Witamy na forum PC Format Zapraszamy do REJESTRACJI


Użytkownicy przeglądający ten wątek: 1 gości

Avast informuje cały czas o zagrożeniu url:mal

#11
RE: Avast informuje cały czas o zagrożeniu url:mal
Tak żadne powiadomienia już nie wyskakują. Dzięki za pomoc.
Wystawię również logi z drugiego komputera który jest w sieci, ale to w oddzielnym wątku.
 System operacyjny: windows_seven Przeglądarka: chrome
#12
RE: Avast informuje cały czas o zagrożeniu url:mal
Wyłącz Windows Defender.
Możesz przeskanować jeszcze komputer AV online np. ESET Online Scanner.
Wykonaj kończenie dezynfekcji.
Jeżeli podjąłem się pomocy w Twoim wątku, i nie odpowiadam w nim dłużej niż 2 dni -> przypomnij mi się na PW, podając link do wątku.

 System operacyjny: windows_eight Przeglądarka: firefox
#13
RE: Avast informuje cały czas o zagrożeniu url:mal
Witam. Również mam problem z wirusem URL:Mal i nie mogę w żaden sposób sobie z nim poradzić. Moje logi :
OTL: http://wklej.org/id/1530949/
Extras : http://wklej.org/id/1530957/
FRST: http://wklej.org/id/1530964/
Addition : http://wklej.org/id/1530970/
Log:http://wklej.org/id/1530973/

Bardzo proszę o pomoc.
 System operacyjny: windows_seven Przeglądarka: chrome
#14
RE: Avast informuje cały czas o zagrożeniu url:mal
hej, mam dokladnie taki sam problem
KOD
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2015
Ran by kamila (administrator) on KAMILA-PC on 19-01-2015 22:10:32
Running from C:\Users\kamila\Downloads
Loaded Profiles: kamila (Available profiles: kamila)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335...scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Fuyu LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(ClickCaption) C:\Program Files (x86)\ClickCaption_1.10.0.4\Service\ccsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Intel Corporation) C:\WINDOWS\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
() C:\Program Files (x86)\Hold Page\updateHoldPage.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
() C:\Program Files (x86)\Hold Page\bin\utilHoldPage.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.expext.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.BrowserAdapter64.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.BrowserAdapter.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.PurBrowse64.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.BOASHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\WINWORD.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.BOASPRT.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.BOAS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3666800 2011-01-22] (Dell Inc.)
HKLM\...\Run: [DellStage] => C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [1802472 2011-01-25] ()
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [613536 2010-12-17] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe [379040 2010-12-17] (Atheros Commnucations)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [487562 2010-08-20] (Creative Technology Ltd)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [RoxWatchTray] => c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [Desktop Disc Tool] => c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()
HKLM-x32\...\Run: [Dell Registration] => C:\Program Files (x86)\System Registration\prodreg.exe [3926528 2010-08-23] (Dell, Inc.)
HKLM-x32\...\Run: [Microsoft Default Manager] => C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [439568 2010-05-10] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-11] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4024646407-3617198608-3306003234-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hp&a...6099860998
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hp&a...6099860998
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=...earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=...earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hp&a...6099860998
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hp&a...6099860998
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
HKU\S-1-5-21-4024646407-3617198608-3306003234-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hp&a...6099860998
HKU\S-1-5-21-4024646407-3617198608-3306003234-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hp&a...6099860998
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com/?type=sc&a...6099860998
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
SearchScopes: HKLM -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL = http://www.bing.com/search?q={searchTerm...-SearchBox
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
SearchScopes: HKLM-x32 -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL = http://www.bing.com/search?q={searchTerm...-SearchBox
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
SearchScopes: HKU\S-1-5-21-4024646407-3617198608-3306003234-1001 -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL =
SearchScopes: HKU\S-1-5-21-4024646407-3617198608-3306003234-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Hold Page 1.0.0.6 -> {6c14185e-4de6-4a79-985b-19f23fd1e638} -> C:\Program Files (x86)\Hold Page\HoldPageBHO.dll (Hold Page)
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bing Bar BHO -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - AtC:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Tcpip\Parameters: [DhcpNameServer] 62.179.1.62 62.179.1.63

FireFox:
========
FF ProfilePath: C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default
FF NewTab: chrome://quick_start/content/index.html
FF SelectedSearchEngine: omiga-plus
FF Homepage: hxxp://isearch.omiga-plus.com/?type=hp&ts=1419102385&from=cor&uid=WDCXWD5000BPVT-75HXZT1_WD-WX91A516099860998
FF Keyword.URL: hxxp://search.tb.ask.com/search/GGmain.jhtml?st=kwd&ptb=2C4A364F-82FD-4B0D-87FF-7BA8F3CC7102&n=780d0dc0&ind=2014121408&p2=^BA5^xdm007^YYA^pl&si=CPrFvqOixsICFcPMtAodKloASQ&searchfor=
FF Plugin: Atadobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: Atjava.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: Atmicrosoft.com/GENUINE -> disabled No File
FF Plugin: Atmicrosoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: Atadobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: Atmicrosoft.com/GENUINE -> disabled No File
FF Plugin-x32: AtMicrosoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: AtMicrosoft.com/NpWinExt,version=5.0 -> C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
FF Plugin-x32: Atmicrosoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: Atmicrosoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Atmicrosoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Atmicrosoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Attools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Attools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\searchplugins\ask-web-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\omiga-plus.xml
FF Extension: OnlineMapFinder - C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\Extensions\9pffxtbrAtOnlineMapFinder_9p.com [2014-12-14]
FF Extension: Fast Start - C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\Extensions\faststartffAtgmail.com [2014-12-20]
FF Extension: Hold Page 1.0.1 - C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\Extensions\{a16a1775-5ab3-4034-ac52-de0795db97f0}.xpi [2014-12-12]
FF Extension: Adblock Plus - C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-12-20]
FF HKLM-x32\...\Firefox\Extensions: [msntoolbarAtmsn.com] - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox
FF Extension: Bing Bar - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox [2011-06-17]
FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension
FF Extension: Search Helper Extension - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension [2011-06-17]
FF HKLM-x32\...\Firefox\Extensions: [{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension
FF Extension: Default Manager - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension [2011-06-17]
FF HKLM-x32\...\Firefox\Extensions: [wrcAtavast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-12-06]
FF HKLM-x32\...\Firefox\Extensions: [faststartffAtgmail.com] - C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\extensions\faststartffAtgmail.com
FF HKU\S-1-5-21-4024646407-3617198608-3306003234-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

Chrome:
=======
CHR Profile: C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentacje Google) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-19]
CHR Extension: (Dokumenty Google) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-19]
CHR Extension: (Dysk Google) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-19]
CHR Extension: (YouTube) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-19]
CHR Extension: (Szukaj w Google) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-19]
CHR Extension: (Avast SafePrice) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-01-19]
CHR Extension: (Arkusze Google) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-19]
CHR Extension: (Avast Online Security) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-01-19]
CHR Extension: (Hold Page) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljbbmbgagpjnafekbkklmfbjccbnjmnh [2015-01-19]
CHR Extension: (Google Wallet) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-19]
CHR Extension: (Gmail) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-19]
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - No Path
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2014-12-06]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-06]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Dell Wireless\Ath_CoexAgent.exe [151552 2010-10-01] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [53920 2010-12-17] (Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-06] (AVAST Software)
R2 ccsvc_1.10.0.4; C:\Program Files (x86)\ClickCaption_1.10.0.4\Service\ccsvc.exe [277584 2014-12-04] (ClickCaption)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 Update Hold Page; C:\Program Files (x86)\Hold Page\updateHoldPage.exe [529136 2015-01-19] ()
R2 Util Hold Page; C:\Program Files (x86)\Hold Page\bin\utilHoldPage.exe [529136 2015-01-19] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [485888 2014-12-20] (Fuyu LIMITED) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-06] ()
R1 ccnfd_1_10_0_4; C:\Windows\System32\drivers\ccnfd_1_10_0_4.sys [58232 2014-12-04] (ClickCaption)
R1 {27899312-155f-40f3-8661-fb6675d82b4b}Gw64; C:\Windows\System32\drivers\{27899312-155f-40f3-8661-fb6675d82b4b}Gw64.sys [48784 2014-12-21] (StdLib)
R1 {40d1e549-9fca-4f25-a19d-d845842dd635}Gw64; C:\Windows\System32\drivers\{40d1e549-9fca-4f25-a19d-d845842dd635}Gw64.sys [48784 2014-12-30] (StdLib)
R1 {8299d9bc-4fe2-4889-9adf-025a0769d461}Gw64; C:\Windows\System32\drivers\{8299d9bc-4fe2-4889-9adf-025a0769d461}Gw64.sys [48784 2014-12-15] (StdLib)
R1 {84edc66f-0e16-4519-bd1a-cead01f243ac}Gw64; C:\Windows\System32\drivers\{84edc66f-0e16-4519-bd1a-cead01f243ac}Gw64.sys [48784 2015-01-02] (StdLib)
R1 {91975f83-f39c-43cf-aad4-0b3396b0f6db}Gw64; C:\Windows\System32\drivers\{91975f83-f39c-43cf-aad4-0b3396b0f6db}Gw64.sys [48784 2015-01-05] (StdLib)
R1 {a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64; C:\Windows\System32\drivers\{a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64.sys [48784 2014-12-12] (StdLib)
R1 {ca4e7e4c-3ebf-4428-bf75-cc138b7061f1}Gw64; C:\Windows\System32\drivers\{ca4e7e4c-3ebf-4428-bf75-cc138b7061f1}Gw64.sys [48784 2014-12-25] (StdLib)
R1 {fb92e7a9-ee13-44c3-a51b-600382fe9211}Gw64; C:\Windows\System32\drivers\{fb92e7a9-ee13-44c3-a51b-600382fe9211}Gw64.sys [48784 2014-12-18] (StdLib)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 22:10 - 2015-01-19 22:11 - 00026193 _____ () C:\Users\kamila\Downloads\FRST.txt
2015-01-19 22:10 - 2015-01-19 22:10 - 00000000 ____D () C:\FRST
2015-01-19 22:04 - 2015-01-19 22:04 - 02126848 _____ (Farbar) C:\Users\kamila\Downloads\FRST64.exe
2015-01-19 19:53 - 2015-01-19 19:53 - 00002265 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-19 19:53 - 2015-01-19 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-19 19:52 - 2015-01-19 21:57 - 00001048 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-19 19:52 - 2015-01-19 19:57 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-19 19:52 - 2015-01-19 19:53 - 00000000 ____D () C:\Users\kamila\AppData\Local\Google
2015-01-19 19:52 - 2015-01-19 19:53 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-19 19:52 - 2015-01-19 19:52 - 00880784 _____ (Google Inc.) C:\Users\kamila\Downloads\ChromeSetup.exe
2015-01-19 19:52 - 2015-01-19 19:52 - 00004044 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-01-19 19:52 - 2015-01-19 19:52 - 00003792 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-01-19 19:46 - 2015-01-19 19:46 - 00000000 ___RD () C:\Users\kamila\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-01-18 19:54 - 2015-01-18 19:54 - 00000000 ____D () C:\Users\kamila\AppData\Local\Skype
2015-01-18 19:54 - 2015-01-18 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-01-18 19:53 - 2015-01-18 19:53 - 00003140 _____ () C:\Windows\System32\Tasks\{C8E5E3E0-D659-4E23-9008-14E98E176302}
2015-01-18 19:47 - 2015-01-18 19:47 - 01548384 _____ (Skype Technologies S.A.) C:\Users\kamila\Downloads\SkypeSetup.exe
2015-01-18 19:38 - 2015-01-19 16:33 - 00000000 ____D () C:\Users\kamila\AppData\Roaming\Skype
2015-01-17 20:31 - 2015-01-17 20:31 - 00344312 _____ () C:\Users\kamila\Downloads\Setup.exe
2015-01-17 13:25 - 2015-01-17 13:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-16 21:37 - 2015-01-16 21:37 - 00013914 _____ () C:\Users\kamila\Downloads\RACHUNKOWOŚĆ_I_C_ZIMA_14_151(1).xlsx
2015-01-16 21:31 - 2015-01-16 21:31 - 00013914 _____ () C:\Users\kamila\Downloads\RACHUNKOWOŚĆ_I_C_ZIMA_14_151.xlsx
2015-01-14 15:36 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 15:36 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 15:36 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 15:36 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-14 15:36 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-14 15:36 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-14 15:36 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-14 15:36 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-14 15:36 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-14 15:36 - 2014-12-11 18:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 15:36 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 15:36 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 15:36 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-05 17:21 - 2015-01-05 07:30 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{91975f83-f39c-43cf-aad4-0b3396b0f6db}Gw64.sys
2015-01-03 00:40 - 2015-01-02 14:31 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{84edc66f-0e16-4519-bd1a-cead01f243ac}Gw64.sys
2015-01-02 16:47 - 2015-01-02 16:47 - 00000000 __SHD () C:\Users\kamila\AppData\Local\EmieUserList
2015-01-02 16:47 - 2015-01-02 16:47 - 00000000 __SHD () C:\Users\kamila\AppData\Local\EmieSiteList
2015-01-02 16:47 - 2015-01-02 16:47 - 00000000 __SHD () C:\Users\kamila\AppData\Local\EmieBrowserModeList
2014-12-30 18:25 - 2014-12-30 07:23 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{40d1e549-9fca-4f25-a19d-d845842dd635}Gw64.sys
2014-12-26 15:57 - 2014-12-26 15:57 - 00001931 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-12-26 15:57 - 2014-12-26 15:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-12-26 15:57 - 2014-12-26 15:57 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-12-26 15:57 - 2014-12-25 23:22 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{ca4e7e4c-3ebf-4428-bf75-cc138b7061f1}Gw64.sys
2014-12-21 12:21 - 2014-12-21 01:22 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{27899312-155f-40f3-8661-fb6675d82b4b}Gw64.sys
2014-12-20 20:09 - 2014-12-26 15:57 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-12-20 20:06 - 2014-12-20 20:07 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-12-20 20:06 - 2014-12-20 20:06 - 00000000 ____D () C:\Users\kamila\AppData\Roaming\omiga-plus
2014-12-20 20:06 - 2014-12-20 20:06 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-12-20 20:06 - 2014-12-20 20:06 - 00000000 ____D () C:\Program Files (x86)\ClickCaption_1.10.0.4
2014-12-20 20:05 - 2014-12-20 20:05 - 00754240 _____ ( ) C:\Users\kamila\Downloads\Adobe-Flash-Player(13091)-dp(1).exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 21:47 - 2014-12-12 20:32 - 00000000 ____D () C:\Program Files (x86)\Hold Page
2015-01-19 21:39 - 2014-12-12 20:33 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-19 21:29 - 2011-06-17 01:59 - 01080571 _____ () C:\Windows\WindowsUpdate.log
2015-01-19 19:52 - 2009-07-14 05:45 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-19 19:52 - 2009-07-14 05:45 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-19 19:51 - 2014-12-06 11:30 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-19 19:47 - 2014-12-06 11:47 - 00002896 _____ () C:\Windows\System32\Tasks\AutoKMS
2015-01-19 19:47 - 2014-12-06 11:47 - 00000266 _____ () C:\Windows\Tasks\AutoKMS.job
2015-01-19 19:47 - 2009-07-14 03:34 - 00000612 _____ () C:\Windows\win.ini
2015-01-19 19:46 - 2011-06-17 02:45 - 00000035 _____ () C:\Users\Public\Documents\AtherosServiceConfig.ini
2015-01-19 19:46 - 2011-06-17 02:44 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2015-01-19 19:46 - 2011-06-17 02:44 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2015-01-19 19:46 - 2011-06-17 02:34 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2015-01-19 19:45 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-19 19:45 - 2009-07-14 05:51 - 00041786 _____ () C:\Windows\setupact.log
2015-01-19 16:53 - 2014-12-05 20:08 - 00000422 _____ () C:\Windows\Tasks\SystemToolsDailyTest.job
2015-01-19 16:52 - 2014-12-13 16:00 - 00003488 _____ () C:\Windows\System32\Tasks\PCDEventLauncher
2015-01-19 16:52 - 2014-12-05 20:08 - 00003452 _____ () C:\Windows\System32\Tasks\SystemToolsDailyTest
2015-01-18 23:12 - 2014-12-09 21:09 - 00029066 _____ () C:\Windows\RPSETUP.EXE.LOG
2015-01-18 19:54 - 2011-06-17 02:29 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-18 19:54 - 2011-06-17 02:29 - 00000000 ____D () C:\ProgramData\Skype
2015-01-18 14:19 - 2014-12-14 20:12 - 00000000 ____D () C:\Users\kamila\Desktop\Bansky i inne
2015-01-18 12:53 - 2014-12-06 11:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-16 22:08 - 2009-07-14 06:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-14 16:46 - 2014-12-06 13:32 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 16:42 - 2014-12-06 13:32 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-13 22:39 - 2014-12-12 20:33 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-13 22:39 - 2014-12-12 20:33 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-13 22:39 - 2014-12-12 20:33 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-12 23:57 - 2014-12-13 18:17 - 00000000 ____D () C:\Users\kamila\Desktop\Zdj z tel
2015-01-11 18:30 - 2014-12-12 20:40 - 00000000 ____D () C:\Users\kamila\AppData\Local\CrashDumps
2015-01-06 04:36 - 2010-11-21 04:27 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-12-30 18:21 - 2010-11-21 04:47 - 00034316 _____ () C:\Windows\PFRO.log
2014-12-21 21:06 - 2014-12-16 18:45 - 00000000 ____D () C:\Users\kamila\Desktop\Wiedeń
2014-12-20 21:34 - 2014-12-12 20:25 - 00000000 ____D () C:\Users\kamila\AppData\Local\Adobe
2014-12-20 20:08 - 2011-06-17 02:31 - 00000000 ____D () C:\ProgramData\McAfee
2014-12-20 20:06 - 2014-12-12 20:32 - 18119856 _____ (Adobe Systems Incorporated) C:\Users\kamila\Downloads\install_flash_player_16_plugin.exe
2014-12-20 20:06 - 2014-12-06 11:23 - 00001383 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-12-20 20:06 - 2014-12-06 11:23 - 00001371 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-12-20 20:06 - 2014-12-05 20:11 - 00001649 _____ () C:\Users\kamila\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-19 21:16

==================== End Of Log ============================
 System operacyjny: windows_seven Przeglądarka: chrome
#15
RE: Avast informuje cały czas o zagrożeniu url:mal
hej, mam dokladnie taki sam problem
KOD
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2015
Ran by kamila (administrator) on KAMILA-PC on 19-01-2015 22:10:32
Running from C:\Users\kamila\Downloads
Loaded Profiles: kamila (Available profiles: kamila)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335...scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Fuyu LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(ClickCaption) C:\Program Files (x86)\ClickCaption_1.10.0.4\Service\ccsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Intel Corporation) C:\WINDOWS\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
() C:\Program Files (x86)\Hold Page\updateHoldPage.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
() C:\Program Files (x86)\Hold Page\bin\utilHoldPage.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.expext.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.BrowserAdapter64.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.BrowserAdapter.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.PurBrowse64.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.BOASHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\WINWORD.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.BOASPRT.exe
() C:\Program Files (x86)\Hold Page\bin\HoldPage.BOAS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3666800 2011-01-22] (Dell Inc.)
HKLM\...\Run: [DellStage] => C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [1802472 2011-01-25] ()
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [613536 2010-12-17] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe [379040 2010-12-17] (Atheros Commnucations)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [487562 2010-08-20] (Creative Technology Ltd)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [RoxWatchTray] => c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [Desktop Disc Tool] => c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()
HKLM-x32\...\Run: [Dell Registration] => C:\Program Files (x86)\System Registration\prodreg.exe [3926528 2010-08-23] (Dell, Inc.)
HKLM-x32\...\Run: [Microsoft Default Manager] => C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [439568 2010-05-10] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-11] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4024646407-3617198608-3306003234-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hp&a...6099860998
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hp&a...6099860998
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=...earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=...earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hp&a...6099860998
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hp&a...6099860998
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
HKU\S-1-5-21-4024646407-3617198608-3306003234-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hp&a...6099860998
HKU\S-1-5-21-4024646407-3617198608-3306003234-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hp&a...6099860998
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com/?type=sc&a...6099860998
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
SearchScopes: HKLM -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL = http://www.bing.com/search?q={searchTerm...-SearchBox
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
SearchScopes: HKLM-x32 -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL = http://www.bing.com/search?q={searchTerm...-SearchBox
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
SearchScopes: HKU\S-1-5-21-4024646407-3617198608-3306003234-1001 -> {2F1E335A-858A-4BE9-8F6B-D0AF1D018B53} URL =
SearchScopes: HKU\S-1-5-21-4024646407-3617198608-3306003234-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=...earchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Hold Page 1.0.0.6 -> {6c14185e-4de6-4a79-985b-19f23fd1e638} -> C:\Program Files (x86)\Hold Page\HoldPageBHO.dll (Hold Page)
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bing Bar BHO -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - AtC:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Tcpip\Parameters: [DhcpNameServer] 62.179.1.62 62.179.1.63

FireFox:
========
FF ProfilePath: C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default
FF NewTab: chrome://quick_start/content/index.html
FF SelectedSearchEngine: omiga-plus
FF Homepage: hxxp://isearch.omiga-plus.com/?type=hp&ts=1419102385&from=cor&uid=WDCXWD5000BPVT-75HXZT1_WD-WX91A516099860998
FF Keyword.URL: hxxp://search.tb.ask.com/search/GGmain.jhtml?st=kwd&ptb=2C4A364F-82FD-4B0D-87FF-7BA8F3CC7102&n=780d0dc0&ind=2014121408&p2=^BA5^xdm007^YYA^pl&si=CPrFvqOixsICFcPMtAodKloASQ&searchfor=
FF Plugin: Atadobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: Atjava.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: Atmicrosoft.com/GENUINE -> disabled No File
FF Plugin: Atmicrosoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: Atadobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: Atmicrosoft.com/GENUINE -> disabled No File
FF Plugin-x32: AtMicrosoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: AtMicrosoft.com/NpWinExt,version=5.0 -> C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
FF Plugin-x32: Atmicrosoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: Atmicrosoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Atmicrosoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Atmicrosoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Attools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Attools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\searchplugins\ask-web-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\omiga-plus.xml
FF Extension: OnlineMapFinder - C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\Extensions\9pffxtbrAtOnlineMapFinder_9p.com [2014-12-14]
FF Extension: Fast Start - C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\Extensions\faststartffAtgmail.com [2014-12-20]
FF Extension: Hold Page 1.0.1 - C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\Extensions\{a16a1775-5ab3-4034-ac52-de0795db97f0}.xpi [2014-12-12]
FF Extension: Adblock Plus - C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-12-20]
FF HKLM-x32\...\Firefox\Extensions: [msntoolbarAtmsn.com] - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox
FF Extension: Bing Bar - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox [2011-06-17]
FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension
FF Extension: Search Helper Extension - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension [2011-06-17]
FF HKLM-x32\...\Firefox\Extensions: [{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension
FF Extension: Default Manager - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension [2011-06-17]
FF HKLM-x32\...\Firefox\Extensions: [wrcAtavast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-12-06]
FF HKLM-x32\...\Firefox\Extensions: [faststartffAtgmail.com] - C:\Users\kamila\AppData\Roaming\Mozilla\Firefox\Profiles\6k69ple6.default\extensions\faststartffAtgmail.com
FF HKU\S-1-5-21-4024646407-3617198608-3306003234-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

Chrome:
=======
CHR Profile: C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentacje Google) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-19]
CHR Extension: (Dokumenty Google) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-19]
CHR Extension: (Dysk Google) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-19]
CHR Extension: (YouTube) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-19]
CHR Extension: (Szukaj w Google) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-19]
CHR Extension: (Avast SafePrice) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-01-19]
CHR Extension: (Arkusze Google) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-19]
CHR Extension: (Avast Online Security) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-01-19]
CHR Extension: (Hold Page) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljbbmbgagpjnafekbkklmfbjccbnjmnh [2015-01-19]
CHR Extension: (Google Wallet) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-19]
CHR Extension: (Gmail) - C:\Users\kamila\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-19]
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - No Path
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2014-12-06]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-06]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Dell Wireless\Ath_CoexAgent.exe [151552 2010-10-01] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [53920 2010-12-17] (Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-06] (AVAST Software)
R2 ccsvc_1.10.0.4; C:\Program Files (x86)\ClickCaption_1.10.0.4\Service\ccsvc.exe [277584 2014-12-04] (ClickCaption)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 Update Hold Page; C:\Program Files (x86)\Hold Page\updateHoldPage.exe [529136 2015-01-19] ()
R2 Util Hold Page; C:\Program Files (x86)\Hold Page\bin\utilHoldPage.exe [529136 2015-01-19] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [485888 2014-12-20] (Fuyu LIMITED) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-06] ()
R1 ccnfd_1_10_0_4; C:\Windows\System32\drivers\ccnfd_1_10_0_4.sys [58232 2014-12-04] (ClickCaption)
R1 {27899312-155f-40f3-8661-fb6675d82b4b}Gw64; C:\Windows\System32\drivers\{27899312-155f-40f3-8661-fb6675d82b4b}Gw64.sys [48784 2014-12-21] (StdLib)
R1 {40d1e549-9fca-4f25-a19d-d845842dd635}Gw64; C:\Windows\System32\drivers\{40d1e549-9fca-4f25-a19d-d845842dd635}Gw64.sys [48784 2014-12-30] (StdLib)
R1 {8299d9bc-4fe2-4889-9adf-025a0769d461}Gw64; C:\Windows\System32\drivers\{8299d9bc-4fe2-4889-9adf-025a0769d461}Gw64.sys [48784 2014-12-15] (StdLib)
R1 {84edc66f-0e16-4519-bd1a-cead01f243ac}Gw64; C:\Windows\System32\drivers\{84edc66f-0e16-4519-bd1a-cead01f243ac}Gw64.sys [48784 2015-01-02] (StdLib)
R1 {91975f83-f39c-43cf-aad4-0b3396b0f6db}Gw64; C:\Windows\System32\drivers\{91975f83-f39c-43cf-aad4-0b3396b0f6db}Gw64.sys [48784 2015-01-05] (StdLib)
R1 {a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64; C:\Windows\System32\drivers\{a16a1775-5ab3-4034-ac52-de0795db97f0}Gw64.sys [48784 2014-12-12] (StdLib)
R1 {ca4e7e4c-3ebf-4428-bf75-cc138b7061f1}Gw64; C:\Windows\System32\drivers\{ca4e7e4c-3ebf-4428-bf75-cc138b7061f1}Gw64.sys [48784 2014-12-25] (StdLib)
R1 {fb92e7a9-ee13-44c3-a51b-600382fe9211}Gw64; C:\Windows\System32\drivers\{fb92e7a9-ee13-44c3-a51b-600382fe9211}Gw64.sys [48784 2014-12-18] (StdLib)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 22:10 - 2015-01-19 22:11 - 00026193 _____ () C:\Users\kamila\Downloads\FRST.txt
2015-01-19 22:10 - 2015-01-19 22:10 - 00000000 ____D () C:\FRST
2015-01-19 22:04 - 2015-01-19 22:04 - 02126848 _____ (Farbar) C:\Users\kamila\Downloads\FRST64.exe
2015-01-19 19:53 - 2015-01-19 19:53 - 00002265 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-19 19:53 - 2015-01-19 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-01-19 19:52 - 2015-01-19 21:57 - 00001048 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-19 19:52 - 2015-01-19 19:57 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-19 19:52 - 2015-01-19 19:53 - 00000000 ____D () C:\Users\kamila\AppData\Local\Google
2015-01-19 19:52 - 2015-01-19 19:53 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-19 19:52 - 2015-01-19 19:52 - 00880784 _____ (Google Inc.) C:\Users\kamila\Downloads\ChromeSetup.exe
2015-01-19 19:52 - 2015-01-19 19:52 - 00004044 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-01-19 19:52 - 2015-01-19 19:52 - 00003792 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-01-19 19:46 - 2015-01-19 19:46 - 00000000 ___RD () C:\Users\kamila\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-01-18 19:54 - 2015-01-18 19:54 - 00000000 ____D () C:\Users\kamila\AppData\Local\Skype
2015-01-18 19:54 - 2015-01-18 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-01-18 19:53 - 2015-01-18 19:53 - 00003140 _____ () C:\Windows\System32\Tasks\{C8E5E3E0-D659-4E23-9008-14E98E176302}
2015-01-18 19:47 - 2015-01-18 19:47 - 01548384 _____ (Skype Technologies S.A.) C:\Users\kamila\Downloads\SkypeSetup.exe
2015-01-18 19:38 - 2015-01-19 16:33 - 00000000 ____D () C:\Users\kamila\AppData\Roaming\Skype
2015-01-17 20:31 - 2015-01-17 20:31 - 00344312 _____ () C:\Users\kamila\Downloads\Setup.exe
2015-01-17 13:25 - 2015-01-17 13:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-16 21:37 - 2015-01-16 21:37 - 00013914 _____ () C:\Users\kamila\Downloads\RACHUNKOWOŚĆ_I_C_ZIMA_14_151(1).xlsx
2015-01-16 21:31 - 2015-01-16 21:31 - 00013914 _____ () C:\Users\kamila\Downloads\RACHUNKOWOŚĆ_I_C_ZIMA_14_151.xlsx
2015-01-14 15:36 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 15:36 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 15:36 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 15:36 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-14 15:36 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-14 15:36 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-14 15:36 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-14 15:36 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-14 15:36 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-14 15:36 - 2014-12-11 18:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 15:36 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 15:36 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 15:36 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-05 17:21 - 2015-01-05 07:30 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{91975f83-f39c-43cf-aad4-0b3396b0f6db}Gw64.sys
2015-01-03 00:40 - 2015-01-02 14:31 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{84edc66f-0e16-4519-bd1a-cead01f243ac}Gw64.sys
2015-01-02 16:47 - 2015-01-02 16:47 - 00000000 __SHD () C:\Users\kamila\AppData\Local\EmieUserList
2015-01-02 16:47 - 2015-01-02 16:47 - 00000000 __SHD () C:\Users\kamila\AppData\Local\EmieSiteList
2015-01-02 16:47 - 2015-01-02 16:47 - 00000000 __SHD () C:\Users\kamila\AppData\Local\EmieBrowserModeList
2014-12-30 18:25 - 2014-12-30 07:23 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{40d1e549-9fca-4f25-a19d-d845842dd635}Gw64.sys
2014-12-26 15:57 - 2014-12-26 15:57 - 00001931 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-12-26 15:57 - 2014-12-26 15:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-12-26 15:57 - 2014-12-26 15:57 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-12-26 15:57 - 2014-12-25 23:22 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{ca4e7e4c-3ebf-4428-bf75-cc138b7061f1}Gw64.sys
2014-12-21 12:21 - 2014-12-21 01:22 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{27899312-155f-40f3-8661-fb6675d82b4b}Gw64.sys
2014-12-20 20:09 - 2014-12-26 15:57 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-12-20 20:06 - 2014-12-20 20:07 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-12-20 20:06 - 2014-12-20 20:06 - 00000000 ____D () C:\Users\kamila\AppData\Roaming\omiga-plus
2014-12-20 20:06 - 2014-12-20 20:06 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-12-20 20:06 - 2014-12-20 20:06 - 00000000 ____D () C:\Program Files (x86)\ClickCaption_1.10.0.4
2014-12-20 20:05 - 2014-12-20 20:05 - 00754240 _____ ( ) C:\Users\kamila\Downloads\Adobe-Flash-Player(13091)-dp(1).exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 21:47 - 2014-12-12 20:32 - 00000000 ____D () C:\Program Files (x86)\Hold Page
2015-01-19 21:39 - 2014-12-12 20:33 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-19 21:29 - 2011-06-17 01:59 - 01080571 _____ () C:\Windows\WindowsUpdate.log
2015-01-19 19:52 - 2009-07-14 05:45 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-19 19:52 - 2009-07-14 05:45 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-19 19:51 - 2014-12-06 11:30 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-19 19:47 - 2014-12-06 11:47 - 00002896 _____ () C:\Windows\System32\Tasks\AutoKMS
2015-01-19 19:47 - 2014-12-06 11:47 - 00000266 _____ () C:\Windows\Tasks\AutoKMS.job
2015-01-19 19:47 - 2009-07-14 03:34 - 00000612 _____ () C:\Windows\win.ini
2015-01-19 19:46 - 2011-06-17 02:45 - 00000035 _____ () C:\Users\Public\Documents\AtherosServiceConfig.ini
2015-01-19 19:46 - 2011-06-17 02:44 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2015-01-19 19:46 - 2011-06-17 02:44 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2015-01-19 19:46 - 2011-06-17 02:34 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2015-01-19 19:45 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-19 19:45 - 2009-07-14 05:51 - 00041786 _____ () C:\Windows\setupact.log
2015-01-19 16:53 - 2014-12-05 20:08 - 00000422 _____ () C:\Windows\Tasks\SystemToolsDailyTest.job
2015-01-19 16:52 - 2014-12-13 16:00 - 00003488 _____ () C:\Windows\System32\Tasks\PCDEventLauncher
2015-01-19 16:52 - 2014-12-05 20:08 - 00003452 _____ () C:\Windows\System32\Tasks\SystemToolsDailyTest
2015-01-18 23:12 - 2014-12-09 21:09 - 00029066 _____ () C:\Windows\RPSETUP.EXE.LOG
2015-01-18 19:54 - 2011-06-17 02:29 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-18 19:54 - 2011-06-17 02:29 - 00000000 ____D () C:\ProgramData\Skype
2015-01-18 14:19 - 2014-12-14 20:12 - 00000000 ____D () C:\Users\kamila\Desktop\Bansky i inne
2015-01-18 12:53 - 2014-12-06 11:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-16 22:08 - 2009-07-14 06:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-14 16:46 - 2014-12-06 13:32 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 16:42 - 2014-12-06 13:32 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-13 22:39 - 2014-12-12 20:33 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-13 22:39 - 2014-12-12 20:33 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-13 22:39 - 2014-12-12 20:33 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-12 23:57 - 2014-12-13 18:17 - 00000000 ____D () C:\Users\kamila\Desktop\Zdj z tel
2015-01-11 18:30 - 2014-12-12 20:40 - 00000000 ____D () C:\Users\kamila\AppData\Local\CrashDumps
2015-01-06 04:36 - 2010-11-21 04:27 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-12-30 18:21 - 2010-11-21 04:47 - 00034316 _____ () C:\Windows\PFRO.log
2014-12-21 21:06 - 2014-12-16 18:45 - 00000000 ____D () C:\Users\kamila\Desktop\Wiedeń
2014-12-20 21:34 - 2014-12-12 20:25 - 00000000 ____D () C:\Users\kamila\AppData\Local\Adobe
2014-12-20 20:08 - 2011-06-17 02:31 - 00000000 ____D () C:\ProgramData\McAfee
2014-12-20 20:06 - 2014-12-12 20:32 - 18119856 _____ (Adobe Systems Incorporated) C:\Users\kamila\Downloads\install_flash_player_16_plugin.exe
2014-12-20 20:06 - 2014-12-06 11:23 - 00001383 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-12-20 20:06 - 2014-12-06 11:23 - 00001371 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-12-20 20:06 - 2014-12-05 20:11 - 00001649 _____ () C:\Users\kamila\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-19 21:16

==================== End Of Log ============================
 System operacyjny: windows_seven Przeglądarka: chrome
Programy: Polecane / Nowe / Inne



Użytkownicy forum szukali:
url malurl:malURL.mal URL: Mal- zarażenie - co to jest ?url/: malavast mal wirusurl mal avastco to jest zarażenie url malavast wykrywa url :malavast mal

Podobne wątki (Avast informuje cały czas o zagrożeniu url:mal)
Wątek: Autor Odpowiedzi: Wyświetleń: Ostatni post
  zagrożenie URL:Mal ziebant 3 1408 18.10.2016, 22:29
Ostatni post: morderca
  Avast 51 powiadomien Url:mal StormAssassin 16 2382 26.01.2016, 12:11
Ostatni post: StormAssassin
  AVAST szaleje URL:Mal cialdini88 1 1260 17.11.2015, 20:39
Ostatni post: morderca

Skocz do:


Wybrane wątki (Avast informuje cały czas o zagrożeniu url:mal)
Wątek: Autor Odpowiedzi: Wyświetleń: Ostatni post
  Sprawdzenie logów, dzięki z góry Neal 1 2198 26.12.2019 16:21
Ostatni post: morderca
  prośba o sprawdzenie logów proxlee 2 2359 18.12.2019 10:31
Ostatni post: proxlee
  Laptop zawiesza się po 5 minutach od uruchomienia - prośba o ocenę logów. robert14-83 3 1901 11.12.2019 14:08
Ostatni post: robert14-83
  Spowolnienie komputera, blue screen – prośba o spr. logów Gummi_bear 2 1765 07.12.2019 22:12
Ostatni post: wlisik
  Prośba o sprawdzenie logów - podejrzane działanie systemu Azrael 1 2869 07.11.2019 10:33
Ostatni post: morderca
  LOGI - Prośba o sprawdzenie kamil1249 2 2824 05.11.2019 18:20
Ostatni post: kamil1249
  Wielka prośba o sprawdzenie logów (kradzież) bboygutass 3 3160 10.10.2019 13:38
Ostatni post: morderca
  Prośba o sprawdzenie logów dawcios99 1 3226 05.10.2019 19:29
Ostatni post: morderca
  Prośba o sprawdzenie logów proxlee 3 3611 17.09.2019 22:29
Ostatni post: morderca
  Proszę o sprawdzenie loga specyk1990 3 3853 23.08.2019 15:36
Ostatni post: morderca
  Prosze o sprawdzenie logów ricardo59 2 3955 08.08.2019 15:11
Ostatni post: ricardo59
  Sprawdzenie logów (laptop "piłuje" bez obciążenia) + niedziałająca klawiatura EiderSeek 2 4052 03.08.2019 09:51
Ostatni post: EiderSeek
  Prośba o sprawdzenie logów, prawdopodobna infekcja filefox 1 3929 02.08.2019 14:34
Ostatni post: morderca
Ściana Ruskie robaki. daguson 10 8819 29.07.2019 22:01
Ostatni post: morderca
  Analiza Logów Artur 25 2 3549 23.07.2019 00:18
Ostatni post: Artur 25