33 - 00051061 _____ () C:\Users\hp\Desktop\FRST2.txt
2014-11-22 21:32 - 2014-11-22 23:00 - 00022508 _____ () C:\Users\hp\Desktop\FRST.txt
2014-11-22 21:32 - 2014-11-22 23:00 - 00000000 ____D () C:\FRST
2014-11-22 21:30 - 2014-11-22 21:30 - 00112640 _____ (forum.viry.cz) C:\Users\hp\Downloads\FRSTLauncher.exe
2014-11-22 21:30 - 2014-11-22 21:30 - 00112640 _____ (forum.viry.cz) C:\Users\hp\Desktop\FRSTLauncher(1).exe
2014-11-22 21:29 - 2014-11-22 21:29 - 02118144 _____ (Farbar) C:\Users\hp\Desktop\FRST64.exe
2014-11-22 17:27 - 2014-11-22 17:27 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\MMFApplications
2014-11-22 17:26 - 2014-11-22 17:26 - 00000809 _____ () C:\Users\Sabina\Desktop\Five Nights at Freddy's.lnk
2014-11-22 17:26 - 2014-11-22 17:26 - 00000000 ____D () C:\Users\Sabina\Desktop\Five Nights at Freddy's
2014-11-22 17:26 - 2014-11-22 17:26 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Five Nights at Freddy's
2014-11-22 17:15 - 2014-11-22 17:24 - 229915398 ____R () C:\Users\Sabina\Downloads\Five_Nights_at_Freddys.exe
2014-11-22 17:14 - 2014-11-22 17:14 - 00000853 _____ () C:\Users\Sabina\Desktop\µTorrent.lnk
2014-11-22 17:14 - 2014-11-22 17:14 - 00000833 _____ () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-11-22 17:14 - 2014-11-22 17:14 - 00000000 ____D () C:\Users\Sabina\Downloads\F10RIDA
2014-11-22 17:13 - 2014-11-22 22:14 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\uTorrent
2014-11-22 17:11 - 2014-11-22 17:11 - 01720912 _____ (BitTorrent Inc.) C:\Users\Sabina\Downloads\uTorrent.exe
2014-11-22 17:07 - 2014-11-22 17:07 - 00911360 _____ (Megarapid.cz) C:\Users\Sabina\Downloads\MRDownloader.exe
2014-11-22 13:20 - 2014-11-22 13:20 - 00274587 _____ () C:\Users\Sandra\Downloads\Transformice.exe
2014-11-20 13:35 - 2014-11-22 22:20 - 00107682 _____ () C:\Windows\PFRO.log
2014-11-20 12:11 - 2014-11-20 12:11 - 00001926 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-11-20 12:08 - 2014-11-20 12:08 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-11-20 12:08 - 2014-11-20 12:08 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-11-19 15:49 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 15:49 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 15:49 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 15:49 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 19:39 - 2014-11-18 19:39 - 05008056 _____ (Adobe Systems Inc.) C:\Users\Sabina\Downloads\Shockwave_Installer_Slim.exe
2014-11-18 16:58 - 2014-11-18 16:58 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\WildTangent
2014-11-16 17:26 - 2014-11-16 17:26 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\WildTangent
2014-11-16 17:26 - 2014-11-16 17:26 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-15 22:34 - 2014-11-15 22:34 - 04159264 _____ (Mindspark Interactive Network) C:\Users\Sandra\Downloads\EliteUnzipSetup.EliteUnzip_aa.gpdjcoccminpbgmiffhifdcnelpojeeb.ch.exe
2014-11-15 12:25 - 2014-11-15 12:25 - 00000000 __SHD () C:\Users\Sandra\AppData\Local\EmieBrowserModeList
2014-11-14 22:42 - 2014-11-14 22:49 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\vlc
2014-11-14 22:42 - 2014-11-14 22:42 - 00406303 _____ () C:\Users\Sabina\Downloads\Minecraft-1.7.5-Cracked-Launcher-[AUTO-UPDATES]-by-Racad- (1).zip
2014-11-14 22:41 - 2014-11-14 22:41 - 00406303 _____ () C:\Users\Sabina\Downloads\Minecraft-1.7.5-Cracked-Launcher-[AUTO-UPDATES]-by-Racad-.zip
2014-11-14 17:21 - 2014-11-14 17:21 - 00001350 _____ () C:\Users\Sabina\Desktop\ROBLOX Player.lnk
2014-11-14 17:21 - 2014-11-14 17:21 - 00001169 _____ () C:\Users\Sabina\Desktop\ROBLOX Studio.lnk
2014-11-14 17:21 - 2014-11-14 17:21 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2014-11-14 17:21 - 2014-11-14 17:21 - 00000000 ____D () C:\Users\Sabina\AppData\Local\Roblox
2014-11-14 17:20 - 2014-11-14 17:21 - 00639344 _____ (ROBLOX Corporation) C:\Users\Sabina\Downloads\RobloxPlayerLauncher.exe
2014-11-14 17:11 - 2014-11-14 17:20 - 229919200 _____ () C:\Users\Sabina\Downloads\FiveNightsDEMO_INSTALL.exe
2014-11-13 20:45 - 2014-11-13 20:45 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-13 19:44 - 2014-11-13 19:44 - 00000000 __SHD () C:\Users\Sabina\AppData\Local\EmieBrowserModeList
2014-11-12 12:58 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 12:58 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 12:58 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 12:58 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 12:58 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 12:58 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 12:58 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 12:58 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 12:58 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 12:58 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 12:58 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 12:58 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 12:58 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 12:58 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 12:58 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 12:58 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 12:58 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 12:58 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 12:58 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 12:58 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 12:58 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 12:58 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 12:58 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 12:58 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 12:58 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 12:58 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 12:58 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 12:58 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 12:58 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 12:58 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 12:58 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 12:58 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 12:58 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 12:58 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 12:58 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 12:58 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 12:58 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 12:58 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 12:58 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 12:58 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 12:58 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 12:58 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 12:58 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 12:58 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 12:58 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 12:58 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 12:58 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 12:58 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 12:58 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 12:58 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 12:58 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 12:58 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 12:58 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 12:58 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 12:58 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 12:58 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 12:58 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-12 12:58 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-12 12:58 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-12 12:58 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 12:58 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 12:58 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 12:58 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 12:58 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 12:58 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 12:58 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 12:58 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 12:58 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 12:58 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 12:58 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 12:58 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 12:58 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 12:58 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 12:58 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 12:58 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 12:58 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 12:58 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 12:58 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 12:58 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 12:58 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 12:58 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 12:57 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 12:57 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 12:57 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 12:57 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 12:57 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 12:57 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-03 11:12 - 2014-11-03 11:12 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-03 08:09 - 2014-11-22 22:12 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job
2014-11-03 08:09 - 2014-11-18 22:07 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job
2014-10-30 15:36 - 2014-10-30 15:36 - 00000222 _____ () C:\Users\Sabina\Desktop\Counter-Strike Nexon Zombies.url
2014-10-30 15:36 - 2014-10-30 15:36 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-30 15:30 - 2014-10-30 15:31 - 00790240 _____ (Shark Labs) C:\Users\Sabina\Downloads\CFSetup360 (1).exe
2014-10-30 15:27 - 2014-10-30 15:27 - 00790240 _____ (Shark Labs) C:\Users\Sabina\Downloads\CFSetup360.exe
2014-10-27 21:45 - 2014-10-27 21:45 - 00000538 _____ () C:\Users\Sabina\Downloads\url (1).htm
2014-10-27 21:43 - 2014-10-27 21:43 - 00000221 _____ () C:\Users\Sabina\Desktop\Grand Theft Auto 2.url
2014-10-27 21:13 - 2014-10-27 21:13 - 00000000 ____D () C:\Users\Sabina\Documents\My Games
2014-10-27 20:51 - 2014-10-27 20:51 - 00000222 _____ () C:\Users\Sabina\Desktop\Goat Simulator.url
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 22:56 - 2011-08-25 17:12 - 00000000 ____D () C:\ProgramData\Temp
2014-11-22 22:55 - 2012-07-11 08:29 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-11-22 22:45 - 2014-10-18 22:34 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-22 22:43 - 2012-04-14 03:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-22 22:40 - 2012-02-15 19:51 - 01247416 _____ () C:\Windows\WindowsUpdate.log
2014-11-22 22:33 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-22 22:33 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-22 22:28 - 2011-08-25 17:10 - 00005714 _____ () C:\Windows\system32\RaCoInst.log
2014-11-22 22:23 - 2014-10-18 22:34 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-22 22:20 - 2014-09-23 18:31 - 00010864 _____ () C:\Windows\setupact.log
2014-11-22 22:20 - 2013-11-01 20:07 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-11-22 22:20 - 2011-08-25 17:19 - 00000000 ____D () C:\ProgramData\PDFC
2014-11-22 22:20 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-22 21:53 - 2013-11-16 19:17 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-11-22 21:30 - 2012-02-15 19:58 - 00003902 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5476B59C-F8DD-4429-96C2-6BFF815825C1}
2014-11-22 19:52 - 2014-09-21 16:55 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Skype
2014-11-22 19:04 - 2014-09-21 16:45 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{F8DFF3C6-CD79-4584-AC22-822C0B72B262}
2014-11-22 18:36 - 2012-12-18 00:19 - 00000000 ____D () C:\Windows\Minidump
2014-11-22 18:35 - 2011-09-06 19:17 - 00287898 ____N () C:\Windows\Minidump\112214-32729-01.dmp
2014-11-22 18:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-22 16:16 - 2014-09-21 18:39 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Skype
2014-11-22 13:18 - 2014-09-21 18:39 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Seznam.cz
2014-11-22 12:12 - 2014-09-21 18:38 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{E5128A28-09FA-4B04-B4DE-030771CB111E}
2014-11-22 10:20 - 2012-04-14 11:00 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-11-22 08:05 - 2011-08-25 17:23 - 00000000 ____D () C:\ProgramData\truesuite
2014-11-21 19:46 - 2012-04-28 05:06 - 00002104 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-20 13:40 - 2014-09-21 16:44 - 00000906 __RSH () C:\Users\Sabina\ntuser.pol
2014-11-20 13:40 - 2014-09-21 16:44 - 00000000 ____D () C:\Users\Sabina
2014-11-20 12:15 - 2014-09-21 18:38 - 00000906 __RSH () C:\Users\Sandra\ntuser.pol
2014-11-20 12:15 - 2014-09-21 18:38 - 00000000 ____D () C:\Users\Sandra
2014-11-20 12:13 - 2012-04-14 02:51 - 00000632 __RSH () C:\Users\hp\ntuser.pol
2014-11-20 12:13 - 2012-02-15 19:53 - 00000000 ____D () C:\Users\hp
2014-11-20 12:08 - 2014-05-28 21:33 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-11-20 12:08 - 2014-05-28 21:33 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-11-20 12:08 - 2013-07-04 09:29 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-11-20 12:08 - 2013-07-04 09:29 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-11-18 22:13 - 2012-04-15 02:03 - 00000000 ____D () C:\Users\hp\AppData\Roaming\Mozilla
2014-11-18 22:07 - 2014-03-31 07:40 - 00003918 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA
2014-11-18 22:07 - 2014-03-31 07:40 - 00003522 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core
2014-11-15 12:07 - 2009-07-14 06:13 - 00786622 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-15 09:40 - 2012-04-28 05:06 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-15 09:40 - 2012-04-28 05:06 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-13 20:43 - 2012-04-14 03:05 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-13 20:43 - 2012-04-14 03:05 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-13 20:43 - 2011-08-25 17:17 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-13 17:14 - 2014-10-18 15:30 - 00000000 ____D () C:\Users\Sabina\AppData\Local\CrashDumps
2014-11-12 19:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-12 18:07 - 2009-07-14 05:45 - 04970952 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-12 18:05 - 2014-05-18 05:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-12 16:17 - 2012-07-20 11:20 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-12 16:15 - 2013-08-14 23:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 16:07 - 2012-05-19 20:20 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-05 16:05 - 2009-07-14 06:08 - 00032618 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-03 19:32 - 2012-04-14 04:05 - 00000000 ____D () C:\Users\hp\AppData\Roaming\Skype
2014-11-03 11:10 - 2012-10-16 18:23 - 00000000 ____D () C:\Users\hp\AppData\Roaming\.minecraft
2014-10-26 13:09 - 2014-09-21 16:45 - 00000000 ____D () C:\Users\Sabina\AppData\Local\PDFC
Some content of TEMP:
====================
C:\Users\hp\AppData\Local\Temp\Quarantine.exe
C:\Users\hp\AppData\Local\Temp\SkypeSetup.exe
C:\Users\hp\AppData\Local\Temp\sqlite3.dll
C:\Users\Sabina\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sabina\AppData\Local\Temp\uttF9A1.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-15 09:12
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (OS) (Fixed) (Total:919.69 GB) (Free:717.55 GB) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:11.72 GB) (Free:1.44 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Available physical RAM: 4316.71 MB
Total physical RAM: 6126.53 MB
Percentage of memory in use: 29%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: DCFAAE57)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=919.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=11.7 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\hp\Desktop" je 3650 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001
==================== End Of Log ==============================
Ran by hp (administrator) on HP-HP on 22-11-2014 23:00:21
Running from C:\Users\hp\Desktop
Loaded Profile: hp (Available profiles: hp & Sabina & Sandra & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Blue Coat Systems, Inc.) C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Roxio) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectify.exe
(Connectify) C:\Program Files (x86)\Connectify\DispatchUI.exe
(Google Inc.) C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Gridspot) C:\Program Files (x86)\Gridspot\Gridspot.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(VTech) C:\Program Files (x86)\VTech\Community\System\PCTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Facebook Inc.) C:\Users\hp\AppData\Local\Facebook\Update\FacebookUpdate.exe
(forum.viry.cz) C:\Users\hp\Desktop\FRSTLauncher(1).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [3755296 2013-12-23] (Connectify)
HKLM\...\Run: [Connectify Dispatch] => C:\Program Files (x86)\Connectify\DispatchUI.exe [1685280 2013-12-23] (Connectify)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [658424 2011-05-06] (PDF Complete Inc)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-05-30] (Apple Inc.)
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103896 2011-12-12] (PC Tools)
HKLM-x32\...\Run: [Gridspot] => C:\Program Files (x86)\Gridspot\Gridspot.exe [525168 2012-03-20] (Gridspot)
HKLM-x32\...\Run: [MyPublicWiFi] => C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe [2002944 2011-12-22] ()
HKLM-x32\...\Run: [CommunityTray] => C:\Program Files (x86)\VTech\Community\System\Startup.exe [11776 2008-03-15] (VTech)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064 2014-11-20] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Run: [Google Update] => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-03-30] (Google Inc.)
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: J - J:\autorun.exe
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: {7aad374a-d8b4-11e0-883b-806e6f6e6963} - E:\autorun.exe /autorun
HKU\S-1-5-18\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-18\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:8555;https=127.0.0.1:8555
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {3F278E8A-B758-4500-9313-D8816127BE5C} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {4078FCEF-4277-4536-9AF4-E43B8C9CD31F} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {469F2D02-4102-462B-BC70-05874251F5C6} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {8B271665-4F14-423A-9407-4EB479FFE068} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {A746493B-761D-48B1-A411-3EA766F01B98} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {AD1D4CB3-4B37-41B1-A3FE-EC2443002EE1} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {E7F7AF4D-EF6E-4026-BE17-436B91CD2DB3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {F3395D6F-8E8F-485A-A71D-5A84B9819E1B} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192
FF NewTab: hxxp://www.google.com/
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1214154.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll ()
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\hp\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\hp\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @talk.google.com/O1DPlugin -> C:\Users\hp\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @tools.google.com/Google Update;version=3 -> C:\Users\hp\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @tools.google.com/Google Update;version=9 -> C:\Users\hp\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\hp\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\hp\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\hp\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\badoo.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\firmycz.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\mapycz.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\zbocz.xml
FF Extension: Seznam lištička - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-06-08]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com [2014-11-22]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-05-19]
FF HKU\.DEFAULT\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
Chrome:
=======
CHR HomePage: Default ->
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-21]
CHR Extension: (Google Docs) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-21]
CHR Extension: (Google Drive) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-21]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-31]
CHR Extension: (YouTube) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-21]
CHR Extension: (Google Search) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-21]
CHR Extension: (Google Sheets) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-21]
CHR Extension: (Google Wallet) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (Gmail) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-21]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-20]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [538000 2012-06-10] (Protection Technology)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-20] (AVAST Software)
R2 bckwfs; C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe [2647256 2014-01-24] (Blue Coat Systems, Inc.)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2013-12-23] (Connectify) [File not signed]
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227936 2013-11-16] (WildTangent)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2011-12-12] (PC Tools)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-05-06] (PDF Complete Inc)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2013-01-12] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [2687592 2012-06-10] (Protection Technology)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-20] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-20] ()
R2 bckd; C:\Windows\System32\drivers\bckd.sys [126168 2014-01-24] (Blue Coat Systems, Inc.)
R1 cnnctfy3; C:\Windows\System32\DRIVERS\cnnctfy3.sys [35352 2013-12-25] (Connectify)
R2 GridspotVMDriver; C:\Program Files (x86)\Gridspot\VMRuntime\VBoxDrv.sys [224048 2011-11-04] (Oracle Corporation)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-08-25] ()
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-06-10] (Duplex Secure Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 22:31 - 2014-11-22 22:31 - 00000000 ____D () C:\Users\hp\AppData\Roaming\MMFApplications
2014-11-22 22:27 - 2014-11-22 22:27 - 00000000 ____D () C:\Windows\LastGood
2014-11-22 22:16 - 2014-11-22 22:19 - 00000000 ____D () C:\AdwCleaner
2014-11-22 22:16 - 2014-11-22 22:16 - 02140160 _____ () C:\Users\hp\Desktop\adwcleaner_4.101.exe
2014-11-22 21:33 - 2014-11-22 21:33 - 00051061 _____ () C:\Users\hp\Desktop\FRST2.txt
2014-11-22 21:32 - 2014-11-22 23:00 - 00022508 _____ () C:\Users\hp\Desktop\FRST.txt
2014-11-22 21:32 - 2014-11-22 23:00 - 00000000 ____D () C:\FRST
2014-11-22 21:30 - 2014-11-22 21:30 - 00112640 _____ (forum.viry.cz) C:\Users\hp\Downloads\FRSTLauncher.exe
2014-11-22 21:30 - 2014-11-22 21:30 - 00112640 _____ (forum.viry.cz) C:\Users\hp\Desktop\FRSTLauncher(1).exe
2014-11-22 21:29 - 2014-11-22 21:29 - 02118144 _____ (Farbar) C:\Users\hp\Desktop\FRST64.exe
2014-11-22 17:27 - 2014-11-22 17:27 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\MMFApplications
2014-11-22 17:26 - 2014-11-22 17:26 - 00000809 _____ () C:\Users\Sabina\Desktop\Five Nights at Freddy's.lnk
2014-11-22 17:26 - 2014-11-22 17:26 - 00000000 ____D () C:\Users\Sabina\Desktop\Five Nights at Freddy's
2014-11-22 17:26 - 2014-11-22 17:26 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Five Nights at Freddy's
2014-11-22 17:15 - 2014-11-22 17:24 - 229915398 ____R () C:\Users\Sabina\Downloads\Five_Nights_at_Freddys.exe
2014-11-22 17:14 - 2014-11-22 17:14 - 00000853 _____ () C:\Users\Sabina\Desktop\µTorrent.lnk
2014-11-22 17:14 - 2014-11-22 17:14 - 00000833 _____ () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-11-22 17:14 - 2014-11-22 17:14 - 00000000 ____D () C:\Users\Sabina\Downloads\F10RIDA
2014-11-22 17:13 - 2014-11-22 22:14 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\uTorrent
2014-11-22 17:11 - 2014-11-22 17:11 - 01720912 _____ (BitTorrent Inc.) C:\Users\Sabina\Downloads\uTorrent.exe
2014-11-22 17:07 - 2014-11-22 17:07 - 00911360 _____ (Megarapid.cz) C:\Users\Sabina\Downloads\MRDownloader.exe
2014-11-22 13:20 - 2014-11-22 13:20 - 00274587 _____ () C:\Users\Sandra\Downloads\Transformice.exe
2014-11-20 13:35 - 2014-11-22 22:20 - 00107682 _____ () C:\Windows\PFRO.log
2014-11-20 12:11 - 2014-11-20 12:11 - 00001926 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-11-20 12:08 - 2014-11-20 12:08 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-11-20 12:08 - 2014-11-20 12:08 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-11-19 15:49 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 15:49 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 15:49 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 15:49 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 19:39 - 2014-11-18 19:39 - 05008056 _____ (Adobe Systems Inc.) C:\Users\Sabina\Downloads\Shockwave_Installer_Slim.exe
2014-11-18 16:58 - 2014-11-18 16:58 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\WildTangent
2014-11-16 17:26 - 2014-11-16 17:26 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\WildTangent
2014-11-16 17:26 - 2014-11-16 17:26 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-15 22:34 - 2014-11-15 22:34 - 04159264 _____ (Mindspark Interactive Network) C:\Users\Sandra\Downloads\EliteUnzipSetup.EliteUnzip_aa.gpdjcoccminpbgmiffhifdcnelpojeeb.ch.exe
2014-11-15 12:25 - 2014-11-15 12:25 - 00000000 __SHD () C:\Users\Sandra\AppData\Local\EmieBrowserModeList
2014-11-14 22:42 - 2014-11-14 22:49 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\vlc
2014-11-14 22:42 - 2014-11-14 22:42 - 00406303 _____ () C:\Users\Sabina\Downloads\Minecraft-1.7.5-Cracked-Launcher-[AUTO-UPDATES]-by-Racad- (1).zip
2014-11-14 22:41 - 2014-11-14 22:41 - 00406303 _____ () C:\Users\Sabina\Downloads\Minecraft-1.7.5-Cracked-Launcher-[AUTO-UPDATES]-by-Racad-.zip
2014-11-14 17:21 - 2014-11-14 17:21 - 00001350 _____ () C:\Users\Sabina\Desktop\ROBLOX Player.lnk
2014-11-14 17:21 - 2014-11-14 17:21 - 00001169 _____ () C:\Users\Sabina\Desktop\ROBLOX Studio.lnk
2014-11-14 17:21 - 2014-11-14 17:21 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2014-11-14 17:21 - 2014-11-14 17:21 - 00000000 ____D () C:\Users\Sabina\AppData\Local\Roblox
2014-11-14 17:20 - 2014-11-14 17:21 - 00639344 _____ (ROBLOX Corporation) C:\Users\Sabina\Downloads\RobloxPlayerLauncher.exe
2014-11-14 17:11 - 2014-11-14 17:20 - 229919200 _____ () C:\Users\Sabina\Downloads\FiveNightsDEMO_INSTALL.exe
2014-11-13 20:45 - 2014-11-13 20:45 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-13 19:44 - 2014-11-13 19:44 - 00000000 __SHD () C:\Users\Sabina\AppData\Local\EmieBrowserModeList
2014-11-12 12:58 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 12:58 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 12:58 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 12:58 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 12:58 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 12:58 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 12:58 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 12:58 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 12:58 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 12:58 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 12:58 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 12:58 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 12:58 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 12:58 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 12:58 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 12:58 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 12:58 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 12:58 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 12:58 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 12:58 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 12:58 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 12:58 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 12:58 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 12:58 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 12:58 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 12:58 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 12:58 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 12:58 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 12:58 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 12:58 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 12:58 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 12:58 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 12:58 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 12:58 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 12:58 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 12:58 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 12:58 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 12:58 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 12:58 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 12:58 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 12:58 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 12:58 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 12:58 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 12:58 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 12:58 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 12:58 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 12:58 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 12:58 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 12:58 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 12:58 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 12:58 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 12:58 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 12:58 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 12:58 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 12:58 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 12:58 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 12:58 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-12 12:58 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-12 12:58 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-12 12:58 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 12:58 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 12:58 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 12:58 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 12:58 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 12:58 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 12:58 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 12:58 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 12:58 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 12:58 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 12:58 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 12:58 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 12:58 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 12:58 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 12:58 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 12:58 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 12:58 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 12:58 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 12:58 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 12:58 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 12:58 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 12:58 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 12:57 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 12:57 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 12:57 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 12:57 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 12:57 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 12:57 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-03 11:12 - 2014-11-03 11:12 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-03 08:09 - 2014-11-22 22:12 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job
2014-11-03 08:09 - 2014-11-18 22:07 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job
2014-10-30 15:36 - 2014-10-30 15:36 - 00000222 _____ () C:\Users\Sabina\Desktop\Counter-Strike Nexon Zombies.url
2014-10-30 15:36 - 2014-10-30 15:36 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-30 15:30 - 2014-10-30 15:31 - 00790240 _____ (Shark Labs) C:\Users\Sabina\Downloads\CFSetup360 (1).exe
2014-10-30 15:27 - 2014-10-30 15:27 - 00790240 _____ (Shark Labs) C:\Users\Sabina\Downloads\CFSetup360.exe
2014-10-27 21:45 - 2014-10-27 21:45 - 00000538 _____ () C:\Users\Sabina\Downloads\url (1).htm
2014-10-27 21:43 - 2014-10-27 21:43 - 00000221 _____ () C:\Users\Sabina\Desktop\Grand Theft Auto 2.url
2014-10-27 21:13 - 2014-10-27 21:13 - 00000000 ____D () C:\Users\Sabina\Documents\My Games
2014-10-27 20:51 - 2014-10-27 20:51 - 00000222 _____ () C:\Users\Sabina\Desktop\Goat Simulator.url
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 22:56 - 2011-08-25 17:12 - 00000000 ____D () C:\ProgramData\Temp
2014-11-22 22:55 - 2012-07-11 08:29 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-11-22 22:45 - 2014-10-18 22:34 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-22 22:43 - 2012-04-14 03:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-22 22:40 - 2012-02-15 19:51 - 01247416 _____ () C:\Windows\WindowsUpdate.log
2014-11-22 22:33 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-22 22:33 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-22 22:28 - 2011-08-25 17:10 - 00005714 _____ () C:\Windows\system32\RaCoInst.log
2014-11-22 22:23 - 2014-10-18 22:34 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-22 22:20 - 2014-09-23 18:31 - 00010864 _____ () C:\Windows\setupact.log
2014-11-22 22:20 - 2013-11-01 20:07 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-11-22 22:20 - 2011-08-25 17:19 - 00000000 ____D () C:\ProgramData\PDFC
2014-11-22 22:20 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-22 21:53 - 2013-11-16 19:17 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-11-22 21:30 - 2012-02-15 19:58 - 00003902 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5476B59C-F8DD-4429-96C2-6BFF815825C1}
2014-11-22 19:52 - 2014-09-21 16:55 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Skype
2014-11-22 19:04 - 2014-09-21 16:45 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{F8DFF3C6-CD79-4584-AC22-822C0B72B262}
2014-11-22 18:36 - 2012-12-18 00:19 - 00000000 ____D () C:\Windows\Minidump
2014-11-22 18:35 - 2011-09-06 19:17 - 00287898 ____N () C:\Windows\Minidump\112214-32729-01.dmp
2014-11-22 18:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-22 16:16 - 2014-09-21 18:39 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Skype
2014-11-22 13:18 - 2014-09-21 18:39 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Seznam.cz
2014-11-22 12:12 - 2014-09-21 18:38 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{E5128A28-09FA-4B04-B4DE-030771CB111E}
2014-11-22 10:20 - 2012-04-14 11:00 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-11-22 08:05 - 2011-08-25 17:23 - 00000000 ____D () C:\ProgramData\truesuite
2014-11-21 19:46 - 2012-04-28 05:06 - 00002104 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-20 13:40 - 2014-09-21 16:44 - 00000906 __RSH () C:\Users\Sabina\ntuser.pol
2014-11-20 13:40 - 2014-09-21 16:44 - 00000000 ____D () C:\Users\Sabina
2014-11-20 12:15 - 2014-09-21 18:38 - 00000906 __RSH () C:\Users\Sandra\ntuser.pol
2014-11-20 12:15 - 2014-09-21 18:38 - 00000000 ____D () C:\Users\Sandra
2014-11-20 12:13 - 2012-04-14 02:51 - 00000632 __RSH () C:\Users\hp\ntuser.pol
2014-11-20 12:13 - 2012-02-15 19:53 - 00000000 ____D () C:\Users\hp
2014-11-20 12:08 - 2014-05-28 21:33 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-11-20 12:08 - 2014-05-28 21:33 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-11-20 12:08 - 2013-07-04 09:29 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-11-20 12:08 - 2013-07-04 09:29 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-11-18 22:13 - 2012-04-15 02:03 - 00000000 ____D () C:\Users\hp\AppData\Roaming\Mozilla
2014-11-18 22:07 - 2014-03-31 07:40 - 00003918 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA
2014-11-18 22:07 - 2014-03-31 07:40 - 00003522 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core
2014-11-15 12:07 - 2009-07-14 06:13 - 00786622 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-15 09:40 - 2012-04-28 05:06 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-15 09:40 - 2012-04-28 05:06 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-13 20:43 - 2012-04-14 03:05 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-13 20:43 - 2012-04-14 03:05 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-13 20:43 - 2011-08-25 17:17 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-13 17:14 - 2014-10-18 15:30 - 00000000 ____D () C:\Users\Sabina\AppData\Local\CrashDumps
2014-11-12 19:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-12 18:07 - 2009-07-14 05:45 - 04970952 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-12 18:05 - 2014-05-18 05:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-12 16:17 - 2012-07-20 11:20 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-12 16:15 - 2013-08-14 23:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 16:07 - 2012-05-19 20:20 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-05 16:05 - 2009-07-14 06:08 - 00032618 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-03 19:32 - 2012-04-14 04:05 - 00000000 ____D () C:\Users\hp\AppData\Roaming\Skype
2014-11-03 11:10 - 2012-10-16 18:23 - 00000000 ____D () C:\Users\hp\AppData\Roaming\.minecraft
2014-10-26 13:09 - 2014-09-21 16:45 - 00000000 ____D () C:\Users\Sabina\AppData\Local\PDFC
Some content of TEMP:
====================
C:\Users\hp\AppData\Local\Temp\Quarantine.exe
C:\Users\hp\AppData\Local\Temp\SkypeSetup.exe
C:\Users\hp\AppData\Local\Temp\sqlite3.dll
C:\Users\Sabina\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sabina\AppData\Local\Temp\uttF9A1.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-15 09:12
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (OS) (Fixed) (Total:919.69 GB) (Free:717.55 GB) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:11.72 GB) (Free:1.44 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Available physical RAM: 4316.71 MB
Total physical RAM: 6126.53 MB
Percentage of memory in use: 29%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: DCFAAE57)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=919.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=11.7 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\hp\Desktop" je 3650 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001
==================== End Of Log ==============================
-
Rudy
- Site Admin
- Příspěvky: 119555
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Resetovani
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Pak znovu spusťte FRST a klikněte na >Fix<. Zkopírujte sem pak log, který se na závěr vytvoří.Start
C:\Users\hp\AppData\Local\Facebook\Update
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: J - J:\autorun.exe
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: {7aad374a-d8b4-11e0-883b-806e6f6e6963} - E:\autorun.exe /autorun
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
C:\Program Files (x86)\Skype\Toolbars
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core
C:\Users\hp\AppData\Local\Temp
C:\Users\Sabina\AppData\Local\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Resetovani
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 22-11-2014 01
Ran by hp at 2014-11-23 11:39:05 Run:1
Running from C:\Users\hp\Desktop
Loaded Profiles: hp & Sabina (Available profiles: hp & Sabina & Sandra & Guest)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
C:\Users\hp\AppData\Local\Facebook\Update
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: J - J:\autorun.exe
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: {7aad374a-d8b4-11e0-883b-806e6f6e6963} - E:\autorun.exe /autorun
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
C:\Program Files (x86)\Skype\Toolbars
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core
C:\Users\hp\AppData\Local\Temp
C:\Users\Sabina\AppData\Local\Temp
End
*****************
C:\Users\hp\AppData\Local\Facebook\Update => Moved successfully.
"HKU\S-1-5-21-3652145099-1749333591-366478180-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-3652145099-1749333591-366478180-1000" => Key not found.
"HKU\S-1-5-21-3652145099-1749333591-366478180-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7aad374a-d8b4-11e0-883b-806e6f6e6963}" => Key deleted successfully.
"HKCR\CLSID\{7aad374a-d8b4-11e0-883b-806e6f6e6963}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars => Moved successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key Deleted successfully.
"HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\Wow6432Node\PROTOCOLS\Handler\skype-ie-addon-data" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key Deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA => Moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core => Moved successfully.
"C:\Users\hp\AppData\Local\Temp" directory move:
C:\Users\hp\AppData\Local\Temp\04463516-CFF2-413F-B960-9C467F7F05F0.Diagnose.Admin.3.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\104A66C.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\107BD74.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\109757D.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\109AC74.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\11816F9.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1265B2E.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1268C29.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1307E34.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\133B413.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\134F272.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\140AE9.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1523262.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\161A6CA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1621304.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1682619.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\17317D4.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\173191B.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1733263.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1769F89.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\178841D.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\179192C.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\17957B1.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\18070FA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\18115B3.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\208DE5C.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\213DD63.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\2254CA9.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\3224CBA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\332AEA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\333DEEA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\4261544.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\47021A4.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\472BDA4.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\498902D.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\570E447.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\62825BA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\654D538.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\667F2EF.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\707E3CA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\759EFD.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\7891303.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\8035B4E.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\82D1C6FB-7B7A-42A6-B2BA-46016A819990.Diagnose.Admin.0.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\85175DC.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\8581E474-27FF-4392-BFC1-F2681D21640F.Diagnose.Admin.0.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\8581E474-27FF-4392-BFC1-F2681D21640F.Repair.Admin.1.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\8581E474-27FF-4392-BFC1-F2681D21640F.Verify.Admin.2.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\9B375207-CD43-4589-BBB3-2150854FD58F.Diagnose.Admin.0.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\9B375207-CD43-4589-BBB3-2150854FD58F.Repair.Admin.1.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\9B375207-CD43-4589-BBB3-2150854FD58F.Verify.Admin.2.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\A8FF94C9-1DFE-4F58-827A-BED93143C586.Diagnose.Admin.1.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\AAX9677.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\AAX9D6D.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Administrator.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\adwcleaner.db => Moved successfully.
C:\Users\hp\AppData\Local\Temp\AdwCleaner.jpg => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Cleaning.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_amd64_20141103111209.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_amd64_20141103111209_0_vcRuntimeMinimum_x64.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_amd64_20141103111209_1_vcRuntimeAdditional_x64.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_x86_20141103111131.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_x86_20141103111131_0_vcRuntimeMinimum_x86.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_x86_20141103111131_1_vcRuntimeAdditional_x86.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Donate.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\EULA.txt => Moved successfully.
C:\Users\hp\AppData\Local\Temp\FD8FDDD7-3D67-4CBB-B16E-ED9B0924B58D.Diagnose.Admin.0.etl => Moved successfully.
Could not move "C:\Users\hp\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\hp\AppData\Local\Temp\Guest.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\HomeGroupUser$.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\hp.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\HPSAActionItems.xml => Moved successfully.
C:\Users\hp\AppData\Local\Temp\PDApp.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Report.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Sabina.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Sandra.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Scan.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\SkypeSetup.exe => Moved successfully.
C:\Users\hp\AppData\Local\Temp\sqlite3.dll => Moved successfully.
C:\Users\hp\AppData\Local\Temp\SymCCISDll.txt => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Uninstall.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog01.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog02.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog03.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog04.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog05.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog06.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog07.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog08.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog09.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog10.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog11.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog12.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog13.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog14.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog15.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog16.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog17.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog18.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog19.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Xml17C4.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Xml6142.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Xml6FD2.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\XmlA8BC.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\~DA57.bat => Moved successfully.
C:\Users\hp\AppData\Local\Temp\~DA57.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\~F1DD.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\{8E936FAC-3F26-4691-A7F8-EE2730317361}\adobeshockwavextrabundle.exe => Moved successfully.
C:\Users\hp\AppData\Local\Temp\UnityWebPlayer\log\log_088a5a0ca72f974ca8d3c9461670af09.txt => Moved successfully.
C:\Users\hp\AppData\Local\Temp\UnityWebPlayer\log\manager_8b33a281d5af824dbb110fcfadd67d5b.txt => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\aapocclcgogkmnckokdopfmhonfmgoek.zip => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\aohghmighlieiainnegkcijnfilokake.zip => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\felcaaldnbdncclmgdcncolpebgiejap.zip => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\wrc@avast.com.zip => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\{ea614400-e918-4741-9a97-7a972ff7c30b}.zip => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\firefox\{ea614400-e918-4741-9a97-7a972ff7c30b}\foxcub.jar.unp\content\speedDial\img\foxcub.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\chrome\Default\Web Data => Moved successfully.
Could not move "C:\Users\hp\AppData\Local\Temp" directory. => Scheduled to move on reboot.
"C:\Users\Sabina\AppData\Local\Temp" directory move:
C:\Users\Sabina\AppData\Local\Temp\10072CF.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1015C61.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\101C5FA.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1021D5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\103F5A5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1053EC5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1053FCD.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\106451B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1081AA4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\108ADEB.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1104AC5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\11072D0.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\113400C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\113ECC2.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\114E11B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\115F3C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1165D4E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\120165D.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1203BA8.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\120CB99.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\126A958.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1273EE4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\134E1F5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\135C5FC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\135DB22.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\13812A6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\139F71A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\141B54A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\141EC22.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1421B9B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1426835.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\14310E3.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\143D25C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1441C4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1461EC6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1485403.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\150B1F0.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\150EC33.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\152318C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\152C60B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\15310F3.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1561ED6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1571112.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1605688.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\163B30A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1643976.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\166D25B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1689EBE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\168C3EB.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\168CA40.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\172A9D6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1731A92.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1745956.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1748F26.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\174F8A1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\176C014.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\178335E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1789ECF.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\178CA51.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1795AEC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1803B2B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1828F15.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\184AE0A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\18639F4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\18741B1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1885395.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\18940B7.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\189A962.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\189C7A1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\191B01D.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\192AEF4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\19483A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1963100.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\196452A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\19831DB.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\198382F.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\19961FD.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2041AF3.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\208C88C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\209A66B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\209A982.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\215D02A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\21963C2.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\224BA6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2251A25.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\243448E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2524FB5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\26055AD.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\27986CC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2829EBE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2863C15.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2876354.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\290E446.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\30657FE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\311FCE7.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\32212D5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\339E82C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\36128C5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\366B7EA.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\3812C0E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\391B98E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\435CD7C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\436C6E6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\438447F.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\4461767.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\4461E1B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\472168C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\4881101.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\4884615.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\488620D.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\488C7EF.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\490C15C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\502FE7B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\50918FC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\509E6B5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\5328229.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\5425E94.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\543B51B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\5538D90.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\5852FE6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\600A6DA.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\600F814.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\6202FE7.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\628112F.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\6283082.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\639148.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\644FDFE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\709515A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\735158.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\735ECB1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\761DC3A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\7873C73.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\8051035.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\821A5C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\832E206.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\8415B59.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\87118FC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\8713553.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\873B96.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\8843C84.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\884A88E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\899A581.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\917A6C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\945EED1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\9483784.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\966E9A2.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\967A6B9.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\9854F0A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX14AE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX1ACC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX1DD3.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX1DE4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX2132.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX2541.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX2B02.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX3BEE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX6CE7.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX6CF8.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX6EF5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX6F05.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX6F16.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX7559.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX8330.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX8341.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX97E7.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX9B71.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX9BA1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX9BB1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXA3C9.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXAC5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXADDA.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXADEB.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXB32E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXB9E5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXBBDC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD669.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD699.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD6AA.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD780.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD78E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD791.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXE7D1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXF19A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXF453.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXF9FE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\C1641422-9F07-478A-A925-F21559A0CE31.Diagnose.0.etl => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\chrome_installer.log => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_0MJllvhPN2Ou7JV => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_2Yqno75JcxN4w7H => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_5RzzueJdxOVaaNi => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_6PLfcfuIDivoWlp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_7Q33Yp0biZhgHBg => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_9p0KJieUJF4XFmW => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_dbTfyKbXnTBPdHk => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_f4m2djfZob0FESP => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_jcoaqtAOXzhpq5u => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_jySkQk1XKJgrdyY => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_K6eAeEBnoTmvmM4 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_p1IYIX8J8WZZJ8j => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_PQ0x59vAUILRxgr => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_RRhugZBblag48yO => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_WD61hJ4mcCNwX9r => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_WucG68bBnYqZgKX => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\F8D0FC8C-BAE6-44C0-9882-52938CE723D7.Diagnose.0.etl => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\F8D0FC8C-BAE6-44C0-9882-52938CE723D7.Repair.1.etl => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\FDAD2A8D-EA3B-4FE7-8F7C-1B7B4FCDD98D.Diagnose.0.etl => Moved successfully.
Could not move "C:\Users\Sabina\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\Sabina\AppData\Local\Temp\FXSTIFFDebugLogFile.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\npsB32A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\npsD93C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\npsF690.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\RBX-1E2F6C9E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\RBX-605D22C1.log => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Sabina.bmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\SkypeSetup.exe => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\StructuredQuery.log => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0000 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0001 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0002 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0003 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0004 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0005 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0006 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0007 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0008 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0009 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0010 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0011 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0012 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0013 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0014 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0015 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0016 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0017 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0018 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0019 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0020 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0021 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0022 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0023 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\utt58BB.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\utt6115.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\utt6115.tmp.old => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\utt6741.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\uttF9A1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\uttF9A1.tmp.exe => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml1E1A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml227D.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml2F1A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml3247.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml33AC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml3448.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml4FE3.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml58B9.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml5A12.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml779F.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml8075.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml9FA8.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\XmlA7C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\XmlE2B1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\XmlE436.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\XmlF288.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\_852B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\_9744.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\_E46A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\_FF4A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\~DF1A589F33E86C2D9B.TMP => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\~DFCC4A320BC56F2992.TMP => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\~e5d141.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\{BC246C67-576C-4615-B1D6-0FD39A9B88A8}\adobeshockwavextrabundle.exe => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\{67BE5629-0027-4CD2-A147-96F64D0235FE}\setup.exe => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\{0A501B69-5B8B-4A7D-8D47-1BA8BE691201}\fpb.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\updater_temp_truesuite\updatefile.xml => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\UnityWebPlayerUpdate.exe => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_18794709e0724a458c346981d55fc44a.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_1c93c6d038a7e74295e5a65a6464673a.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_30a2a0a7d9733d47b3ee646a4a48fced.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_66f4115d9b0bfd4586fd8faf97eea423.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_88e9590a921ea444904c13a5f3f7f115.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_9927fbd78983c9418ff4f827e3b1ccee.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_9f87358123e24d488ba471fb5144a8c9.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_15016a6dbcc32d4485e69eda05e34524.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_28d5213a64de654eac872ce56de09956.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_7f6eec98d7331748846ae9a8a9f90fda.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_8797e2221c4d5244adf0f9bb9cfd0b68.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_a50d646aa2f15c498dd0db53688a13bc.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_f8a4211d6d4fa643963a171ca7b50a88.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\aohghmighlieiainnegkcijnfilokake.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\bgjpfhpjcgdppjbgnpnjllokbmcdllig.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\dpnknncniillgijdlegfdffoheonaddd.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\gomekmidlodglbbmalcneegieacbdmki.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\kmabjcmofdemkaaekcmpocognlfonepb.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\nafaimnnclfjfedmmabolbppcngeolgf.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\nglnnifljabmkcecofpnlokcgnmbecia.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\olfeabkoenfaoljndfecamgilllcpiak.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\wrc@avast.com.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\chrome\Default\Web Data => Moved successfully.
Could not move "C:\Users\Sabina\AppData\Local\Temp" directory. => Scheduled to move on reboot.
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-11-23 11:42:09)<=
C:\Users\hp\AppData\Local\Temp\FXSAPIDebugLogFile.txt => Is moved successfully.
C:\Users\hp\AppData\Local\Temp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\FXSAPIDebugLogFile.txt => Is moved successfully.
C:\Users\Sabina\AppData\Local\Temp => Moved successfully.
==== End of Fixlog ====
Ran by hp at 2014-11-23 11:39:05 Run:1
Running from C:\Users\hp\Desktop
Loaded Profiles: hp & Sabina (Available profiles: hp & Sabina & Sandra & Guest)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
C:\Users\hp\AppData\Local\Facebook\Update
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: J - J:\autorun.exe
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: {7aad374a-d8b4-11e0-883b-806e6f6e6963} - E:\autorun.exe /autorun
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
C:\Program Files (x86)\Skype\Toolbars
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core
C:\Users\hp\AppData\Local\Temp
C:\Users\Sabina\AppData\Local\Temp
End
*****************
C:\Users\hp\AppData\Local\Facebook\Update => Moved successfully.
"HKU\S-1-5-21-3652145099-1749333591-366478180-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-3652145099-1749333591-366478180-1000" => Key not found.
"HKU\S-1-5-21-3652145099-1749333591-366478180-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7aad374a-d8b4-11e0-883b-806e6f6e6963}" => Key deleted successfully.
"HKCR\CLSID\{7aad374a-d8b4-11e0-883b-806e6f6e6963}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars => Moved successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key Deleted successfully.
"HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
"HKCR\Wow6432Node\PROTOCOLS\Handler\skype-ie-addon-data" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key Deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA => Moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core => Moved successfully.
"C:\Users\hp\AppData\Local\Temp" directory move:
C:\Users\hp\AppData\Local\Temp\04463516-CFF2-413F-B960-9C467F7F05F0.Diagnose.Admin.3.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\104A66C.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\107BD74.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\109757D.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\109AC74.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\11816F9.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1265B2E.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1268C29.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1307E34.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\133B413.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\134F272.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\140AE9.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1523262.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\161A6CA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1621304.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1682619.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\17317D4.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\173191B.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1733263.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\1769F89.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\178841D.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\179192C.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\17957B1.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\18070FA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\18115B3.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\208DE5C.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\213DD63.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\2254CA9.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\3224CBA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\332AEA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\333DEEA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\4261544.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\47021A4.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\472BDA4.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\498902D.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\570E447.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\62825BA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\654D538.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\667F2EF.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\707E3CA.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\759EFD.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\7891303.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\8035B4E.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\82D1C6FB-7B7A-42A6-B2BA-46016A819990.Diagnose.Admin.0.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\85175DC.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\8581E474-27FF-4392-BFC1-F2681D21640F.Diagnose.Admin.0.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\8581E474-27FF-4392-BFC1-F2681D21640F.Repair.Admin.1.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\8581E474-27FF-4392-BFC1-F2681D21640F.Verify.Admin.2.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\9B375207-CD43-4589-BBB3-2150854FD58F.Diagnose.Admin.0.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\9B375207-CD43-4589-BBB3-2150854FD58F.Repair.Admin.1.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\9B375207-CD43-4589-BBB3-2150854FD58F.Verify.Admin.2.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\A8FF94C9-1DFE-4F58-827A-BED93143C586.Diagnose.Admin.1.etl => Moved successfully.
C:\Users\hp\AppData\Local\Temp\AAX9677.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\AAX9D6D.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Administrator.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\adwcleaner.db => Moved successfully.
C:\Users\hp\AppData\Local\Temp\AdwCleaner.jpg => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Cleaning.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_amd64_20141103111209.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_amd64_20141103111209_0_vcRuntimeMinimum_x64.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_amd64_20141103111209_1_vcRuntimeAdditional_x64.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_x86_20141103111131.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_x86_20141103111131_0_vcRuntimeMinimum_x86.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\dd_vcredist_x86_20141103111131_1_vcRuntimeAdditional_x86.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Donate.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\EULA.txt => Moved successfully.
C:\Users\hp\AppData\Local\Temp\FD8FDDD7-3D67-4CBB-B16E-ED9B0924B58D.Diagnose.Admin.0.etl => Moved successfully.
Could not move "C:\Users\hp\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\hp\AppData\Local\Temp\Guest.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\HomeGroupUser$.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\hp.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\HPSAActionItems.xml => Moved successfully.
C:\Users\hp\AppData\Local\Temp\PDApp.log => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Report.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Sabina.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Sandra.bmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Scan.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\SkypeSetup.exe => Moved successfully.
C:\Users\hp\AppData\Local\Temp\sqlite3.dll => Moved successfully.
C:\Users\hp\AppData\Local\Temp\SymCCISDll.txt => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Uninstall.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog00.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog01.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog02.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog03.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog04.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog05.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog06.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog07.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog08.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog09.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog10.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog11.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog12.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog13.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog14.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog15.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog16.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog17.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog18.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\wmplog19.sqm => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Xml17C4.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Xml6142.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\Xml6FD2.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\XmlA8BC.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\~DA57.bat => Moved successfully.
C:\Users\hp\AppData\Local\Temp\~DA57.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\~F1DD.tmp => Moved successfully.
C:\Users\hp\AppData\Local\Temp\{8E936FAC-3F26-4691-A7F8-EE2730317361}\adobeshockwavextrabundle.exe => Moved successfully.
C:\Users\hp\AppData\Local\Temp\UnityWebPlayer\log\log_088a5a0ca72f974ca8d3c9461670af09.txt => Moved successfully.
C:\Users\hp\AppData\Local\Temp\UnityWebPlayer\log\manager_8b33a281d5af824dbb110fcfadd67d5b.txt => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\aapocclcgogkmnckokdopfmhonfmgoek.zip => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\aohghmighlieiainnegkcijnfilokake.zip => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\felcaaldnbdncclmgdcncolpebgiejap.zip => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\wrc@avast.com.zip => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\{ea614400-e918-4741-9a97-7a972ff7c30b}.zip => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\firefox\{ea614400-e918-4741-9a97-7a972ff7c30b}\foxcub.jar.unp\content\speedDial\img\foxcub.ico => Moved successfully.
C:\Users\hp\AppData\Local\Temp\avastBCLTMP\chrome\Default\Web Data => Moved successfully.
Could not move "C:\Users\hp\AppData\Local\Temp" directory. => Scheduled to move on reboot.
"C:\Users\Sabina\AppData\Local\Temp" directory move:
C:\Users\Sabina\AppData\Local\Temp\10072CF.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1015C61.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\101C5FA.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1021D5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\103F5A5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1053EC5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1053FCD.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\106451B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1081AA4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\108ADEB.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1104AC5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\11072D0.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\113400C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\113ECC2.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\114E11B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\115F3C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1165D4E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\120165D.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1203BA8.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\120CB99.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\126A958.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1273EE4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\134E1F5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\135C5FC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\135DB22.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\13812A6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\139F71A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\141B54A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\141EC22.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1421B9B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1426835.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\14310E3.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\143D25C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1441C4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1461EC6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1485403.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\150B1F0.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\150EC33.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\152318C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\152C60B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\15310F3.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1561ED6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1571112.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1605688.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\163B30A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1643976.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\166D25B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1689EBE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\168C3EB.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\168CA40.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\172A9D6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1731A92.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1745956.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1748F26.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\174F8A1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\176C014.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\178335E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1789ECF.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\178CA51.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1795AEC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1803B2B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1828F15.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\184AE0A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\18639F4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\18741B1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1885395.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\18940B7.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\189A962.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\189C7A1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\191B01D.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\192AEF4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\19483A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\1963100.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\196452A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\19831DB.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\198382F.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\19961FD.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2041AF3.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\208C88C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\209A66B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\209A982.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\215D02A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\21963C2.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\224BA6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2251A25.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\243448E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2524FB5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\26055AD.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\27986CC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2829EBE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2863C15.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\2876354.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\290E446.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\30657FE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\311FCE7.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\32212D5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\339E82C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\36128C5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\366B7EA.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\3812C0E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\391B98E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\435CD7C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\436C6E6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\438447F.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\4461767.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\4461E1B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\472168C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\4881101.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\4884615.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\488620D.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\488C7EF.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\490C15C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\502FE7B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\50918FC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\509E6B5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\5328229.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\5425E94.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\543B51B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\5538D90.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\5852FE6.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\600A6DA.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\600F814.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\6202FE7.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\628112F.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\6283082.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\639148.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\644FDFE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\709515A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\735158.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\735ECB1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\761DC3A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\7873C73.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\8051035.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\821A5C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\832E206.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\8415B59.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\87118FC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\8713553.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\873B96.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\8843C84.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\884A88E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\899A581.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\917A6C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\945EED1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\9483784.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\966E9A2.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\967A6B9.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\9854F0A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX14AE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX1ACC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX1DD3.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX1DE4.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX2132.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX2541.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX2B02.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX3BEE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX6CE7.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX6CF8.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX6EF5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX6F05.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX6F16.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX7559.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX8330.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX8341.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX97E7.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX9B71.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX9BA1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAX9BB1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXA3C9.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXAC5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXADDA.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXADEB.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXB32E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXB9E5.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXBBDC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD669.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD699.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD6AA.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD780.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD78E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXD791.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXE7D1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXF19A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXF453.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\AAXF9FE.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\C1641422-9F07-478A-A925-F21559A0CE31.Diagnose.0.etl => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\chrome_installer.log => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_0MJllvhPN2Ou7JV => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_2Yqno75JcxN4w7H => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_5RzzueJdxOVaaNi => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_6PLfcfuIDivoWlp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_7Q33Yp0biZhgHBg => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_9p0KJieUJF4XFmW => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_dbTfyKbXnTBPdHk => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_f4m2djfZob0FESP => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_jcoaqtAOXzhpq5u => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_jySkQk1XKJgrdyY => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_K6eAeEBnoTmvmM4 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_p1IYIX8J8WZZJ8j => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_PQ0x59vAUILRxgr => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_RRhugZBblag48yO => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_WD61hJ4mcCNwX9r => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\etilqs_WucG68bBnYqZgKX => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\F8D0FC8C-BAE6-44C0-9882-52938CE723D7.Diagnose.0.etl => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\F8D0FC8C-BAE6-44C0-9882-52938CE723D7.Repair.1.etl => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\FDAD2A8D-EA3B-4FE7-8F7C-1B7B4FCDD98D.Diagnose.0.etl => Moved successfully.
Could not move "C:\Users\Sabina\AppData\Local\Temp\FXSAPIDebugLogFile.txt" => Scheduled to move on reboot.
C:\Users\Sabina\AppData\Local\Temp\FXSTIFFDebugLogFile.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\npsB32A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\npsD93C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\npsF690.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\RBX-1E2F6C9E.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\RBX-605D22C1.log => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Sabina.bmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\SkypeSetup.exe => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\StructuredQuery.log => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0000 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0001 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0002 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0003 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0004 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0005 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0006 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0007 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0008 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0009 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0010 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0011 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0012 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0013 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0014 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0015 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0016 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0017 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0018 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0019 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0020 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0021 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0022 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\temp0023 => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\utt58BB.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\utt6115.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\utt6115.tmp.old => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\utt6741.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\uttF9A1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\uttF9A1.tmp.exe => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml1E1A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml227D.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml2F1A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml3247.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml33AC.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml3448.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml4FE3.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml58B9.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml5A12.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml779F.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml8075.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\Xml9FA8.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\XmlA7C.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\XmlE2B1.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\XmlE436.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\XmlF288.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\_852B.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\_9744.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\_E46A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\_FF4A.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\~DF1A589F33E86C2D9B.TMP => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\~DFCC4A320BC56F2992.TMP => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\~e5d141.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\{BC246C67-576C-4615-B1D6-0FD39A9B88A8}\adobeshockwavextrabundle.exe => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\{67BE5629-0027-4CD2-A147-96F64D0235FE}\setup.exe => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\{0A501B69-5B8B-4A7D-8D47-1BA8BE691201}\fpb.tmp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\updater_temp_truesuite\updatefile.xml => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\UnityWebPlayerUpdate.exe => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_18794709e0724a458c346981d55fc44a.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_1c93c6d038a7e74295e5a65a6464673a.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_30a2a0a7d9733d47b3ee646a4a48fced.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_66f4115d9b0bfd4586fd8faf97eea423.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_88e9590a921ea444904c13a5f3f7f115.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_9927fbd78983c9418ff4f827e3b1ccee.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\log_9f87358123e24d488ba471fb5144a8c9.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_15016a6dbcc32d4485e69eda05e34524.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_28d5213a64de654eac872ce56de09956.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_7f6eec98d7331748846ae9a8a9f90fda.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_8797e2221c4d5244adf0f9bb9cfd0b68.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_a50d646aa2f15c498dd0db53688a13bc.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\UnityWebPlayer\log\manager_f8a4211d6d4fa643963a171ca7b50a88.txt => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\aohghmighlieiainnegkcijnfilokake.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\bgjpfhpjcgdppjbgnpnjllokbmcdllig.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\dpnknncniillgijdlegfdffoheonaddd.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\gomekmidlodglbbmalcneegieacbdmki.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\kmabjcmofdemkaaekcmpocognlfonepb.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\nafaimnnclfjfedmmabolbppcngeolgf.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\nglnnifljabmkcecofpnlokcgnmbecia.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\olfeabkoenfaoljndfecamgilllcpiak.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\wrc@avast.com.zip => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\avastBCLTMP\chrome\Default\Web Data => Moved successfully.
Could not move "C:\Users\Sabina\AppData\Local\Temp" directory. => Scheduled to move on reboot.
=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-11-23 11:42:09)<=
C:\Users\hp\AppData\Local\Temp\FXSAPIDebugLogFile.txt => Is moved successfully.
C:\Users\hp\AppData\Local\Temp => Moved successfully.
C:\Users\Sabina\AppData\Local\Temp\FXSAPIDebugLogFile.txt => Is moved successfully.
C:\Users\Sabina\AppData\Local\Temp => Moved successfully.
==== End of Fixlog ====
-
Rudy
- Site Admin
- Příspěvky: 119555
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Resetovani
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Resetovani
U wifi ne tam asi bude chzba v HW a zbytek zjistim v prubehu pouzivani a dam vedet.
-
Rudy
- Site Admin
- Příspěvky: 119555
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Resetovani
OK, ozvěte se. U té wifi padá router, nebo wifi adaptér?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Resetovani
U wifi to bude chyba adapteru. Asi je integrovany na desce a nejak nechyta signal. Dal sem tam esterni wifi a jede na plno.
-
Rudy
- Site Admin
- Příspěvky: 119555
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Resetovani
Wifi adaptér bývá na vložené katě, která je obvkle u NB přístupná pod něktrým ze spodních krytů. Jinak je tady vše OK?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Resetovani
Vypada ze vse slape krom te wifi, ale to bude HW problem. Dekuji za pomoc 
-
Rudy
- Site Admin
- Příspěvky: 119555
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Resetovani
Rádo se stalo!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?