Resetovani
Napsal: 22 lis 2014 21:34
Zdravim v posledni dobe se mi zacal pocitac sam os sebe vypinat a zacal taky zamrzat. A jeste wifi ma signal 1 carku i kdyz router je cca 2 metry od PC.
-------------------------------------------------------------------------------------------------------------------------------------------------------
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-11-2014 01
Ran by hp (administrator) on HP-HP on 22-11-2014 21:32:15
Running from C:\Users\hp\Desktop
Loaded Profile: hp (Available profiles: hp & Sabina & Sandra & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Blue Coat Systems, Inc.) C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Roxio) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectify.exe
(Connectify) C:\Program Files (x86)\Connectify\DispatchUI.exe
(Google Inc.) C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Gridspot) C:\Program Files (x86)\Gridspot\Gridspot.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(VTech) C:\Program Files (x86)\VTech\Community\System\PCTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\hp\Desktop\FRSTLauncher(1).exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [3755296 2013-12-23] (Connectify)
HKLM\...\Run: [Connectify Dispatch] => C:\Program Files (x86)\Connectify\DispatchUI.exe [1685280 2013-12-23] (Connectify)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [658424 2011-05-06] (PDF Complete Inc)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-05-30] (Apple Inc.)
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103896 2011-12-12] (PC Tools)
HKLM-x32\...\Run: [Gridspot] => C:\Program Files (x86)\Gridspot\Gridspot.exe [525168 2012-03-20] (Gridspot)
HKLM-x32\...\Run: [MyPublicWiFi] => C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe [2002944 2011-12-22] ()
HKLM-x32\...\Run: [CommunityTray] => C:\Program Files (x86)\VTech\Community\System\Startup.exe [11776 2008-03-15] (VTech)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064 2014-11-20] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Run: [Google Update] => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-03-30] (Google Inc.)
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: J - J:\autorun.exe
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: {7aad374a-d8b4-11e0-883b-806e6f6e6963} - E:\autorun.exe /autorun
HKU\TS_KeyLodaded\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Guest\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\TS_KeyLodaded\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Guest\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\TS_KeyLodaded\...\Run: [uTorrent] => C:\Users\Guest\AppData\Roaming\uTorrent\uTorrent.exe [1418832 2014-09-13] (BitTorrent Inc.)
HKU\TS_KeyLodaded\...\Run: [{79BF4901-1EC4-4726-B3C2-A7859706C6E7}] => C:\Users\Guest\Downloads\LeagueofLegends_NA_Installer_05_07_13.exe [32229024 2014-08-24] (Riot Games)
HKU\S-1-5-18\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-18\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:8555;https=127.0.0.1:8555
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
HKU\TS_KeyLodaded\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_s ... 3&tsp=5251
HKU\TS_KeyLodaded\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDF
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {3F278E8A-B758-4500-9313-D8816127BE5C} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {4078FCEF-4277-4536-9AF4-E43B8C9CD31F} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {469F2D02-4102-462B-BC70-05874251F5C6} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {8B271665-4F14-423A-9407-4EB479FFE068} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {A746493B-761D-48B1-A411-3EA766F01B98} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {AD1D4CB3-4B37-41B1-A3FE-EC2443002EE1} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {E7F7AF4D-EF6E-4026-BE17-436B91CD2DB3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {F3395D6F-8E8F-485A-A71D-5A84B9819E1B} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTe ... 3&tsp=5251
SearchScopes: HKU\TS_KeyLodaded -> {2DD496D4-B21F-4B9E-9D45-80B9312FE9E4} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF
SearchScopes: HKU\TS_KeyLodaded -> {57892B23-E393-474C-987A-97BD8C62A4B5} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {5E129CDA-ABEB-48C5-8BCF-355EEA567284} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {5F744618-9107-4298-B619-5D4923892A5D} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKU\TS_KeyLodaded -> {84699356-C568-40CE-A470-5826CE3FC720} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {98EBCEF3-DBEE-46BF-BAE4-52BDF1FE601A} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {AE2D1DB3-E531-41BB-948A-D669DE7AC53C} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://uk.search.yahoo.com/search?p={se ... ype=HPDTDF
SearchScopes: HKU\TS_KeyLodaded -> {C5582402-4283-4A58-94CF-DBA7EDE77AF5} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {CBA77424-721E-46F1-8D4D-2F37D5516DFC} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {D2831001-D38E-40BF-B263-9CAFAC74383E} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://en.wikipedia.org/wiki/Special:Se ... earchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192
FF NewTab: hxxp://www.google.com/
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1214154.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll ()
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\hp\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\hp\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @talk.google.com/O1DPlugin -> C:\Users\hp\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @tools.google.com/Google Update;version=3 -> C:\Users\hp\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @tools.google.com/Google Update;version=9 -> C:\Users\hp\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\hp\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\TS_KeyLodaded: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Guest\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\hp\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\hp\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\badoo.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\firmycz.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\mapycz.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\zbocz.xml
FF Extension: Seznam lištička - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-06-08]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com [2014-11-22]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-05-19]
FF HKU\.DEFAULT\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF HKU\TS_KeyLodaded\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
Chrome:
=======
CHR HomePage: Default ->
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-21]
CHR Extension: (Google Docs) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-21]
CHR Extension: (Google Drive) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-21]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-31]
CHR Extension: (YouTube) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-21]
CHR Extension: (Google Search) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-21]
CHR Extension: (Google Sheets) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-21]
CHR Extension: (Google Wallet) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (Gmail) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-21]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-20]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [538000 2012-06-10] (Protection Technology)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-20] (AVAST Software)
R2 bckwfs; C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe [2647256 2014-01-24] (Blue Coat Systems, Inc.)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2013-12-23] (Connectify) [File not signed]
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227936 2013-11-16] (WildTangent)
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [578264 2011-12-22] (Pandora.TV)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2011-12-12] (PC Tools)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-05-06] (PDF Complete Inc)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2013-01-12] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [2687592 2012-06-10] (Protection Technology)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-20] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-20] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-20] ()
R2 bckd; C:\Windows\System32\drivers\bckd.sys [126168 2014-01-24] (Blue Coat Systems, Inc.)
R1 cnnctfy3; C:\Windows\System32\DRIVERS\cnnctfy3.sys [35352 2013-12-25] (Connectify)
R2 GridspotVMDriver; C:\Program Files (x86)\Gridspot\VMRuntime\VBoxDrv.sys [224048 2011-11-04] (Oracle Corporation)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-08-25] ()
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-06-10] (Duplex Secure Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 21:32 - 2014-11-22 21:32 - 00025923 _____ () C:\Users\hp\Desktop\FRST.txt
2014-11-22 21:32 - 2014-11-22 21:32 - 00000000 ____D () C:\FRST
2014-11-22 21:31 - 2014-11-22 21:31 - 00029696 _____ () C:\Users\hp\AppData\Local\MSGBOX.EXE
2014-11-22 21:31 - 2014-11-22 21:31 - 00015327 _____ () C:\Users\hp\Desktop\LM.bat
2014-11-22 21:30 - 2014-11-22 21:30 - 00112640 _____ (forum.viry.cz) C:\Users\hp\Downloads\FRSTLauncher.exe
2014-11-22 21:30 - 2014-11-22 21:30 - 00112640 _____ (forum.viry.cz) C:\Users\hp\Desktop\FRSTLauncher(1).exe
2014-11-22 21:29 - 2014-11-22 21:29 - 02118144 _____ (Farbar) C:\Users\hp\Desktop\FRST64.exe
2014-11-22 17:27 - 2014-11-22 17:27 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\MMFApplications
2014-11-22 17:26 - 2014-11-22 17:26 - 00000809 _____ () C:\Users\Sabina\Desktop\Five Nights at Freddy's.lnk
2014-11-22 17:26 - 2014-11-22 17:26 - 00000000 ____D () C:\Users\Sabina\Desktop\Five Nights at Freddy's
2014-11-22 17:26 - 2014-11-22 17:26 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Five Nights at Freddy's
2014-11-22 17:15 - 2014-11-22 17:24 - 229915398 ____R () C:\Users\Sabina\Downloads\Five_Nights_at_Freddys.exe
2014-11-22 17:14 - 2014-11-22 17:14 - 00000853 _____ () C:\Users\Sabina\Desktop\µTorrent.lnk
2014-11-22 17:14 - 2014-11-22 17:14 - 00000833 _____ () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-11-22 17:14 - 2014-11-22 17:14 - 00000000 ____D () C:\Users\Sabina\Downloads\F10RIDA
2014-11-22 17:13 - 2014-11-22 21:15 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\uTorrent
2014-11-22 17:13 - 2014-11-22 17:13 - 00000000 ____D () C:\ProgramData\APN
2014-11-22 17:11 - 2014-11-22 17:11 - 01720912 _____ (BitTorrent Inc.) C:\Users\Sabina\Downloads\uTorrent.exe
2014-11-22 17:07 - 2014-11-22 17:07 - 00911360 _____ (Megarapid.cz) C:\Users\Sabina\Downloads\MRDownloader.exe
2014-11-22 13:20 - 2014-11-22 13:20 - 00274587 _____ () C:\Users\Sandra\Downloads\Transformice.exe
2014-11-20 13:35 - 2014-11-20 13:35 - 00107368 _____ () C:\Windows\PFRO.log
2014-11-20 12:11 - 2014-11-20 12:11 - 00001926 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-11-20 12:08 - 2014-11-20 12:08 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-11-20 12:08 - 2014-11-20 12:08 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-11-19 15:49 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 15:49 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 15:49 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 15:49 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 19:39 - 2014-11-18 19:39 - 05008056 _____ (Adobe Systems Inc.) C:\Users\Sabina\Downloads\Shockwave_Installer_Slim.exe
2014-11-18 16:58 - 2014-11-18 16:58 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\WildTangent
2014-11-16 17:26 - 2014-11-16 17:26 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\WildTangent
2014-11-16 17:26 - 2014-11-16 17:26 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-15 22:34 - 2014-11-15 22:34 - 04159264 _____ (Mindspark Interactive Network) C:\Users\Sandra\Downloads\EliteUnzipSetup.EliteUnzip_aa.gpdjcoccminpbgmiffhifdcnelpojeeb.ch.exe
2014-11-15 12:25 - 2014-11-15 12:25 - 00000000 __SHD () C:\Users\Sandra\AppData\Local\EmieBrowserModeList
2014-11-14 22:42 - 2014-11-14 22:49 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\vlc
2014-11-14 22:42 - 2014-11-14 22:42 - 00406303 _____ () C:\Users\Sabina\Downloads\Minecraft-1.7.5-Cracked-Launcher-[AUTO-UPDATES]-by-Racad- (1).zip
2014-11-14 22:41 - 2014-11-14 22:41 - 00406303 _____ () C:\Users\Sabina\Downloads\Minecraft-1.7.5-Cracked-Launcher-[AUTO-UPDATES]-by-Racad-.zip
2014-11-14 17:21 - 2014-11-14 17:21 - 00001350 _____ () C:\Users\Sabina\Desktop\ROBLOX Player.lnk
2014-11-14 17:21 - 2014-11-14 17:21 - 00001169 _____ () C:\Users\Sabina\Desktop\ROBLOX Studio.lnk
2014-11-14 17:21 - 2014-11-14 17:21 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2014-11-14 17:21 - 2014-11-14 17:21 - 00000000 ____D () C:\Users\Sabina\AppData\Local\Roblox
2014-11-14 17:20 - 2014-11-14 17:21 - 00639344 _____ (ROBLOX Corporation) C:\Users\Sabina\Downloads\RobloxPlayerLauncher.exe
2014-11-14 17:11 - 2014-11-14 17:20 - 229919200 _____ () C:\Users\Sabina\Downloads\FiveNightsDEMO_INSTALL.exe
2014-11-13 20:45 - 2014-11-13 20:45 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-13 19:44 - 2014-11-13 19:44 - 00000000 __SHD () C:\Users\Sabina\AppData\Local\EmieBrowserModeList
2014-11-12 12:58 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 12:58 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 12:58 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 12:58 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 12:58 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 12:58 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 12:58 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 12:58 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 12:58 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 12:58 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 12:58 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 12:58 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 12:58 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 12:58 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 12:58 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 12:58 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 12:58 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 12:58 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 12:58 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 12:58 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 12:58 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 12:58 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 12:58 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 12:58 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 12:58 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 12:58 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 12:58 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 12:58 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 12:58 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 12:58 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 12:58 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 12:58 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 12:58 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 12:58 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 12:58 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 12:58 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 12:58 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 12:58 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 12:58 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 12:58 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 12:58 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 12:58 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 12:58 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 12:58 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 12:58 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 12:58 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 12:58 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 12:58 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 12:58 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 12:58 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 12:58 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 12:58 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 12:58 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 12:58 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 12:58 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 12:58 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 12:58 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-12 12:58 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-12 12:58 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-12 12:58 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 12:58 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 12:58 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 12:58 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 12:58 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 12:58 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 12:58 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 12:58 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 12:58 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 12:58 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 12:58 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 12:58 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 12:58 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 12:58 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 12:58 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 12:58 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 12:58 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 12:58 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 12:58 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 12:58 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 12:58 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 12:58 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 12:57 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 12:57 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 12:57 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 12:57 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 12:57 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 12:57 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-03 11:12 - 2014-11-03 11:12 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-03 08:09 - 2014-11-22 21:12 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job
2014-11-03 08:09 - 2014-11-18 22:07 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job
2014-10-30 15:36 - 2014-10-30 15:36 - 00000222 _____ () C:\Users\Sabina\Desktop\Counter-Strike Nexon Zombies.url
2014-10-30 15:36 - 2014-10-30 15:36 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-30 15:30 - 2014-10-30 15:31 - 00790240 _____ (Shark Labs) C:\Users\Sabina\Downloads\CFSetup360 (1).exe
2014-10-30 15:27 - 2014-10-30 15:27 - 00790240 _____ (Shark Labs) C:\Users\Sabina\Downloads\CFSetup360.exe
2014-10-27 21:45 - 2014-10-27 21:45 - 00000538 _____ () C:\Users\Sabina\Downloads\url (1).htm
2014-10-27 21:43 - 2014-10-27 21:43 - 00000221 _____ () C:\Users\Sabina\Desktop\Grand Theft Auto 2.url
2014-10-27 21:13 - 2014-10-27 21:13 - 00000000 ____D () C:\Users\Sabina\Documents\My Games
2014-10-27 20:51 - 2014-10-27 20:51 - 00000222 _____ () C:\Users\Sabina\Desktop\Goat Simulator.url
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 21:30 - 2012-02-15 19:58 - 00003902 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5476B59C-F8DD-4429-96C2-6BFF815825C1}
2014-11-22 21:30 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-22 21:30 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-22 21:26 - 2012-02-15 19:51 - 01221368 _____ () C:\Windows\WindowsUpdate.log
2014-11-22 21:25 - 2012-07-11 08:29 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-11-22 21:23 - 2014-10-18 22:34 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-22 21:23 - 2013-11-01 20:07 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-11-22 21:23 - 2011-08-25 17:19 - 00000000 ____D () C:\ProgramData\PDFC
2014-11-22 21:22 - 2014-09-23 18:31 - 00010808 _____ () C:\Windows\setupact.log
2014-11-22 21:22 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-22 20:45 - 2014-10-18 22:34 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-22 20:43 - 2012-04-14 03:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-22 19:52 - 2014-09-21 16:55 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Skype
2014-11-22 19:04 - 2014-09-21 16:45 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{F8DFF3C6-CD79-4584-AC22-822C0B72B262}
2014-11-22 18:36 - 2012-12-18 00:19 - 00000000 ____D () C:\Windows\Minidump
2014-11-22 18:35 - 2011-09-06 19:17 - 00287898 ____N () C:\Windows\Minidump\112214-32729-01.dmp
2014-11-22 18:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-22 17:03 - 2013-11-16 19:17 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-11-22 16:16 - 2014-09-21 18:39 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Skype
2014-11-22 13:18 - 2014-09-21 18:39 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Seznam.cz
2014-11-22 12:12 - 2014-09-21 18:38 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{E5128A28-09FA-4B04-B4DE-030771CB111E}
2014-11-22 10:20 - 2012-04-14 11:00 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-11-22 08:05 - 2011-08-25 17:23 - 00000000 ____D () C:\ProgramData\truesuite
2014-11-21 21:56 - 2011-08-25 17:12 - 00000000 ____D () C:\ProgramData\Temp
2014-11-21 19:46 - 2012-04-28 05:06 - 00002104 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-20 13:40 - 2014-09-21 16:44 - 00000906 __RSH () C:\Users\Sabina\ntuser.pol
2014-11-20 13:40 - 2014-09-21 16:44 - 00000000 ____D () C:\Users\Sabina
2014-11-20 12:15 - 2014-09-21 18:38 - 00000906 __RSH () C:\Users\Sandra\ntuser.pol
2014-11-20 12:15 - 2014-09-21 18:38 - 00000000 ____D () C:\Users\Sandra
2014-11-20 12:13 - 2012-04-14 02:51 - 00000632 __RSH () C:\Users\hp\ntuser.pol
2014-11-20 12:13 - 2012-02-15 19:53 - 00000000 ____D () C:\Users\hp
2014-11-20 12:08 - 2014-05-28 21:33 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-11-20 12:08 - 2014-05-28 21:33 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-11-20 12:08 - 2013-07-04 09:29 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-11-20 12:08 - 2013-07-04 09:29 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-11-18 22:13 - 2012-04-15 02:03 - 00000000 ____D () C:\Users\hp\AppData\Roaming\Mozilla
2014-11-18 22:07 - 2014-03-31 07:40 - 00003918 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA
2014-11-18 22:07 - 2014-03-31 07:40 - 00003522 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core
2014-11-15 12:07 - 2009-07-14 06:13 - 00786622 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-15 09:40 - 2012-04-28 05:06 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-15 09:40 - 2012-04-28 05:06 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-13 20:43 - 2012-04-14 03:05 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-13 20:43 - 2012-04-14 03:05 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-13 20:43 - 2011-08-25 17:17 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-13 17:14 - 2014-10-18 15:30 - 00000000 ____D () C:\Users\Sabina\AppData\Local\CrashDumps
2014-11-12 19:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-12 18:07 - 2009-07-14 05:45 - 04970952 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-12 18:05 - 2014-05-18 05:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-12 16:17 - 2012-07-20 11:20 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-12 16:15 - 2013-08-14 23:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 16:07 - 2012-05-19 20:20 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-05 16:05 - 2009-07-14 06:08 - 00032618 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-03 19:32 - 2012-04-14 04:05 - 00000000 ____D () C:\Users\hp\AppData\Roaming\Skype
2014-11-03 11:10 - 2012-10-16 18:23 - 00000000 ____D () C:\Users\hp\AppData\Roaming\.minecraft
2014-10-26 13:09 - 2014-09-21 16:45 - 00000000 ____D () C:\Users\Sabina\AppData\Local\PDFC
Some content of TEMP:
====================
C:\Users\hp\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sabina\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sabina\AppData\Local\Temp\uttF9A1.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-15 09:12
==================== End Of Log ============================
-------------------------------------------------------------------------------------------------------------------------------------------------------
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-11-2014 01
Ran by hp (administrator) on HP-HP on 22-11-2014 21:32:15
Running from C:\Users\hp\Desktop
Loaded Profile: hp (Available profiles: hp & Sabina & Sandra & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Blue Coat Systems, Inc.) C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Roxio) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectify.exe
(Connectify) C:\Program Files (x86)\Connectify\DispatchUI.exe
(Google Inc.) C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Gridspot) C:\Program Files (x86)\Gridspot\Gridspot.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(VTech) C:\Program Files (x86)\VTech\Community\System\PCTray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\hp\Desktop\FRSTLauncher(1).exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [3755296 2013-12-23] (Connectify)
HKLM\...\Run: [Connectify Dispatch] => C:\Program Files (x86)\Connectify\DispatchUI.exe [1685280 2013-12-23] (Connectify)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [658424 2011-05-06] (PDF Complete Inc)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-05-30] (Apple Inc.)
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103896 2011-12-12] (PC Tools)
HKLM-x32\...\Run: [Gridspot] => C:\Program Files (x86)\Gridspot\Gridspot.exe [525168 2012-03-20] (Gridspot)
HKLM-x32\...\Run: [MyPublicWiFi] => C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe [2002944 2011-12-22] ()
HKLM-x32\...\Run: [CommunityTray] => C:\Program Files (x86)\VTech\Community\System\Startup.exe [11776 2008-03-15] (VTech)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064 2014-11-20] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Run: [Google Update] => C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-03-30] (Google Inc.)
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: J - J:\autorun.exe
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\...\MountPoints2: {7aad374a-d8b4-11e0-883b-806e6f6e6963} - E:\autorun.exe /autorun
HKU\TS_KeyLodaded\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Guest\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\TS_KeyLodaded\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Guest\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\TS_KeyLodaded\...\Run: [uTorrent] => C:\Users\Guest\AppData\Roaming\uTorrent\uTorrent.exe [1418832 2014-09-13] (BitTorrent Inc.)
HKU\TS_KeyLodaded\...\Run: [{79BF4901-1EC4-4726-B3C2-A7859706C6E7}] => C:\Users\Guest\Downloads\LeagueofLegends_NA_Installer_05_07_13.exe [32229024 2014-08-24] (Riot Games)
HKU\S-1-5-18\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-18\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\hp\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:8555;https=127.0.0.1:8555
HKU\S-1-5-21-3652145099-1749333591-366478180-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
HKU\TS_KeyLodaded\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_s ... 3&tsp=5251
HKU\TS_KeyLodaded\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDF
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {3F278E8A-B758-4500-9313-D8816127BE5C} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {4078FCEF-4277-4536-9AF4-E43B8C9CD31F} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {469F2D02-4102-462B-BC70-05874251F5C6} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {8B271665-4F14-423A-9407-4EB479FFE068} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {A746493B-761D-48B1-A411-3EA766F01B98} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {AD1D4CB3-4B37-41B1-A3FE-EC2443002EE1} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {E7F7AF4D-EF6E-4026-BE17-436B91CD2DB3} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKU\S-1-5-21-3652145099-1749333591-366478180-1000 -> {F3395D6F-8E8F-485A-A71D-5A84B9819E1B} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTe ... 3&tsp=5251
SearchScopes: HKU\TS_KeyLodaded -> {2DD496D4-B21F-4B9E-9D45-80B9312FE9E4} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF
SearchScopes: HKU\TS_KeyLodaded -> {57892B23-E393-474C-987A-97BD8C62A4B5} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {5E129CDA-ABEB-48C5-8BCF-355EEA567284} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {5F744618-9107-4298-B619-5D4923892A5D} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKU\TS_KeyLodaded -> {84699356-C568-40CE-A470-5826CE3FC720} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {98EBCEF3-DBEE-46BF-BAE4-52BDF1FE601A} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {AE2D1DB3-E531-41BB-948A-D669DE7AC53C} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://uk.search.yahoo.com/search?p={se ... ype=HPDTDF
SearchScopes: HKU\TS_KeyLodaded -> {C5582402-4283-4A58-94CF-DBA7EDE77AF5} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {CBA77424-721E-46F1-8D4D-2F37D5516DFC} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {D2831001-D38E-40BF-B263-9CAFAC74383E} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKU\TS_KeyLodaded -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://en.wikipedia.org/wiki/Special:Se ... earchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shoc ... tor/sw.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192
FF NewTab: hxxp://www.google.com/
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1214154.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll ()
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\hp\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\hp\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @talk.google.com/O1DPlugin -> C:\Users\hp\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @tools.google.com/Google Update;version=3 -> C:\Users\hp\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @tools.google.com/Google Update;version=9 -> C:\Users\hp\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-3652145099-1749333591-366478180-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\hp\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\TS_KeyLodaded: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Guest\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\hp\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\hp\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\badoo.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\firmycz.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\mapycz.xml
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\searchplugins\zbocz.xml
FF Extension: Seznam lištička - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\lv5jc6py.default-1379005186192\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-06-08]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com [2014-11-22]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-05-19]
FF HKU\.DEFAULT\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF HKU\TS_KeyLodaded\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
Chrome:
=======
CHR HomePage: Default ->
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-21]
CHR Extension: (Google Docs) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-21]
CHR Extension: (Google Drive) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-21]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-31]
CHR Extension: (YouTube) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-21]
CHR Extension: (Google Search) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-21]
CHR Extension: (Google Sheets) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-21]
CHR Extension: (Google Wallet) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (Gmail) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-21]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-20]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [538000 2012-06-10] (Protection Technology)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-20] (AVAST Software)
R2 bckwfs; C:\Program Files\Blue Coat K9 Web Protection\k9filter.exe [2647256 2014-01-24] (Blue Coat Systems, Inc.)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2013-12-23] (Connectify) [File not signed]
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227936 2013-11-16] (WildTangent)
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [578264 2011-12-22] (Pandora.TV)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2011-12-12] (PC Tools)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-05-06] (PDF Complete Inc)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2013-01-12] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [2687592 2012-06-10] (Protection Technology)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-20] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-20] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-20] ()
R2 bckd; C:\Windows\System32\drivers\bckd.sys [126168 2014-01-24] (Blue Coat Systems, Inc.)
R1 cnnctfy3; C:\Windows\System32\DRIVERS\cnnctfy3.sys [35352 2013-12-25] (Connectify)
R2 GridspotVMDriver; C:\Program Files (x86)\Gridspot\VMRuntime\VBoxDrv.sys [224048 2011-11-04] (Oracle Corporation)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-08-25] ()
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-06-10] (Duplex Secure Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 21:32 - 2014-11-22 21:32 - 00025923 _____ () C:\Users\hp\Desktop\FRST.txt
2014-11-22 21:32 - 2014-11-22 21:32 - 00000000 ____D () C:\FRST
2014-11-22 21:31 - 2014-11-22 21:31 - 00029696 _____ () C:\Users\hp\AppData\Local\MSGBOX.EXE
2014-11-22 21:31 - 2014-11-22 21:31 - 00015327 _____ () C:\Users\hp\Desktop\LM.bat
2014-11-22 21:30 - 2014-11-22 21:30 - 00112640 _____ (forum.viry.cz) C:\Users\hp\Downloads\FRSTLauncher.exe
2014-11-22 21:30 - 2014-11-22 21:30 - 00112640 _____ (forum.viry.cz) C:\Users\hp\Desktop\FRSTLauncher(1).exe
2014-11-22 21:29 - 2014-11-22 21:29 - 02118144 _____ (Farbar) C:\Users\hp\Desktop\FRST64.exe
2014-11-22 17:27 - 2014-11-22 17:27 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\MMFApplications
2014-11-22 17:26 - 2014-11-22 17:26 - 00000809 _____ () C:\Users\Sabina\Desktop\Five Nights at Freddy's.lnk
2014-11-22 17:26 - 2014-11-22 17:26 - 00000000 ____D () C:\Users\Sabina\Desktop\Five Nights at Freddy's
2014-11-22 17:26 - 2014-11-22 17:26 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Five Nights at Freddy's
2014-11-22 17:15 - 2014-11-22 17:24 - 229915398 ____R () C:\Users\Sabina\Downloads\Five_Nights_at_Freddys.exe
2014-11-22 17:14 - 2014-11-22 17:14 - 00000853 _____ () C:\Users\Sabina\Desktop\µTorrent.lnk
2014-11-22 17:14 - 2014-11-22 17:14 - 00000833 _____ () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-11-22 17:14 - 2014-11-22 17:14 - 00000000 ____D () C:\Users\Sabina\Downloads\F10RIDA
2014-11-22 17:13 - 2014-11-22 21:15 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\uTorrent
2014-11-22 17:13 - 2014-11-22 17:13 - 00000000 ____D () C:\ProgramData\APN
2014-11-22 17:11 - 2014-11-22 17:11 - 01720912 _____ (BitTorrent Inc.) C:\Users\Sabina\Downloads\uTorrent.exe
2014-11-22 17:07 - 2014-11-22 17:07 - 00911360 _____ (Megarapid.cz) C:\Users\Sabina\Downloads\MRDownloader.exe
2014-11-22 13:20 - 2014-11-22 13:20 - 00274587 _____ () C:\Users\Sandra\Downloads\Transformice.exe
2014-11-20 13:35 - 2014-11-20 13:35 - 00107368 _____ () C:\Windows\PFRO.log
2014-11-20 12:11 - 2014-11-20 12:11 - 00001926 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-11-20 12:08 - 2014-11-20 12:08 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-11-20 12:08 - 2014-11-20 12:08 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-11-19 15:49 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-19 15:49 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-19 15:49 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 15:49 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 19:39 - 2014-11-18 19:39 - 05008056 _____ (Adobe Systems Inc.) C:\Users\Sabina\Downloads\Shockwave_Installer_Slim.exe
2014-11-18 16:58 - 2014-11-18 16:58 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\WildTangent
2014-11-16 17:26 - 2014-11-16 17:26 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\WildTangent
2014-11-16 17:26 - 2014-11-16 17:26 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-15 22:34 - 2014-11-15 22:34 - 04159264 _____ (Mindspark Interactive Network) C:\Users\Sandra\Downloads\EliteUnzipSetup.EliteUnzip_aa.gpdjcoccminpbgmiffhifdcnelpojeeb.ch.exe
2014-11-15 12:25 - 2014-11-15 12:25 - 00000000 __SHD () C:\Users\Sandra\AppData\Local\EmieBrowserModeList
2014-11-14 22:42 - 2014-11-14 22:49 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\vlc
2014-11-14 22:42 - 2014-11-14 22:42 - 00406303 _____ () C:\Users\Sabina\Downloads\Minecraft-1.7.5-Cracked-Launcher-[AUTO-UPDATES]-by-Racad- (1).zip
2014-11-14 22:41 - 2014-11-14 22:41 - 00406303 _____ () C:\Users\Sabina\Downloads\Minecraft-1.7.5-Cracked-Launcher-[AUTO-UPDATES]-by-Racad-.zip
2014-11-14 17:21 - 2014-11-14 17:21 - 00001350 _____ () C:\Users\Sabina\Desktop\ROBLOX Player.lnk
2014-11-14 17:21 - 2014-11-14 17:21 - 00001169 _____ () C:\Users\Sabina\Desktop\ROBLOX Studio.lnk
2014-11-14 17:21 - 2014-11-14 17:21 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2014-11-14 17:21 - 2014-11-14 17:21 - 00000000 ____D () C:\Users\Sabina\AppData\Local\Roblox
2014-11-14 17:20 - 2014-11-14 17:21 - 00639344 _____ (ROBLOX Corporation) C:\Users\Sabina\Downloads\RobloxPlayerLauncher.exe
2014-11-14 17:11 - 2014-11-14 17:20 - 229919200 _____ () C:\Users\Sabina\Downloads\FiveNightsDEMO_INSTALL.exe
2014-11-13 20:45 - 2014-11-13 20:45 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-13 19:44 - 2014-11-13 19:44 - 00000000 __SHD () C:\Users\Sabina\AppData\Local\EmieBrowserModeList
2014-11-12 12:58 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 12:58 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 12:58 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 12:58 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 12:58 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 12:58 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 12:58 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 12:58 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 12:58 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 12:58 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 12:58 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 12:58 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 12:58 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 12:58 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 12:58 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 12:58 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 12:58 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 12:58 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 12:58 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 12:58 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 12:58 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 12:58 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 12:58 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 12:58 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 12:58 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 12:58 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 12:58 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 12:58 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 12:58 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 12:58 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 12:58 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 12:58 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 12:58 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 12:58 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 12:58 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 12:58 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 12:58 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 12:58 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 12:58 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 12:58 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 12:58 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 12:58 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 12:58 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 12:58 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 12:58 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 12:58 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 12:58 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 12:58 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 12:58 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 12:58 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 12:58 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 12:58 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 12:58 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 12:58 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 12:58 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 12:58 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 12:58 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-12 12:58 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-12 12:58 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-12 12:58 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 12:58 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 12:58 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 12:58 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 12:58 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 12:58 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 12:58 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 12:58 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 12:58 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 12:58 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 12:58 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 12:58 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 12:58 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 12:58 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 12:58 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 12:58 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 12:58 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 12:58 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 12:58 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 12:58 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 12:58 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 12:58 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 12:58 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 12:58 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 12:57 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 12:57 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 12:57 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 12:57 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 12:57 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 12:57 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 12:57 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 12:57 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-03 11:12 - 2014-11-03 11:12 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-03 08:09 - 2014-11-22 21:12 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA.job
2014-11-03 08:09 - 2014-11-18 22:07 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core.job
2014-10-30 15:36 - 2014-10-30 15:36 - 00000222 _____ () C:\Users\Sabina\Desktop\Counter-Strike Nexon Zombies.url
2014-10-30 15:36 - 2014-10-30 15:36 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-30 15:30 - 2014-10-30 15:31 - 00790240 _____ (Shark Labs) C:\Users\Sabina\Downloads\CFSetup360 (1).exe
2014-10-30 15:27 - 2014-10-30 15:27 - 00790240 _____ (Shark Labs) C:\Users\Sabina\Downloads\CFSetup360.exe
2014-10-27 21:45 - 2014-10-27 21:45 - 00000538 _____ () C:\Users\Sabina\Downloads\url (1).htm
2014-10-27 21:43 - 2014-10-27 21:43 - 00000221 _____ () C:\Users\Sabina\Desktop\Grand Theft Auto 2.url
2014-10-27 21:13 - 2014-10-27 21:13 - 00000000 ____D () C:\Users\Sabina\Documents\My Games
2014-10-27 20:51 - 2014-10-27 20:51 - 00000222 _____ () C:\Users\Sabina\Desktop\Goat Simulator.url
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-22 21:30 - 2012-02-15 19:58 - 00003902 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5476B59C-F8DD-4429-96C2-6BFF815825C1}
2014-11-22 21:30 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-22 21:30 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-22 21:26 - 2012-02-15 19:51 - 01221368 _____ () C:\Windows\WindowsUpdate.log
2014-11-22 21:25 - 2012-07-11 08:29 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-11-22 21:23 - 2014-10-18 22:34 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-22 21:23 - 2013-11-01 20:07 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-11-22 21:23 - 2011-08-25 17:19 - 00000000 ____D () C:\ProgramData\PDFC
2014-11-22 21:22 - 2014-09-23 18:31 - 00010808 _____ () C:\Windows\setupact.log
2014-11-22 21:22 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-22 20:45 - 2014-10-18 22:34 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-22 20:43 - 2012-04-14 03:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-22 19:52 - 2014-09-21 16:55 - 00000000 ____D () C:\Users\Sabina\AppData\Roaming\Skype
2014-11-22 19:04 - 2014-09-21 16:45 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{F8DFF3C6-CD79-4584-AC22-822C0B72B262}
2014-11-22 18:36 - 2012-12-18 00:19 - 00000000 ____D () C:\Windows\Minidump
2014-11-22 18:35 - 2011-09-06 19:17 - 00287898 ____N () C:\Windows\Minidump\112214-32729-01.dmp
2014-11-22 18:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-22 17:03 - 2013-11-16 19:17 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-11-22 16:16 - 2014-09-21 18:39 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Skype
2014-11-22 13:18 - 2014-09-21 18:39 - 00000000 ____D () C:\Users\Sandra\AppData\Roaming\Seznam.cz
2014-11-22 12:12 - 2014-09-21 18:38 - 00003918 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{E5128A28-09FA-4B04-B4DE-030771CB111E}
2014-11-22 10:20 - 2012-04-14 11:00 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-11-22 08:05 - 2011-08-25 17:23 - 00000000 ____D () C:\ProgramData\truesuite
2014-11-21 21:56 - 2011-08-25 17:12 - 00000000 ____D () C:\ProgramData\Temp
2014-11-21 19:46 - 2012-04-28 05:06 - 00002104 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-20 13:40 - 2014-09-21 16:44 - 00000906 __RSH () C:\Users\Sabina\ntuser.pol
2014-11-20 13:40 - 2014-09-21 16:44 - 00000000 ____D () C:\Users\Sabina
2014-11-20 12:15 - 2014-09-21 18:38 - 00000906 __RSH () C:\Users\Sandra\ntuser.pol
2014-11-20 12:15 - 2014-09-21 18:38 - 00000000 ____D () C:\Users\Sandra
2014-11-20 12:13 - 2012-04-14 02:51 - 00000632 __RSH () C:\Users\hp\ntuser.pol
2014-11-20 12:13 - 2012-02-15 19:53 - 00000000 ____D () C:\Users\hp
2014-11-20 12:08 - 2014-05-28 21:33 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-11-20 12:08 - 2014-05-28 21:33 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-11-20 12:08 - 2013-07-04 09:29 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-11-20 12:08 - 2013-07-04 09:29 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-11-20 12:08 - 2012-05-19 20:15 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-11-18 22:13 - 2012-04-15 02:03 - 00000000 ____D () C:\Users\hp\AppData\Roaming\Mozilla
2014-11-18 22:07 - 2014-03-31 07:40 - 00003918 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000UA
2014-11-18 22:07 - 2014-03-31 07:40 - 00003522 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3652145099-1749333591-366478180-1000Core
2014-11-15 12:07 - 2009-07-14 06:13 - 00786622 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-15 09:40 - 2012-04-28 05:06 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-15 09:40 - 2012-04-28 05:06 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-13 20:43 - 2012-04-14 03:05 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-13 20:43 - 2012-04-14 03:05 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-13 20:43 - 2011-08-25 17:17 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-13 17:14 - 2014-10-18 15:30 - 00000000 ____D () C:\Users\Sabina\AppData\Local\CrashDumps
2014-11-12 19:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-12 18:07 - 2009-07-14 05:45 - 04970952 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-12 18:05 - 2014-05-18 05:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-12 16:17 - 2012-07-20 11:20 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-12 16:15 - 2013-08-14 23:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 16:07 - 2012-05-19 20:20 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-05 16:05 - 2009-07-14 06:08 - 00032618 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-03 19:32 - 2012-04-14 04:05 - 00000000 ____D () C:\Users\hp\AppData\Roaming\Skype
2014-11-03 11:10 - 2012-10-16 18:23 - 00000000 ____D () C:\Users\hp\AppData\Roaming\.minecraft
2014-10-26 13:09 - 2014-09-21 16:45 - 00000000 ____D () C:\Users\Sabina\AppData\Local\PDFC
Some content of TEMP:
====================
C:\Users\hp\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sabina\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sabina\AppData\Local\Temp\uttF9A1.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-15 09:12
==================== End Of Log ============================
