Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Filip (administrator) on LAPTOP on 06-04-2014 21:27:25
Running from G:\Users\Filip\Pobieranie
Windows 7 Ultimate (X64) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) G:\Windows\system32\atiesrxx.exe
(AMD) G:\Windows\system32\atieclxx.exe
(Apple Inc.) G:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) H:\AVG\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) H:\AVG\avgwdsvc.exe
(Apple Inc.) G:\Program Files\Bonjour\mDNSResponder.exe
(Cucusoft, Inc.) H:\NetGuard\SysMsgProxySrvc.sys
() G:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
(Microsoft Corporation) G:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(O2Micro International) G:\Windows\system32\DRIVERS\o2flash.exe
() G:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) G:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
() G:\Program Files (x86)\Netia\Mobilny Internet\AssistantServices.exe
(Microsoft Corporation) G:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Logitech Inc.) G:\Program Files\Logitech\Gaming Software\LWEMon.exe
(PowerISO Computing, Inc.) H:\PowerISO\PWRISOVM.EXE
(AVG Technologies CZ, s.r.o.) H:\AVG\avgui.exe
(Oracle Corporation) G:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) G:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(AVG Technologies CZ, s.r.o.) H:\AVG\avgnsa.exe
(AVG Technologies CZ, s.r.o.) H:\AVG\avgemca.exe
(Microsoft Corporation) G:\Windows\System32\alg.exe
(AVG Technologies CZ, s.r.o.) H:\AVG\avgrsa.exe
(AVG Technologies CZ, s.r.o.) H:\AVG\avgcsrva.exe
(Mozilla Corporation) H:\Firefox\firefox.exe
(Mozilla Corporation) H:\Firefox\plugin-container.exe
(Adobe Systems, Inc.) G:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(Adobe Systems, Inc.) G:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(Microsoft Corporation) H:\MS Office 2007\Office12\OUTLOOK.EXE
(Microsoft) G:\Program Files (x86)\Microsoft AutoRoute 2010\StreetsOlkShim.exe
(AVG Technologies CZ, s.r.o.) H:\AVG\avgcsrva.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Start WingMan Profiler] - G:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-15] (Logitech Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] - H:\PowerISO\PWRISOVM.EXE [180224 2010-04-12] (PowerISO Computing, Inc.)
HKLM-x32\...\Run: [AVG_UI] - H:\AVG\avgui.exe [4971024 2014-03-19] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [amd_dc_opt] - G:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [SunJavaUpdateSched] - G:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-2148919563-1056563247-3886242007-1001\...\Run: [Overwolf] - H:\Overwolf\Overwolf.exe -silent
HKU\S-1-5-21-2148919563-1056563247-3886242007-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2148919563-1056563247-3886242007-1001\...\MountPoints2: J - J:\vs\autorun.exe
HKU\S-1-5-21-2148919563-1056563247-3886242007-1001\...\MountPoints2: K - K:\autorun.exe -auto
HKU\S-1-5-21-2148919563-1056563247-3886242007-1001\...\MountPoints2: {08cf46e1-506c-11e2-9e8d-00238b470cb2} - L:\Startme.exe
AppInit_DLLs-x32: g:\progra~3\pc manager\2.3.811.154\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\pcpmngr.dll => "g:\progra~3\pc manager\2.3.811.154\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\pcpmngr.dll" File Not Found

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.pl/
StartMenuInternet: IEXPLORE.EXE - G:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - G:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - G:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - H:\MS Office 2007\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - G:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - G:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - G:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - H:\MS Office 2007\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - G:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - G:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - G:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - G:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - G:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - G:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - G:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 50.28.34.201 8.8.8.8
Tcpip\..\Interfaces\{32C5911B-1281-4238-9B69-51930A6F004F}: [NameServer]8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1

FireFox:
========
FF ProfilePath: G:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\y8ygmrbt.default
FF Homepage: google.pl
FF Plugin: @adobe.com/FlashPlayer - G:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - G:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - G:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - H:\iTunes\Mozilla Plugins\npitunes.dll No File
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 - G:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - G:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - G:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - G:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: Adobe Reader - H:\Adobe Reader\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @onlive.com/OnLiveGameClientDetector,version=1.0.0 - G:\Program Files (x86)\OnLive\Plugin\npolgdet.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - G:\Users\Filip\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - G:\Users\Filip\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - G:\Users\Filip\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - E:\Future Soldier\orbit\npuplaypc.dll No File
FF Extension: S3.Download Statusbar - G:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\y8ygmrbt.default\Extensions\s3download@statusbar.xpi [2013-12-26]
FF Extension: Adblock Plus - G:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\y8ygmrbt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-07]
FF Extension: Download Statusbar - G:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\y8ygmrbt.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi [2013-12-07]
FF StartMenuInternet: FIREFOX.EXE - H:\Firefox\firefox.exe

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (suRff and keep) - G:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcpillpemjdnnmddcjhhahecnliogfbj [2013-12-03]
CHR Extension: (YoutubeAdblocker) - G:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaipbikelegfbkboheoaiilmkeifokmm [2013-12-03]
CHR Extension: (No Name) - G:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlioidldolgbmanndggdnldambdlglgj [2013-05-19]
CHR Extension: (SearchNewTab) - G:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldhpjggdpopfdjdljpceilmnpaoofihp [2013-12-03]

==================== Services (Whitelisted) =================

R2 AVGIDSAgent; H:\AVG\avgidsagent.exe [3782672 2014-02-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; H:\AVG\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 CS_SysMsgProxy; H:\NetGuard\SysMsgProxySrvc.sys [255136 2013-03-24] (Cucusoft, Inc.)
R2 DokanMounter; G:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [14848 2011-01-10] ()
S3 fussvc; G:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [139776 2012-07-25] (Microsoft Corporation)
S4 MBAMScheduler; H:\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
S2 MBAMService; H:\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
S3 Microsoft Office Groove Audit Service; H:\MS Office 2007\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; G:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
S4 msvsmon80; G:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4476096 2005-09-23] (Microsoft Corporation)
R2 PnkBstrA; G:\Windows\SysWOW64\PnkBstrA.exe [66872 2013-12-14] ()
S4 SQLAgent$SQLEXPRESS; G:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
S3 Te.Service; G:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [126976 2012-07-25] (Microsoft Corporation)
R2 UI Assistant Service; G:\Program Files (x86)\Netia\Mobilny Internet\AssistantServices.exe [241664 2009-08-11] ()
S2 szserver; "G:\Program Files (x86)\STOPzilla!\SZServer.exe" [X]

==================== Drivers (Whitelisted) ====================

S2 atksgt; G:\Windows\System32\DRIVERS\atksgt.sys [310728 2011-05-23] ()
R1 Avgdiska; G:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; G:\Windows\System32\DRIVERS\avgidsdrivera.sys [243480 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; G:\Windows\System32\DRIVERS\avgidsha.sys [196376 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; G:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-11-01] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; G:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; G:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; G:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; G:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R2 Dokan; G:\Windows\system32\drivers\dokan.sys [120408 2011-01-10] (Windows (R) Win 7 DDK provider)
S3 esgiguard; G:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [13088 2011-03-02] ()
S3 hitmanpro37; G:\Windows\system32\drivers\hitmanpro37.sys [32512 2014-03-30] ()
S0 is3srv; G:\Windows\SysWow64\drivers\is3srv64.sys [74768 2013-11-19] (iS3 Inc.)
R2 lirsgt; G:\Windows\System32\DRIVERS\lirsgt.sys [43168 2011-05-09] ()
R3 MBAMProtector; G:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
R3 O2MDRDR; G:\Windows\System32\DRIVERS\o2mdx64.sys [64160 2009-07-13] (O2Micro )
S3 ss_bserd; G:\Windows\System32\DRIVERS\ss_bserd.sys [128000 2010-12-21] (MCCI Corporation)
S1 StarOpen; G:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] ()
R0 szkg5; G:\Windows\SysWow64\DRIVERS\szkg64.sys [74768 2013-11-19] (iS3 Inc.)
S3 VSPerfDrv110; H:\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [70264 2012-07-13] (Microsoft Corporation)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S2 sbapifs; system32\DRIVERS\sbapifs.sys [X]
U3 uxldapow; \??\G:\Users\Filip\AppData\Local\Temp\uxldapow.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-06 21:26 - 2014-04-06 21:27 - 00000000 ____D () G:\FRST
2014-04-05 14:16 - 2014-04-05 14:16 - 00001040 _____ () G:\Users\Filip\Desktop\Malwarebytes.txt
2014-04-05 13:54 - 2014-04-05 13:54 - 00009919 _____ () G:\Users\Filip\Desktop\GMER.txt
2014-04-05 13:54 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) G:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-05 13:54 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) G:\Windows\system32\Drivers\mwac.sys
2014-04-05 13:54 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) G:\Windows\system32\Drivers\mbam.sys
2014-04-05 13:34 - 2014-04-05 13:34 - 00139424 _____ () G:\Users\Filip\Desktop\Extras.Txt
2014-04-05 11:49 - 2014-04-05 11:49 - 00274552 _____ () G:\Windows\Minidump\040514-53352-01.dmp
2014-03-30 01:31 - 2014-03-30 01:31 - 00032512 _____ () G:\Windows\system32\Drivers\hitmanpro37.sys
2014-03-30 01:28 - 2014-03-30 01:28 - 00003786 _____ () G:\Windows\system32\.crusader
2014-03-30 01:14 - 2014-03-30 01:29 - 00000000 ____D () G:\ProgramData\HitmanPro
2014-03-30 01:14 - 2014-03-30 01:14 - 00000000 ____D () G:\Program Files\HitmanPro
2014-03-30 00:57 - 2014-04-05 21:58 - 00119512 _____ (Malwarebytes Corporation) G:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-03-30 00:57 - 2014-03-30 00:57 - 00000000 ____D () G:\ProgramData\Malwarebytes
2014-03-30 00:46 - 2014-03-30 00:48 - 00000000 ____D () G:\AdwCleaner
2014-03-28 22:48 - 2014-03-30 20:54 - 00000000 ____D () G:\Users\Filip\AppData\Local\CrashDumps
2014-03-28 20:40 - 2014-03-28 20:40 - 00034816 _____ () G:\Users\Filip\AppData\Roaming\RZR_00609f4249ceab5b0951e3d2dad9.db
2014-03-28 20:38 - 2014-03-28 20:38 - 00000000 ____D () G:\Users\Filip\AppData\Local\Razer
2014-03-28 20:26 - 2014-03-28 20:26 - 00000000 ____H () G:\Windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2014-03-28 20:25 - 2014-03-28 20:44 - 00000000 ____D () G:\Program Files (x86)\Razer
2014-03-28 20:25 - 2014-03-28 20:25 - 02106216 _____ (Microsoft Corporation) G:\Windows\SysWOW64\D3DCompiler_43.dll
2014-03-22 11:51 - 2014-04-06 20:12 - 00009390 _____ () G:\Windows\PFRO.log
2014-03-15 19:00 - 2014-04-06 20:12 - 00004681 _____ () G:\Windows\setupact.log
2014-03-15 19:00 - 2014-03-15 19:00 - 00000000 _____ () G:\Windows\setuperr.log
2014-03-15 15:11 - 2014-03-15 15:11 - 00000000 ____D () G:\Users\Filip\Documents\Criterion Games
2014-03-15 14:27 - 2014-03-15 14:28 - 00017513 _____ () G:\Windows\DirectX.log
2014-03-15 14:23 - 2014-03-15 14:24 - 00000000 ____D () G:\ProgramData\Solidshield
2014-03-14 23:03 - 2014-03-14 23:03 - 00000000 ____D () G:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-03-14 23:00 - 2014-03-14 23:00 - 00000907 _____ () G:\Users\Filip\Desktop\Microsoft Visual Studio 2005.lnk
2014-03-14 22:57 - 2014-03-14 22:57 - 00000000 ____D () G:\Program Files\Microsoft Visual Studio 8
2014-03-14 22:57 - 2014-03-14 22:57 - 00000000 ____D () G:\Program Files (x86)\Microsoft SQL Server 2005 Mobile Edition
2014-03-14 22:57 - 2014-03-14 22:57 - 00000000 ____D () G:\Program Files (x86)\Microsoft Device Emulator
2014-03-14 22:46 - 2014-03-14 22:46 - 00000000 ____D () G:\Program Files (x86)\CE Remote Tools
2014-03-14 22:43 - 2014-03-14 23:08 - 00000000 ____D () G:\Users\Filip\Documents\Visual Studio 2005
2014-03-14 22:43 - 2014-03-14 22:57 - 00000000 ____D () G:\Program Files (x86)\Microsoft Visual Studio 8
2014-03-14 22:43 - 2014-03-14 22:43 - 00000000 ____D () G:\Program Files (x86)\Microsoft Office
2014-03-13 15:53 - 2014-03-13 15:52 - 00264616 _____ (Oracle Corporation) G:\Windows\SysWOW64\javaws.exe
2014-03-13 15:52 - 2014-03-13 15:52 - 00175016 _____ (Oracle Corporation) G:\Windows\SysWOW64\javaw.exe
2014-03-13 15:52 - 2014-03-13 15:52 - 00174504 _____ (Oracle Corporation) G:\Windows\SysWOW64\java.exe
2014-03-13 15:52 - 2014-03-13 15:52 - 00096168 _____ (Oracle Corporation) G:\Windows\SysWOW64\WindowsAccessBridge-32.dll

==================== One Month Modified Files and Folders =======

2014-04-06 21:27 - 2014-04-06 21:26 - 00000000 ____D () G:\FRST
2014-04-06 21:27 - 2011-03-12 23:24 - 00000000 ___RD () G:\Users\Filip\Pobieranie
2014-04-06 20:52 - 2009-07-14 05:20 - 00000000 ____D () G:\Windows\tracing
2014-04-06 20:30 - 2013-12-07 17:36 - 00000930 _____ () G:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-06 20:19 - 2009-07-14 19:55 - 00808608 _____ () G:\Windows\system32\perfh015.dat
2014-04-06 20:19 - 2009-07-14 19:55 - 00181816 _____ () G:\Windows\system32\perfc015.dat
2014-04-06 20:19 - 2009-07-14 07:13 - 01861366 _____ () G:\Windows\system32\PerfStringBackup.INI
2014-04-06 20:17 - 2011-03-12 23:18 - 01568419 _____ () G:\Windows\WindowsUpdate.log
2014-04-06 20:17 - 2009-07-14 06:45 - 00016624 ____H () G:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-06 20:17 - 2009-07-14 06:45 - 00016624 ____H () G:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-06 20:13 - 2011-11-20 13:02 - 00000374 _____ () G:\Windows\system32\Drivers\etc\hosts.ics
2014-04-06 20:12 - 2014-03-22 11:51 - 00009390 _____ () G:\Windows\PFRO.log
2014-04-06 20:12 - 2014-03-15 19:00 - 00004681 _____ () G:\Windows\setupact.log
2014-04-06 20:12 - 2009-07-14 07:08 - 00000006 ____H () G:\Windows\Tasks\SA.DAT
2014-04-06 19:51 - 2011-03-13 11:41 - 00000000 ____D () G:\ProgramData\MFAData
2014-04-06 09:54 - 2013-11-11 21:10 - 00000000 ____D () G:\Users\Filip\Desktop\C#
2014-04-05 21:58 - 2014-03-30 00:57 - 00119512 _____ (Malwarebytes Corporation) G:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-05 14:16 - 2014-04-05 14:16 - 00001040 _____ () G:\Users\Filip\Desktop\Malwarebytes.txt
2014-04-05 13:54 - 2014-04-05 13:54 - 00009919 _____ () G:\Users\Filip\Desktop\GMER.txt
2014-04-05 13:34 - 2014-04-05 13:34 - 00139424 _____ () G:\Users\Filip\Desktop\Extras.Txt
2014-04-05 12:07 - 2011-03-13 12:10 - 00000000 ____D () G:\Users\Filip\AppData\Roaming\Skype
2014-04-05 11:49 - 2014-04-05 11:49 - 00274552 _____ () G:\Windows\Minidump\040514-53352-01.dmp
2014-04-05 11:49 - 2011-11-05 11:12 - 00000000 ____D () G:\Windows\Minidump
2014-04-03 09:51 - 2014-04-05 13:54 - 00088280 _____ (Malwarebytes Corporation) G:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-05 13:54 - 00063192 _____ (Malwarebytes Corporation) G:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-05 13:54 - 00025816 _____ (Malwarebytes Corporation) G:\Windows\system32\Drivers\mbam.sys
2014-04-02 19:50 - 2011-07-18 16:02 - 00000000 ____D () G:\Users\Filip\AppData\Roaming\TS3Client
2014-03-31 14:31 - 2013-12-07 01:23 - 00000562 _____ () G:\Users\Public\Desktop\AVG 2014.lnk
2014-03-30 20:54 - 2014-03-28 22:48 - 00000000 ____D () G:\Users\Filip\AppData\Local\CrashDumps
2014-03-30 01:31 - 2014-03-30 01:31 - 00032512 _____ () G:\Windows\system32\Drivers\hitmanpro37.sys
2014-03-30 01:29 - 2014-03-30 01:14 - 00000000 ____D () G:\ProgramData\HitmanPro
2014-03-30 01:28 - 2014-03-30 01:28 - 00003786 _____ () G:\Windows\system32\.crusader
2014-03-30 01:14 - 2014-03-30 01:14 - 00000000 ____D () G:\Program Files\HitmanPro
2014-03-30 01:13 - 2011-05-18 20:38 - 00000000 ____D () G:\Users\Filip\AppData\Roaming\DVDVideoSoft
2014-03-30 00:57 - 2014-03-30 00:57 - 00000000 ____D () G:\ProgramData\Malwarebytes
2014-03-30 00:48 - 2014-03-30 00:46 - 00000000 ____D () G:\AdwCleaner
2014-03-30 00:48 - 2011-05-03 21:08 - 00000997 _____ () G:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-03-30 00:48 - 2011-03-12 23:24 - 00001184 _____ () G:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-30 00:23 - 2013-10-26 15:03 - 00000000 ____D () G:\Program Files (x86)\Microsoft SDKs
2014-03-29 21:25 - 2014-02-26 22:48 - 00000000 ____D () G:\Users\Filip\Documents\Visual Studio 2012
2014-03-29 13:08 - 2014-01-23 13:57 - 00000000 ____D () G:\Users\Filip\AppData\Local\Overwolf
2014-03-28 20:44 - 2014-03-28 20:25 - 00000000 ____D () G:\Program Files (x86)\Razer
2014-03-28 20:40 - 2014-03-28 20:40 - 00034816 _____ () G:\Users\Filip\AppData\Roaming\RZR_00609f4249ceab5b0951e3d2dad9.db
2014-03-28 20:38 - 2014-03-28 20:38 - 00000000 ____D () G:\Users\Filip\AppData\Local\Razer
2014-03-28 20:38 - 2011-03-13 12:09 - 00120192 _____ () G:\Users\Filip\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-28 20:36 - 2009-07-14 06:45 - 00458048 _____ () G:\Windows\system32\FNTCACHE.DAT
2014-03-28 20:26 - 2014-03-28 20:26 - 00000000 ____H () G:\Windows\system32\Drivers\Msft_Kernel_RzFilter_01009.Wdf
2014-03-28 20:25 - 2014-03-28 20:25 - 02106216 _____ (Microsoft Corporation) G:\Windows\SysWOW64\D3DCompiler_43.dll
2014-03-22 11:51 - 2013-12-07 01:09 - 00000000 ____D () G:\Program Files (x86)\Mozilla Maintenance Service
2014-03-19 17:28 - 2011-03-13 12:44 - 00000000 ____D () G:\Windows\System32\Tasks\Games
2014-03-16 19:59 - 2013-06-08 13:49 - 00000000 ____D () G:\Users\Filip\AppData\Roaming\uTorrent
2014-03-15 19:00 - 2014-03-15 19:00 - 00000000 _____ () G:\Windows\setuperr.log
2014-03-15 15:11 - 2014-03-15 15:11 - 00000000 ____D () G:\Users\Filip\Documents\Criterion Games
2014-03-15 15:10 - 2012-12-27 17:47 - 00000000 ____D () G:\Users\Filip\Documents\Euro Truck Simulator 2
2014-03-15 14:28 - 2014-03-15 14:27 - 00017513 _____ () G:\Windows\DirectX.log
2014-03-15 14:24 - 2014-03-15 14:23 - 00000000 ____D () G:\ProgramData\Solidshield
2014-03-15 13:54 - 2013-03-15 17:44 - 00103736 _____ () G:\Windows\SysWOW64\PnkBstrB.exe
2014-03-14 23:08 - 2014-03-14 22:43 - 00000000 ____D () G:\Users\Filip\Documents\Visual Studio 2005
2014-03-14 23:04 - 2013-11-22 18:38 - 00000000 ____D () G:\Users\Filip\Desktop\C++
2014-03-14 23:03 - 2014-03-14 23:03 - 00000000 ____D () G:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-03-14 23:00 - 2014-03-14 23:00 - 00000907 _____ () G:\Users\Filip\Desktop\Microsoft Visual Studio 2005.lnk
2014-03-14 22:57 - 2014-03-14 22:57 - 00000000 ____D () G:\Program Files\Microsoft Visual Studio 8
2014-03-14 22:57 - 2014-03-14 22:57 - 00000000 ____D () G:\Program Files (x86)\Microsoft SQL Server 2005 Mobile Edition
2014-03-14 22:57 - 2014-03-14 22:57 - 00000000 ____D () G:\Program Files (x86)\Microsoft Device Emulator
2014-03-14 22:57 - 2014-03-14 22:43 - 00000000 ____D () G:\Program Files (x86)\Microsoft Visual Studio 8
2014-03-14 22:56 - 2012-05-28 13:48 - 00000000 ____D () G:\ProgramData\Microsoft Help
2014-03-14 22:46 - 2014-03-14 22:46 - 00000000 ____D () G:\Program Files (x86)\CE Remote Tools
2014-03-14 22:43 - 2014-03-14 22:43 - 00000000 ____D () G:\Program Files (x86)\Microsoft Office
2014-03-14 22:41 - 2013-11-28 12:13 - 00000000 ____D () G:\Users\Filip\Desktop\Angielski
2014-03-14 22:41 - 2013-09-04 20:37 - 00000000 ____D () G:\Users\Filip\Desktop\Deska
2014-03-14 22:41 - 2013-02-24 01:11 - 00000000 ____D () G:\Users\Filip\Desktop\Nowy folder
2014-03-14 22:41 - 2012-08-12 20:19 - 00000000 ____D () G:\Users\Filip\Desktop\allergo
2014-03-14 22:41 - 2011-05-26 08:16 - 00000000 ____D () G:\Users\Filip\Desktop\Wiedźmin
2014-03-14 22:41 - 2011-03-13 12:51 - 00000000 ____D () G:\Users\Filip\Desktop\Poradniki
2014-03-14 22:41 - 2011-03-12 23:24 - 00000000 ____D () G:\Users\Filip
2014-03-13 16:00 - 2013-12-07 01:15 - 00000000 ____D () G:\ProgramData\Oracle
2014-03-13 15:52 - 2014-03-13 15:53 - 00264616 _____ (Oracle Corporation) G:\Windows\SysWOW64\javaws.exe
2014-03-13 15:52 - 2014-03-13 15:52 - 00175016 _____ (Oracle Corporation) G:\Windows\SysWOW64\javaw.exe
2014-03-13 15:52 - 2014-03-13 15:52 - 00174504 _____ (Oracle Corporation) G:\Windows\SysWOW64\java.exe
2014-03-13 15:52 - 2014-03-13 15:52 - 00096168 _____ (Oracle Corporation) G:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-03-13 15:52 - 2011-03-13 13:14 - 00000000 ____D () G:\Program Files (x86)\Java
2014-03-12 17:30 - 2013-12-07 17:36 - 00692616 _____ (Adobe Systems Incorporated) G:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 17:30 - 2013-12-07 17:36 - 00071048 _____ (Adobe Systems Incorporated) G:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-12 17:30 - 2013-12-07 17:36 - 00003868 _____ () G:\Windows\System32\Tasks\Adobe Flash Player Updater

Some content of TEMP:
====================
G:\Users\Filip\AppData\Local\Temp\Quarantine.exe
G:\Users\Filip\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

G:\Windows\System32\winlogon.exe => MD5 is legit
G:\Windows\System32\wininit.exe => MD5 is legit
G:\Windows\SysWOW64\wininit.exe => MD5 is legit
G:\Windows\explorer.exe => MD5 is legit
G:\Windows\SysWOW64\explorer.exe => MD5 is legit
G:\Windows\System32\svchost.exe => MD5 is legit
G:\Windows\SysWOW64\svchost.exe => MD5 is legit
G:\Windows\System32\services.exe => MD5 is legit
G:\Windows\System32\User32.dll => MD5 is legit
G:\Windows\SysWOW64\User32.dll => MD5 is legit
G:\Windows\System32\userinit.exe => MD5 is legit
G:\Windows\SysWOW64\userinit.exe => MD5 is legit
G:\Windows\System32\rpcss.dll => MD5 is legit
G:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-30 21:44

==================== End Of Log ============================