Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-05-2014
Ran by Tadeusz (administrator) on TADEUSZ on 31-05-2014 12:19:31
Running from E:\H\internet
Platform: Windows 8 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\TiWorker.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13196432 2012-09-25] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5581888 2014-02-24] (ESET)
HKU\S-1-5-21-3272040304-3755979146-2439947456-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2014-05-14] (Glarysoft Ltd)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://onet.pl/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com
SearchScopes: HKLM - DefaultScope {51FDFFC3-2AC0-4BFC-A412-978BF4BC2BE7} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS
SearchScopes: HKLM - {51FDFFC3-2AC0-4BFC-A412-978BF4BC2BE7} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS
SearchScopes: HKLM-x32 - {51FDFFC3-2AC0-4BFC-A412-978BF4BC2BE7} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS
SearchScopes: HKCU - {51FDFFC3-2AC0-4BFC-A412-978BF4BC2BE7} URL = 
Tcpip\Parameters: [DhcpNameServer] 79.139.16.1 79.139.16.2

FireFox:
========
FF ProfilePath: C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default
FF Homepage: hxxp://www.gazeta.pl/0,0.html
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF SearchPlugin: C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default\searchplugins\google-language-en.xml
FF SearchPlugin: C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default\searchplugins\google-language-it.xml
FF SearchPlugin: C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default\searchplugins\google-language-ru-.xml
FF SearchPlugin: C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default\searchplugins\googlede.xml
FF SearchPlugin: C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default\searchplugins\googlefr.xml
FF SearchPlugin: C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default\searchplugins\googleit.xml
FF Extension: DownloadHelper - C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-05-30]
FF Extension: S3.Google Translator - C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default\Extensions\s3google@translator.xpi [2014-05-30]
FF Extension: Google Translator for Firefox - C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default\Extensions\translator@zoli.bod.xpi [2014-05-30]
FF Extension: Adblock Plus - C:\Users\Tadeusz\AppData\Roaming\Mozilla\Firefox\Profiles\faywzgrt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-05-30]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2014-05-30]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2014-05-30]

==================== Services (Whitelisted) =================

R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1343408 2014-02-24] (ESET)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [201360 2012-08-31] (Realtek Semiconductor)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [114656 2012-09-25] (Toshiba Europe GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-26] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-07-17] (Advanced Micro Devices)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
S3 CisUtMonitor; C:\Windows\System32\DRIVERS\CisUtMonitor.sys [33360 2013-12-13] (CrystalIdea Software)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [157432 2013-09-17] (ESET)
R0 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20672 2014-05-30] (Glarysoft Ltd)
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [24208 2012-08-02] (Realtek Microelectronics)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1498256 2012-08-29] (Realtek Semiconductor Corporation                           )
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [28632 2012-07-31] (Windows (R) Win 7 DDK provider)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-31 12:18 - 2014-05-31 12:19 - 00000000 ____D () C:\FRST
2014-05-31 11:58 - 2014-05-31 12:11 - 00000000 ____D () C:\WINDOWS\pss
2014-05-31 11:57 - 2014-05-31 11:57 - 03218352 _____ (McAfee, Inc.) C:\Users\Tadeusz\Downloads\MCPR.exe
2014-05-30 21:03 - 2014-05-30 21:30 - 00000000 ____D () C:\ProgramData\RFA_Backups
2014-05-30 21:03 - 2014-05-30 21:03 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 9
2014-05-30 21:03 - 2014-05-30 21:03 - 00000000 ____D () C:\ProgramData\Registry First Aid
2014-05-30 21:02 - 2014-05-30 21:03 - 00000000 ____D () C:\Program Files\RFA 9
2014-05-30 20:24 - 2014-05-31 12:13 - 00000350 _____ () C:\WINDOWS\Tasks\GlaryInitialize 5.job
2014-05-30 20:24 - 2014-05-30 20:24 - 00020672 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUBootStartup.sys
2014-05-30 20:24 - 2014-05-30 20:24 - 00002974 _____ () C:\WINDOWS\System32\Tasks\GU5SkipUAC
2014-05-30 20:24 - 2014-05-30 20:24 - 00002628 _____ () C:\WINDOWS\System32\Tasks\GlaryInitialize 5
2014-05-30 20:24 - 2014-05-30 20:24 - 00001067 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2014-05-30 20:24 - 2014-05-30 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2014-05-30 20:24 - 2014-05-30 20:24 - 00000000 ____D () C:\ProgramData\GlarySoft
2014-05-30 20:23 - 2014-05-31 12:13 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
2014-05-30 20:21 - 2014-05-30 20:24 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\GlarySoft
2014-05-30 20:21 - 2014-05-30 20:21 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\DiskDefrag
2014-05-30 20:14 - 2014-05-30 20:14 - 00000000 ____D () C:\ProgramData\Toshiba
2014-05-30 20:03 - 2014-05-30 20:03 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\CrystalIdea Software
2014-05-30 20:03 - 2014-05-30 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Tool
2014-05-30 20:03 - 2014-05-30 20:03 - 00000000 ____D () C:\Program Files (x86)\Uninstall Tool
2014-05-30 20:03 - 2013-12-13 18:36 - 00033360 _____ (CrystalIdea Software) C:\WINDOWS\system32\Drivers\CisUtMonitor.sys
2014-05-30 20:02 - 2014-05-30 20:02 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-05-30 20:02 - 2014-05-30 20:02 - 00000000 ____D () C:\Program Files\Unlocker
2014-05-30 19:21 - 2014-05-30 20:10 - 00000000 ____D () C:\WINDOWS\softwaredistribution.bak
2014-05-30 18:47 - 2014-05-30 18:49 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-05-30 18:37 - 2012-10-11 07:45 - 19789824 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-05-30 18:37 - 2012-10-11 07:07 - 17560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-05-30 17:34 - 2014-05-30 17:34 - 00689664 _____ () C:\Users\Tadeusz\Downloads\MicrosoftFixit50202.msi
2014-05-30 15:54 - 2014-05-30 15:54 - 00000823 _____ () C:\Users\Tadeusz\Desktop\CCleaner.lnk
2014-05-30 15:54 - 2014-05-30 15:54 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-30 15:50 - 2014-05-30 15:51 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\WinRAR
2014-05-30 15:50 - 2014-05-30 15:50 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-30 15:50 - 2014-05-30 15:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-30 15:50 - 2014-05-30 15:50 - 00000000 ____D () C:\Program Files\WinRAR
2014-05-30 15:45 - 2014-05-27 18:39 - 00000512 _____ () C:\Users\Tadeusz\Documents\indexfile.txt
2014-05-30 15:43 - 2014-05-30 15:43 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\Macromedia
2014-05-30 15:34 - 2014-05-30 15:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-05-30 15:34 - 2014-05-30 15:34 - 00000000 ____D () C:\ProgramData\ESET
2014-05-30 15:34 - 2014-05-30 15:34 - 00000000 ____D () C:\Program Files\ESET
2014-05-30 15:32 - 2014-05-30 20:26 - 00000000 ___RD () C:\Users\Tadeusz\Desktop\pliki mało używane
2014-05-30 15:31 - 2014-05-30 21:33 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-05-30 15:31 - 2014-05-30 15:31 - 00003818 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-05-30 15:28 - 2014-05-30 15:28 - 00001174 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-30 15:28 - 2014-05-30 15:28 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Mozilla
2014-05-30 15:28 - 2014-05-30 15:28 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\Mozilla
2014-05-30 15:28 - 2014-05-30 15:28 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-30 15:28 - 2014-05-30 15:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-30 14:27 - 2014-05-31 12:17 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3272040304-3755979146-2439947456-1001
2014-05-30 14:25 - 2014-05-30 14:25 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\ATI
2014-05-30 14:25 - 2014-05-30 14:25 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\ATI
2014-05-30 14:21 - 2014-05-30 14:21 - 00000000 ____D () C:\ProgramData\ToshibaEurope
2014-05-30 14:20 - 2014-05-30 14:20 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-05-30 14:20 - 2014-05-30 14:20 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\SRS Labs
2014-05-30 14:19 - 2014-05-30 18:49 - 00000000 ___RD () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-30 14:19 - 2014-05-30 18:49 - 00000000 ___RD () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-30 14:19 - 2014-05-30 14:19 - 00001453 _____ () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-30 14:17 - 2014-05-30 14:17 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Macromedia
2014-05-30 14:17 - 2014-05-30 14:17 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Adobe
2014-05-30 14:15 - 2014-05-30 21:33 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\Packages
2014-05-30 14:15 - 2014-05-30 14:15 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\VirtualStore
2014-05-30 14:13 - 2014-05-31 12:18 - 01268488 _____ () C:\WINDOWS\WindowsUpdate.log
2014-05-30 14:12 - 2014-05-31 12:19 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\Temp
2014-05-30 14:12 - 2014-05-30 14:19 - 00000000 ____D () C:\Users\Tadeusz
2014-05-30 14:12 - 2014-05-30 14:12 - 00000020 ___SH () C:\Users\Tadeusz\ntuser.ini
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Ustawienia lokalne
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Szablony
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Moje dokumenty
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Menu Start
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Documents\Moje wideo
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Documents\Moje obrazy
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Documents\Moja muzyka
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Dane aplikacji
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\AppData\Local\Historia
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\AppData\Local\Dane aplikacji
2014-05-30 14:12 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-30 14:12 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-30 14:12 - 2012-07-26 10:13 - 00000000 ___RD () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-05-30 14:12 - 2012-07-26 10:13 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

==================== One Month Modified Files and Folders =======

2014-05-31 12:19 - 2014-05-31 12:18 - 00000000 ____D () C:\FRST
2014-05-31 12:19 - 2014-05-30 14:12 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\Temp
2014-05-31 12:18 - 2014-05-30 14:13 - 01268488 _____ () C:\WINDOWS\WindowsUpdate.log
2014-05-31 12:18 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-05-31 12:17 - 2014-05-30 14:27 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3272040304-3755979146-2439947456-1001
2014-05-31 12:17 - 2012-08-02 09:05 - 00794946 _____ () C:\WINDOWS\system32\perfh015.dat
2014-05-31 12:17 - 2012-08-02 09:05 - 00159530 _____ () C:\WINDOWS\system32\perfc015.dat
2014-05-31 12:17 - 2012-08-02 08:59 - 00730544 _____ () C:\WINDOWS\system32\perfh00E.dat
2014-05-31 12:17 - 2012-08-02 08:59 - 00174018 _____ () C:\WINDOWS\system32\perfc00E.dat
2014-05-31 12:17 - 2012-08-02 08:54 - 00541792 _____ () C:\WINDOWS\system32\perfh008.dat
2014-05-31 12:17 - 2012-08-02 08:54 - 00088858 _____ () C:\WINDOWS\system32\perfc008.dat
2014-05-31 12:17 - 2012-08-02 08:48 - 00718298 _____ () C:\WINDOWS\system32\perfh005.dat
2014-05-31 12:17 - 2012-08-02 08:48 - 00147876 _____ () C:\WINDOWS\system32\perfc005.dat
2014-05-31 12:17 - 2012-07-26 09:28 - 04191394 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-31 12:13 - 2014-05-30 20:24 - 00000350 _____ () C:\WINDOWS\Tasks\GlaryInitialize 5.job
2014-05-31 12:13 - 2014-05-30 20:23 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
2014-05-31 12:12 - 2012-07-26 09:22 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-05-31 12:11 - 2014-05-31 11:58 - 00000000 ____D () C:\WINDOWS\pss
2014-05-31 11:57 - 2014-05-31 11:57 - 03218352 _____ (McAfee, Inc.) C:\Users\Tadeusz\Downloads\MCPR.exe
2014-05-30 23:44 - 2012-07-26 10:13 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-05-30 23:44 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2014-05-30 21:47 - 2012-07-26 07:26 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-05-30 21:33 - 2014-05-30 15:31 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-05-30 21:33 - 2014-05-30 14:15 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\Packages
2014-05-30 21:33 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent
2014-05-30 21:30 - 2014-05-30 21:03 - 00000000 ____D () C:\ProgramData\RFA_Backups
2014-05-30 21:03 - 2014-05-30 21:03 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 9
2014-05-30 21:03 - 2014-05-30 21:03 - 00000000 ____D () C:\ProgramData\Registry First Aid
2014-05-30 21:03 - 2014-05-30 21:02 - 00000000 ____D () C:\Program Files\RFA 9
2014-05-30 21:00 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-05-30 20:26 - 2014-05-30 15:32 - 00000000 ___RD () C:\Users\Tadeusz\Desktop\pliki mało używane
2014-05-30 20:24 - 2014-05-30 20:24 - 00020672 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUBootStartup.sys
2014-05-30 20:24 - 2014-05-30 20:24 - 00002974 _____ () C:\WINDOWS\System32\Tasks\GU5SkipUAC
2014-05-30 20:24 - 2014-05-30 20:24 - 00002628 _____ () C:\WINDOWS\System32\Tasks\GlaryInitialize 5
2014-05-30 20:24 - 2014-05-30 20:24 - 00001067 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2014-05-30 20:24 - 2014-05-30 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2014-05-30 20:24 - 2014-05-30 20:24 - 00000000 ____D () C:\ProgramData\GlarySoft
2014-05-30 20:24 - 2014-05-30 20:21 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\GlarySoft
2014-05-30 20:21 - 2014-05-30 20:21 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\DiskDefrag
2014-05-30 20:15 - 2012-11-15 02:17 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Toshiba
2014-05-30 20:14 - 2014-05-30 20:14 - 00000000 ____D () C:\ProgramData\Toshiba
2014-05-30 20:10 - 2014-05-30 19:21 - 00000000 ____D () C:\WINDOWS\softwaredistribution.bak
2014-05-30 20:09 - 2012-11-15 01:33 - 00000000 ____D () C:\Program Files\TOSHIBA
2014-05-30 20:06 - 2012-11-15 02:17 - 00000000 ____D () C:\Program Files (x86)\TOSHIBA
2014-05-30 20:06 - 2012-11-15 01:33 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA
2014-05-30 20:03 - 2014-05-30 20:03 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\CrystalIdea Software
2014-05-30 20:03 - 2014-05-30 20:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Tool
2014-05-30 20:03 - 2014-05-30 20:03 - 00000000 ____D () C:\Program Files (x86)\Uninstall Tool
2014-05-30 20:02 - 2014-05-30 20:02 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-05-30 20:02 - 2014-05-30 20:02 - 00000000 ____D () C:\Program Files\Unlocker
2014-05-30 19:02 - 2012-11-15 02:11 - 00000000 ____D () C:\ProgramData\Nero
2014-05-30 18:49 - 2014-05-30 18:47 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-05-30 18:49 - 2014-05-30 14:19 - 00000000 ___RD () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-30 18:49 - 2014-05-30 14:19 - 00000000 ___RD () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-30 18:49 - 2012-11-15 01:32 - 00000000 ____D () C:\ProgramData\PRICache
2014-05-30 18:47 - 2012-07-26 10:12 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-05-30 17:34 - 2014-05-30 17:34 - 00689664 _____ () C:\Users\Tadeusz\Downloads\MicrosoftFixit50202.msi
2014-05-30 16:22 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\system32\restore
2014-05-30 16:19 - 2013-03-11 18:43 - 00000000 ____D () C:\Program Files (x86)\TOSHIBA Games
2014-05-30 16:19 - 2013-03-11 18:38 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-30 16:18 - 2013-03-11 18:38 - 00000000 ____D () C:\ProgramData\WildTangent
2014-05-30 15:55 - 2012-11-16 02:08 - 00000000 ____D () C:\WINDOWS\Panther
2014-05-30 15:54 - 2014-05-30 15:54 - 00000823 _____ () C:\Users\Tadeusz\Desktop\CCleaner.lnk
2014-05-30 15:54 - 2014-05-30 15:54 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-30 15:51 - 2014-05-30 15:50 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\WinRAR
2014-05-30 15:50 - 2014-05-30 15:50 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-30 15:50 - 2014-05-30 15:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-05-30 15:50 - 2014-05-30 15:50 - 00000000 ____D () C:\Program Files\WinRAR
2014-05-30 15:43 - 2014-05-30 15:43 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\Macromedia
2014-05-30 15:34 - 2014-05-30 15:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-05-30 15:34 - 2014-05-30 15:34 - 00000000 ____D () C:\ProgramData\ESET
2014-05-30 15:34 - 2014-05-30 15:34 - 00000000 ____D () C:\Program Files\ESET
2014-05-30 15:31 - 2014-05-30 15:31 - 00003818 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-05-30 15:28 - 2014-05-30 15:28 - 00001174 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-30 15:28 - 2014-05-30 15:28 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Mozilla
2014-05-30 15:28 - 2014-05-30 15:28 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\Mozilla
2014-05-30 15:28 - 2014-05-30 15:28 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-30 15:28 - 2014-05-30 15:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-30 15:22 - 2012-07-26 10:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-05-30 14:25 - 2014-05-30 14:25 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\ATI
2014-05-30 14:25 - 2014-05-30 14:25 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\ATI
2014-05-30 14:23 - 2012-07-26 07:26 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-05-30 14:21 - 2014-05-30 14:21 - 00000000 ____D () C:\ProgramData\ToshibaEurope
2014-05-30 14:20 - 2014-05-30 14:20 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-05-30 14:20 - 2014-05-30 14:20 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\SRS Labs
2014-05-30 14:19 - 2014-05-30 14:19 - 00001453 _____ () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-30 14:19 - 2014-05-30 14:12 - 00000000 ____D () C:\Users\Tadeusz
2014-05-30 14:17 - 2014-05-30 14:17 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Macromedia
2014-05-30 14:17 - 2014-05-30 14:17 - 00000000 ____D () C:\Users\Tadeusz\AppData\Roaming\Adobe
2014-05-30 14:15 - 2014-05-30 14:15 - 00000000 ____D () C:\Users\Tadeusz\AppData\Local\VirtualStore
2014-05-30 14:15 - 2012-07-26 10:12 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-05-30 14:15 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\WinStore
2014-05-30 14:13 - 2012-11-15 01:47 - 00281544 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-05-30 14:12 - 2014-05-30 14:12 - 00000020 ___SH () C:\Users\Tadeusz\ntuser.ini
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Ustawienia lokalne
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Szablony
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Moje dokumenty
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Menu Start
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Documents\Moje wideo
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Documents\Moje obrazy
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Documents\Moja muzyka
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\Dane aplikacji
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\AppData\Local\Historia
2014-05-30 14:12 - 2014-05-30 14:12 - 00000000 _SHDL () C:\Users\Tadeusz\AppData\Local\Dane aplikacji
2014-05-27 18:39 - 2014-05-30 15:45 - 00000512 _____ () C:\Users\Tadeusz\Documents\indexfile.txt

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2012-11-15 10:23

==================== End Of Log ============================