Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by KlaudiaM (administrator) on KLAUDIA on 13-10-2013 17:43:48
Running from C:\Users\KlaudiaM\Desktop
Windows 8 Pro with Media Center (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\ProgramData\DatacardService\DCService.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\loggingserver.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(GG Network S.A.) C:\Users\KlaudiaM\AppData\Local\GG\Application\gghub.exe
(GG Network S.A.) C:\Users\KlaudiaM\AppData\Local\GG\Application\ggapp.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
() C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Users\KlaudiaM\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9643040 2009-12-17] (Realtek Semiconductor)
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [4333384 2009-06-16] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [5828936 2009-06-18] (Lenovo (Beijing) Limited)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM-x32\...\Runonce: [] -  [x]
HKCU\...\Run: [GG] - C:\Users\KlaudiaM\AppData\Local\GG\Application\gghub.exe [4009024 2013-09-06] (GG Network S.A.)
HKCU\...\Run: [Tahometer] - C:\Program Files (x86)\Tahometer\tahometer.exe [1099264 2013-02-13] ()
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1561968 2013-05-23] (Samsung)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-23] (Samsung)
HKCU\...\Run: [AdobeBridge] - [x]
MountPoints2: {033c12e1-88a0-11e2-be8a-002622dc1d36} - "G:\AutoRun.exe" 
MountPoints2: {033c12ed-88a0-11e2-be8a-002622dc1d36} - "G:\AutoRun.exe" 
MountPoints2: {48ea5d91-78fc-11e2-be7d-001e101fe254} - "E:\AutoRun.exe" 
MountPoints2: {5250238a-af0d-11e2-beb1-002622dc1d36} - "G:\iLinker.exe" 
MountPoints2: {61241797-92d6-11e2-be99-002622dc1d36} - "G:\AutoRun.exe" 
MountPoints2: {612417a4-92d6-11e2-be99-002622dc1d36} - "G:\AutoRun.exe" 
MountPoints2: {8682ae45-7799-11e2-be7c-002622dc1d36} - "H:\AutoRun.exe" 
MountPoints2: {8682ae65-7799-11e2-be7c-002622dc1d36} - "E:\AutoRun.exe" 
MountPoints2: {8682aeba-7799-11e2-be7c-001e101fef8c} - "G:\AutoRun.exe" 
MountPoints2: {bade60bf-7769-11e2-be7a-0c6076abc783} - "H:\AutoRun.exe" 
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4908592 2013-10-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-05-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2404376 2013-10-02] ()
Startup: C:\Users\KlaudiaM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\KlaudiaM\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mysearch.avg.com/?cid={C5B2CF30-FC46-4E53-BDC1-EA4F6EE19191}&mid=d08f0f3ee63f47d39d08d16f6438f4c5-738f611137f003f9262b17d6d340467dd86cfa66&lang=en&ds=uf011&pr=sa&d=2013-08-05 13:58:18&v=15.4.0.5&pid=safeguard&sg=0&sap=hp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x116B4D1C5005CE01
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www2.delta-search.com/?q={searchTerms}&affID=119816&tt=gc_&babsrc=SP_ss&mntrId=8AEC0026C623F1CB
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg.com/search?cid={C5B2CF30-FC46-4E53-BDC1-EA4F6EE19191}&mid=d08f0f3ee63f47d39d08d16f6438f4c5-738f611137f003f9262b17d6d340467dd86cfa66&lang=en&ds=uf011&pr=sa&d=2013-08-05 13:58:18&v=15.4.0.5&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\17.0.1.12\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\17.0.1.12\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.0.12\ViProtocol.dll (AVG Secure Search)
Hosts: 127.0.0.1 activate.adobe.com
Tcpip\Parameters: [DhcpNameServer] 46.45.78.2 46.45.114.2
Tcpip\..\Interfaces\{06674A44-E86F-4B16-9A7F-D2695BA099C5}: [NameServer]193.41.112.14 193.41.112.18
Tcpip\..\Interfaces\{2DC7A979-8628-49F4-9CD7-27792099DCC2}: [NameServer]193.41.112.14 193.41.112.18
Tcpip\..\Interfaces\{B555DFDF-656D-4FBA-9A38-4C3F98A779B1}: [NameServer]89.108.195.21 89.108.202.21

FireFox:
========
FF ProfilePath: C:\Users\KlaudiaM\AppData\Roaming\Mozilla\Firefox\Profiles\6zhcauh1.default
FF user.js: detected! => C:\Users\KlaudiaM\AppData\Roaming\Mozilla\Firefox\Profiles\6zhcauh1.default\user.js
FF DefaultSearchEngine: AVG Secure Search
FF SelectedSearchEngine: AVG Secure Search
FF Homepage: hxxp://mysearch.avg.com/?cid={C5B2CF30-FC46-4E53-BDC1-EA4F6EE19191}&mid=d08f0f3ee63f47d39d08d16f6438f4c5-738f611137f003f9262b17d6d340467dd86cfa66&lang=en&ds=uf011&pr=sa&d=2013-08-05 13:58:18&v=15.4.0.5&pid=safeguard&sg=0&sap=hp
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_202.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.0.12\\npsitesafety.dll (AVG Technologies)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Users\KlaudiaM\AppData\Roaming\Mozilla\Firefox\Profiles\6zhcauh1.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\KlaudiaM\AppData\Roaming\Mozilla\Firefox\Profiles\6zhcauh1.default\searchplugins\delta.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.0.1.12
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.0.1.12

Chrome: 
=======
CHR HomePage: hxxp://www.google.pl/
CHR RestoreOnStartup: "hxxp://www.google.pl/ig", "hxxp://mysearch.avg.com/?cid={C5B2CF30-FC46-4E53-BDC1-EA4F6EE19191}&mid=d08f0f3ee63f47d39d08d16f6438f4c5-738f611137f003f9262b17d6d340467dd86cfa66&lang=en&ds=uf011&pr=sa&d=2013-08-05 13:58:18&v=15.4.0.5&pid=safeguard&sg=0&sap=hp"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File
CHR Extension: (Awesome Screenshot: Capture & Annotate) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.4.5_0
CHR Extension: (Google Docs) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (James White) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm\3_0
CHR Extension: (YouTube) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6_0
CHR Extension: (Google Search) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Photo Zoom for Facebook) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1208.30.1_0
CHR Extension: (AdBlock) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.10_0
CHR Extension: (Google Translate for Google+) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfppgkomfopklagggkjiaddgndkgopgl\1.1.7_0
CHR Extension: (Google Mail Checker) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0
CHR Extension: (Facebook Notifications) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.27_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Facebook Lite for Chrome) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\npmllfhdnjcijofddghkhhknagamimip\2.1.5.27030_0
CHR Extension: (Gmail) - C:\Users\KlaudiaM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG SafeGuard toolbar\ChromeExt\17.0.1.12\avg.crx

==================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3538480 2013-10-03] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [301152 2013-09-25] (AVG Technologies CZ, s.r.o.)
R2 DCService.exe; C:\ProgramData\DatacardService\DCService.exe [229376 2010-05-08] ()
R2 vToolbarUpdater17.0.12; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe [1734680 2013-10-02] (AVG Secure Search)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [148792 2013-09-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [241464 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [192824 2013-09-02] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-08-20] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-08] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [252728 2013-07-30] (AVG Technologies CZ, s.r.o.)
S3 ewusbnet; C:\Windows\system32\DRIVERS\ewusbnet.sys [252928 2010-04-30] (Huawei Technologies Co., Ltd.)
R1 funfrm; C:\Windows\System32\Drivers\funfrm.sys [73744 2013-02-07] ()
S3 hwusbdev; \SystemRoot\system32\DRIVERS\ewusbdev.sys [x]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [x]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-13 17:42 - 2013-10-13 17:42 - 01954124 _____ (Farbar) C:\Users\KlaudiaM\Desktop\FRST64.exe
2013-10-13 17:42 - 2013-10-13 17:42 - 00377856 _____ C:\Users\KlaudiaM\Desktop\776roz62.exe
2013-10-13 17:42 - 2013-10-13 17:42 - 00000000 ____D C:\FRST
2013-10-13 15:25 - 2013-10-13 15:25 - 00052572 _____ C:\Users\KlaudiaM\Desktop\Extras.Txt
2013-10-13 15:25 - 2013-10-13 15:25 - 00009001 _____ C:\Users\KlaudiaM\Desktop\UsbFix [Listing 1 ] KLAUDIA.txt
2013-10-13 15:24 - 2013-10-13 15:24 - 00151838 _____ C:\Users\KlaudiaM\Desktop\OTL.Txt
2013-10-13 15:24 - 2013-10-13 15:24 - 00009001 _____ C:\UsbFix [Listing 1 ] KLAUDIA.txt
2013-10-13 15:23 - 2013-10-13 15:23 - 00002106 _____ C:\Users\KlaudiaM\Desktop\UsbFix Faire un Don.lnk
2013-10-13 15:13 - 2013-10-13 15:13 - 00602112 _____ (OldTimer Tools) C:\Users\KlaudiaM\Desktop\OTL.scr
2013-10-13 15:01 - 2013-10-13 15:23 - 00011043 _____ C:\UsbFix [Scan 1] KLAUDIA.txt
2013-10-13 15:00 - 2013-10-13 15:24 - 00000000 ____D C:\UsbFix
2013-10-13 15:00 - 2013-10-13 15:00 - 01540681 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\KlaudiaM\Desktop\UsbFix.exe
2013-10-13 14:50 - 2013-10-13 14:50 - 00602112 _____ (OldTimer Tools) C:\Users\KlaudiaM\Desktop\OTL.exe
2013-10-13 13:57 - 2013-10-13 14:32 - 00000000 ____D C:\Users\KlaudiaM\Desktop\rodzina
2013-10-13 09:02 - 2013-10-13 09:03 - 06883928 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 16:14 - 2013-10-11 16:14 - 00000355 _____ C:\Users\KlaudiaM\Desktop\Computer.lnk
2013-10-11 11:59 - 2013-10-11 12:00 - 00000000 ____D C:\Users\KlaudiaM\Desktop\Stazysci -The Internship [2013] HDRip XViD Napisy PL
2013-10-10 21:08 - 2013-10-11 00:29 - 723720124 _____ C:\Users\KlaudiaM\Desktop\LOL.2012.PL.BDRip.XviD.avi
2013-10-10 21:03 - 2013-10-11 01:04 - 731678360 _____ C:\Users\KlaudiaM\Desktop\The_Look_of_Love_2013_WEBRip_XViD_juggs.avi
2013-10-10 20:54 - 2013-10-10 22:54 - 726117988 _____ C:\Users\KlaudiaM\Desktop\The.Big.Wedding.2013.PLSUBBED.BRRip.XViD.MORS.avi
2013-10-10 20:51 - 2013-10-10 20:54 - 00000000 ____D C:\Users\KlaudiaM\Desktop\The.Bling.Ring.2013.BRRip.XviD-S4A
2013-10-09 14:52 - 2013-10-09 14:52 - 378260661 _____ C:\Windows\MEMORY.DMP
2013-10-09 10:32 - 2013-10-11 10:42 - 00000000 ____D C:\Users\KlaudiaM\Desktop\lot
2013-10-09 09:47 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-09 09:47 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-09 09:47 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-09 09:47 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-09 09:47 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-09 09:47 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-09 09:47 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-09 09:47 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-09 09:47 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-09 09:47 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-09 09:47 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-09 09:47 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-09 09:47 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-09 09:47 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-09 09:47 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-09 09:47 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-09 09:47 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-09 09:47 - 2013-07-06 02:15 - 00652288 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-09 09:47 - 2013-07-04 04:13 - 00541696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-09 09:47 - 2013-05-16 00:37 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2013-10-09 09:47 - 2013-05-16 00:35 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2013-10-09 09:47 - 2013-05-14 15:14 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-09 09:47 - 2013-05-14 11:23 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-09 09:47 - 2013-04-29 00:28 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2013-10-09 09:47 - 2013-02-21 12:29 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-09 09:47 - 2013-02-21 12:29 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-09 09:47 - 2013-02-21 12:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-09 09:47 - 2013-02-21 12:29 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-09 09:47 - 2013-02-21 12:14 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-09 09:47 - 2013-02-21 12:14 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-09 09:47 - 2013-02-19 11:53 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2013-10-09 09:47 - 2012-11-08 06:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-09 09:47 - 2012-11-08 06:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-09 09:46 - 2013-08-23 07:11 - 04040192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-09 09:46 - 2013-07-20 00:13 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 09:46 - 2013-07-20 00:13 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 09:46 - 2013-07-06 00:02 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-09 09:46 - 2013-07-06 00:01 - 00210560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-09 09:46 - 2013-07-02 03:41 - 00447320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2013-10-09 09:46 - 2013-07-02 03:41 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2013-10-09 09:46 - 2013-07-02 03:41 - 00213336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2013-10-09 09:46 - 2013-07-02 00:14 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2013-10-09 09:46 - 2013-07-01 03:42 - 00623448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-09 09:46 - 2013-07-01 03:42 - 00498008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-09 09:46 - 2013-07-01 03:42 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-09 09:46 - 2013-07-01 03:42 - 00021848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-09 09:46 - 2013-06-29 05:08 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-09 09:46 - 2013-06-29 05:07 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-09 09:46 - 2013-06-29 05:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-09 09:46 - 2013-06-29 05:06 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-09 09:46 - 2013-06-22 07:45 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-09 09:46 - 2013-06-22 07:45 - 00054488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-10-09 09:46 - 2013-05-27 01:17 - 00035328 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-09 09:46 - 2013-05-27 00:59 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-09 09:46 - 2013-05-25 05:15 - 00362496 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-09 09:46 - 2013-05-25 04:32 - 00300032 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-08 19:24 - 2013-02-07 22:10 - 00000000 ____D C:\Users\KlaudiaM\Desktop\nathansmith-960-Grid-System-231ee0c
2013-10-08 09:56 - 2013-10-09 14:51 - 00432745 _____ C:\Windows\WindowsUpdate.log
2013-10-08 09:28 - 2013-10-08 19:27 - 00000000 ____D C:\Users\KlaudiaM\Desktop\ang
2013-10-05 18:16 - 2013-10-05 18:16 - 00000000 ____D C:\Users\KlaudiaM\AppData\Roaming\AVG2014
2013-10-05 18:10 - 2013-10-05 18:15 - 00000000 ____D C:\ProgramData\AVG2014
2013-10-05 18:07 - 2013-10-13 14:34 - 00000000 ____D C:\Users\KlaudiaM\AppData\Local\Avg2014
2013-10-05 15:26 - 2013-10-08 19:26 - 00000000 ____D C:\Users\KlaudiaM\Desktop\kodini
2013-10-04 11:05 - 2013-10-04 11:07 - 00000000 ____D C:\Users\KlaudiaM\Desktop\do auta
2013-10-04 09:41 - 2013-10-11 18:41 - 00000000 ____D C:\Users\KlaudiaM\Desktop\nagrac
2013-10-03 23:07 - 2013-08-07 07:15 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll
2013-10-03 12:32 - 2013-10-08 19:27 - 00000000 ____D C:\Users\KlaudiaM\Desktop\do portfolio
2013-09-26 14:22 - 2013-09-29 13:21 - 00000000 ____D C:\Users\KlaudiaM\Desktop\telefon inne
2013-09-25 22:07 - 2013-09-30 17:07 - 00000000 ____D C:\Users\KlaudiaM\Desktop\zdjecia wrzesien 2013
2013-09-25 21:07 - 2013-09-25 21:07 - 00148792 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiska.sys
2013-09-19 19:25 - 2013-10-07 09:58 - 00000000 ____D C:\Users\KlaudiaM\Desktop\The Kings of Summer 2013 DVDScr. Jaybob
2013-09-17 17:53 - 2013-10-02 03:38 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-17 17:53 - 2013-10-02 03:38 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-15 21:24 - 2013-08-16 07:41 - 00058200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2013-09-15 21:24 - 2013-08-16 07:39 - 02371728 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2013-09-15 21:24 - 2013-08-16 07:39 - 00059416 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-09-15 21:24 - 2013-08-16 07:32 - 00209200 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2013-09-15 21:24 - 2013-08-16 07:22 - 04917760 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2013-09-15 21:24 - 2013-08-16 07:22 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-09-15 21:24 - 2013-08-16 07:21 - 03275776 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 01621504 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00773120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-09-15 21:24 - 2013-08-16 07:21 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-09-15 21:24 - 2013-08-16 07:20 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2013-09-15 21:24 - 2013-08-16 00:43 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-09-15 21:24 - 2013-08-16 00:43 - 00562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2013-09-15 21:24 - 2013-08-16 00:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2013-09-15 21:24 - 2013-08-16 00:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2013-09-15 21:24 - 2013-08-16 00:43 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2013-09-15 21:24 - 2013-08-16 00:43 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2013-09-15 21:24 - 2013-08-16 00:43 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-09-15 21:24 - 2013-08-16 00:43 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2013-09-15 21:24 - 2013-08-16 00:43 - 00083968 _____ C:\Windows\SysWOW64\OEMLicense.dll
2013-09-15 21:24 - 2013-08-16 00:43 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2013-09-15 21:24 - 2013-08-16 00:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2013-09-15 21:24 - 2013-08-16 00:42 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2013-09-15 21:24 - 2013-08-16 00:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2013-09-15 21:22 - 2013-07-09 10:04 - 00120144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2013-09-15 21:22 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2013-09-15 21:22 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2013-09-15 21:22 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2013-09-15 21:22 - 2013-07-09 00:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2013-09-15 21:22 - 2013-07-09 00:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2013-09-15 21:22 - 2013-07-09 00:46 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll
2013-09-15 21:22 - 2013-07-09 00:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2013-09-15 21:22 - 2013-07-06 02:16 - 01025024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-09-15 21:22 - 2013-07-03 02:23 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-09-15 21:22 - 2013-07-03 02:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2013-09-15 21:22 - 2013-07-03 02:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2013-09-15 21:22 - 2013-07-03 02:22 - 01300480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-09-15 21:22 - 2013-07-03 02:11 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-09-15 21:22 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-09-15 21:22 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2013-09-15 21:22 - 2013-07-02 00:08 - 00387583 _____ C:\Windows\system32\ApnDatabase.xml
2013-09-15 21:22 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2013-09-15 21:22 - 2013-07-01 00:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2013-09-15 21:22 - 2013-06-29 08:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2013-09-15 21:22 - 2013-06-29 08:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2013-09-15 21:22 - 2013-06-29 07:43 - 00327512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2013-09-15 21:22 - 2013-06-29 03:12 - 01022464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-09-15 21:22 - 2013-06-26 05:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2013-09-15 21:22 - 2013-06-26 04:59 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2013-09-15 21:22 - 2013-06-25 00:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-09-15 21:22 - 2013-06-25 00:54 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2013-09-15 21:22 - 2013-06-25 00:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2013-09-15 21:22 - 2013-06-19 07:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2013-09-15 21:22 - 2013-06-19 07:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2013-09-15 21:22 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2013-09-15 21:22 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2013-09-15 21:22 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2013-09-15 21:22 - 2013-06-12 01:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2013-09-15 21:22 - 2013-06-10 23:17 - 00096512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2013-09-15 21:22 - 2013-06-10 21:16 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-09-15 21:22 - 2013-06-10 21:15 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-09-15 21:22 - 2013-06-10 21:15 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2013-09-15 21:22 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-09-15 21:22 - 2013-06-10 21:10 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-09-15 21:22 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-09-15 21:22 - 2013-06-06 10:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-09-14 15:20 - 2013-09-19 18:26 - 00000000 ____D C:\Users\KlaudiaM\Desktop\handyman

==================== One Month Modified Files and Folders =======

2013-10-13 17:42 - 2013-10-13 17:42 - 01954124 _____ (Farbar) C:\Users\KlaudiaM\Desktop\FRST64.exe
2013-10-13 17:42 - 2013-10-13 17:42 - 00377856 _____ C:\Users\KlaudiaM\Desktop\776roz62.exe
2013-10-13 17:42 - 2013-10-13 17:42 - 00000000 ____D C:\FRST
2013-10-13 17:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru
2013-10-13 16:57 - 2013-02-07 18:25 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-13 15:25 - 2013-10-13 15:25 - 00052572 _____ C:\Users\KlaudiaM\Desktop\Extras.Txt
2013-10-13 15:25 - 2013-10-13 15:25 - 00009001 _____ C:\Users\KlaudiaM\Desktop\UsbFix [Listing 1 ] KLAUDIA.txt
2013-10-13 15:24 - 2013-10-13 15:24 - 00151838 _____ C:\Users\KlaudiaM\Desktop\OTL.Txt
2013-10-13 15:24 - 2013-10-13 15:24 - 00009001 _____ C:\UsbFix [Listing 1 ] KLAUDIA.txt
2013-10-13 15:24 - 2013-10-13 15:00 - 00000000 ____D C:\UsbFix
2013-10-13 15:23 - 2013-10-13 15:23 - 00002106 _____ C:\Users\KlaudiaM\Desktop\UsbFix Faire un Don.lnk
2013-10-13 15:23 - 2013-10-13 15:01 - 00011043 _____ C:\UsbFix [Scan 1] KLAUDIA.txt
2013-10-13 15:16 - 2013-02-08 13:40 - 00000000 ____D C:\Program Files (x86)\PowerISO
2013-10-13 15:13 - 2013-10-13 15:13 - 00602112 _____ (OldTimer Tools) C:\Users\KlaudiaM\Desktop\OTL.scr
2013-10-13 15:00 - 2013-10-13 15:00 - 01540681 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\KlaudiaM\Desktop\UsbFix.exe
2013-10-13 14:50 - 2013-10-13 14:50 - 00602112 _____ (OldTimer Tools) C:\Users\KlaudiaM\Desktop\OTL.exe
2013-10-13 14:34 - 2013-10-05 18:07 - 00000000 ____D C:\Users\KlaudiaM\AppData\Local\Avg2014
2013-10-13 14:32 - 2013-10-13 13:57 - 00000000 ____D C:\Users\KlaudiaM\Desktop\rodzina
2013-10-13 09:27 - 2013-04-28 18:56 - 00000000 ____D C:\ProgramData\MFAData
2013-10-13 09:10 - 2013-02-07 19:14 - 00000000 ____D C:\Users\KlaudiaM\AppData\Local\Adobe
2013-10-13 09:09 - 2013-02-08 03:00 - 00000000 ___RD C:\Users\KlaudiaM\Dropbox
2013-10-13 09:09 - 2013-02-08 02:56 - 00000000 ____D C:\Users\KlaudiaM\AppData\Roaming\Dropbox
2013-10-13 09:08 - 2013-02-08 03:00 - 00000988 _____ C:\Users\KlaudiaM\Desktop\Dropbox.lnk
2013-10-13 09:08 - 2013-02-08 02:57 - 00000000 ____D C:\Users\KlaudiaM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-10-13 09:08 - 2013-02-07 18:21 - 00000000 ___RD C:\Users\KlaudiaM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-13 09:04 - 2013-02-07 19:05 - 00000000 ____D C:\Users\KlaudiaM\AppData\Roaming\GG
2013-10-13 09:03 - 2013-10-13 09:02 - 06883928 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-13 09:03 - 2013-02-07 18:25 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-13 09:03 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-12 16:20 - 2013-06-16 22:56 - 00000000 ____D C:\Users\KlaudiaM\AppData\Roaming\vlc
2013-10-11 18:41 - 2013-10-04 09:41 - 00000000 ____D C:\Users\KlaudiaM\Desktop\nagrac
2013-10-11 16:50 - 2013-03-16 14:33 - 00000000 ____D C:\Users\KlaudiaM\Desktop\ubrania
2013-10-11 16:14 - 2013-10-11 16:14 - 00000355 _____ C:\Users\KlaudiaM\Desktop\Computer.lnk
2013-10-11 12:00 - 2013-10-11 11:59 - 00000000 ____D C:\Users\KlaudiaM\Desktop\Stazysci -The Internship [2013] HDRip XViD Napisy PL
2013-10-11 10:42 - 2013-10-09 10:32 - 00000000 ____D C:\Users\KlaudiaM\Desktop\lot
2013-10-11 08:37 - 2013-04-28 19:07 - 00000000 ___HD C:\$AVG
2013-10-11 08:37 - 2012-07-26 10:12 - 00000000 ___HD C:\Windows\ELAMBKUP
2013-10-11 01:04 - 2013-10-10 21:03 - 731678360 _____ C:\Users\KlaudiaM\Desktop\The_Look_of_Love_2013_WEBRip_XViD_juggs.avi
2013-10-11 00:29 - 2013-10-10 21:08 - 723720124 _____ C:\Users\KlaudiaM\Desktop\LOL.2012.PL.BDRip.XviD.avi
2013-10-10 23:44 - 2013-02-07 23:27 - 00000000 ____D C:\Users\KlaudiaM\AppData\Roaming\uTorrent
2013-10-10 22:54 - 2013-10-10 20:54 - 726117988 _____ C:\Users\KlaudiaM\Desktop\The.Big.Wedding.2013.PLSUBBED.BRRip.XViD.MORS.avi
2013-10-10 20:54 - 2013-10-10 20:51 - 00000000 ____D C:\Users\KlaudiaM\Desktop\The.Bling.Ring.2013.BRRip.XviD-S4A
2013-10-10 15:11 - 2013-02-07 19:00 - 00000000 ____D C:\Users\KlaudiaM\Desktop\praca
2013-10-09 15:09 - 2013-02-07 18:27 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3577756799-1071087773-3447057797-1001
2013-10-09 14:54 - 2013-02-08 05:34 - 00000000 ____D C:\Windows\Minidump
2013-10-09 14:52 - 2013-10-09 14:52 - 378260661 _____ C:\Windows\MEMORY.DMP
2013-10-09 14:52 - 2013-03-13 15:04 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-09 14:52 - 2013-03-13 15:04 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 14:51 - 2013-10-08 09:56 - 00432745 _____ C:\Windows\WindowsUpdate.log
2013-10-09 10:33 - 2013-02-08 13:45 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-09 10:32 - 2013-08-14 16:04 - 00000000 ____D C:\Windows\system32\MRT
2013-10-09 10:29 - 2013-02-07 18:49 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-08 23:52 - 2013-02-07 18:25 - 00004040 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-08 23:52 - 2013-02-07 18:25 - 00003804 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-08 20:45 - 2012-07-26 09:28 - 00848230 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-08 19:27 - 2013-10-08 09:28 - 00000000 ____D C:\Users\KlaudiaM\Desktop\ang
2013-10-08 19:27 - 2013-10-03 12:32 - 00000000 ____D C:\Users\KlaudiaM\Desktop\do portfolio
2013-10-08 19:26 - 2013-10-05 15:26 - 00000000 ____D C:\Users\KlaudiaM\Desktop\kodini
2013-10-07 20:53 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-10-07 09:58 - 2013-09-19 19:25 - 00000000 ____D C:\Users\KlaudiaM\Desktop\The Kings of Summer 2013 DVDScr. Jaybob
2013-10-05 18:16 - 2013-10-05 18:16 - 00000000 ____D C:\Users\KlaudiaM\AppData\Roaming\AVG2014
2013-10-05 18:16 - 2013-04-28 19:06 - 00000000 ____D C:\Program Files (x86)\AVG
2013-10-05 18:15 - 2013-10-05 18:10 - 00000000 ____D C:\ProgramData\AVG2014
2013-10-04 19:57 - 2013-02-07 18:26 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-04 13:04 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-10-04 11:07 - 2013-10-04 11:05 - 00000000 ____D C:\Users\KlaudiaM\Desktop\do auta
2013-10-03 12:49 - 2013-02-13 18:41 - 00000000 ____D C:\Users\KlaudiaM\AppData\Roaming\Skype
2013-10-02 12:09 - 2013-08-05 13:58 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-10-02 12:09 - 2013-08-05 13:57 - 00003736 _____ C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2013-10-02 12:09 - 2013-08-05 13:57 - 00000000 ____D C:\Program Files (x86)\AVG SafeGuard toolbar
2013-10-02 03:38 - 2013-09-17 17:53 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-02 03:38 - 2013-09-17 17:53 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-01 11:09 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-09-30 17:07 - 2013-09-25 22:07 - 00000000 ____D C:\Users\KlaudiaM\Desktop\zdjecia wrzesien 2013
2013-09-29 13:21 - 2013-09-26 14:22 - 00000000 ____D C:\Users\KlaudiaM\Desktop\telefon inne
2013-09-25 21:07 - 2013-09-25 21:07 - 00148792 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiska.sys
2013-09-25 14:45 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache
2013-09-23 16:04 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\NDF
2013-09-23 01:28 - 2013-10-09 09:47 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-23 01:28 - 2013-10-09 09:47 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-23 01:27 - 2013-10-09 09:47 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-23 01:27 - 2013-10-09 09:47 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-23 01:27 - 2013-10-09 09:47 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-23 01:27 - 2013-10-09 09:47 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-23 01:27 - 2013-10-09 09:47 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-23 01:27 - 2013-10-09 09:47 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-23 00:55 - 2013-10-09 09:47 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-23 00:55 - 2013-10-09 09:47 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-23 00:55 - 2013-10-09 09:47 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-23 00:54 - 2013-10-09 09:47 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-23 00:54 - 2013-10-09 09:47 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-23 00:54 - 2013-10-09 09:47 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-23 00:54 - 2013-10-09 09:47 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-23 00:54 - 2013-10-09 09:47 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-23 00:54 - 2013-10-09 09:47 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:26 - 2013-09-14 15:20 - 00000000 ____D C:\Users\KlaudiaM\Desktop\handyman
2013-09-19 15:51 - 2013-02-08 00:50 - 00000132 _____ C:\Users\KlaudiaM\AppData\Roaming\Adobe PNG Format CS6 Prefs
2013-09-17 17:49 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-09-17 17:49 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-09-17 17:48 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\oobe

Some content of TEMP:
====================
C:\Users\KlaudiaM\AppData\Local\Temp\ICReinstall_OTL_3.2.70.2 (25180).exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-09 09:57

==================== End Of Log ============================