Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-04-2014 01
Ran by Alek (administrator) on ALEK-KOMPUTER on 18-04-2014 13:31:28
Running from C:\Users\Alek\Downloads
Windows 7 Ultimate (X64) OS Language: Polish
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(MK) C:\Program Files (x86)\MKJogo\MKLOL\MK.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Program Files (x86)\screenSHU\screenSHU.exe
(Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe
(Adobe Systems Inc.) D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfcmon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-07-03] (NVIDIA Corporation)
HKLM\...\Run: [Fences] => C:\Program Files (x86)\Stardock\Fences\Fences.exe [3996848 2013-03-21] (Stardock Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [336992 2012-08-17] (Power Software Ltd)
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] ()
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478392 2013-12-21] (Adobe Systems Inc.)
HKLM-x32\...\Run: [P17RunE] => RunDll32 P17RunE.dll,RunDLLEntry
HKU\S-1-5-21-2762411956-3580101266-2349690831-1001\...\Run: [Google Update] => C:\Users\Alek\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-11-09] (Google Inc.)
HKU\S-1-5-21-2762411956-3580101266-2349690831-1001\...\Run: [Facebook Update] => C:\Users\Alek\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-01-21] (Facebook Inc.)
HKU\S-1-5-21-2762411956-3580101266-2349690831-1001\...\Run: [MKLOL] => C:\Program Files (x86)\MKJogo\MKLOL\MK.exe [1107144 2014-03-19] (MK)
HKU\S-1-5-21-2762411956-3580101266-2349690831-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-2762411956-3580101266-2349690831-1001\...\Run: [screenSHU] => C:\Program Files (x86)\screenSHU\screenSHU.exe [2112000 2013-09-04] ()
HKU\S-1-5-21-2762411956-3580101266-2349690831-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
AppInit_DLLs-x32: c:\progra~2\ss_hel~1\psupport.dll => "c:\progra~2\ss_hel~1\psupport.dll" File Not Found

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocnik logowania za pomocą konta Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: IplexToALLPlayer - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files (x86)\OpenSubtitlesPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
BHO-x32: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Alek\AppData\Roaming\Mozilla\Firefox\Profiles\530d989e.default-1393451086357
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - D:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @real.com/nppl3260;version=6.0.11.2571 - C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.1739 - C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Alek\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Alek\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Alek\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Alek\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Alek\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Alek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Users\Alek\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Alek\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\awesomehp.xml
FF Extension: Battlefield Play4Free - C:\Users\Alek\AppData\Roaming\Mozilla\Firefox\Profiles\530d989e.default-1393451086357\Extensions\battlefieldplay4free@ea.com [2014-03-14]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-01-07]

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR StartupUrls: "hxxp://www.awesomehp.com/?type=hp&ts=1393429589&from=amt&uid=395049983_266162_34A47D81"
CHR DefaultSearchKeyword: delta-homes
CHR DefaultSearchProvider: delta-homes
CHR DefaultSearchURL: http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=395049983_266162_34A47D81&ts=1393448766&type=default&q={searchTerms}
CHR DefaultNewTabURL: 
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Alek\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll No File
CHR Extension: (Torntv V6.0) - C:\Users\Alek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmilhmcinpmpohfoiccaplbhgelbnim [2014-02-04]
CHR Extension: (Dysk Google) - C:\Users\Alek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-11-09]
CHR Extension: (YouTube) - C:\Users\Alek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-11-09]
CHR Extension: (Szukaj w Google) - C:\Users\Alek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-11-09]
CHR Extension: (Adobe Acrobat — utwórz PDF) - C:\Users\Alek\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-01-07]
CHR Extension: (Downloadd keeePer) - C:\Users\Alek\AppData\Local\Google\Chrome\User Data\Default\Extensions\eipabijnlhigecemaaooddakcnikpnco [2013-10-10]
CHR Extension: (Google Wallet) - C:\Users\Alek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Extended Protection) - C:\Users\Alek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo [2014-02-26]
CHR Extension: (Gmail) - C:\Users\Alek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-11-09]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-12-21]
CHR HKLM-x32\...\Chrome\Extension: [ogfjmhfnldnajmfaofeiaepghjenbgjo] - C:\Users\Alek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ep.crx [2014-02-26]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2012-12-07] ()
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151744 2013-12-27] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-03-14] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [759192 2013-09-03] (Tunngle.net GmbH)

==================== Drivers (Whitelisted) ====================

S3 Cardex; C:\Windows\SysWOW64\drivers\TBPANELX64.SYS [15648 2007-03-16] (Windows (R) Server 2003 DDK provider)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [11376 2002-10-08] ()
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 TBPanel; No ImagePath
S3 cmuda3; system32\drivers\cmudax3.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S2 vstor2; \??\C:\Program Files (x86)\Common Files\VMware\VMware Virtual Image Editing\vstor2.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-18 13:31 - 2014-04-18 13:31 - 00021405 _____ () C:\Users\Alek\Downloads\FRST.txt
2014-04-18 13:31 - 2014-04-18 13:31 - 00000000 ____D () C:\FRST
2014-04-18 13:30 - 2014-04-18 13:30 - 02158592 _____ (Farbar) C:\Users\Alek\Downloads\FRST64.exe
2014-04-18 13:14 - 2014-04-18 13:14 - 00002286 _____ () C:\Windows\PFRO.log
2014-04-18 13:14 - 2014-04-18 13:14 - 00000056 _____ () C:\Windows\setupact.log
2014-04-18 13:14 - 2014-04-18 13:14 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-15 17:25 - 2014-04-15 17:25 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
2014-04-15 17:25 - 2014-04-15 17:25 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
2014-04-15 17:24 - 2014-04-15 17:24 - 00000000 ____D () C:\Users\Alek\AppData\Local\libimobiledevice
2014-04-14 11:26 - 2014-04-18 13:17 - 00003490 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-04-11 15:07 - 2014-04-11 15:07 - 00152724 ____H () C:\Windows\SysWOW64\mlfcache.dat
2014-04-11 14:36 - 2014-04-11 16:06 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\Apple Computer
2014-04-11 14:36 - 2014-04-11 14:36 - 00001582 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-11 14:36 - 2014-04-11 14:36 - 00000000 ____D () C:\Users\Alek\AppData\Local\Apple Computer
2014-04-11 14:36 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-04-11 14:35 - 2014-04-11 14:36 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-11 14:35 - 2014-04-11 14:36 - 00000000 ____D () C:\Program Files\iTunes
2014-04-11 14:35 - 2014-04-11 14:35 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-04-11 14:35 - 2014-04-11 14:35 - 00000000 ____D () C:\Program Files\iPod
2014-04-11 14:34 - 2014-04-11 14:34 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-04-11 14:34 - 2014-04-11 14:34 - 00000000 ____D () C:\Users\Alek\AppData\Local\Apple
2014-04-11 14:34 - 2014-04-11 14:34 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-04-11 14:33 - 2014-04-11 14:34 - 00000000 ____D () C:\ProgramData\Apple
2014-04-11 14:33 - 2014-04-11 14:33 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-04-11 14:33 - 2014-04-11 14:33 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-11 14:33 - 2014-04-11 14:33 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-04-10 22:40 - 2014-04-10 22:58 - 112816940 _____ () C:\Users\Alek\20140410_175042.mp4
2014-03-30 03:33 - 2014-04-18 13:16 - 00000000 ____D () C:\Users\Alek\AppData\Local\screenSHU
2014-03-30 03:32 - 2014-03-30 03:32 - 00001053 _____ () C:\Users\Alek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\screenSHU.lnk
2014-03-30 03:32 - 2014-03-30 03:32 - 00001023 _____ () C:\Users\Alek\Desktop\screenSHU.lnk
2014-03-30 03:32 - 2014-03-30 03:32 - 00000000 ____D () C:\Program Files (x86)\screenSHU
2014-03-30 00:08 - 2014-03-30 00:08 - 00001868 _____ () C:\Users\Public\Desktop\Path of Exile.lnk
2014-03-29 22:59 - 2014-03-29 22:59 - 00000000 ____D () C:\ProgramData\Creative Labs
2014-03-29 03:45 - 2014-04-18 02:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-28 00:48 - 2014-03-28 00:48 - 00000000 ____D () C:\Users\Alek\Documents\Electronic Arts
2014-03-28 00:48 - 2014-03-28 00:48 - 00000000 ____D () C:\Users\Alek\AppData\Local\Electronic Arts
2014-03-28 00:11 - 2014-03-28 00:11 - 00000875 _____ () C:\Users\Public\Desktop\Dead Space.lnk
2014-03-27 22:58 - 2014-03-28 00:48 - 00000000 ____D () C:\Users\Alek\AppData\Local\Origin
2014-03-27 22:57 - 2014-03-27 22:57 - 00000706 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-03-25 21:16 - 2014-03-25 21:16 - 00373865 _____ () C:\Users\Alek\Desktop\Symbolizm.pptx

==================== One Month Modified Files and Folders =======

2014-04-18 13:31 - 2014-04-18 13:31 - 00021405 _____ () C:\Users\Alek\Downloads\FRST.txt
2014-04-18 13:31 - 2014-04-18 13:31 - 00000000 ____D () C:\FRST
2014-04-18 13:30 - 2014-04-18 13:30 - 02158592 _____ (Farbar) C:\Users\Alek\Downloads\FRST64.exe
2014-04-18 13:22 - 2009-07-14 06:45 - 00015584 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-18 13:22 - 2009-07-14 06:45 - 00015584 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-18 13:20 - 2009-07-14 19:55 - 00738970 _____ () C:\Windows\system32\perfh015.dat
2014-04-18 13:20 - 2009-07-14 19:55 - 00155080 _____ () C:\Windows\system32\perfc015.dat
2014-04-18 13:20 - 2009-07-14 07:13 - 01666088 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-18 13:19 - 2013-04-20 20:36 - 01119135 _____ () C:\Windows\WindowsUpdate.log
2014-04-18 13:18 - 2012-09-29 20:10 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\Skype
2014-04-18 13:17 - 2014-04-14 11:26 - 00003490 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-04-18 13:16 - 2014-03-30 03:33 - 00000000 ____D () C:\Users\Alek\AppData\Local\screenSHU
2014-04-18 13:16 - 2013-12-27 20:01 - 00000000 ____D () C:\ProgramData\ProductData
2014-04-18 13:15 - 2012-11-09 02:51 - 00001040 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-18 13:14 - 2014-04-18 13:14 - 00002286 _____ () C:\Windows\PFRO.log
2014-04-18 13:14 - 2014-04-18 13:14 - 00000056 _____ () C:\Windows\setupact.log
2014-04-18 13:14 - 2014-04-18 13:14 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-18 13:14 - 2012-09-29 19:30 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-18 13:14 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-18 03:02 - 2012-09-29 19:37 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-18 03:01 - 2013-02-09 17:53 - 00001054 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2762411956-3580101266-2349690831-1001UA.job
2014-04-18 02:56 - 2012-11-09 02:51 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-18 02:09 - 2013-04-28 13:05 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\Wise Disk Cleaner
2014-04-18 02:08 - 2014-03-29 03:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-18 02:08 - 2012-09-29 19:09 - 00000000 ____D () C:\Users\Alek
2014-04-18 01:48 - 2014-03-13 03:24 - 00000000 ____D () C:\Users\Alek\AppData\Local\PMB Files
2014-04-18 01:41 - 2014-01-21 17:36 - 00000924 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2762411956-3580101266-2349690831-1001UA.job
2014-04-18 00:47 - 2014-03-13 03:24 - 00000000 ____D () C:\ProgramData\PMB Files
2014-04-18 00:01 - 2013-02-09 17:53 - 00001002 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2762411956-3580101266-2349690831-1001Core.job
2014-04-17 23:35 - 2014-02-19 17:24 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\foobar2000
2014-04-17 22:03 - 2013-08-16 19:30 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
2014-04-17 22:03 - 2013-08-16 19:30 - 00000000 ____D () C:\AdwCleaner
2014-04-17 21:25 - 2012-09-29 19:37 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-17 21:25 - 2012-09-29 19:37 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-17 21:25 - 2012-09-29 19:37 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-17 21:24 - 2012-10-04 16:36 - 00000000 ____D () C:\Users\Alek\AppData\Local\Adobe
2014-04-17 16:41 - 2014-01-21 17:36 - 00000902 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2762411956-3580101266-2349690831-1001Core.job
2014-04-17 15:00 - 2013-02-20 20:32 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\GG
2014-04-17 14:59 - 2012-10-07 12:34 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\TS3Client
2014-04-17 13:10 - 2014-02-04 21:08 - 00000000 ____D () C:\ProgramData\Origin
2014-04-16 19:30 - 2014-01-18 14:53 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\.minecraft
2014-04-15 23:12 - 2013-12-27 21:15 - 00001090 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-04-15 17:25 - 2014-04-15 17:25 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
2014-04-15 17:25 - 2014-04-15 17:25 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
2014-04-15 17:25 - 2013-11-08 19:24 - 00003254 _____ () C:\Windows\System32\Tasks\SomotoUpdateCheckerAutoStart
2014-04-15 17:24 - 2014-04-15 17:24 - 00000000 ____D () C:\Users\Alek\AppData\Local\libimobiledevice
2014-04-11 18:34 - 2013-01-24 17:46 - 00000000 ____D () C:\Users\Alek\AppData\Local\Paint.NET
2014-04-11 16:06 - 2014-04-11 14:36 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\Apple Computer
2014-04-11 15:07 - 2014-04-11 15:07 - 00152724 ____H () C:\Windows\SysWOW64\mlfcache.dat
2014-04-11 14:36 - 2014-04-11 14:36 - 00001582 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-11 14:36 - 2014-04-11 14:36 - 00000000 ____D () C:\Users\Alek\AppData\Local\Apple Computer
2014-04-11 14:36 - 2014-04-11 14:35 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-11 14:36 - 2014-04-11 14:35 - 00000000 ____D () C:\Program Files\iTunes
2014-04-11 14:35 - 2014-04-11 14:35 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-04-11 14:35 - 2014-04-11 14:35 - 00000000 ____D () C:\Program Files\iPod
2014-04-11 14:34 - 2014-04-11 14:34 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-04-11 14:34 - 2014-04-11 14:34 - 00000000 ____D () C:\Users\Alek\AppData\Local\Apple
2014-04-11 14:34 - 2014-04-11 14:34 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-04-11 14:34 - 2014-04-11 14:33 - 00000000 ____D () C:\ProgramData\Apple
2014-04-11 14:33 - 2014-04-11 14:33 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-04-11 14:33 - 2014-04-11 14:33 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-11 14:33 - 2014-04-11 14:33 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-04-10 22:58 - 2014-04-10 22:40 - 112816940 _____ () C:\Users\Alek\20140410_175042.mp4
2014-04-10 19:56 - 2014-01-31 04:52 - 00000000 ____D () C:\Users\Alek\AppData\Local\Battle.net
2014-04-08 14:00 - 2013-02-20 20:31 - 00000000 ____D () C:\Users\Alek\AppData\Local\GG
2014-04-06 23:59 - 2014-01-31 05:06 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-04-06 23:58 - 2014-01-31 04:51 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-04-05 00:36 - 2013-01-25 15:27 - 00000000 ____D () C:\Users\Alek\Desktop\Pliki tekstowe
2014-03-30 14:33 - 2013-06-14 18:57 - 00000000 ____D () C:\Users\Alek\Desktop\Zbieranina zdjęć
2014-03-30 13:52 - 2012-09-29 19:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-30 03:32 - 2014-03-30 03:32 - 00001053 _____ () C:\Users\Alek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\screenSHU.lnk
2014-03-30 03:32 - 2014-03-30 03:32 - 00001023 _____ () C:\Users\Alek\Desktop\screenSHU.lnk
2014-03-30 03:32 - 2014-03-30 03:32 - 00000000 ____D () C:\Program Files (x86)\screenSHU
2014-03-30 00:56 - 2013-02-09 17:53 - 00004026 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2762411956-3580101266-2349690831-1001UA
2014-03-30 00:56 - 2013-02-09 17:53 - 00003630 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2762411956-3580101266-2349690831-1001Core
2014-03-30 00:44 - 2013-01-25 15:20 - 00000000 ____D () C:\Users\Alek\Desktop\obrazki
2014-03-30 00:08 - 2014-03-30 00:08 - 00001868 _____ () C:\Users\Public\Desktop\Path of Exile.lnk
2014-03-29 23:11 - 2013-11-15 20:21 - 00000000 ____D () C:\Users\Alek\Desktop\Pokemmo
2014-03-29 22:59 - 2014-03-29 22:59 - 00000000 ____D () C:\ProgramData\Creative Labs
2014-03-29 19:51 - 2012-11-09 02:51 - 00004040 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-29 19:51 - 2012-11-09 02:51 - 00003788 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-29 04:33 - 2012-10-17 19:47 - 00000000 ____D () C:\Users\Alek\Documents\My Games
2014-03-28 00:48 - 2014-03-28 00:48 - 00000000 ____D () C:\Users\Alek\Documents\Electronic Arts
2014-03-28 00:48 - 2014-03-28 00:48 - 00000000 ____D () C:\Users\Alek\AppData\Local\Electronic Arts
2014-03-28 00:48 - 2014-03-27 22:58 - 00000000 ____D () C:\Users\Alek\AppData\Local\Origin
2014-03-28 00:48 - 2013-08-05 17:27 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-03-28 00:11 - 2014-03-28 00:11 - 00000875 _____ () C:\Users\Public\Desktop\Dead Space.lnk
2014-03-27 22:57 - 2014-03-27 22:57 - 00000706 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-03-26 15:39 - 2012-09-30 18:16 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\uTorrent
2014-03-25 21:41 - 2014-02-04 21:12 - 00000000 ____D () C:\Users\Alek\Documents\FIFA 13
2014-03-25 21:16 - 2014-03-25 21:16 - 00373865 _____ () C:\Users\Alek\Desktop\Symbolizm.pptx
2014-03-20 04:54 - 2012-09-29 19:45 - 00000000 ____D () C:\Users\Alek\AppData\Roaming\Mozilla

Files to move or delete:
====================
C:\Users\Alek\AppData\Roaming\CamLayout.ini
C:\Users\Alek\AppData\Roaming\CamShapes.ini
C:\Users\Alek\jagex_cl_runescape_LIVE.dat
C:\Users\Alek\random.dat


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


nointegritychecks: ==> Integrity Checks is disabled <===== ATTENTION!


LastRegBack: 2014-02-19 20:48

==================== End Of Log ============================