Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-02-2014
Ran by Maciek (administrator) on MACIEK-KOMPUTER on 06-02-2014 07:36:19
Running from C:\Users\Maciek\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polish
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Validity Sensors, Inc.) C:\Windows\System32\vfsFPService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\realplayer\Update\realsched.exe
(Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
(Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbNotifier.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [TkBellExe] - C:\Program Files (x86)\Real\realplayer\update\realsched.exe [295512 2013-12-03] (RealNetworks, Inc.)
HKLM-x32\...\Run: [MobileBroadband] - C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [76288 2013-03-25] (Vodafone)
HKLM-x32\...\Run: [VmbNotifier] - C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbNotifier.exe [1861632 2013-03-25] (Vodafone)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-14] (Hewlett-Packard)
HKU\.DEFAULT\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWow64\Macromed\Flash\FlashUtil10b.exe [240544 2009-02-03] (Adobe Systems, Inc.)
HKU\.DEFAULT\...\Policies\system: [WallpaperStyle] 2
HKU\S-1-5-21-2217048273-749565549-1661794791-1001\...\Policies\system: [WallpaperStyle] 2
HKU\S-1-5-21-2217048273-749565549-1661794791-1001\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-2217048273-749565549-1661794791-1001\...\MountPoints2: {15871197-e0e8-11df-b18f-00271331500c} - G:\AutoRun.exe
HKU\S-1-5-21-2217048273-749565549-1661794791-1001\...\MountPoints2: {158711a6-e0e8-11df-b18f-00271331500c} - G:\AutoRun.exe
HKU\S-1-5-21-2217048273-749565549-1661794791-1001\...\MountPoints2: {fa2f8240-fd0b-11e0-9a5d-806e6f6e6963} - H:\autorun.exe
Lsa: [Notification Packages] scecli DPPWDFLT

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope value is missing.
BHO: DigitalPersona Personal Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: DigitalPersona Personal Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
DPF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.20.5.50

FireFox:
========
FF ProfilePath: C:\Users\Maciek\AppData\Roaming\Mozilla\Firefox\Profiles\m0posuvc.default-1391066058439
FF Homepage: hxxp://www.onet.pl/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npBitCometAgent.dll (BitComet)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin8.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\ []
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-07-12]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-12-03]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKCU\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\firefoxext
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\firefoxext [2010-06-04]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-07-12]

==================== Services (Whitelisted) =================

R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe [89600 2009-03-02] (Andrea Electronics Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe [247808 2010-03-23] (IDT, Inc.)
R2 vfsFPService; C:\Windows\system32\vfsFPService.exe [721712 2009-06-03] (Validity Sensors, Inc.)
R2 vfsFPService; C:\Windows\SysWOW64\vfsFPService.exe [599344 2009-06-03] (Validity Sensors, Inc.)

==================== Drivers (Whitelisted) ====================

S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2012-07-03] (Google Inc)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2010-08-11] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2010-08-11] ()
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [115240 2008-05-16] (MCCI Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2011-12-27] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-06 07:35 - 2014-02-06 07:35 - 02082304 _____ (Farbar) C:\Users\Maciek\Downloads\FRST64.exe
2014-02-06 05:07 - 2014-02-06 05:07 - 00000000 ____H () C:\ProgramData\cm-lock
2014-02-03 09:10 - 2014-02-03 09:11 - 00282560 _____ () C:\Windows\Minidump\020314-76705-01.dmp
2014-02-03 09:09 - 2014-02-03 09:09 - 614447358 _____ () C:\Windows\MEMORY.DMP
2014-02-01 07:28 - 2014-02-01 07:28 - 00001212 _____ () C:\Users\Public\Desktop\Pazera Free Video to iPod Converter.lnk
2014-02-01 07:11 - 2014-02-01 07:21 - 03162072 _____ (Jacek Pazera ) C:\Users\Maciek\Downloads\Pazera_Free_Video_to_iPod_Converter.exe
2014-02-01 05:47 - 2014-02-01 05:47 - 00030627 _____ () C:\Users\Maciek\Downloads\FRST2.txt
2014-02-01 05:37 - 2014-02-01 05:37 - 00005773 _____ () C:\Users\Maciek\Desktop\AdwCleaner[S0].txt
2014-01-31 12:20 - 2014-01-31 12:20 - 00002174 _____ () C:\Users\Maciek\Downloads\HP Photosmart Essential 3.5.lnk
2014-01-31 07:44 - 2014-02-06 07:36 - 00015744 _____ () C:\Users\Maciek\Downloads\FRST.txt
2014-01-30 09:38 - 2014-01-30 09:38 - 00000572 _____ () C:\Windows\PFRO.log
2014-01-30 09:17 - 2014-01-30 09:18 - 00347816 _____ (Microsoft Corporation) C:\Users\Maciek\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.3731449684812745.1.1.Run.exe
2014-01-30 09:10 - 2014-02-01 05:34 - 00000000 ____D () C:\AdwCleaner
2014-01-30 09:06 - 2014-01-30 09:09 - 01166132 _____ () C:\Users\Maciek\Downloads\AdwCleaner.exe
2014-01-30 08:45 - 2014-01-30 08:46 - 00347816 _____ (Microsoft Corporation) C:\Users\Maciek\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.Run.exe
2014-01-30 07:12 - 2014-01-30 07:12 - 00000000 ____D () C:\Device
2014-01-29 01:25 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-29 01:25 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-29 01:25 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-29 01:25 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-29 01:25 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-29 01:25 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-29 01:25 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-29 01:17 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-28 21:51 - 2014-01-28 21:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-01-28 19:48 - 2014-01-28 19:48 - 00000000 ____D () C:\Users\Maciek\AppData\Roaming\FLEXnet
2014-01-28 19:41 - 2014-01-28 19:41 - 00002178 _____ () C:\Users\Public\Desktop\Vodafone Mobile Broadband.lnk
2014-01-28 19:41 - 2014-01-28 19:41 - 00000000 ____D () C:\Users\Maciek\AppData\Roaming\Vodafone
2014-01-28 19:41 - 2014-01-28 19:41 - 00000000 ____D () C:\ProgramData\Vodafone
2014-01-28 19:40 - 2014-01-28 19:40 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-01-28 19:40 - 2014-01-28 19:40 - 00000000 ____D () C:\Program Files (x86)\Vodafone
2014-01-27 12:12 - 2014-01-27 12:12 - 00000915 _____ () C:\Users\Maciek\Desktop\Drive Rescue.lnk
2014-01-27 12:12 - 2014-01-27 12:12 - 00000000 ____D () C:\Program Files (x86)\Drive Rescue
2014-01-27 12:10 - 2014-01-27 12:11 - 01007764 _____ () C:\Users\Maciek\Downloads\Drive_Rescue1.9[www.instalki.pl].zip
2014-01-27 10:27 - 2014-02-06 07:36 - 00000000 ____D () C:\FRST
2014-01-27 08:29 - 2014-01-27 08:30 - 00380416 _____ () C:\Users\Maciek\Downloads\wzur15ju.exe
2014-01-27 08:29 - 2014-01-27 08:29 - 00602112 _____ (OldTimer Tools) C:\Users\Maciek\Downloads\OTL.exe
2014-01-25 12:23 - 2014-01-25 12:25 - 00971534 _____ () C:\Users\Maciek\Downloads\xplore_symbian_lcg_1_52.zip
2014-01-25 12:22 - 2014-01-25 12:23 - 00571070 _____ () C:\Users\Maciek\Downloads\xvi32.zip
2014-01-24 11:01 - 2014-02-06 07:36 - 00027496 _____ () C:\Windows\setupact.log
2014-01-24 11:01 - 2014-01-24 11:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-01-21 12:53 - 2014-01-21 12:54 - 03447205 _____ () C:\Users\Maciek\Downloads\aircrack-ng-1.2-beta2.tar.gz
2014-01-20 08:36 - 2014-01-20 08:36 - 00000000 ____D () C:\Users\Maciek\Downloads\hydra-7.6(1)
2014-01-20 08:35 - 2014-01-20 08:36 - 00557045 _____ () C:\Users\Maciek\Downloads\hydra-7.6(1).tar.gz
2014-01-20 08:25 - 2014-01-20 08:25 - 00557045 _____ () C:\Users\Maciek\Downloads\hydra-7.6.tar.gz
2014-01-20 08:14 - 2014-01-20 08:14 - 00000000 ____D () C:\Program Files (x86)\WinPcap
2014-01-20 08:11 - 2014-01-20 08:13 - 08074686 _____ () C:\Users\Maciek\Downloads\ca_setup.exe
2014-01-20 08:06 - 2014-01-20 08:07 - 03936725 _____ () C:\Users\Maciek\Downloads\john179j5w.zip
2014-01-20 08:02 - 2014-01-20 08:02 - 02076892 _____ () C:\Users\Maciek\Downloads\john179w2.zip
2014-01-20 07:37 - 2014-01-20 07:37 - 00157573 _____ () C:\Users\Maciek\Downloads\brutus-the-remote-password-cracker(1).zip
2014-01-20 07:23 - 2014-01-20 07:23 - 00157573 _____ () C:\Users\Maciek\Downloads\brutus-the-remote-password-cracker.zip
2014-01-20 06:57 - 2014-01-20 06:57 - 00338947 _____ () C:\Users\Maciek\Downloads\brutus-aet2.zip
2014-01-19 06:03 - 2014-01-24 09:13 - 00000000 ____D () C:\Users\Maciek\Desktop\Okna
2014-01-12 13:15 - 2014-01-12 13:15 - 00002387 _____ () C:\Users\Maciek\AppData\Local\recently-used.xbel
2014-01-11 19:44 - 2014-01-12 08:18 - 02764500 _____ () C:\Users\Maciek\Documents\Ogródek projekt.xcf

==================== One Month Modified Files and Folders =======

2014-02-06 07:36 - 2014-01-31 07:44 - 00015744 _____ () C:\Users\Maciek\Downloads\FRST.txt
2014-02-06 07:36 - 2014-01-27 10:27 - 00000000 ____D () C:\FRST
2014-02-06 07:36 - 2014-01-24 11:01 - 00027496 _____ () C:\Windows\setupact.log
2014-02-06 07:35 - 2014-02-06 07:35 - 02082304 _____ (Farbar) C:\Users\Maciek\Downloads\FRST64.exe
2014-02-06 06:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2014-02-06 05:17 - 2012-10-02 04:01 - 01774625 _____ () C:\Windows\WindowsUpdate.log
2014-02-06 05:14 - 2009-09-18 06:29 - 00738192 _____ () C:\Windows\system32\perfh015.dat
2014-02-06 05:14 - 2009-09-18 06:29 - 00154848 _____ () C:\Windows\system32\perfc015.dat
2014-02-06 05:14 - 2009-07-14 06:13 - 01663412 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-06 05:14 - 2009-07-14 05:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-06 05:14 - 2009-07-14 05:45 - 00023248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-06 05:07 - 2014-02-06 05:07 - 00000000 ____H () C:\ProgramData\cm-lock
2014-02-06 05:07 - 2011-08-19 13:13 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-02-06 05:07 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-05 16:58 - 2012-11-06 09:17 - 00000000 ____D () C:\Users\Maciek\AppData\Roaming\GG
2014-02-04 14:55 - 2010-05-30 13:13 - 00000000 ____D () C:\Users\Maciek\AppData\Roaming\Skype
2014-02-03 09:11 - 2014-02-03 09:10 - 00282560 _____ () C:\Windows\Minidump\020314-76705-01.dmp
2014-02-03 09:10 - 2013-07-23 13:30 - 00000000 ____D () C:\Windows\Minidump
2014-02-03 09:09 - 2014-02-03 09:09 - 614447358 _____ () C:\Windows\MEMORY.DMP
2014-02-01 07:28 - 2014-02-01 07:28 - 00001212 _____ () C:\Users\Public\Desktop\Pazera Free Video to iPod Converter.lnk
2014-02-01 07:28 - 2012-01-12 23:30 - 00000000 ____D () C:\Program Files (x86)\pazera-software
2014-02-01 07:21 - 2014-02-01 07:11 - 03162072 _____ (Jacek Pazera ) C:\Users\Maciek\Downloads\Pazera_Free_Video_to_iPod_Converter.exe
2014-02-01 05:47 - 2014-02-01 05:47 - 00030627 _____ () C:\Users\Maciek\Downloads\FRST2.txt
2014-02-01 05:37 - 2014-02-01 05:37 - 00005773 _____ () C:\Users\Maciek\Desktop\AdwCleaner[S0].txt
2014-02-01 05:34 - 2014-01-30 09:10 - 00000000 ____D () C:\AdwCleaner
2014-01-31 12:20 - 2014-01-31 12:20 - 00002174 _____ () C:\Users\Maciek\Downloads\HP Photosmart Essential 3.5.lnk
2014-01-30 09:38 - 2014-01-30 09:38 - 00000572 _____ () C:\Windows\PFRO.log
2014-01-30 09:18 - 2014-01-30 09:17 - 00347816 _____ (Microsoft Corporation) C:\Users\Maciek\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.3731449684812745.1.1.Run.exe
2014-01-30 09:09 - 2014-01-30 09:06 - 01166132 _____ () C:\Users\Maciek\Downloads\AdwCleaner.exe
2014-01-30 08:46 - 2014-01-30 08:45 - 00347816 _____ (Microsoft Corporation) C:\Users\Maciek\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.Run.exe
2014-01-30 07:47 - 2010-05-28 09:47 - 00000000 ___RD () C:\Users\Maciek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-30 07:12 - 2014-01-30 07:12 - 00000000 ____D () C:\Device
2014-01-30 07:12 - 2010-05-28 09:21 - 00000000 ____D () C:\Users\Maciek
2014-01-29 09:59 - 2010-05-28 09:25 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-29 06:26 - 2012-04-25 08:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-29 06:22 - 2013-08-18 11:12 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-29 06:19 - 2010-05-29 15:43 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-29 04:03 - 2009-07-14 05:45 - 00463584 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-28 21:51 - 2014-01-28 21:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-01-28 19:48 - 2014-01-28 19:48 - 00000000 ____D () C:\Users\Maciek\AppData\Roaming\FLEXnet
2014-01-28 19:41 - 2014-01-28 19:41 - 00002178 _____ () C:\Users\Public\Desktop\Vodafone Mobile Broadband.lnk
2014-01-28 19:41 - 2014-01-28 19:41 - 00000000 ____D () C:\Users\Maciek\AppData\Roaming\Vodafone
2014-01-28 19:41 - 2014-01-28 19:41 - 00000000 ____D () C:\ProgramData\Vodafone
2014-01-28 19:41 - 2010-05-28 09:29 - 00124312 _____ () C:\Users\Maciek\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-28 19:40 - 2014-01-28 19:40 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-01-28 19:40 - 2014-01-28 19:40 - 00000000 ____D () C:\Program Files (x86)\Vodafone
2014-01-28 19:39 - 2011-01-11 01:30 - 00000000 ____D () C:\Users\Maciek\AppData\Local\Downloaded Installations
2014-01-28 17:06 - 2009-07-14 06:08 - 00032604 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-28 13:22 - 2011-02-14 01:07 - 00000000 ____D () C:\Users\Maciek\AppData\Local\WMTools Downloaded Files
2014-01-28 13:19 - 2011-02-14 01:08 - 00020992 _____ () C:\Users\Maciek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-01-28 12:49 - 2013-05-10 20:32 - 00050688 ___SH () C:\Users\Maciek\Thumbs.db
2014-01-28 12:48 - 2010-05-29 22:29 - 00000000 ____D () C:\Users\Maciek\dwhelper
2014-01-27 12:12 - 2014-01-27 12:12 - 00000915 _____ () C:\Users\Maciek\Desktop\Drive Rescue.lnk
2014-01-27 12:12 - 2014-01-27 12:12 - 00000000 ____D () C:\Program Files (x86)\Drive Rescue
2014-01-27 12:11 - 2014-01-27 12:10 - 01007764 _____ () C:\Users\Maciek\Downloads\Drive_Rescue1.9[www.instalki.pl].zip
2014-01-27 08:30 - 2014-01-27 08:29 - 00380416 _____ () C:\Users\Maciek\Downloads\wzur15ju.exe
2014-01-27 08:29 - 2014-01-27 08:29 - 00602112 _____ (OldTimer Tools) C:\Users\Maciek\Downloads\OTL.exe
2014-01-25 12:25 - 2014-01-25 12:23 - 00971534 _____ () C:\Users\Maciek\Downloads\xplore_symbian_lcg_1_52.zip
2014-01-25 12:23 - 2014-01-25 12:22 - 00571070 _____ () C:\Users\Maciek\Downloads\xvi32.zip
2014-01-24 11:01 - 2014-01-24 11:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-01-24 09:13 - 2014-01-19 06:03 - 00000000 ____D () C:\Users\Maciek\Desktop\Okna
2014-01-23 12:00 - 2010-06-03 10:34 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-01-23 11:59 - 2011-11-20 04:40 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-01-21 12:54 - 2014-01-21 12:53 - 03447205 _____ () C:\Users\Maciek\Downloads\aircrack-ng-1.2-beta2.tar.gz
2014-01-20 08:36 - 2014-01-20 08:36 - 00000000 ____D () C:\Users\Maciek\Downloads\hydra-7.6(1)
2014-01-20 08:36 - 2014-01-20 08:35 - 00557045 _____ () C:\Users\Maciek\Downloads\hydra-7.6(1).tar.gz
2014-01-20 08:25 - 2014-01-20 08:25 - 00557045 _____ () C:\Users\Maciek\Downloads\hydra-7.6.tar.gz
2014-01-20 08:14 - 2014-01-20 08:14 - 00000000 ____D () C:\Program Files (x86)\WinPcap
2014-01-20 08:13 - 2014-01-20 08:11 - 08074686 _____ () C:\Users\Maciek\Downloads\ca_setup.exe
2014-01-20 08:07 - 2014-01-20 08:06 - 03936725 _____ () C:\Users\Maciek\Downloads\john179j5w.zip
2014-01-20 08:02 - 2014-01-20 08:02 - 02076892 _____ () C:\Users\Maciek\Downloads\john179w2.zip
2014-01-20 07:37 - 2014-01-20 07:37 - 00157573 _____ () C:\Users\Maciek\Downloads\brutus-the-remote-password-cracker(1).zip
2014-01-20 07:23 - 2014-01-20 07:23 - 00157573 _____ () C:\Users\Maciek\Downloads\brutus-the-remote-password-cracker.zip
2014-01-20 07:23 - 2010-05-28 10:53 - 00000000 ____D () C:\Users\Maciek\AppData\Roaming\Adobe
2014-01-20 06:57 - 2014-01-20 06:57 - 00338947 _____ () C:\Users\Maciek\Downloads\brutus-aet2.zip
2014-01-19 08:33 - 2010-07-29 12:49 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-14 18:44 - 2011-09-16 12:20 - 00000000 ____D () C:\Program Files (x86)\Wiedźmin 2
2014-01-12 16:22 - 2013-04-08 17:09 - 00000000 ____D () C:\Users\Maciek\Desktop\M71
2014-01-12 13:32 - 2012-09-19 01:24 - 00000000 ____D () C:\Users\Maciek\.gimp-2.8
2014-01-12 13:15 - 2014-01-12 13:15 - 00002387 _____ () C:\Users\Maciek\AppData\Local\recently-used.xbel
2014-01-12 08:18 - 2014-01-11 19:44 - 02764500 _____ () C:\Users\Maciek\Documents\Ogródek projekt.xcf
2014-01-08 05:38 - 2013-06-09 19:12 - 00000000 ____D () C:\Users\Maciek\Desktop\moje prace
2014-01-07 07:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF

Some content of TEMP:
====================
C:\Users\Maciek\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-30 05:28

==================== End Of Log ============================