Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-07-2014 01
Ran by Mateusz (administrator) on MATEUSZ-KOMPUTE on 15-07-2014 15:44:04
Running from D:\pobrane
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Kingsoft Corporation) C:\Program Files (x86)\kingsoft\kingsoft antivirus\kxescore.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Kingsoft Corporation) C:\Program Files (x86)\kingsoft\kingsoft antivirus\kxetray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Kingsoft Corporation) C:\Program Files (x86)\kingsoft\kingsoft antivirus\kupdata.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2866960 2011-12-16] (Synaptics Incorporated)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8079408 2014-05-29] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [6200368 2014-05-29] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynLenovoGestureMgr] => C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [410896 2011-12-16] (Synaptics)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2352072 2014-05-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1279480 2014-05-30] (NVIDIA Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-09-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-09-14] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => wscript.exe //B "C:\Users\Mateusz\AppData\Local\Temp\iTunesHelper.vbe" <===== ATTENTION
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-12] (Intel Corporation)
HKLM-x32\...\Run: [kxesc] => c:\program files (x86)\kingsoft\kingsoft antivirus\kxetray.exe [1595056 2014-05-29] (Kingsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-07-25] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Runonce: [] -  [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-21-709492436-2255648778-682159336-1000\...\Run: [iTunesHelper] => wscript.exe //B "C:\Users\Mateusz\AppData\Local\Temp\iTunesHelper.vbe" <===== ATTENTION
HKU\S-1-5-21-709492436-2255648778-682159336-1000\...\Policies\Explorer: [] 
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [166568 2014-05-20] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2014-05-20] (NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iTunesHelper.vbe ()
ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - D:\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - D:\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: https://www.google.pl/
CHR StartupUrls: "hxxp://www.google.pl/"
CHR Extension: (Dokumenty Google) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-29]
CHR Extension: (Dysk Google) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-29]
CHR Extension: (YouTube) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-29]
CHR Extension: (Szukaj w Google) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-29]
CHR Extension: (AdBlock) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-05-29]
CHR Extension: (Strumienie z Ruczaju) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfopjimlhbikohbmjagioiomhmfhodam [2014-05-29]
CHR Extension: (Google Wallet) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-29]
CHR Extension: (Gmail) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-29]
CHR Extension: (RSS Feed Reader) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2014-05-29]

==================== Services (Whitelisted) =================

R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [File not signed]
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [945440 2012-02-01] (Broadcom Corporation.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-28] (Intel Corporation)
R2 kxescore; c:\program files (x86)\kingsoft\kingsoft antivirus\kxescore.exe [123992 2014-05-29] (Kingsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2011-12-08] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-15] ()
S2 SkypeUpdate; D:\Skype\Updater\Updater.exe [315008 2014-04-03] (Skype Technologies)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [594704 2011-12-08] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [134696 2012-02-02] (Broadcom Corporation.)
R0 kavbootc; C:\Windows\System32\drivers\kavbootc64.sys [31848 2014-05-29] (Kingsoft Corporation)
R1 KDHacker; c:\program files (x86)\kingsoft\kingsoft antivirus\security\kxescan\kdhacker64.sys [164696 2014-05-29] (Kingsoft Corporation)
R2 kisknl; C:\Windows\system32\drivers\kisknl.sys [210296 2014-05-29] (Kingsoft Corporation)
R4 KUsbGuard; C:\Program Files (x86)\kingsoft\kingsoft antivirus\kusbquery64.sys [18296 2014-05-29] (Kingsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-15] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [8208488 2011-09-06] (Realtek Semiconductor Corp.)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-15 15:43 - 2014-07-15 15:44 - 00000000 ____D () C:\FRST
2014-07-15 15:41 - 2014-07-15 15:41 - 00005247 _____ () C:\Users\Mateusz\Desktop\UsbFix [Listing 1] MATEUSZ-KOMPUTE.txt
2014-07-15 15:39 - 2014-07-15 15:39 - 00001448 _____ () C:\Users\Mateusz\Desktop\UsbFix.lnk
2014-07-15 15:39 - 2014-07-15 15:39 - 00000000 ____D () C:\UsbFix
2014-07-15 15:15 - 2014-07-15 15:16 - 00000000 ____D () C:\Windows\Minidump
2014-07-15 15:15 - 2014-07-15 15:15 - 947512962 _____ () C:\Windows\MEMORY.DMP
2014-07-15 15:09 - 2014-07-15 15:09 - 00093884 _____ () C:\Users\Mateusz\Desktop\gmer.txt
2014-07-15 14:03 - 2014-07-15 14:33 - 00001740 _____ () C:\Windows\PFRO.log
2014-07-15 13:06 - 2014-07-15 15:18 - 00000504 _____ () C:\Windows\setupact.log
2014-07-15 13:06 - 2014-07-15 13:06 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-15 12:57 - 2014-07-15 12:57 - 00003136 _____ () C:\Windows\System32\Tasks\{0AF910F8-1052-49B4-A37B-5E6163B831CD}
2014-07-15 12:21 - 2014-07-15 15:18 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-15 12:20 - 2014-07-15 12:20 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-15 12:20 - 2014-07-15 12:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-15 12:20 - 2014-07-15 12:20 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-15 12:20 - 2014-07-15 12:20 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-15 12:20 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-15 12:20 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-15 12:20 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-15 12:18 - 2014-07-15 12:18 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Mateusz\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-13 20:56 - 2014-07-13 20:56 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\Rockstar Games
2014-07-13 19:48 - 2014-07-13 19:48 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\MKKE
2014-07-02 16:28 - 2014-07-02 16:29 - 22724509 _____ () C:\Users\Mateusz\Desktop\8 Min Abs Workout, how to have six pack (HD Version).mp4
2014-07-01 21:56 - 2014-07-15 11:24 - 00000000 ___RD () C:\Users\Mateusz\Desktop\games
2014-07-01 10:08 - 2014-07-01 10:08 - 00000000 ____D () C:\Users\Mateusz\Documents\WB Games
2014-07-01 10:08 - 2014-07-01 10:08 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-07-01 10:07 - 2014-07-01 10:07 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\Downloaded Installations
2014-06-30 01:55 - 2014-06-30 01:56 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\Sniper3
2014-06-23 16:53 - 2014-07-01 10:09 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\NVIDIA
2014-06-23 11:56 - 2014-07-01 20:15 - 00000000 ____D () C:\Users\Mateusz\Desktop\całki
2014-06-21 13:59 - 2014-06-21 22:52 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\SpinTires
2014-06-21 13:45 - 2014-06-21 13:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spintires
2014-06-20 21:11 - 2014-06-20 21:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Titanfall
2014-06-20 17:42 - 2014-06-20 17:47 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\Origin
2014-06-20 17:40 - 2014-06-20 17:40 - 00000528 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-06-20 13:07 - 2014-06-20 13:07 - 00003148 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-06-15 22:50 - 2014-06-15 22:50 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-15 14:44 - 2014-06-15 14:44 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\Autodesk, Inc
2014-06-15 12:52 - 2014-06-15 12:52 - 00000000 ___RD () C:\Users\Mateusz\AppData\Roaming\Brother

==================== One Month Modified Files and Folders =======

2014-07-15 15:44 - 2014-07-15 15:43 - 00000000 ____D () C:\FRST
2014-07-15 15:41 - 2014-07-15 15:41 - 00005247 _____ () C:\Users\Mateusz\Desktop\UsbFix [Listing 1] MATEUSZ-KOMPUTE.txt
2014-07-15 15:39 - 2014-07-15 15:39 - 00001448 _____ () C:\Users\Mateusz\Desktop\UsbFix.lnk
2014-07-15 15:39 - 2014-07-15 15:39 - 00000000 ____D () C:\UsbFix
2014-07-15 15:26 - 2014-05-29 00:11 - 00001050 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-15 15:25 - 2009-07-14 06:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-15 15:25 - 2009-07-14 06:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-15 15:18 - 2014-07-15 13:06 - 00000504 _____ () C:\Windows\setupact.log
2014-07-15 15:18 - 2014-07-15 12:21 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-15 15:18 - 2014-05-29 15:07 - 01917243 _____ () C:\Windows\WindowsUpdate.log
2014-07-15 15:16 - 2014-07-15 15:15 - 00000000 ____D () C:\Windows\Minidump
2014-07-15 15:16 - 2014-05-29 00:11 - 00001046 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-15 15:16 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-15 15:15 - 2014-07-15 15:15 - 947512962 _____ () C:\Windows\MEMORY.DMP
2014-07-15 15:09 - 2014-07-15 15:09 - 00093884 _____ () C:\Users\Mateusz\Desktop\gmer.txt
2014-07-15 14:33 - 2014-07-15 14:03 - 00001740 _____ () C:\Windows\PFRO.log
2014-07-15 14:10 - 2011-04-12 15:21 - 00775360 _____ () C:\Windows\system32\perfh015.dat
2014-07-15 14:10 - 2011-04-12 15:21 - 00170652 _____ () C:\Windows\system32\perfc015.dat
2014-07-15 14:10 - 2009-07-14 07:13 - 01757422 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-15 13:06 - 2014-07-15 13:06 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-15 12:57 - 2014-07-15 12:57 - 00003136 _____ () C:\Windows\System32\Tasks\{0AF910F8-1052-49B4-A37B-5E6163B831CD}
2014-07-15 12:34 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\Performance
2014-07-15 12:20 - 2014-07-15 12:20 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-15 12:20 - 2014-07-15 12:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-15 12:20 - 2014-07-15 12:20 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-15 12:20 - 2014-07-15 12:20 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-15 12:18 - 2014-07-15 12:18 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Mateusz\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-15 11:24 - 2014-07-01 21:56 - 00000000 ___RD () C:\Users\Mateusz\Desktop\games
2014-07-15 08:37 - 2014-05-29 01:42 - 00000000 ____D () C:\Users\Mateusz\Documents\My Games
2014-07-13 21:12 - 2014-05-29 00:45 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\DAEMON Tools Lite
2014-07-13 20:56 - 2014-07-13 20:56 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\Rockstar Games
2014-07-13 20:51 - 2014-05-29 01:10 - 00000000 ____D () C:\ProgramData\Origin
2014-07-13 20:50 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-07-13 20:44 - 2014-05-29 01:42 - 00000000 ____D () C:\ProgramData\Orbit
2014-07-13 19:48 - 2014-07-13 19:48 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\MKKE
2014-07-13 19:48 - 2014-05-29 12:10 - 00000000 ____D () C:\ProgramData\Steam
2014-07-09 19:37 - 2014-05-29 00:34 - 01775288 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-07-03 23:12 - 2014-06-02 10:39 - 00000000 ____D () C:\Users\Mateusz\Documents\FIFA 14
2014-07-03 20:52 - 2014-05-29 01:31 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\uTorrent
2014-07-02 16:29 - 2014-07-02 16:28 - 22724509 _____ () C:\Users\Mateusz\Desktop\8 Min Abs Workout, how to have six pack (HD Version).mp4
2014-07-01 20:26 - 2014-06-14 12:50 - 00007891 _____ () C:\Windows\BRRBCOM.INI
2014-07-01 20:15 - 2014-06-23 11:56 - 00000000 ____D () C:\Users\Mateusz\Desktop\całki
2014-07-01 10:09 - 2014-06-23 16:53 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\NVIDIA
2014-07-01 10:08 - 2014-07-01 10:08 - 00000000 ____D () C:\Users\Mateusz\Documents\WB Games
2014-07-01 10:08 - 2014-07-01 10:08 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-07-01 10:07 - 2014-07-01 10:07 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\Downloaded Installations
2014-06-30 01:56 - 2014-06-30 01:55 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\Sniper3
2014-06-29 13:03 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-24 20:47 - 2014-05-29 11:27 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-06-24 20:47 - 2014-05-29 11:15 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-06-24 20:46 - 2014-05-29 11:15 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-06-24 00:43 - 2014-05-29 01:40 - 00000000 ____D () C:\ProgramData\kingsoft
2014-06-22 16:57 - 2014-02-13 18:38 - 00000000 ____D () C:\Users\Mateusz\Desktop\studia
2014-06-21 22:52 - 2014-06-21 13:59 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\SpinTires
2014-06-21 13:45 - 2014-06-21 13:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spintires
2014-06-20 21:11 - 2014-06-20 21:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Titanfall
2014-06-20 17:47 - 2014-06-20 17:42 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\Origin
2014-06-20 17:40 - 2014-06-20 17:40 - 00000528 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-06-20 13:07 - 2014-06-20 13:07 - 00003148 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-06-19 00:21 - 2014-05-29 00:11 - 00004046 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-19 00:21 - 2014-05-29 00:11 - 00003794 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-17 17:05 - 2014-05-29 11:08 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-15 22:50 - 2014-06-15 22:50 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-15 22:50 - 2014-05-29 11:14 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-06-15 15:29 - 2014-05-29 15:45 - 00222637 _____ () C:\Windows\system32\webservice4.log
2014-06-15 14:44 - 2014-06-15 14:44 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\Autodesk, Inc
2014-06-15 12:52 - 2014-06-15 12:52 - 00000000 ___RD () C:\Users\Mateusz\AppData\Roaming\Brother

Some content of TEMP:
====================
C:\Users\Mateusz\AppData\Local\Temp\nircmd.exe
C:\Users\Mateusz\AppData\Local\Temp\pv.exe
C:\Users\Mateusz\AppData\Local\Temp\vfind.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-30 11:45

==================== End Of Log ============================