Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Szymon (administrator) on SZYMON-KOMPUTER on 06-11-2013 16:25:37
Running from C:\Users\Szymon\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(GG Network S.A.) C:\Users\Szymon\AppData\Local\GG\Application\gghub.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIIME.EXE
(GG Network S.A.) C:\Users\Szymon\AppData\Local\GG\Application\ggapp.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\WifiManager.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\dmhkcore.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\SmartSetting.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\MovieColorEnhancer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\windows\system32\igfxext.exe
(Intel Corporation) C:\windows\system32\igfxsrvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
(Intel Corporation) C:\windows\system32\hkcmd.exe
(Intel Corporation) C:\windows\system32\igfxtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\EasySpeedUpManager.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(BitTorrent Inc.) C:\Users\Szymon\AppData\Roaming\uTorrent\uTorrent.exe
(Microsoft Corporation) C:\windows\helppane.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
(Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
(OldTimer Tools) C:\Users\Szymon\Downloads\OTL.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11855976 2011-05-19] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] - rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2588968 2012-10-13] (ELAN Microelectronics Corp.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [GG] - C:\Users\Szymon\AppData\Local\GG\Application\gghub.exe [4009024 2013-09-16] (GG Network S.A.)
HKCU\...\Run: [EPLTarget\P0000000000000001] - C:\Windows\System32\spool\drivers\x64\3\E_IATIIME.EXE [283232 2012-02-29] (SEIKO EPSON CORPORATION)
MountPoints2: {48d0f46b-500b-11e2-9293-e8039a95a1b5} - F:\AutoRun.exe
MountPoints2: {48d0f46d-500b-11e2-9293-e8039a95a1b5} - F:\AutoRun.exe
MountPoints2: {48d0f47c-500b-11e2-9293-e8039a95a1b5} - F:\AutoRun.exe
MountPoints2: {48d0f483-500b-11e2-9293-e8039a95a1b5} - F:\AutoRun.exe
MountPoints2: {5f2709d9-c231-11e2-bb71-b8030542d6b8} - I:\autorun.exe
MountPoints2: {e4a0beaa-c21d-11e2-9b7f-b8030542d6b8} - F:\Autorun.exe
MountPoints2: {e4a0bedf-c21d-11e2-9b7f-b8030542d6b8} - G:\Autorun.exe
MountPoints2: {e7f0f619-1c45-11e3-8028-b8030542d6b8} - G:\autorun.exe
MountPoints2: {e7f0f632-1c45-11e3-8028-b8030542d6b8} - I:\setup.exe /autorun
MountPoints2: {ecc0e542-e972-11e2-8b21-b8030542d6b8} - J:\AutoRun.exe
MountPoints2: {ecc0e548-e972-11e2-8b21-b8030542d6b8} - J:\AutoRun.exe
HKLM-x32\...\Run: [AvastUI.exe] - "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
HKU\balblaniec\...\RunOnce: [FlashPlayerUpdate] - C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_7_700_224_Plugin.exe -update plugin
HKU\UpdatusUser\...\RunOnce: [avg_spchecker] - "C:\Program Files (x86)\AVG\AVG9\Notification\SPChecker1.exe" /start
AppInit_DLLs: c:\progra~3\pcperf~1\261123~1.78\{61d8b~1\pcpmngr.dll c:\windows\system32\nvinitx.dll [97280 2009-07-14] ()
AppInit_DLLs-x32: c:\progra~3\bitguard\261694~1.246\{c16c1~1\bitguard.dll [ ] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.doko-search.com/?babsrc=HP_ss&mntrId=169CB8030542D6B4&affID=125839&tsp=5039
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=hp&from=newgdp&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1380308499
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=hp&from=newgdp&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1380308499
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=hp&from=newgdp&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1380308499
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=hp&from=newgdp&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1380308499
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=hp&from=newgdp&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1380308499
URLSearchHook: HKLM-x32 - (No Name) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No File
URLSearchHook: HKCU - (No Name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - No File
URLSearchHook: HKCU - (No Name) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.qvo6.com/?utm_source=b&utm_medium=ild&utm_campaign=eXQ&utm_content=sc&from=ild&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1378248279
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.qvo6.com/web/?utm_source=b&utm_medium=ild&utm_campaign=eXQ&utm_content=ds&from=ild&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1378248280
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.qvo6.com/web/?utm_source=b&utm_medium=ild&utm_campaign=eXQ&utm_content=ds&from=ild&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1378248280
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.qvo6.com/web/?utm_source=b&utm_medium=ild&utm_campaign=eXQ&utm_content=ds&from=ild&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1378248280
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.qvo6.com/web/?utm_source=b&utm_medium=ild&utm_campaign=eXQ&utm_content=ds&from=ild&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1378248280
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&st=12&q={searchTerms}&barid={8D0EF529-9C34-49F5-AFE7-E4E49C04C553}
SearchScopes: HKCU - DefaultScope {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/?a=6PR5ykCQQn&loc=skw&search={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylon.com/?q={searchTerms}&affID=119816&tt=gc_&babsrc=SP_ss_gin2g&mntrId=169CB8030542D6B4
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-homes.com/web/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=ds&from=newgdp&uid=ST500LM012XHN-M500MBB_S2RSJ9DC309337&ts=1380308499&type=default&q={searchTerms}
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKCU - {5FD54E6B-8914-40F6-AA38-8FCE13F45489} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=U3&apn_dtid=YYYYYYYYPL&apn_uid=1B7FAEAA-70C1-41E0-B981-CD9EC53AEBEE&apn_sauid=78F500BA-3624-485D-904B-060257741D40
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={88826BAD-0BC1-4A88-9316-6D5CDF45C71C}&mid=8c8a98e2151f8b1bd8dc7c604187ef0a-7ca3b9a73815327188ef86fb7b9a33c730139f19&lang=en&ds=tt014&pr=sa&d=2012-10-16 21:45:15&v=8.0.0.34&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {AC42E18F-AD00-4ECF-B304-EA80C2D999AF} URL = http://www.bing.com/search?q={searchTerms}&r=
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/?a=6PR5ykCQQn&loc=skw&search={searchTerms}
SearchScopes: HKCU - {D0B62FE5-8FA3-4F7E-B727-A85E55D1A040} URL = http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&st=12&q={searchTerms}&barid={8D0EF529-9C34-49F5-AFE7-E4E49C04C553}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll No File
BHO: Web Assistant - {336D0C35-8A85-403a-B9D2-65C292C39087} -  No File
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\EPSON Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: FTdownloader V4.0 - {11111111-1111-1111-1111-110311551174} - C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-bho.dll (installdaddy)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Web Assistant - {336D0C35-8A85-403a-B9D2-65C292C39087} -  No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll No File
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Samsung BHO Class - {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll ()
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: BrowseFox - {b9507101-e464-4b3b-a4cb-291aaedd94f2} - C:\Program Files (x86)\BrowseFox\BrowseFoxBHO.dll (Browse Fox)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} -  No File
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\EPSON Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll No File
Toolbar: HKLM-x32 - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} -  No File
Toolbar: HKLM-x32 - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} -  No File
Toolbar: HKLM-x32 - No Name - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} -  No File
Toolbar: HKLM-x32 - No Name - {9E131A93-EED7-4BEB-B015-A0ADB30B5646} -  No File
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll No File
Toolbar: HKCU - No Name - {687578B9-7132-4A7A-80E4-30EE31099E03} -  No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} -  No File
DPF: HKLM-x32 {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default
FF user.js: detected! => C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.1 - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Szymon\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Szymon\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\searchplugins\browsemngr.xml
FF SearchPlugin: C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\searchplugins\BrowserDefender.xml
FF SearchPlugin: C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\searchplugins\dokotoolbar.xml
FF SearchPlugin: C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\searchplugins\MyStart Search.xml
FF SearchPlugin: C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\searchplugins\sweetim.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\avg_igeared.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\qvo6.xml
FF Extension: BrowseFox - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\Extensions\firefox@browsefox.com
FF Extension: FT Downloader - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\Extensions\ftd@ftd.com
FF Extension: Foxtab Speed Dial - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\Extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}
FF Extension: firefox - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\Extensions\firefox@browsefox.com.xpi
FF Extension: ftd - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\e5d26kaf.default\Extensions\ftd@ftd.com.xpi
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\ffxtlbr@babylon.com
FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\Web Assistant\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\Web Assistant\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{3f963a5b-e555-4543-90e2-c3908898db71}] - C:\Program Files (x86)\AVG\AVG9\Firefox

Chrome: 
=======
CHR Extension: (avast! Online Security) - C:\Users\Szymon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_0
CHR Extension: (Lightning Newtab) - C:\Users\Szymon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo\1.1.6.6_0
CHR Extension: (SweetIM for Facebook) - C:\Users\Szymon\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.1.0.1_0
CHR Extension: (FT Downloader) - C:\Users\Szymon\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgnbhdnimikkoodkogjlcllngimhlapp\5.0_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Szymon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (uTorrentControl2) - C:\Users\Szymon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc\2.3.11.0_0
CHR Extension: (BrowseFox) - C:\Users\Szymon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdjnkblmcjfnlogjjhpigpdgpcgdpll\1.0.0_0
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx
CHR HKLM-x32\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx
CHR HKLM-x32\...\Chrome\Extension: [fgfdfcbeamjnjdejakdidpniblllnbpg] - C:\Windows\SysWOW64\jmdp\pnte.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Szymon\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
CHR HKLM-x32\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\Szymon\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx
CHR HKLM-x32\...\Chrome\Extension: [lgnbhdnimikkoodkogjlcllngimhlapp] - C:\Program Files (x86)\FTDownloader.com\FTDownloader10.crx
CHR HKLM-x32\...\Chrome\Extension: [pacgpkgadgmibnhpdidcnfafllnmeomc] - C:\Users\Szymon\AppData\Local\CRE\pacgpkgadgmibnhpdidcnfafllnmeomc.crx
CHR HKLM-x32\...\Chrome\Extension: [ppdjnkblmcjfnlogjjhpigpdgpcgdpll] - C:\Program Files (x86)\BrowseFox\ppdjnkblmcjfnlogjjhpigpdgpcgdpll.crx

==================== Services (Whitelisted) =================

S4 EpsonScanSvc; C:\windows\system32\EscSvc64.exe [135824 2011-12-11] (Seiko Epson Corporation)
S4 F-Secure Gatekeeper Handler Starter; C:\Program Files (x86)\mmp\multisaver\Anti-Virus\fsgk32st.exe [215648 2009-08-05] (F-Secure Corporation)
S4 FSMA; C:\Program Files (x86)\mmp\multisaver\Common\FSMA32.EXE [186976 2009-08-05] (F-Secure Corporation)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-12-01] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
S4 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-08-23] ()
S4 Update BrowseFox; C:\Program Files (x86)\BrowseFox\updateBrowseFox.exe [65312 2013-10-04] (BrowseFox)
S4 Util BrowseFox; C:\Program Files (x86)\BrowseFox\bin\utilBrowseFox.exe [65312 2013-10-04] (BrowseFox)
S4 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [424104 2013-09-12] (Taiwan Shui Mu Chih Ching Technology Limited.)
S2 avg9emc; "C:\Program Files (x86)\AVG\AVG9\avgemc.exe" [x]
S2 avg9wd; "C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe" [x]
S2 Web Assistant Updater; C:\Program Files\Web Assistant\ExtensionUpdaterService.exe [x]
S4 WsysSvc; C:\ProgramData\eSafe\eGdpSvc.exe [x]

==================== Drivers (Whitelisted) ====================

R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-29] ()
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-29] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-09-13] (Disc Soft Ltd)
S4 F-Secure Filter; C:\Program Files (x86)\mmp\multisaver\Anti-Virus\Win2K\FSfilter.sys [39776 2009-08-05] ()
R2 F-Secure Gatekeeper; C:\Program Files (x86)\mmp\multisaver\Anti-Virus\minifilter\fsgk.sys [139208 2009-08-05] ()
S4 F-Secure Recognizer; C:\Program Files (x86)\mmp\multisaver\Anti-Virus\Win2K\FSrec.sys [25184 2009-08-05] ()
R1 FSES; C:\Windows\System32\drivers\fses.sys [44480 2009-08-05] (F-Secure Corporation)
R1 fsvista; C:\Program Files (x86)\mmp\multisaver\Anti-Virus\minifilter\fsvista.sys [14904 2009-08-05] ()
S3 rtport; C:\windows\SysWOW64\drivers\rtport.sys [15144 2012-03-13] (Windows (R) 2003 DDK 3790 provider)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x]
U5 fsbts; C:\Windows\SysWOW64\Drivers\fsbts.sys [33408 2013-02-14] ()
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [x]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [x]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-06 16:25 - 2013-11-06 16:25 - 00000000 ____D C:\FRST
2013-11-06 16:24 - 2013-11-06 16:24 - 01957098 _____ (Farbar) C:\Users\Szymon\Downloads\FRST64.exe
2013-11-06 16:21 - 2013-11-06 16:21 - 00184616 _____ C:\Users\Szymon\Desktop\OTL.Txt
2013-11-06 16:07 - 2013-11-06 16:16 - 00145070 _____ C:\Users\Szymon\Downloads\Extras.Txt
2013-11-06 16:06 - 2013-11-06 16:14 - 00184616 _____ C:\Users\Szymon\Downloads\OTL.Txt
2013-11-06 15:56 - 2013-11-06 15:56 - 00602112 _____ (OldTimer Tools) C:\Users\Szymon\Downloads\OTL.exe
2013-11-06 15:18 - 2013-11-06 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-06 15:14 - 2013-11-06 15:14 - 05144303 _____ (Swearware) C:\Users\Szymon\Downloads\ComboFix.exe
2013-11-05 15:41 - 2013-11-05 15:42 - 00000000 ____D C:\Users\Szymon\Downloads\TMK aka PiekielnyR-Ice Kilka kartek LP
2013-11-05 15:40 - 2013-11-05 15:40 - 00021465 _____ C:\Users\Szymon\Downloads\[www.tnt24.info] TMK aka PiekielnyR-Ice Kilka kartek LP [2013][ Mp3@320kbps ][Stix93 ].torrent
2013-11-03 21:22 - 2013-11-03 21:22 - 00000000 ____D C:\Users\Szymon\Desktop\FERIE 2013
2013-11-03 20:35 - 2013-11-03 20:35 - 00000000 ____D C:\Users\Szymon\AppData\Local\{97BCA04A-68B7-4F35-B97A-9DC72B1011BE}
2013-11-03 20:02 - 2013-11-03 20:02 - 00003380 _____ C:\windows\System32\Tasks\Odkurzacz
2013-11-03 20:02 - 2013-11-03 20:02 - 00001019 _____ C:\Users\Szymon\Desktop\Odkurzacz.lnk
2013-11-03 20:02 - 2013-11-03 20:02 - 00000000 ____D C:\Program Files (x86)\Odkurzacz
2013-11-03 19:58 - 2013-11-03 19:58 - 03841551 _____ (FranmoSoftware                                              ) C:\Users\Szymon\Downloads\odk13.4.0.1685setup(dobreprogramy.pl).exe
2013-11-03 19:57 - 2013-11-03 19:57 - 00685248 _____ C:\Users\Szymon\Downloads\Odkurzacz(12322).exe
2013-11-01 12:33 - 2013-11-01 12:33 - 00000000 ____D C:\Users\Szymon\AppData\Local\{57A311A6-937E-41D9-930D-7DCE558F0FE1}
2013-11-01 00:32 - 2013-11-01 00:32 - 00000000 ____D C:\Users\Szymon\AppData\Local\{9C5F4C3A-8249-4DBC-AEE4-35F1C6E46B88}
2013-10-31 15:36 - 2013-10-31 15:36 - 00000859 _____ C:\Users\Szymon\Desktop\µTorrent.lnk
2013-10-31 15:36 - 2013-10-31 15:36 - 00000839 _____ C:\Users\Szymon\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2013-10-31 15:33 - 2013-11-06 16:24 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\uTorrent
2013-10-31 15:33 - 2013-11-06 15:34 - 00000292 _____ C:\windows\Tasks\FoxTab.job
2013-10-31 15:33 - 2013-10-31 15:33 - 00003248 _____ C:\windows\System32\Tasks\FoxTab
2013-10-31 15:33 - 2013-10-31 15:33 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\FoxTab
2013-10-31 15:33 - 2013-10-31 15:33 - 00000000 ____D C:\Program Files (x86)\Foxtab
2013-10-31 15:33 - 2013-10-31 15:32 - 01141328 _____ (BitTorrent Inc.) C:\Users\Szymon\Downloads\utorrent(dobreprogramy.pl).exe
2013-10-31 14:28 - 2013-10-31 14:29 - 00000000 ____D C:\Users\Szymon\Desktop\zdjęcia
2013-10-30 13:29 - 2013-10-30 13:29 - 00000000 _____ C:\windows\SysWOW64\config.nt
2013-10-29 19:05 - 2013-10-29 19:05 - 00122482 _____ C:\Users\Szymon\Documents\plpl.xps
2013-10-29 19:02 - 2013-10-29 19:02 - 01330239 _____ C:\Users\Szymon\Documents\uhjk.xps
2013-10-29 18:44 - 2013-10-29 18:44 - 01330239 _____ C:\Users\Szymon\Documents\drukowanie.xps
2013-10-29 18:42 - 2013-10-29 18:42 - 00472449 _____ C:\Users\Szymon\Documents\ss.xps
2013-10-29 17:13 - 2013-10-29 17:13 - 00205320 _____ C:\windows\system32\Drivers\aswVmm.sys
2013-10-29 17:13 - 2013-10-29 17:13 - 00065776 _____ C:\windows\system32\Drivers\aswRvrt.sys
2013-10-29 17:13 - 2013-10-29 17:13 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2013-10-29 11:44 - 2013-10-29 11:44 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\AVAST Software
2013-10-22 08:53 - 2013-10-22 08:53 - 00000000 _____ C:\windows\SysWOW64\sho9CE0.tmp
2013-10-20 00:06 - 2013-10-20 00:06 - 00114384 _____ C:\Users\Default\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-20 00:06 - 2013-10-20 00:06 - 00114384 _____ C:\Users\Default User\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-20 00:06 - 2013-10-20 00:06 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2013-10-20 00:06 - 2013-10-20 00:06 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2013-10-18 18:06 - 2009-07-22 09:17 - 00111640 _____ (Microsoft Corporation) C:\windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2013-10-18 18:06 - 2009-07-22 09:17 - 00079896 _____ (Microsoft Corporation) C:\windows\SysWOW64\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2013-10-18 18:06 - 2009-07-22 09:17 - 00078872 _____ (Microsoft Corporation) C:\windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2013-10-18 18:06 - 2009-07-22 09:17 - 00050200 _____ (Microsoft Corporation) C:\windows\SysWOW64\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2013-10-18 18:04 - 2013-10-18 18:04 - 00000000 ____D C:\windows\system32\RsFx
2013-10-18 18:03 - 2013-10-18 18:03 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 9.0
2013-10-18 18:03 - 2013-10-18 18:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2013-10-18 18:02 - 2013-10-18 18:02 - 00000000 ____D C:\windows\SysWOW64\1033
2013-10-18 18:02 - 2013-10-18 18:02 - 00000000 ____D C:\windows\system32\1033
2013-10-18 17:49 - 2013-10-18 18:03 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2013-10-18 17:48 - 2013-10-18 18:04 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2013-10-18 17:47 - 2013-10-18 17:47 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2013-10-18 17:47 - 2013-10-18 17:47 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2013-10-18 17:46 - 2013-10-18 17:46 - 00000000 ____D C:\Users\Szymon\Documents\Visual Studio 2010
2013-10-18 17:42 - 2013-10-18 17:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2013-10-18 17:41 - 2013-10-18 17:41 - 00000000 ____D C:\windows\symbols
2013-10-18 17:41 - 2013-10-18 17:41 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 10.0
2013-10-18 17:41 - 2013-10-18 17:41 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2013-10-18 17:41 - 2013-10-18 17:41 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2013-10-18 17:35 - 2013-10-18 17:35 - 03324232 _____ (Microsoft Corporation) C:\Users\Szymon\Downloads\vc_web.exe
2013-10-17 12:35 - 2013-10-05 16:56 - 737676382 _____ C:\Users\Szymon\Desktop\Obecność (2013) PL.SUBBED.WEBRip.XViD-MORS.avi
2013-10-10 12:57 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-10-10 12:57 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-10-10 12:57 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-10-10 12:57 - 2013-09-22 23:55 - 02241024 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-10-10 12:57 - 2013-09-22 23:55 - 01365504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-10-10 12:57 - 2013-09-22 23:55 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-10-10 12:57 - 2013-09-22 23:54 - 19252224 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-10-10 12:57 - 2013-09-22 23:54 - 15404544 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-10-10 12:57 - 2013-09-22 23:54 - 03959296 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-10-10 12:57 - 2013-09-22 23:54 - 02647552 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-10-10 12:57 - 2013-09-22 23:54 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-10-10 12:57 - 2013-09-22 23:54 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-10-10 12:57 - 2013-09-22 23:54 - 00526336 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-10-10 12:57 - 2013-09-22 23:54 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-10-10 12:57 - 2013-09-22 23:54 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-10-10 12:57 - 2013-09-22 23:54 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-10-10 12:57 - 2013-09-22 23:54 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-10-10 12:57 - 2013-09-21 04:38 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-10-10 12:57 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-10-10 12:57 - 2013-09-21 03:48 - 00089600 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-10-10 12:57 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-10 11:21 - 2013-09-14 02:10 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2013-10-10 11:21 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2013-10-10 11:21 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2013-10-10 11:21 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2013-10-10 11:21 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2013-10-10 11:21 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2013-10-10 11:21 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2013-10-10 11:21 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2013-10-10 11:21 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2013-10-10 11:21 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2013-10-10 11:21 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2013-10-10 11:21 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2013-10-10 11:21 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2013-10-10 11:21 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2013-10-10 11:21 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2013-10-10 11:21 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2013-10-10 11:21 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2013-10-10 11:21 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2013-10-10 11:21 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2013-10-10 11:21 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-10-10 11:21 - 2013-07-12 11:41 - 00185344 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2013-10-10 11:21 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2013-10-10 11:21 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2013-10-10 11:21 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2013-10-10 11:21 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2013-10-10 11:21 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2013-10-10 11:21 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2013-10-10 11:21 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2013-10-10 11:21 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2013-10-10 11:21 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbscan.sys
2013-10-10 11:21 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2013-10-10 11:21 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2013-10-10 11:21 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2013-10-10 11:21 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2013-10-10 11:21 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2013-10-10 11:21 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2013-10-10 11:21 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2013-10-10 11:21 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2013-10-10 11:21 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2013-10-10 11:21 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2013-10-10 11:21 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2013-10-10 11:21 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2013-10-10 11:21 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2013-10-10 11:20 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2013-10-10 11:20 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2013-10-10 11:20 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 11:20 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 10:07 - 2013-10-09 10:07 - 00342487 _____ C:\Users\Szymon\Downloads\Mercedes_Sprinter.rar
2013-10-09 09:53 - 2013-10-09 09:53 - 00222314 _____ C:\Users\Szymon\Downloads\Realistic Physics Mod v7.0 Without Limiter.rar

==================== One Month Modified Files and Folders =======

2013-11-06 16:25 - 2013-11-06 16:25 - 00000000 ____D C:\FRST
2013-11-06 16:24 - 2013-11-06 16:24 - 01957098 _____ (Farbar) C:\Users\Szymon\Downloads\FRST64.exe
2013-11-06 16:24 - 2013-10-31 15:33 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\uTorrent
2013-11-06 16:21 - 2013-11-06 16:21 - 00184616 _____ C:\Users\Szymon\Desktop\OTL.Txt
2013-11-06 16:20 - 2011-06-25 07:47 - 01582294 _____ C:\windows\WindowsUpdate.log
2013-11-06 16:18 - 2013-05-29 15:18 - 00000290 _____ C:\windows\Tasks\DSite.job
2013-11-06 16:16 - 2013-11-06 16:07 - 00145070 _____ C:\Users\Szymon\Downloads\Extras.Txt
2013-11-06 16:14 - 2013-11-06 16:06 - 00184616 _____ C:\Users\Szymon\Downloads\OTL.Txt
2013-11-06 15:56 - 2013-11-06 15:56 - 00602112 _____ (OldTimer Tools) C:\Users\Szymon\Downloads\OTL.exe
2013-11-06 15:34 - 2013-10-31 15:33 - 00000292 _____ C:\windows\Tasks\FoxTab.job
2013-11-06 15:30 - 2012-06-14 21:59 - 00001048 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-06 15:19 - 2012-10-20 18:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-06 15:19 - 2012-05-28 18:04 - 00000000 ____D C:\Users\Szymon\AppData\Local\Mozilla
2013-11-06 15:18 - 2013-11-06 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-06 15:14 - 2013-11-06 15:14 - 05144303 _____ (Swearware) C:\Users\Szymon\Downloads\ComboFix.exe
2013-11-06 14:50 - 2012-06-11 15:28 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\WildTangent
2013-11-06 14:50 - 2011-06-24 16:09 - 00000000 ____D C:\ProgramData\WildTangent
2013-11-06 13:34 - 2012-08-14 21:19 - 00000932 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3099691929-597136357-677967994-1002UA.job
2013-11-06 13:34 - 2012-08-14 21:19 - 00000910 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3099691929-597136357-677967994-1002Core.job
2013-11-06 13:23 - 2012-06-14 21:59 - 00001044 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-06 13:10 - 2013-09-03 23:43 - 00001232 _____ C:\windows\Tasks\FTdownloader V4.0-updater.job
2013-11-06 13:10 - 2013-09-03 23:43 - 00001226 _____ C:\windows\Tasks\FTdownloader V4.0-codedownloader.job
2013-11-06 13:10 - 2013-09-03 23:43 - 00001136 _____ C:\windows\Tasks\FTdownloader V4.0-enabler.job
2013-11-06 01:18 - 2013-07-27 10:18 - 00000108 _____ C:\Users\Szymon\AppData\Roaming\WB.CFG
2013-11-06 01:18 - 2013-06-17 07:53 - 00000006 _____ C:\Users\Szymon\AppData\Roaming\WBPU-TTL.DAT
2013-11-06 01:09 - 2012-05-28 20:35 - 00000000 ____D C:\Users\Szymon\AppData\Local\GG
2013-11-05 22:24 - 2009-07-14 05:51 - 00162293 _____ C:\windows\setupact.log
2013-11-05 16:38 - 2009-07-14 06:32 - 00000000 ____D C:\windows\system32\FxsTmp
2013-11-05 15:42 - 2013-11-05 15:41 - 00000000 ____D C:\Users\Szymon\Downloads\TMK aka PiekielnyR-Ice Kilka kartek LP
2013-11-05 15:40 - 2013-11-05 15:40 - 00021465 _____ C:\Users\Szymon\Downloads\[www.tnt24.info] TMK aka PiekielnyR-Ice Kilka kartek LP [2013][ Mp3@320kbps ][Stix93 ].torrent
2013-11-04 20:19 - 2009-07-14 05:45 - 00021536 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-04 20:19 - 2009-07-14 05:45 - 00021536 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-04 20:13 - 2012-05-28 20:35 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\GG
2013-11-04 20:12 - 2009-07-14 06:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-11-03 21:22 - 2013-11-03 21:22 - 00000000 ____D C:\Users\Szymon\Desktop\FERIE 2013
2013-11-03 20:37 - 2012-05-29 22:08 - 00000000 ____D C:\Users\Szymon\AppData\Local\Windows Live
2013-11-03 20:35 - 2013-11-03 20:35 - 00000000 ____D C:\Users\Szymon\AppData\Local\{97BCA04A-68B7-4F35-B97A-9DC72B1011BE}
2013-11-03 20:35 - 2012-05-28 19:36 - 00000000 ____D C:\Users\Szymon\Tracing
2013-11-03 20:16 - 2013-07-07 20:24 - 00000000 ____D C:\Users\Gość
2013-11-03 20:16 - 2013-07-05 15:18 - 00000000 ____D C:\Users\balblaniec
2013-11-03 20:16 - 2013-02-02 16:26 - 00000000 ____D C:\Users\Szymon\Documents\Youcam
2013-11-03 20:16 - 2012-09-03 16:11 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\skypePM
2013-11-03 20:16 - 2012-05-28 17:29 - 00000000 ____D C:\Users\Szymon
2013-11-03 20:16 - 2011-02-11 20:56 - 00000000 ____D C:\windows\Sec
2013-11-03 20:08 - 2013-05-09 09:29 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Thinstall
2013-11-03 20:08 - 2012-05-28 17:36 - 00000000 ____D C:\ProgramData\Skype
2013-11-03 20:03 - 2012-10-02 19:31 - 00000000 ____D C:\windows\Minidump
2013-11-03 20:03 - 2012-06-05 08:48 - 00000000 ____D C:\Users\Szymon\AppData\Local\CrashDumps
2013-11-03 20:02 - 2013-11-03 20:02 - 00003380 _____ C:\windows\System32\Tasks\Odkurzacz
2013-11-03 20:02 - 2013-11-03 20:02 - 00001019 _____ C:\Users\Szymon\Desktop\Odkurzacz.lnk
2013-11-03 20:02 - 2013-11-03 20:02 - 00000000 ____D C:\Program Files (x86)\Odkurzacz
2013-11-03 19:58 - 2013-11-03 19:58 - 03841551 _____ (FranmoSoftware                                              ) C:\Users\Szymon\Downloads\odk13.4.0.1685setup(dobreprogramy.pl).exe
2013-11-03 19:57 - 2013-11-03 19:57 - 00685248 _____ C:\Users\Szymon\Downloads\Odkurzacz(12322).exe
2013-11-03 19:38 - 2011-06-24 16:13 - 00000000 ____D C:\ProgramData\Norton
2013-11-03 19:34 - 2011-06-25 07:17 - 00810978 _____ C:\windows\system32\perfh015.dat
2013-11-03 19:34 - 2011-06-25 07:17 - 00183224 _____ C:\windows\system32\perfc015.dat
2013-11-03 19:34 - 2009-07-14 06:13 - 01870466 _____ C:\windows\system32\PerfStringBackup.INI
2013-11-03 10:06 - 2009-07-14 04:20 - 00000000 ____D C:\windows\rescache
2013-11-01 12:33 - 2013-11-01 12:33 - 00000000 ____D C:\Users\Szymon\AppData\Local\{57A311A6-937E-41D9-930D-7DCE558F0FE1}
2013-11-01 10:27 - 2013-04-21 17:38 - 00000000 ____D C:\Program Files (x86)\FLVPlayer
2013-11-01 10:26 - 2013-05-29 15:18 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Zip Opener Packages
2013-11-01 00:32 - 2013-11-01 00:32 - 00000000 ____D C:\Users\Szymon\AppData\Local\{9C5F4C3A-8249-4DBC-AEE4-35F1C6E46B88}
2013-10-31 15:36 - 2013-10-31 15:36 - 00000859 _____ C:\Users\Szymon\Desktop\µTorrent.lnk
2013-10-31 15:36 - 2013-10-31 15:36 - 00000839 _____ C:\Users\Szymon\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2013-10-31 15:33 - 2013-10-31 15:33 - 00003248 _____ C:\windows\System32\Tasks\FoxTab
2013-10-31 15:33 - 2013-10-31 15:33 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\FoxTab
2013-10-31 15:33 - 2013-10-31 15:33 - 00000000 ____D C:\Program Files (x86)\Foxtab
2013-10-31 15:32 - 2013-10-31 15:33 - 01141328 _____ (BitTorrent Inc.) C:\Users\Szymon\Downloads\utorrent(dobreprogramy.pl).exe
2013-10-31 14:29 - 2013-10-31 14:28 - 00000000 ____D C:\Users\Szymon\Desktop\zdjęcia
2013-10-31 14:29 - 2013-04-20 10:16 - 00000000 ____D C:\Users\Szymon\Desktop\Paulc
2013-10-30 13:29 - 2013-10-30 13:29 - 00000000 _____ C:\windows\SysWOW64\config.nt
2013-10-30 11:34 - 2013-09-22 15:26 - 00000000 ____D C:\Program Files (x86)\AP Tuner
2013-10-29 19:05 - 2013-10-29 19:05 - 00122482 _____ C:\Users\Szymon\Documents\plpl.xps
2013-10-29 19:02 - 2013-10-29 19:02 - 01330239 _____ C:\Users\Szymon\Documents\uhjk.xps
2013-10-29 18:44 - 2013-10-29 18:44 - 01330239 _____ C:\Users\Szymon\Documents\drukowanie.xps
2013-10-29 18:42 - 2013-10-29 18:42 - 00472449 _____ C:\Users\Szymon\Documents\ss.xps
2013-10-29 17:13 - 2013-10-29 17:13 - 00205320 _____ C:\windows\system32\Drivers\aswVmm.sys
2013-10-29 17:13 - 2013-10-29 17:13 - 00065776 _____ C:\windows\system32\Drivers\aswRvrt.sys
2013-10-29 17:13 - 2013-10-29 17:13 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2013-10-29 17:11 - 2013-01-13 14:44 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-29 11:44 - 2013-10-29 11:44 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\AVAST Software
2013-10-29 10:18 - 2012-12-25 18:29 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\CrashDumps
2013-10-29 10:17 - 2013-09-12 14:19 - 00000000 ____D C:\Program Files (x86)\WinZipper
2013-10-27 19:02 - 2012-06-04 11:18 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Skype
2013-10-24 16:12 - 2009-07-14 00:39 - 00041984 _____ (Microsoft Corporation) C:\windows\system32\msimtf.dll
2013-10-24 13:05 - 2013-05-29 14:19 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-22 08:53 - 2013-10-22 08:53 - 00000000 _____ C:\windows\SysWOW64\sho9CE0.tmp
2013-10-22 08:53 - 2013-02-13 15:06 - 2720512895 _____ C:\windows\ih8.config.xml.log
2013-10-21 13:25 - 2012-08-26 13:13 - 00000000 ____D C:\windows\SysWOW64\WNLT
2013-10-21 09:37 - 2013-04-08 12:46 - 00000000 ____D C:\windows\SysWOW64\ARFC
2013-10-20 00:06 - 2013-10-20 00:06 - 00114384 _____ C:\Users\Default\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-20 00:06 - 2013-10-20 00:06 - 00114384 _____ C:\Users\Default User\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-20 00:06 - 2013-10-20 00:06 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2013-10-20 00:06 - 2013-10-20 00:06 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2013-10-19 11:51 - 2013-07-21 19:43 - 00002433 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-18 18:04 - 2013-10-18 18:04 - 00000000 ____D C:\windows\system32\RsFx
2013-10-18 18:04 - 2013-10-18 17:48 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2013-10-18 18:03 - 2013-10-18 18:03 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 9.0
2013-10-18 18:03 - 2013-10-18 18:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2013-10-18 18:03 - 2013-10-18 17:49 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2013-10-18 18:03 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-10-18 18:02 - 2013-10-18 18:02 - 00000000 ____D C:\windows\SysWOW64\1033
2013-10-18 18:02 - 2013-10-18 18:02 - 00000000 ____D C:\windows\system32\1033
2013-10-18 17:47 - 2013-10-18 17:47 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2013-10-18 17:47 - 2013-10-18 17:47 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2013-10-18 17:46 - 2013-10-18 17:46 - 00000000 ____D C:\Users\Szymon\Documents\Visual Studio 2010
2013-10-18 17:43 - 2013-10-18 17:42 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2013-10-18 17:42 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-10-18 17:41 - 2013-10-18 17:41 - 00000000 ____D C:\windows\symbols
2013-10-18 17:41 - 2013-10-18 17:41 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 10.0
2013-10-18 17:41 - 2013-10-18 17:41 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2013-10-18 17:41 - 2013-10-18 17:41 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2013-10-18 17:35 - 2013-10-18 17:35 - 03324232 _____ (Microsoft Corporation) C:\Users\Szymon\Downloads\vc_web.exe
2013-10-16 09:38 - 2009-07-14 06:08 - 00032608 _____ C:\windows\Tasks\SCHEDLGU.TXT
2013-10-15 17:43 - 2013-09-03 23:43 - 00004262 _____ C:\windows\System32\Tasks\FTdownloader V4.0-updater
2013-10-10 13:07 - 2009-07-14 05:45 - 00425752 _____ C:\windows\system32\FNTCACHE.DAT
2013-10-10 13:02 - 2013-03-06 11:19 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-10 13:02 - 2013-03-06 11:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-10 13:01 - 2013-05-27 18:56 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-10 12:53 - 2012-05-28 22:51 - 01659878 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2013-10-10 12:47 - 2013-07-17 14:30 - 00000000 ____D C:\windows\system32\MRT
2013-10-10 12:43 - 2012-06-14 10:21 - 80541720 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-10-10 11:45 - 2013-09-29 12:21 - 00000000 ____D C:\Users\Szymon\Documents\Euro Truck Simulator 2
2013-10-09 10:07 - 2013-10-09 10:07 - 00342487 _____ C:\Users\Szymon\Downloads\Mercedes_Sprinter.rar
2013-10-09 09:53 - 2013-10-09 09:53 - 00222314 _____ C:\Users\Szymon\Downloads\Realistic Physics Mod v7.0 Without Limiter.rar
2013-10-08 08:25 - 2012-06-14 21:59 - 00004044 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-08 08:25 - 2012-06-14 21:59 - 00003792 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore

Files to move or delete:
====================
C:\Users\Szymon\TSM.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-03 09:52

==================== End Of Log ============================