Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-11-2013
Ran by Lenovo (administrator) on LENOVO-KOMPUTER on 29-11-2013 12:29:42
Running from C:\Users\Lenovo\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(InterVideo Inc.) C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\ProgramData\WinterSoft\SK.Enhancer\SK.Enhancer.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
() C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Update\1.3.21.165\GoogleCrashHandler.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331_STI.EXE
(Lenovo) C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [cAudioFilterAgent] - C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe [521272 2010-03-22] (Conexant Systems, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2108200 2010-04-01] (Synaptics Incorporated)
HKLM\...\Run: [OnekeyStudio] - C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [776608 2009-12-19] (Lenovo)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [4462496 2010-04-12] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [7056800 2010-03-18] (Lenovo (Beijing) Limited)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Lenovo\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-02-16] (Google Inc.)
MountPoints2: E - E:\AutoRun.exe
MountPoints2: {13251a3c-c86b-11e1-b52b-18f46af38692} - E:\AutoRun.exe
MountPoints2: {13251a40-c86b-11e1-b52b-18f46af38692} - E:\AutoRun.exe
MountPoints2: {2585a723-e23b-11e2-8d93-18f46af38692} - E:\AutoRun.exe
MountPoints2: {5332a224-8967-11e2-8eba-18f46af38692} - E:\AutoRun.exe
MountPoints2: {77ee9c19-cf3a-11e1-9451-18f46af38692} - E:\AutoRun.exe
MountPoints2: {d61dc489-7b3e-11e2-9510-18f46af38692} - E:\AutoRun.exe
MountPoints2: {e2592fca-f9bb-11e2-ae9f-18f46af38692} - E:\Autorun.exe
MountPoints2: {fa4b791c-7d3c-11e2-bb68-18f46af38692} - E:\autorun.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation)
HKLM-x32\...\Run: [331BigDog] - C:\Program Files (x86)\USB Camera\VM331_STI.EXE [536576 2010-01-15] (Vimicro)
HKLM-x32\...\Run: [VeriFaceManager] - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [3122528 2010-10-29] (Lenovo)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Mirror Tray icon] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [171104 2010-03-02] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UVS11 Preload] - C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [340136 2007-09-12] (InterVideo Digital Technology Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\Default\...\RunOnce: [WLStart] - C:\Program Files (x86)\Windows Live\Installer\wlstart.exe [785744 2009-07-26] (Microsoft Corporation)
HKU\Default User\...\RunOnce: [WLStart] - C:\Program Files (x86)\Windows Live\Installer\wlstart.exe [785744 2009-07-26] (Microsoft Corporation)
AppInit_DLLs:   [ ] ()
AppInit_DLLs-x32: c:\progra~2\skc4df~1.enh\psupport.dll [857600 2013-10-06] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = 
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {3C2724B2-328F-7063-67CB-7E033550A02A} URL = 
SearchScopes: HKLM-x32 - {BE6E6B16-A4C5-48C4-B94F-43942DAFD330} URL = http://dts.search-results.com/sr?src=ieb&appid=0&systemid=2&sr=0&q={searchTerms}
SearchScopes: HKCU - {BE6E6B16-A4C5-48C4-B94F-43942DAFD330} URL = http://dts.search-results.com/sr?src=ieb&appid=0&systemid=2&sr=0&q={searchTerms}
BHO: surf, and keep - {4A1B6BEA-92A9-A40F-5AFA-3F917E56B42B} - C:\Program Files (x86)\surf, and keep\DUD.x64.dll ()
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: surf, and keep - {4A1B6BEA-92A9-A40F-5AFA-3F917E56B42B} - C:\Program Files (x86)\surf, and keep\DUD.dll ()
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocnik logowania za pomocą identyfikatora Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - !{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0

Chrome: 
=======
CHR Extension: (YoutubeAdblocker) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\clmnjcgcnlcbghdhmlphepmmljgokclo\1.0
CHR Extension: (surfa And keep) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkhfkhelbjghaldpinbeegbkgjmnlfd\2.19
CHR Extension: (AdBlock) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.14_0
CHR Extension: (Google Wallet) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\Lenovo\AppData\Local\Temp\crxEC2.tmp
CHR StartMenuInternet: Google Chrome - C:\Users\Lenovo\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [864032 2009-08-11] (Broadcom Corporation.)
R2 Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
S3 IGRS; C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [579400 2009-09-22] (Lenovo Group Limited)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
S3 PS_MDP; C:\Program Files (x86)\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
S2 ReadyComm.DirectRouter; C:\Program Files (x86)\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)

==================== Drivers (Whitelisted) ====================

S3 athrusb; C:\Windows\System32\DRIVERS\athrxusb.sys [559104 2006-12-22] (Atheros Communications, Inc.)
S3 Bridge0; C:\Windows\System32\drivers\WDBridge.sys [79376 2009-07-16] (Lenovo)
S3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20568 2009-12-22] (Devguru Co., Ltd)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 SG762_64; C:\Windows\System32\DRIVERS\WlanBZ64.sys [493440 2006-01-19] (ZyDAS Technology Corporation)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [215168 2010-03-18] (Vimicro Corporation)
R3 wdmirror; C:\Windows\System32\DRIVERS\WDMirror.sys [11280 2009-07-16] (Lenovo)
U3 BcmSqlStartupSvc; 
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [x]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [x]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [x]
U2 IviRegMgr; 
U2 RichVideo; 
U3 SQLWriter; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-29 12:29 - 2013-11-29 12:30 - 00013256 _____ C:\Users\Lenovo\Downloads\FRST.txt
2013-11-29 12:22 - 2013-11-29 12:22 - 00623224 _____ (Duplex Secure Ltd.) C:\Users\Lenovo\Downloads\SPTDinst-v186-x64.exe
2013-11-29 12:12 - 2013-11-29 12:12 - 00602112 _____ (OldTimer Tools) C:\Users\Lenovo\Downloads\OTL.exe
2013-11-29 12:04 - 2013-11-29 12:04 - 00000000 ____D C:\FRST
2013-11-29 12:03 - 2013-11-29 12:03 - 01959024 _____ (Farbar) C:\Users\Lenovo\Downloads\FRST64.exe
2013-11-25 22:20 - 2013-11-25 22:20 - 00001644 _____ C:\Users\Lenovo\Desktop\życzenia.txt
2013-11-23 23:10 - 2013-11-23 23:10 - 00004310 _____ C:\Users\Lenovo\AppData\Local\recently-used.xbel
2013-11-21 19:16 - 2013-11-21 19:15 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2013-11-21 19:15 - 2013-11-21 19:15 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2013-11-21 19:15 - 2013-11-21 19:15 - 00174504 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2013-11-21 19:15 - 2013-11-21 19:15 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-21 19:14 - 2013-11-21 19:14 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-21 14:02 - 2013-11-21 14:31 - 00000000 ____D C:\Users\Lenovo\Desktop\mega
2013-11-21 13:46 - 2013-11-21 14:02 - 00000000 ____D C:\Users\Lenovo\Desktop\na fb
2013-11-21 12:48 - 2013-11-21 11:58 - 305748214 ____N C:\Users\Lenovo\Desktop\WP_20131121_002.mp4
2013-11-21 12:47 - 2013-11-21 14:12 - 00000000 ____D C:\Users\Lenovo\Desktop\dzień językowy 21.11.13
2013-11-20 18:57 - 2013-11-20 18:57 - 00002279 _____ C:\Users\Public\Desktop\The Sims™ 2 Osiedlowe życie.lnk
2013-11-20 18:57 - 2013-11-20 18:57 - 00001190 _____ C:\Users\Public\Desktop\www.thesims3.com.lnk
2013-11-19 20:22 - 2013-11-19 20:22 - 00000000 ____D C:\Users\Public\Documents\EA Games
2013-11-19 20:19 - 2013-11-19 20:19 - 00002085 _____ C:\Users\Public\Desktop\The Sims 2.lnk
2013-11-19 20:19 - 2013-11-19 20:19 - 00000000 ____D C:\Users\Lenovo\Documents\EA Games
2013-11-19 20:09 - 2013-11-20 18:53 - 00000000 ____D C:\Program Files (x86)\EA GAMES
2013-11-14 09:40 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-11-14 09:40 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-11-14 09:40 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-11-14 09:40 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-11-14 09:40 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-11-14 09:40 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-11-14 09:40 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-11-14 09:40 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-11-14 09:40 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-11-14 09:40 - 2013-10-12 09:43 - 00526336 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-11-14 09:40 - 2013-10-12 09:43 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-11-14 09:40 - 2013-10-12 09:43 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-11-14 09:40 - 2013-10-12 09:43 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-11-14 09:40 - 2013-10-12 09:43 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-11-14 09:40 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-11-14 09:40 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-11-14 09:40 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-11-14 09:40 - 2013-10-12 07:35 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-11-14 09:40 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-11-14 09:40 - 2013-10-12 06:44 - 00089600 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-11-14 09:40 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-14 09:19 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2013-11-14 09:19 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2013-11-14 09:19 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2013-11-14 09:19 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\SysWOW64\nshwfp.dll
2013-11-14 09:19 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\SysWOW64\FWPUCLNT.DLL
2013-11-14 09:19 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2013-11-14 09:19 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2013-11-14 09:19 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2013-11-14 09:19 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2013-11-14 09:19 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2013-11-14 09:19 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-14 09:19 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2013-11-14 09:19 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\credui.dll
2013-11-14 09:19 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2013-11-14 09:19 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2013-11-14 09:19 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2013-11-14 09:19 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2013-11-14 09:19 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2013-11-14 09:19 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2013-11-14 09:19 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2013-11-14 09:19 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2013-11-14 09:19 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2013-11-14 09:19 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2013-11-14 09:19 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2013-11-14 09:19 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2013-11-14 09:19 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2013-11-14 09:19 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2013-11-14 09:19 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2013-11-14 09:19 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2013-11-14 09:19 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2013-11-12 23:50 - 2013-11-21 12:41 - 00004864 _____ C:\windows\PFRO.log
2013-11-12 20:25 - 2013-11-29 12:22 - 00000000 ____D C:\ProgramData\YoutubeAdblocker
2013-11-12 20:25 - 2013-11-29 12:22 - 00000000 ____D C:\ProgramData\dc58b88cfd955b7
2013-11-12 20:25 - 2013-11-29 12:22 - 00000000 ____D C:\Program Files (x86)\YoutubeAdblocker
2013-11-12 20:25 - 2013-11-29 11:18 - 00000458 ____H C:\windows\Tasks\SK.Enhancer-S-747939423.job
2013-11-12 20:25 - 2013-11-12 20:33 - 00000000 ____D C:\ProgramData\WinterSoft
2013-11-12 20:25 - 2013-11-12 20:25 - 00002704 _____ C:\windows\System32\Tasks\SK.Enhancer-S-747939423
2013-11-12 20:25 - 2013-11-12 20:25 - 00000000 ____D C:\Users\Lenovo\AppData\Local\Packages
2013-11-12 20:25 - 2013-11-12 20:25 - 00000000 ____D C:\ProgramData\surf, and keep
2013-11-12 20:25 - 2013-11-12 20:25 - 00000000 ____D C:\Program Files (x86)\surf, and keep
2013-11-12 20:25 - 2013-11-12 20:25 - 00000000 ____D C:\Program Files (x86)\Sk.Enhancer

==================== One Month Modified Files and Folders =======

2013-11-29 12:30 - 2013-11-29 12:29 - 00013256 _____ C:\Users\Lenovo\Downloads\FRST.txt
2013-11-29 12:22 - 2013-11-29 12:22 - 00623224 _____ (Duplex Secure Ltd.) C:\Users\Lenovo\Downloads\SPTDinst-v186-x64.exe
2013-11-29 12:22 - 2013-11-12 20:25 - 00000000 ____D C:\ProgramData\YoutubeAdblocker
2013-11-29 12:22 - 2013-11-12 20:25 - 00000000 ____D C:\ProgramData\dc58b88cfd955b7
2013-11-29 12:22 - 2013-11-12 20:25 - 00000000 ____D C:\Program Files (x86)\YoutubeAdblocker
2013-11-29 12:18 - 2011-02-16 16:21 - 00001062 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3974495567-1903997618-3052050678-1000UA.job
2013-11-29 12:12 - 2013-11-29 12:12 - 00602112 _____ (OldTimer Tools) C:\Users\Lenovo\Downloads\OTL.exe
2013-11-29 12:07 - 2009-07-14 05:45 - 00019520 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-29 12:07 - 2009-07-14 05:45 - 00019520 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-29 12:04 - 2013-11-29 12:04 - 00000000 ____D C:\FRST
2013-11-29 12:03 - 2013-11-29 12:03 - 01959024 _____ (Farbar) C:\Users\Lenovo\Downloads\FRST64.exe
2013-11-29 11:53 - 2010-10-29 10:10 - 01544604 _____ C:\windows\WindowsUpdate.log
2013-11-29 11:20 - 2011-02-14 09:18 - 00003998 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{3E200AF9-AD96-44A6-B061-B89307A95942}
2013-11-29 11:19 - 2011-02-11 20:34 - 19622216 _____ C:\FaceProv.log
2013-11-29 11:19 - 2010-10-29 10:57 - 00000000 ____D C:\ProgramData\VeriFace
2013-11-29 11:18 - 2013-11-12 20:25 - 00000458 ____H C:\windows\Tasks\SK.Enhancer-S-747939423.job
2013-11-29 11:18 - 2013-08-09 09:25 - 00015319 _____ C:\windows\setupact.log
2013-11-29 11:18 - 2009-07-14 06:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-11-27 20:46 - 2011-02-16 16:21 - 00001010 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3974495567-1903997618-3052050678-1000Core.job
2013-11-27 16:07 - 2012-05-15 20:23 - 00000000 ____D C:\Users\Lenovo\Desktop\The Wanted
2013-11-25 22:20 - 2013-11-25 22:20 - 00001644 _____ C:\Users\Lenovo\Desktop\życzenia.txt
2013-11-23 23:10 - 2013-11-23 23:10 - 00004310 _____ C:\Users\Lenovo\AppData\Local\recently-used.xbel
2013-11-23 23:10 - 2013-06-09 21:28 - 00000000 ____D C:\Users\Lenovo\.gimp-2.8
2013-11-21 19:15 - 2013-11-21 19:16 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2013-11-21 19:15 - 2013-11-21 19:15 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2013-11-21 19:15 - 2013-11-21 19:15 - 00174504 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2013-11-21 19:15 - 2013-11-21 19:15 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-21 19:14 - 2013-11-21 19:14 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-21 14:31 - 2013-11-21 14:02 - 00000000 ____D C:\Users\Lenovo\Desktop\mega
2013-11-21 14:12 - 2013-11-21 12:47 - 00000000 ____D C:\Users\Lenovo\Desktop\dzień językowy 21.11.13
2013-11-21 14:02 - 2013-11-21 13:46 - 00000000 ____D C:\Users\Lenovo\Desktop\na fb
2013-11-21 12:50 - 2010-10-29 01:50 - 00698146 _____ C:\windows\system32\perfh015.dat
2013-11-21 12:50 - 2010-10-29 01:50 - 00135224 _____ C:\windows\system32\perfc015.dat
2013-11-21 12:50 - 2009-07-14 06:13 - 01549932 _____ C:\windows\system32\PerfStringBackup.INI
2013-11-21 12:41 - 2013-11-12 23:50 - 00004864 _____ C:\windows\PFRO.log
2013-11-21 11:58 - 2013-11-21 12:48 - 305748214 ____N C:\Users\Lenovo\Desktop\WP_20131121_002.mp4
2013-11-21 00:16 - 2011-07-03 11:29 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\uTorrent
2013-11-20 18:57 - 2013-11-20 18:57 - 00002279 _____ C:\Users\Public\Desktop\The Sims™ 2 Osiedlowe życie.lnk
2013-11-20 18:57 - 2013-11-20 18:57 - 00001190 _____ C:\Users\Public\Desktop\www.thesims3.com.lnk
2013-11-20 18:53 - 2013-11-19 20:09 - 00000000 ____D C:\Program Files (x86)\EA GAMES
2013-11-20 18:51 - 2013-08-02 15:48 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\DAEMON Tools Lite
2013-11-20 18:51 - 2013-02-23 14:13 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-11-20 18:44 - 2011-02-11 20:34 - 00001122 _____ C:\Users\Lenovo\Desktop\Cyberlink Power2Go.lnk
2013-11-19 20:22 - 2013-11-19 20:22 - 00000000 ____D C:\Users\Public\Documents\EA Games
2013-11-19 20:21 - 2011-02-15 15:27 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-11-19 20:19 - 2013-11-19 20:19 - 00002085 _____ C:\Users\Public\Desktop\The Sims 2.lnk
2013-11-19 20:19 - 2013-11-19 20:19 - 00000000 ____D C:\Users\Lenovo\Documents\EA Games
2013-11-19 11:21 - 2011-02-11 13:51 - 00267936 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2013-11-18 23:02 - 2011-03-05 10:39 - 00001912 _____ C:\windows\epplauncher.mif
2013-11-18 23:02 - 2011-03-05 10:38 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-11-18 23:02 - 2011-03-05 10:38 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-11-15 18:39 - 2011-04-01 20:09 - 00000000 ____D C:\Users\Lenovo\Documents\Youcam
2013-11-15 18:20 - 2011-02-16 16:28 - 00002386 _____ C:\Users\Lenovo\Desktop\Google Chrome.lnk
2013-11-14 21:34 - 2011-04-14 19:30 - 00000000 ____D C:\Users\Lenovo\Desktop\Moje
2013-11-14 09:39 - 2013-07-30 22:13 - 00000000 ____D C:\windows\system32\MRT
2013-11-14 09:35 - 2012-06-22 22:29 - 82896128 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-11-13 16:37 - 2013-04-02 18:31 - 00000000 ____D C:\Users\Lenovo\Desktop\Lawson - Chapman Square (Deluxe Edition) (Album)
2013-11-12 20:33 - 2013-11-12 20:25 - 00000000 ____D C:\ProgramData\WinterSoft
2013-11-12 20:33 - 2011-04-06 16:36 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-12 20:25 - 2013-11-12 20:25 - 00002704 _____ C:\windows\System32\Tasks\SK.Enhancer-S-747939423
2013-11-12 20:25 - 2013-11-12 20:25 - 00000000 ____D C:\Users\Lenovo\AppData\Local\Packages
2013-11-12 20:25 - 2013-11-12 20:25 - 00000000 ____D C:\ProgramData\surf, and keep
2013-11-12 20:25 - 2013-11-12 20:25 - 00000000 ____D C:\Program Files (x86)\surf, and keep
2013-11-12 20:25 - 2013-11-12 20:25 - 00000000 ____D C:\Program Files (x86)\Sk.Enhancer
2013-11-12 18:13 - 2011-02-16 16:21 - 00004034 _____ C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3974495567-1903997618-3052050678-1000UA
2013-11-12 18:13 - 2011-02-16 16:21 - 00003638 _____ C:\windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3974495567-1903997618-3052050678-1000Core

Some content of TEMP:
====================
C:\Users\Lenovo\AppData\Local\Temp\AutoRun.exe
C:\Users\Lenovo\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Lenovo\AppData\Local\Temp\First15.exe
C:\Users\Lenovo\AppData\Local\Temp\VP6Install.exe
C:\Users\Lenovo\AppData\Local\Temp\VP6VFW.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-22 14:52

==================== End Of Log ============================