Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-03-2014
Ran by Prezes (administrator) on PREZES-KOMPUTER on 05-03-2014 18:51:49
Running from C:\Users\Prezes\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(THOMSON Telecom Belgium) C:\Program Files (x86)\Thomson\ST330\service\st330service.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Logixoft) C:\ProgramData\qwertyuiop\rvlkl.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(The Eraser Project) C:\Program Files\Eraser\Eraser.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\system32\CISVC.EXE
(Creative Technology Ltd) C:\Windows\SysWOW64\CTsvcCDA.EXE
(Apache Software Foundation) F:\ET_BB\BIN\EtkaWeb.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Vid\Vid.exe
(SafeNet Inc.) C:\Windows\system32\hasplms.exe
(Aladdin Knowledge Systems Ltd.) C:\Windows\SysWOW64\HLS32SVC.EXE
(Apache Software Foundation) F:\ET_BB\BIN\EtkaWeb.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Felix 'SniperBeamer' Geyer) C:\Program Files (x86)\Thunderbird-Tray\TBTray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(E-Color, Inc.) C:\Program Files (x86)\E-Color\True Internet Color\TICIcon.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Motorola) C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnect.exe
() C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Adobe\Adobe Photoshop CS3\Photoshop.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(GG Network S.A.) C:\Users\Prezes\AppData\Local\GG\Application\gghub.exe
(GG Network S.A.) C:\Users\Prezes\AppData\Local\GG\Application\ggapp.exe
(GG Network S.A.) C:\Users\Prezes\AppData\Local\GG\Application\ggapp.exe
(GG Network S.A.) C:\Users\Prezes\AppData\Local\GG\Application\ggdrive\ggdrive.exe
(GG Network S.A.) C:\Users\Prezes\AppData\Local\GG\Application\xulrunner\gghub.exe
(GG Network S.A.) C:\Users\Prezes\AppData\Local\GG\Application\xulrunner\gghub.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Eraser] - C:\Program Files\Eraser\Eraser.exe [980920 2012-05-22] (The Eraser Project)
HKLM-x32\...\Run: [E-Color Registration] - c:\program files (x86)\E-Color\Registration\SonnReg.exe [118784 2000-02-17] (E-Color, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-06] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LWS] - C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-06] (Apple Inc.)
HKLM\...\Policies\Explorer: [] 
HKLM\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x5F000000
HKU\S-1-5-21-1655922889-1840272266-2703523318-1001\...\Run: [RocketDock] - C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-1655922889-1840272266-2703523318-1001\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1655922889-1840272266-2703523318-1001\...\Run: [Logitech Vid] - C:\Program Files (x86)\Logitech\Vid\Vid.exe [6061400 2010-05-11] (Logitech Inc.)
HKU\S-1-5-21-1655922889-1840272266-2703523318-1001\...\Run: [Logitech Vid HD] - C:\Program Files (x86)\Logitech\Vid\vid.exe [6061400 2010-05-11] (Logitech Inc.)
HKU\S-1-5-21-1655922889-1840272266-2703523318-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x95000000

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: SaveSense - {0f21b1e5-5afc-43c9-9c66-515046e92ec2} - C:\Program Files (x86)\SaveSense\SaveSenseIE.dll (SaveSense)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocnik logowania za pomocą identyfikatora Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
BHO-x32: IEPluginBHO Class - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Users\Prezes\AppData\Roaming\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - &Save Flash - {4064EA35-578D-4073-A834-C96D82CBCF40} - C:\Program Files (x86)\Save Flash\SaveFlash.dll (PilotGroup LLC)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Prezes\AppData\Roaming\Mozilla\Firefox\Profiles\7dfo94el.default-1378114659463
FF Homepage: hxxp://interia.pl/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.updaterss.com/SaveSenseLive Update;version=3 - C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF Plugin-x32: @tools.updaterss.com/SaveSenseLive Update;version=9 - C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Prezes\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Extension: Flagfox - C:\Users\Prezes\AppData\Roaming\Mozilla\Firefox\Profiles\7dfo94el.default-1378114659463\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} [2014-01-16]
FF Extension: SaveSense - C:\Users\Prezes\AppData\Roaming\Mozilla\Firefox\Profiles\7dfo94el.default-1378114659463\Extensions\{8b337819-d1e8-48d3-8178-168ae8c99c36} [2014-01-20]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-05-26]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-11-05]
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ []

Chrome: 
=======
CHR HomePage: 
CHR RestoreOnStartup: "translate_blocked_languages" : [ "pl"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll No File
CHR Plugin: (Skype Click to Call) - C:\Users\Prezes\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.10.0.9560_0\npSkypeChromePlugin.dll (Skype Technologies S.A.)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Users\Prezes\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (SaveSense) - C:\Users\Prezes\AppData\Local\Google\Chrome\User Data\Default\Extensions\khcceooakamlehbimaepcldnnlnkcmfk [2014-01-20]
CHR Extension: (Skype Click to Call) - C:\Users\Prezes\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2012-08-22]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Prezes\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-02]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2014-01-20]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-10-24]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-03-02]

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-06] (AVAST Software)
R2 Creative Service for CDROM Access; C:\Windows\SysWOW64\CTsvcCDA.EXE [44032 1999-12-13] (Creative Technology Ltd)
R2 EtkaWebServer; F:\ET_BB\BIN\EtkaWeb.exe [24636 2008-12-10] (Apache Software Foundation)
R2 hasplms; C:\Windows\system32\hasplms.exe [4883400 2011-10-18] (SafeNet Inc.)
R2 HLServer; C:\Windows\SysWOW64\HLS32SVC.EXE [327680 2003-12-03] (Aladdin Knowledge Systems Ltd.)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [339456 2010-11-16] ()
R2 MotoConnect Service; C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe [91392 2010-01-27] ()
R2 MSSQL$INSERTGT; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S2 savesenselive; C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [146920 2014-01-20] (SaveSense)
S3 savesenselivem; C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [146920 2014-01-20] (SaveSense)
R2 st330service; C:\Program Files (x86)/Thomson/ST330/service/st330service.exe [389215 2012-05-30] (THOMSON Telecom Belgium)

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-06] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-26] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-07-16] (DT Soft Ltd)
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [256000 2010-08-31] (Huawei Technologies Co., Ltd.)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [321536 2011-09-28] (SafeNet Inc.)
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 lvsels64; C:\Windows\System32\DRIVERS\lvsels64.sys [68064 2010-05-14] (Logitech Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S2 NSHE; C:\Windows\system32\Drivers\NSHE.SYS [97792 2006-08-21] (T0r0)
S2 NSHE; C:\Windows\SysWOW64\Drivers\NSHE.SYS [97792 2010-07-28] (Tecar Forum)
R3 PYCH_CoreDriver; C:\Windows\System32\drivers\PYCH_CoreDriver.sys [254976 2014-02-24] (Jungo)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 ssceserd; C:\Windows\System32\DRIVERS\ssceserd.sys [129024 2010-12-21] (MCCI Corporation)
S3 ST330; C:\Windows\System32\DRIVERS\st330.sys [47616 2012-05-30] (THOMSON Telecom Belgium)
S3 STBUS; C:\Windows\System32\DRIVERS\stbus.sys [24576 2012-05-30] (THOMSON Telecom Belgium)
S3 STETH; C:\Windows\System32\DRIVERS\steth.sys [58880 2012-05-30] (THOMSON Telecom Belgium)
S3 stppp; C:\Windows\System32\DRIVERS\stppp.sys [54272 2012-05-30] (THOMSON Telecom Belgium)
R3 WinDriver6; C:\Windows\System32\drivers\windrvr6.sys [254976 2014-02-24] (Jungo)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-05 18:47 - 2014-03-05 18:51 - 00000000 ____D () C:\FRST
2014-03-05 07:44 - 2014-03-05 07:44 - 00000000 ____H () C:\ProgramData\cm-lock
2014-03-01 21:45 - 2014-03-01 22:09 - 00019639 _____ () C:\Users\Prezes\Desktop\bibliografia1.odt
2014-02-26 14:00 - 2014-03-03 13:35 - 00011585 _____ () C:\Users\Prezes\Desktop\ZAMÓWIENIE CAMEL ACTIVE.xlsx
2014-02-25 15:27 - 2014-02-27 09:38 - 00013626 _____ () C:\Users\Prezes\Desktop\wypowiedzenie_umowy_tv_nc.odt
2014-02-24 15:56 - 2014-02-24 15:56 - 00254976 _____ (Jungo) C:\Windows\system32\Drivers\windrvr6.sys
2014-02-24 15:56 - 2014-02-24 15:56 - 00254976 _____ (Jungo) C:\Windows\system32\Drivers\PYCH_CoreDriver.sys
2014-02-24 15:56 - 2014-02-24 15:56 - 00158208 _____ (Jungo) C:\Windows\SysWOW64\wdapi1021.dll
2014-02-24 15:56 - 2014-02-24 15:56 - 00158208 _____ (Jungo) C:\Windows\system32\wdapi1021.dll
2014-02-24 15:56 - 2014-02-24 15:56 - 00000322 _____ () C:\Users\Prezes\Desktop\Clone+ Update.appref-ms
2014-02-24 15:56 - 2014-02-24 15:56 - 00000000 ____D () C:\Windows\system32\ClonePlus_Drivers_64bit
2014-02-24 15:56 - 2014-02-24 15:56 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PYCH International Electronics
2014-02-24 15:49 - 2014-02-24 15:56 - 00000000 ____D () C:\Users\Prezes\AppData\Local\Deployment
2014-02-24 15:49 - 2014-02-24 15:49 - 00143360 _____ (Jungo) C:\Windows\system32\wdapi921.dll
2014-02-24 15:49 - 2014-02-24 15:49 - 00000000 ____D () C:\Windows\system32\ClonePlus_Driver
2014-02-24 15:49 - 2014-02-24 15:49 - 00000000 ____D () C:\Users\Prezes\AppData\Local\Apps\2.0
2014-02-24 15:45 - 2014-02-24 15:45 - 00003048 _____ () C:\Windows\System32\Tasks\{A6CA68EE-60F7-406A-80CA-7A6BF857856C}
2014-02-24 15:29 - 2014-02-24 15:29 - 00484808 _____ () C:\Users\Prezes\Desktop\setup.exe
2014-02-23 18:28 - 2014-01-16 09:17 - 10162499 _____ () C:\Users\Prezes\Desktop\urządzenia gastronomiczne_bez_cen_propozycja_rodis1982.odt
2014-02-23 18:25 - 2014-02-23 18:33 - 00687002 _____ () C:\Users\Prezes\Desktop\lista_obrusow2.odt
2014-02-23 12:43 - 2014-02-23 12:44 - 00029569 _____ () C:\Users\Prezes\Desktop\jansen.odt
2014-02-22 15:37 - 2014-02-22 15:37 - 00013986 _____ () C:\Users\Prezes\Desktop\groby.odt
2014-02-21 14:31 - 2014-02-21 14:31 - 00561664 _____ () C:\Users\Prezes\Desktop\LuK_Sprzegla_Cennik_Detaliczny.xls
2014-02-19 22:21 - 2014-02-19 22:22 - 00019326 _____ () C:\Users\Prezes\Desktop\serwis do kawy1.odt
2014-02-19 18:35 - 2014-02-19 18:36 - 00000000 ____D () C:\Users\Prezes\Desktop\drzewa
2014-02-18 15:18 - 2014-02-18 15:20 - 00000000 ____D () C:\Users\Prezes\Desktop\ciagnik
2014-02-15 16:42 - 2014-02-15 16:42 - 00000125 _____ () C:\Users\Prezes\Desktop\zmarszczki.txt
2014-02-14 09:27 - 2014-02-14 09:27 - 00000581 _____ () C:\Users\Prezes\Desktop\bilety.txt
2014-02-10 19:47 - 2014-02-10 19:47 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-10 19:47 - 2014-02-10 19:47 - 00000000 ____D () C:\Users\Prezes\AppData\Local\Apple Computer
2014-02-10 19:46 - 2014-02-10 19:46 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-10 19:46 - 2014-02-10 19:46 - 00000000 ____D () C:\Program Files\iTunes
2014-02-10 19:46 - 2014-02-10 19:46 - 00000000 ____D () C:\Program Files\iPod
2014-02-10 19:46 - 2014-02-10 19:46 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-10 19:46 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-02-10 19:43 - 2014-02-10 19:43 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-10 19:42 - 2014-02-10 19:42 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-10 15:02 - 2014-02-10 15:05 - 148896080 _____ (Apple Inc.) C:\Users\Prezes\Desktop\iTunes64Setup.exe
2014-02-10 14:39 - 2014-02-10 14:39 - 00001250 _____ () C:\Users\Public\Desktop\PodTrans Pro.lnk
2014-02-10 14:39 - 2014-02-10 14:39 - 00000000 ____D () C:\Program Files (x86)\iMobie
2014-02-10 14:38 - 2014-02-10 14:39 - 15347792 _____ (iMobie Inc. ) C:\Users\Prezes\Desktop\podtrans-pro-setup.exe
2014-02-10 14:20 - 2014-02-10 15:02 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\WindSolutions
2014-02-10 14:20 - 2014-02-10 14:56 - 00000000 ____D () C:\ProgramData\WindSolutions
2014-02-10 14:20 - 2014-02-10 14:20 - 04473792 _____ (WindSolutions) C:\Users\Prezes\Desktop\Install_CopyTrans_Suite.exe
2014-02-10 14:20 - 2014-02-10 14:20 - 00001388 _____ () C:\Users\Prezes\Desktop\CopyTrans Control Center.lnk
2014-02-10 14:20 - 2014-02-10 14:20 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Suite
2014-02-06 19:13 - 2014-02-06 19:14 - 00275680 _____ () C:\Windows\Minidump\020614-25459-01.dmp
2014-02-06 18:38 - 2014-02-06 18:38 - 00000000 ____D () C:\Users\Prezes\AppData\Local\Logitech® Webcam Software
2014-02-06 18:28 - 2014-02-06 18:28 - 00001142 _____ () C:\Users\Prezes\Desktop\logitech.lnk
2014-02-06 18:28 - 2014-02-06 18:28 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\INTERIA.PL
2014-02-06 18:12 - 2014-02-06 18:12 - 00000000 ____D () C:\Users\Prezes\Documents\Projekty masek wideo
2014-02-06 18:02 - 2014-02-06 18:02 - 00050434 _____ () C:\Users\Prezes\Desktop\Greek_Mask.LVF
2014-02-06 17:53 - 2014-02-06 17:53 - 00000000 ____D () C:\ProgramData\LogiShrd
2014-02-06 17:51 - 2014-02-06 17:51 - 00000000 ____D () C:\Users\Prezes\Documents\SightSpeed Recordings
2014-02-06 17:51 - 2014-02-06 17:51 - 00000000 ____D () C:\Users\Prezes\AppData\Local\LogiShrd
2014-02-06 17:50 - 2014-02-06 17:50 - 00000996 _____ () C:\Users\Public\Desktop\Logitech Vid.lnk
2014-02-06 17:48 - 2014-02-06 17:48 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Leadertech
2014-02-06 17:45 - 2014-02-06 18:32 - 00012951 _____ () C:\Windows\system32\lvcoinst.log
2014-02-06 17:45 - 2014-02-06 18:32 - 00009259 _____ () C:\Windows\LDPINST.LOG
2014-02-06 17:44 - 2014-02-06 17:44 - 00000000 ____D () C:\Windows\SysWOW64\logishrd
2014-02-06 17:44 - 2014-02-06 17:44 - 00000000 ____D () C:\Windows\system32\logishrd
2014-02-06 17:43 - 2014-02-06 18:32 - 00000000 ____D () C:\Program Files\Common Files\Logishrd
2014-02-06 17:43 - 2014-02-06 17:43 - 00000000 ____D () C:\ProgramData\Logitech
2014-02-06 17:41 - 2014-02-06 18:30 - 00001624 _____ () C:\Users\Public\Desktop\Logitech Webcam Software  .lnk
2014-02-06 17:41 - 2014-02-06 17:50 - 00000000 ____D () C:\Program Files (x86)\Logitech
2014-02-04 15:50 - 2014-02-04 15:50 - 00278408 _____ (Hotger) C:\Users\Prezes\Desktop\firefox_plugin.exe
2014-02-03 21:00 - 2014-03-05 16:49 - 00000000 ____D () C:\Users\Prezes\Desktop\test
2014-02-03 13:35 - 2014-02-03 13:35 - 00000355 _____ () C:\Users\Prezes\Desktop\kosmetyczka.txt

==================== One Month Modified Files and Folders =======

2014-03-05 18:52 - 2013-09-01 13:07 - 00021245 _____ () C:\Users\Prezes\Desktop\FRST.txt
2014-03-05 18:51 - 2014-03-05 18:47 - 00000000 ____D () C:\FRST
2014-03-05 18:51 - 2013-09-01 13:07 - 00044178 _____ () C:\Users\Prezes\Desktop\Addition.txt
2014-03-05 18:47 - 2013-09-02 10:46 - 02157056 _____ (Farbar) C:\Users\Prezes\Desktop\FRST64.exe
2014-03-05 18:46 - 2012-04-22 01:55 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-05 18:43 - 2011-07-12 20:46 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Skype
2014-03-05 18:31 - 2013-09-18 08:07 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\GG
2014-03-05 18:28 - 2012-02-24 16:16 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-05 18:18 - 2012-02-24 16:16 - 00001048 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-05 18:08 - 2014-01-20 20:03 - 00000932 _____ () C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job
2014-03-05 18:02 - 2014-01-20 20:02 - 00000296 _____ () C:\Windows\Tasks\SaveSense.job
2014-03-05 17:51 - 2011-06-11 21:21 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\FileZilla
2014-03-05 17:04 - 2011-06-11 21:07 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Adobe
2014-03-05 16:49 - 2014-02-03 21:00 - 00000000 ____D () C:\Users\Prezes\Desktop\test
2014-03-05 14:59 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2014-03-05 07:52 - 2009-07-14 05:45 - 00039360 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-05 07:52 - 2009-07-14 05:45 - 00039360 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-05 07:48 - 2011-06-11 20:56 - 01873814 _____ () C:\Windows\WindowsUpdate.log
2014-03-05 07:45 - 2012-07-06 23:14 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-03-05 07:44 - 2014-03-05 07:44 - 00000000 ____H () C:\ProgramData\cm-lock
2014-03-05 07:43 - 2014-01-20 20:03 - 00000928 _____ () C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job
2014-03-05 07:43 - 2012-01-21 23:29 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-03-05 07:43 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-05 07:42 - 2009-07-14 05:51 - 00123494 _____ () C:\Windows\setupact.log
2014-03-03 16:08 - 2011-06-15 12:50 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\XnView
2014-03-03 13:35 - 2014-02-26 14:00 - 00011585 _____ () C:\Users\Prezes\Desktop\ZAMÓWIENIE CAMEL ACTIVE.xlsx
2014-03-01 22:09 - 2014-03-01 21:45 - 00019639 _____ () C:\Users\Prezes\Desktop\bibliografia1.odt
2014-02-27 09:38 - 2014-02-25 15:27 - 00013626 _____ () C:\Users\Prezes\Desktop\wypowiedzenie_umowy_tv_nc.odt
2014-02-26 10:48 - 2013-03-03 13:13 - 00000000 ____D () C:\Users\Prezes\Desktop\zmiany_sklep
2014-02-25 19:30 - 2010-11-21 13:53 - 00747188 _____ () C:\Windows\system32\perfh015.dat
2014-02-25 19:30 - 2010-11-21 13:53 - 00153996 _____ () C:\Windows\system32\perfc015.dat
2014-02-25 19:30 - 2009-07-14 06:13 - 01689752 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-24 15:56 - 2014-02-24 15:56 - 00254976 _____ (Jungo) C:\Windows\system32\Drivers\windrvr6.sys
2014-02-24 15:56 - 2014-02-24 15:56 - 00254976 _____ (Jungo) C:\Windows\system32\Drivers\PYCH_CoreDriver.sys
2014-02-24 15:56 - 2014-02-24 15:56 - 00158208 _____ (Jungo) C:\Windows\SysWOW64\wdapi1021.dll
2014-02-24 15:56 - 2014-02-24 15:56 - 00158208 _____ (Jungo) C:\Windows\system32\wdapi1021.dll
2014-02-24 15:56 - 2014-02-24 15:56 - 00000322 _____ () C:\Users\Prezes\Desktop\Clone+ Update.appref-ms
2014-02-24 15:56 - 2014-02-24 15:56 - 00000000 ____D () C:\Windows\system32\ClonePlus_Drivers_64bit
2014-02-24 15:56 - 2014-02-24 15:56 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PYCH International Electronics
2014-02-24 15:56 - 2014-02-24 15:49 - 00000000 ____D () C:\Users\Prezes\AppData\Local\Deployment
2014-02-24 15:49 - 2014-02-24 15:49 - 00143360 _____ (Jungo) C:\Windows\system32\wdapi921.dll
2014-02-24 15:49 - 2014-02-24 15:49 - 00000000 ____D () C:\Windows\system32\ClonePlus_Driver
2014-02-24 15:49 - 2014-02-24 15:49 - 00000000 ____D () C:\Users\Prezes\AppData\Local\Apps\2.0
2014-02-24 15:45 - 2014-02-24 15:45 - 00003048 _____ () C:\Windows\System32\Tasks\{A6CA68EE-60F7-406A-80CA-7A6BF857856C}
2014-02-24 15:29 - 2014-02-24 15:29 - 00484808 _____ () C:\Users\Prezes\Desktop\setup.exe
2014-02-24 08:44 - 2011-06-11 21:05 - 00000000 ___RD () C:\Users\Prezes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-23 18:33 - 2014-02-23 18:25 - 00687002 _____ () C:\Users\Prezes\Desktop\lista_obrusow2.odt
2014-02-23 12:44 - 2014-02-23 12:43 - 00029569 _____ () C:\Users\Prezes\Desktop\jansen.odt
2014-02-22 15:37 - 2014-02-22 15:37 - 00013986 _____ () C:\Users\Prezes\Desktop\groby.odt
2014-02-21 14:46 - 2012-04-22 01:55 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 14:46 - 2012-04-22 01:55 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-21 14:46 - 2012-02-19 14:04 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-21 14:31 - 2014-02-21 14:31 - 00561664 _____ () C:\Users\Prezes\Desktop\LuK_Sprzegla_Cennik_Detaliczny.xls
2014-02-19 22:22 - 2014-02-19 22:21 - 00019326 _____ () C:\Users\Prezes\Desktop\serwis do kawy1.odt
2014-02-19 18:36 - 2014-02-19 18:35 - 00000000 ____D () C:\Users\Prezes\Desktop\drzewa
2014-02-18 15:20 - 2014-02-18 15:18 - 00000000 ____D () C:\Users\Prezes\Desktop\ciagnik
2014-02-17 22:32 - 2012-08-03 17:29 - 00000000 ____D () C:\Users\Prezes\AppData\Local\Eraser 6
2014-02-16 10:37 - 2011-06-11 21:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-15 18:13 - 2012-02-24 16:16 - 00004044 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 18:13 - 2012-02-24 16:16 - 00003792 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 16:42 - 2014-02-15 16:42 - 00000125 _____ () C:\Users\Prezes\Desktop\zmarszczki.txt
2014-02-14 09:27 - 2014-02-14 09:27 - 00000581 _____ () C:\Users\Prezes\Desktop\bilety.txt
2014-02-14 00:02 - 2014-01-20 21:02 - 00000142 _____ () C:\Users\Prezes\AppData\Roaming\WB.CFG
2014-02-10 19:48 - 2012-05-23 08:20 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Apple Computer
2014-02-10 19:47 - 2014-02-10 19:47 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-10 19:47 - 2014-02-10 19:47 - 00000000 ____D () C:\Users\Prezes\AppData\Local\Apple Computer
2014-02-10 19:46 - 2014-02-10 19:46 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-10 19:46 - 2014-02-10 19:46 - 00000000 ____D () C:\Program Files\iTunes
2014-02-10 19:46 - 2014-02-10 19:46 - 00000000 ____D () C:\Program Files\iPod
2014-02-10 19:46 - 2014-02-10 19:46 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-10 19:46 - 2013-08-28 12:29 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-10 19:43 - 2014-02-10 19:43 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-10 19:43 - 2012-05-22 17:22 - 00000000 ____D () C:\ProgramData\Apple
2014-02-10 19:42 - 2014-02-10 19:42 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-10 19:42 - 2011-08-06 13:27 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-02-10 15:05 - 2014-02-10 15:02 - 148896080 _____ (Apple Inc.) C:\Users\Prezes\Desktop\iTunes64Setup.exe
2014-02-10 15:02 - 2014-02-10 14:20 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\WindSolutions
2014-02-10 14:56 - 2014-02-10 14:20 - 00000000 ____D () C:\ProgramData\WindSolutions
2014-02-10 14:39 - 2014-02-10 14:39 - 00001250 _____ () C:\Users\Public\Desktop\PodTrans Pro.lnk
2014-02-10 14:39 - 2014-02-10 14:39 - 00000000 ____D () C:\Program Files (x86)\iMobie
2014-02-10 14:39 - 2014-02-10 14:38 - 15347792 _____ (iMobie Inc. ) C:\Users\Prezes\Desktop\podtrans-pro-setup.exe
2014-02-10 14:20 - 2014-02-10 14:20 - 04473792 _____ (WindSolutions) C:\Users\Prezes\Desktop\Install_CopyTrans_Suite.exe
2014-02-10 14:20 - 2014-02-10 14:20 - 00001388 _____ () C:\Users\Prezes\Desktop\CopyTrans Control Center.lnk
2014-02-10 14:20 - 2014-02-10 14:20 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Suite
2014-02-07 12:04 - 2010-11-21 04:47 - 00114804 _____ () C:\Windows\PFRO.log
2014-02-06 20:04 - 2013-10-24 09:46 - 00001926 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-02-06 20:03 - 2013-12-26 20:43 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-02-06 20:03 - 2011-11-05 09:52 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-02-06 20:03 - 2011-11-05 09:52 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-02-06 20:03 - 2011-11-05 09:52 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-02-06 20:03 - 2011-11-05 09:52 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-02-06 20:03 - 2011-11-05 09:51 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-02-06 19:14 - 2014-02-06 19:13 - 00275680 _____ () C:\Windows\Minidump\020614-25459-01.dmp
2014-02-06 19:13 - 2012-05-30 19:48 - 00000000 ____D () C:\Windows\Minidump
2014-02-06 19:13 - 2012-05-30 19:47 - 334630492 _____ () C:\Windows\MEMORY.DMP
2014-02-06 18:38 - 2014-02-06 18:38 - 00000000 ____D () C:\Users\Prezes\AppData\Local\Logitech® Webcam Software
2014-02-06 18:32 - 2014-02-06 17:45 - 00012951 _____ () C:\Windows\system32\lvcoinst.log
2014-02-06 18:32 - 2014-02-06 17:45 - 00009259 _____ () C:\Windows\LDPINST.LOG
2014-02-06 18:32 - 2014-02-06 17:43 - 00000000 ____D () C:\Program Files\Common Files\Logishrd
2014-02-06 18:30 - 2014-02-06 17:41 - 00001624 _____ () C:\Users\Public\Desktop\Logitech Webcam Software  .lnk
2014-02-06 18:28 - 2014-02-06 18:28 - 00001142 _____ () C:\Users\Prezes\Desktop\logitech.lnk
2014-02-06 18:28 - 2014-02-06 18:28 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\INTERIA.PL
2014-02-06 18:28 - 2011-06-12 19:59 - 00000000 ____D () C:\Program Files (x86)\INTERIAPL
2014-02-06 18:12 - 2014-02-06 18:12 - 00000000 ____D () C:\Users\Prezes\Documents\Projekty masek wideo
2014-02-06 18:02 - 2014-02-06 18:02 - 00050434 _____ () C:\Users\Prezes\Desktop\Greek_Mask.LVF
2014-02-06 17:53 - 2014-02-06 17:53 - 00000000 ____D () C:\ProgramData\LogiShrd
2014-02-06 17:51 - 2014-02-06 17:51 - 00000000 ____D () C:\Users\Prezes\Documents\SightSpeed Recordings
2014-02-06 17:51 - 2014-02-06 17:51 - 00000000 ____D () C:\Users\Prezes\AppData\Local\LogiShrd
2014-02-06 17:50 - 2014-02-06 17:50 - 00000996 _____ () C:\Users\Public\Desktop\Logitech Vid.lnk
2014-02-06 17:50 - 2014-02-06 17:41 - 00000000 ____D () C:\Program Files (x86)\Logitech
2014-02-06 17:48 - 2014-02-06 17:48 - 00000000 ____D () C:\Users\Prezes\AppData\Roaming\Leadertech
2014-02-06 17:44 - 2014-02-06 17:44 - 00000000 ____D () C:\Windows\SysWOW64\logishrd
2014-02-06 17:44 - 2014-02-06 17:44 - 00000000 ____D () C:\Windows\system32\logishrd
2014-02-06 17:43 - 2014-02-06 17:43 - 00000000 ____D () C:\ProgramData\Logitech
2014-02-04 15:50 - 2014-02-04 15:50 - 00278408 _____ (Hotger) C:\Users\Prezes\Desktop\firefox_plugin.exe
2014-02-03 13:35 - 2014-02-03 13:35 - 00000355 _____ () C:\Users\Prezes\Desktop\kosmetyczka.txt

Some content of TEMP:
====================
C:\Users\Prezes\AppData\Local\Temp\gg10.upgr.exe
C:\Users\Prezes\AppData\Local\Temp\ggdrive-menu.exe
C:\Users\Prezes\AppData\Local\Temp\ggdrive-overlay.exe
C:\Users\Prezes\AppData\Local\Temp\installstats.exe
C:\Users\Prezes\AppData\Local\Temp\npp.6.5.2.Installer.exe
C:\Users\Prezes\AppData\Local\Temp\PicasaUpdater_74b2.exe
C:\Users\Prezes\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit