Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-07-2014
Ran by dik (administrator) on MOTOPARTNER-PC on 24-07-2014 17:25:48
Running from F:\
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe
(Taiwan Shui Mu Chih Ching Technology Limited.) C:\Program Files (x86)\WinZipper\winzipersvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Nokia) C:\Program Files (x86)\Nokia\PC Internet Access\NPCIA.exe
(Pay By Ads LTD) C:\Users\dik\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
() C:\Program Files (x86)\BrowseSmart\updateBrowseSmart.exe
() C:\Program Files (x86)\BrowseSmart\bin\utilBrowseSmart.exe
(ClickMeIn Limited) C:\Program Files (x86)\VuuPC\Connectivity.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(ClickMeIn Limited) C:\Program Files (x86)\VuuPC\RemoteEngine.exe
(Nokia.) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
() C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
() C:\Program Files (x86)\BrowseSmart\bin\BrowseSmart.BrowserAdapter.exe
() C:\Program Files (x86)\BrowseSmart\bin\BrowseSmart.PurBrowse64.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
() C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_14_0_0_145_ActiveX.exe
(InsERT S.A.) C:\Program Files (x86)\InsERT\InsERT GT\MDF.exe
(InsERT) C:\Program Files (x86)\Common Files\InsERT\Sterowniki\DFM.exe
(ClickMeIn Limited) C:\Program Files (x86)\VuuPC\RemoteEngineHelper.exe
(ClickMeIn Limited) C:\Program Files (x86)\VuuPC\RemoteEngineHelper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [761024 2013-12-16] ()
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-929496005-2636014437-118799002-1000\...\Run: [TBHostSupport] => "C:\windows\SysWOW64\Rundll32.exe" "C:\Users\dik\AppData\Local\TBHostSupport\TBHostSupport_0.dll",DL (the data entry has 24 more characters). <===== ATTENTION
HKU\S-1-5-21-929496005-2636014437-118799002-1000\...\Run: [NokiaPCInternetAccess] => C:\Program Files (x86)\Nokia\PC Internet Access\NPCIA.exe [663552 2009-09-17] (Nokia)
HKU\S-1-5-21-929496005-2636014437-118799002-1000\...\Run: [APISupport] => "C:\windows\SysWOW64\Rundll32.exe" "C:\Users\dik\AppData\Local\Conduit\APISupport\APISupport.dll",DL (the data entry has 15 more characters). <===== ATTENTION
HKU\S-1-5-21-929496005-2636014437-118799002-1000\...\Run: [Yahoo! Search] => C:\Users\dik\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe [535472 2014-06-26] (Pay By Ads LTD)
HKU\S-1-5-21-929496005-2636014437-118799002-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-06-19] (Google Inc.)
HKU\S-1-5-21-929496005-2636014437-118799002-1000\...\MountPoints2: {63688c3a-534c-11e2-b5a0-f46d042c378c} - F:\NokiaPCIA_Autorun.exe
HKU\S-1-5-21-929496005-2636014437-118799002-1000\...\MountPoints2: {6a716f72-3190-11e1-b07a-f46d042c378c} - J:\LANLauncher.exe
HKU\S-1-5-21-929496005-2636014437-118799002-1000\...\MountPoints2: {8cf3c1c3-9230-11e1-a7f1-f46d042c378c} - K:\Startme.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&ts=1393423548&type=default&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://rts.dsrlte.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts=1402560904&from=wpm0612&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://nmd.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://nmd.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://search.babylon.com/?affID=119357&tl=gcn33118&tt=gc_&babsrc=HP_ss_gin2g&mntrId=789EF46D042C378C
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&ts=1393423548&type=default&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com/web/?type=ds&ts=1387175279&from=cor&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts=1402560904&from=wpm0612&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?type=hp&ts=1402560904&from=wpm0612&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com/web/?type=ds&ts=1387175279&from=cor&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com/web/?type=ds&ts=1387175279&from=cor&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts=1402560904&from=wpm0612&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?type=hp&ts=1402560904&from=wpm0612&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com/web/?type=ds&ts=1387175279&from=cor&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&q={searchTerms}
URLSearchHook: HKCU - (No Name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com/?type=sc&ts=1387175279&from=cor&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts=1387175279&from=cor&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts=1387175279&from=cor&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts=1387175279&from=cor&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts=1387175279&from=cor&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&q={searchTerms}
SearchScopes: HKCU - DefaultScope {9D9FAA59-58ED-4596-AE1C-273E3A32B1D5} URL = http://rts.dsrlte.com/?q={searchTerms}&r=245
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0B35F5CE-B518-428C-B366-BBAABB1A8AF8} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2790392
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchTerms}&affID=119357&tl=gcn33118&tt=gc_&babsrc=SP_ss&mntrId=789EF46D042C378C
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-homes.com/web/?type=ds&ts=1402560904&from=wpm0612&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX&q={searchTerms}
SearchScopes: HKCU - {9D9FAA59-58ED-4596-AE1C-273E3A32B1D5} URL = http://rts.dsrlte.com/?q={searchTerms}&r=245
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Bing Bar Helper -> {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} -> C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Babylon toolbar helper -> {2EECD738-5844-4a99-B4B6-146BF802613B} -> C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.4.9\bh\BabylonToolbar.dll (Babylon BHO)
BHO-x32: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO-x32: DealPly Shopping -> {4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7} -> C:\Program Files (x86)\DealPly\DealPlyIE.dll (DealPly)
BHO-x32: Pomocnik logowania za pomocą identyfikatora Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Babylon IE plugin -> {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} -> C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: delta Helper Object -> {C1AF5FA5-852C-4C90-812E-A7F75E011D87} -> C:\Program Files (x86)\Delta\delta\1.8.21.5\bh\delta.dll (Delta-search.com)
BHO-x32: BrowseSmart -> {ffbb88a9-c663-4b9b-9170-70fa0a5a2786} -> C:\Program Files (x86)\BrowseSmart\BrowseSmartBHO.dll No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.4.9\BabylonToolbarTlbr.dll (Babylon Ltd.)
Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.21.5\deltaTlbr.dll (Delta-search.com)
Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} -  No File
Toolbar: HKCU - No Name - {00000000-0000-0000-0000-000000000000} -  No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {AC2721FA-207D-44AE-8673-AE9074FC725C} http://192.168.2.25/DvrOcx.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: 84.40.247.158 dk-logistics.polcar24.pl
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default
FF NewTab: hxxp://rts.dsrlte.com/?m=tab
FF DefaultSearchEngine: Yahoo! Search
FF SearchEngineOrder.1: Delta Search
FF SelectedSearchEngine: Yahoo! Search
FF Homepage: hxxp://rts.dsrlte.com
FF Keyword.URL: hxxp://rts.dsrlte.com/?q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\searchplugins\keepmysearch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\aartemis.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\delta-homes.xml
FF Extension: DealPly  Shopping - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\Extensions\addon@dealplyshopping.com [2013-05-29]
FF Extension: Fast Start - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\Extensions\faststartff@gmail.com [2014-06-12]
FF Extension: Babylon Toolbar - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\Extensions\ffxtlbr@babylon.com [2012-12-13]
FF Extension: Delta Toolbar - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\Extensions\ffxtlbr@delta.com [2013-02-02]
FF Extension: Quick Start - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\Extensions\quick_start@gmail.com [2014-02-26]
FF Extension: shortcut - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\Extensions\shortcutff@gmail.com [2014-06-12]
FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2012-12-27]
FF Extension: Babylon Spelling and Proofreading - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\Extensions\adapter@babylontc.com.xpi [2012-12-13]
FF Extension: Plug-in by Integra Software - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\Extensions\integra@integra.com.pl.xpi [2012-09-14]
FF Extension: Babylon Translation Activation - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\Extensions\ocr@babylon.com.xpi [2012-12-13]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-04-15]
FF HKLM-x32\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\extensions\quick_start@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\extensions\faststartff@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [shortcutff@gmail.com] - C:\Users\dik\AppData\Roaming\Mozilla\Firefox\Profiles\4276yqqn.default\extensions\shortcutff@gmail.com
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.delta-homes.com/?type=sc&ts=1402560904&from=wpm0612&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX

Chrome: 
=======
CHR HomePage: hxxp://rts.dsrlte.com
CHR StartupUrls: "hxxp://rts.dsrlte.com"
CHR NewTab: "chrome-extension://ifohbjbgfchkkfhphahclmkpgejiplfo/index.html", "chrome-extension://mhfdcmehmjcclgopdodkjdicohagipid/Search/NewTabPages/html/new_tab.html", "chrome-extension://eooncjejnppfjjklapaamhcdmjbilmde/redirect.html"
CHR DefaultSearchKeyword: pay-by-ads.com
CHR DefaultSearchProvider: Yahoo! Search
CHR DefaultSearchURL: http://rts.dsrlte.com/?q={searchTerms}
CHR DefaultNewTabURL: 
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (YouTube) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-06-19]
CHR Extension: (Szukaj w Google) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-06-19]
CHR Extension: (Babylon Translator) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb [2013-01-20]
CHR Extension: (Delta Toolbar) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde [2013-02-05]
CHR Extension: (Lightning Newtab) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo [2013-12-16]
CHR Extension: (Skype Click to Call) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2012-08-23]
CHR Extension: (BitTorrentBar) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhfdcmehmjcclgopdodkjdicohagipid [2012-07-31]
CHR Extension: (Google Wallet) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (Extended Protection) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo [2014-07-12]
CHR Extension: (DealPly Beta channel) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcgaoafcmbadjkfdippkdddgkeaipbn [2013-06-06]
CHR Extension: (Gmail) - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-06-19]
CHR HKLM-x32\...\Chrome\Extension: [ainbkicbloikcngphmjfpjdemblcojdd] - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\slidebar.crx [2014-06-12]
CHR HKLM-x32\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonChrome.crx [2012-12-13]
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\dik\AppData\Roaming\BabSolution\CR\Delta.crx [2013-05-29]
CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx [2013-12-16]
CHR HKLM-x32\...\Chrome\Extension: [ippenodjaoidmkkfdlmdhofiebnpjddb] - C:\Program Files (x86)\BrowseSmart\ippenodjaoidmkkfdlmdhofiebnpjddb.crx [2013-12-16]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
CHR HKLM-x32\...\Chrome\Extension: [mhfdcmehmjcclgopdodkjdicohagipid] - C:\Users\dik\AppData\Local\Temp\ccex.crx [2011-12-14]
CHR HKLM-x32\...\Chrome\Extension: [ogfjmhfnldnajmfaofeiaepghjenbgjo] - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ep.crx [2014-02-26]
CHR HKLM-x32\...\Chrome\Extension: [pelmeidfhdlhlbjimpabfcbnnojbboma] - C:\Users\dik\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx [2014-06-12]
CHR StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.delta-homes.com/?type=sc&ts=1402560904&from=wpm0612&uid=HitachiXHDS721050CLA362_JP8560HK3GY86V3GY86VX

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [38440 2013-09-20] (Just Develop It)
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [705136 2014-04-11] (Cherished Technololgy LIMITED)
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [761968 2014-06-12] (Cherished Technololgy LIMITED)
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 RemoteEngineService; C:\Program Files (x86)\VuuPC\remoteengine.exe [2967568 2014-05-08] (ClickMeIn Limited)
R3 ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [575488 2008-09-23] (Nokia.) [File not signed]
S4 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-08-30] () [File not signed]
R2 Update BrowseSmart; C:\Program Files (x86)\BrowseSmart\updateBrowseSmart.exe [321824 2014-07-21] ()
R2 Util BrowseSmart; C:\Program Files (x86)\BrowseSmart\bin\utilBrowseSmart.exe [321824 2014-07-21] ()
R2 VuuPCConnectivity; C:\Program Files (x86)\VuuPC\Connectivity.exe [4747280 2014-05-08] (ClickMeIn Limited)
R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [425104 2014-02-26] (Taiwan Shui Mu Chih Ching Technology Limited.)
R2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [540304 2014-06-11] (Cherished Technololgy LIMITED)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [279616 2011-12-28] (DT Soft Ltd)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2012-03-26] (Apple Inc.) [File not signed]
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R1 {7f2b4ad0-671a-477b-bcd4-79d041f50d27}w64; C:\Windows\System32\drivers\{7f2b4ad0-671a-477b-bcd4-79d041f50d27}w64.sys [61120 2014-04-24] (StdLib)
S1 hqsfcvog; \??\C:\windows\system32\drivers\hqsfcvog.sys [X]
S1 vlsasdkt; \??\C:\windows\system32\drivers\vlsasdkt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-07-24 17:25 - 2014-07-24 17:25 - 00000000 ____D () C:\FRST
2014-07-24 06:03 - 2014-07-24 06:03 - 00000000 ____D () C:\Users\dik\AppData\Local\{71A0A4FA-2673-4CF9-9BB4-C620387867DA}
2014-07-23 17:43 - 2014-07-23 17:44 - 00961024 _____ () C:\Users\dik\Downloads\kl_uninstall.txt
2014-07-23 17:42 - 2014-07-23 17:42 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-07-23 17:40 - 2014-07-23 17:42 - 243878208 _____ (Kaspersky Lab) C:\Users\dik\Downloads\kav14.0.0.4651pl-pl.exe
2014-07-23 17:39 - 2014-07-23 17:39 - 04430600 _____ (Avira Operations GmbH & Co. KG) C:\Users\dik\Downloads\avira_en_av___ws2.exe
2014-07-23 17:39 - 2014-07-23 17:39 - 00000000 ____D () C:\OETemp
2014-07-23 17:11 - 2014-07-23 17:11 - 00000000 ____D () C:\Users\dik\AppData\Local\{D92CF441-D42F-4434-B2CB-B25BE2788CF4}
2014-07-23 16:29 - 2014-07-24 15:01 - 00003108 _____ () C:\windows\System32\Tasks\RegClean Pro
2014-07-23 05:10 - 2014-07-23 05:11 - 00000000 ____D () C:\Users\dik\AppData\Local\{A787BCC0-3512-4A83-9070-E4C0696F532E}
2014-07-22 17:09 - 2014-07-22 17:09 - 00000000 ____D () C:\Users\dik\AppData\Local\{4B435928-CCBC-41D1-96D0-3DCF0E47F379}
2014-07-22 05:08 - 2014-07-22 05:08 - 00000000 ____D () C:\Users\dik\AppData\Local\{86A4709C-2799-49AA-984F-C07ADBE32337}
2014-07-21 07:21 - 2014-07-21 07:21 - 00000000 ____D () C:\Users\dik\AppData\Local\{DF72796E-94F0-43CE-9933-3EF44BE4D471}
2014-07-19 06:06 - 2014-07-19 06:06 - 00000000 ____D () C:\Users\dik\AppData\Local\{750A5D64-AADC-44A8-BDB0-2062D8E2B71D}
2014-07-18 06:39 - 2014-07-18 06:39 - 00000000 ____D () C:\Users\dik\AppData\Local\{D3C33D08-CBC0-4873-A866-A05E042AA958}
2014-07-17 18:17 - 2014-07-17 18:17 - 00000000 ____D () C:\Users\dik\AppData\Local\{9A7F0020-F6BD-43B2-900A-076B7576A31C}
2014-07-17 06:16 - 2014-07-17 06:16 - 00000000 ____D () C:\Users\dik\AppData\Local\{EB388BCD-CEED-4783-A9DD-B45D229F6BB1}
2014-07-16 17:31 - 2014-07-16 17:31 - 00000000 ____D () C:\Users\dik\AppData\Local\{1D0EC77F-7BEE-4858-B4C1-E83FA25C5153}
2014-07-16 09:15 - 2014-07-16 09:15 - 00085299 _____ () C:\Users\dik\Desktop\zdjecie.JPGakt1
2014-07-16 05:29 - 2014-07-16 05:30 - 00000000 ____D () C:\Users\dik\AppData\Local\{5E98B047-5AED-462F-947B-37870F2A76FD}
2014-07-15 17:13 - 2014-07-15 17:13 - 00000000 ____D () C:\Users\dik\AppData\Local\{9FC83788-C5AC-49C9-A1FA-17DD2FC1A575}
2014-07-15 05:11 - 2014-07-15 05:11 - 00000000 ____D () C:\Users\dik\AppData\Local\{3CF6B996-BAA9-4EA9-A100-7842597DD926}
2014-07-14 11:15 - 2014-07-14 11:15 - 00000839 _____ () C:\Users\dik\Desktop\POZAŃSKI.txt
2014-07-14 07:17 - 2014-07-14 07:17 - 00000000 ____D () C:\Users\dik\AppData\Local\{43E355BA-CBB2-4E9F-908C-AE4201F9C05F}
2014-07-12 07:24 - 2014-07-12 07:24 - 00000000 ____D () C:\Users\dik\AppData\Local\{C38D9DB5-669C-4600-BD58-95B61F65FE9A}
2014-07-11 10:05 - 2014-07-11 10:05 - 00000000 ____D () C:\Users\dik\AppData\Local\{AB8ABFEE-93C2-42F4-AD13-304876E30AEB}
2014-07-10 06:12 - 2014-07-10 06:12 - 00000000 ____D () C:\Users\dik\AppData\Local\{AAB57FE4-FAEF-4D9D-823E-D8FFA1517B5B}
2014-07-09 17:06 - 2014-07-09 17:06 - 00000000 ____D () C:\Users\dik\AppData\Local\{5EAD162B-E7C4-4C03-B435-628970E79A71}
2014-07-09 16:37 - 2014-07-09 16:37 - 00000000 _____ () C:\Users\dik\Documents\Nowy dokument tekstowy.txt
2014-07-09 15:33 - 2014-07-09 15:33 - 00000161 _____ () C:\Users\dik\Desktop\Katalog FTP -zdj%EAcia%20z%20wyjazdu%20do%20Tr%F3jmiasta- w pandora.polcar.com.pl.url
2014-07-09 05:19 - 2014-06-30 04:09 - 00519168 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-07-09 05:19 - 2014-06-30 04:04 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-07-09 05:18 - 2014-06-20 22:14 - 00266424 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-07-09 05:18 - 2014-06-20 21:39 - 00240824 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-07-09 05:18 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-07-09 05:18 - 2014-06-19 03:06 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-07-09 05:18 - 2014-06-19 03:06 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-07-09 05:18 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-07-09 05:18 - 2014-06-19 02:42 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-07-09 05:18 - 2014-06-19 02:42 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-07-09 05:18 - 2014-06-19 02:41 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-07-09 05:18 - 2014-06-19 02:41 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-07-09 05:18 - 2014-06-19 02:32 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-07-09 05:18 - 2014-06-19 02:31 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-07-09 05:18 - 2014-06-19 02:26 - 00598016 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-07-09 05:18 - 2014-06-19 02:24 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-07-09 05:18 - 2014-06-19 02:24 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-07-09 05:18 - 2014-06-19 02:23 - 00752640 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-07-09 05:18 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-07-09 05:18 - 2014-06-19 02:14 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-07-09 05:18 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-07-09 05:18 - 2014-06-19 01:59 - 00038400 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-07-09 05:18 - 2014-06-19 01:56 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-07-09 05:18 - 2014-06-19 01:53 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-07-09 05:18 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-07-09 05:18 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-07-09 05:18 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-07-09 05:18 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-07-09 05:18 - 2014-06-19 01:38 - 00455168 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-07-09 05:18 - 2014-06-19 01:37 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-07-09 05:18 - 2014-06-19 01:36 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-07-09 05:18 - 2014-06-19 01:35 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2014-07-09 05:18 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-07-09 05:18 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-07-09 05:18 - 2014-06-19 01:28 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-07-09 05:18 - 2014-06-19 01:28 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-07-09 05:18 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-07-09 05:18 - 2014-06-19 01:27 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-07-09 05:18 - 2014-06-19 01:25 - 00442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-07-09 05:18 - 2014-06-19 01:23 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-07-09 05:18 - 2014-06-19 01:22 - 00592896 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-07-09 05:18 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-07-09 05:18 - 2014-06-19 01:06 - 00032256 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-09 05:18 - 2014-06-19 01:01 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-07-09 05:18 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-07-09 05:18 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-07-09 05:18 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-07-09 05:18 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-07-09 05:18 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-07-09 05:18 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-07-09 05:18 - 2014-06-19 00:46 - 01068032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2014-07-09 05:18 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-07-09 05:18 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-07-09 05:18 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-07-09 05:18 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-07-09 05:18 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-07-09 05:18 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-07-09 05:18 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-07-09 05:18 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2014-07-09 05:18 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2014-07-09 05:18 - 2014-06-18 03:10 - 03157504 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-07-09 05:18 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2014-07-09 05:18 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2014-07-09 05:18 - 2014-06-05 16:45 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-07-09 05:18 - 2014-06-05 16:26 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-07-09 05:18 - 2014-06-05 16:25 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-07-09 05:18 - 2014-05-30 10:08 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-07-09 05:18 - 2014-05-30 10:08 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-07-09 05:18 - 2014-05-30 10:08 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-07-09 05:18 - 2014-05-30 10:08 - 00307200 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-07-09 05:18 - 2014-05-30 10:08 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-07-09 05:18 - 2014-05-30 10:08 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-07-09 05:18 - 2014-05-30 10:08 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-07-09 05:18 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-07-09 05:18 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-07-09 05:18 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-07-09 05:18 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2014-07-09 05:18 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-07-09 05:18 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-07-09 05:18 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-07-09 05:18 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-07-09 05:05 - 2014-07-09 05:05 - 00000000 ____D () C:\Users\dik\AppData\Local\{5F626737-9126-4C7F-AB53-C8E48519A36E}
2014-07-08 07:20 - 2014-07-08 07:20 - 00000000 ____D () C:\Users\dik\AppData\Local\{746F4A49-40F5-49D2-B0EE-FD99848FFA10}
2014-07-07 19:20 - 2014-07-07 19:20 - 00000000 ____D () C:\Users\dik\AppData\Local\{C362A5D2-B623-40C4-A821-216BC38D82B3}
2014-07-07 07:38 - 2014-07-07 07:38 - 00000000 ____D () C:\Users\dik\AppData\Roaming\ModelViews
2014-07-07 07:36 - 2014-07-07 07:36 - 00000000 ____D () C:\Users\dik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Optimizer
2014-07-07 07:36 - 2014-07-07 07:36 - 00000000 ____D () C:\Program Files (x86)\PC-Optimizer
2014-07-07 07:19 - 2014-07-07 07:19 - 00000000 ____D () C:\Users\dik\AppData\Local\{137A0AD0-CA21-4B01-AD1B-613A7A77CCFD}
2014-07-05 06:00 - 2014-07-05 06:00 - 00000000 ____D () C:\Users\dik\AppData\Local\{7F9974A9-6F6A-409A-BE64-07767A8272AB}
2014-07-04 07:58 - 2014-07-04 07:58 - 00000000 ____D () C:\Users\dik\AppData\Local\{7E8C87A7-3CF3-4D49-B1CA-995D7B522D6E}
2014-07-03 06:20 - 2014-07-03 06:20 - 00000000 ____D () C:\Users\dik\AppData\Local\{2FE27832-E074-482D-949D-BB03CBB8EFF1}
2014-07-02 08:18 - 2014-07-02 08:19 - 00000000 ____D () C:\Users\dik\AppData\Local\{EF71C7E2-2226-49E6-9DE3-3D0E850B4E46}
2014-07-01 16:31 - 2014-07-01 16:31 - 00000000 ____D () C:\Users\dik\AppData\Local\{89D870B4-CEAF-4A96-B8EF-DA5406C33605}
2014-07-01 12:52 - 2014-07-01 12:52 - 00095356 _____ () C:\Users\dik\Desktop\zdjecie.JPG8
2014-07-01 04:31 - 2014-07-01 04:31 - 00000000 ____D () C:\Users\dik\AppData\Local\{4BD8E1FF-0402-491E-8232-F36F9FDB42F2}
2014-06-30 17:42 - 2014-06-30 17:42 - 00159219 _____ () C:\Users\dik\Desktop\zdjecie.JPG5
2014-06-30 17:41 - 2014-06-30 17:41 - 00125587 _____ () C:\Users\dik\Desktop\zdjecie.JPG4
2014-06-30 07:05 - 2014-06-30 07:05 - 00000000 ____D () C:\Users\dik\AppData\Local\{02BE33B8-0F89-4077-BA9E-83919AA9AB64}
2014-06-28 07:30 - 2014-06-28 07:30 - 00000000 ____D () C:\Users\dik\AppData\Local\{B9247583-6986-4E7C-9282-80C46E92C29D}
2014-06-27 06:57 - 2014-06-27 06:58 - 00000000 ____D () C:\Users\dik\AppData\Local\{565B8281-0B8A-4F00-B93F-172F0924DFE2}
2014-06-26 18:04 - 2014-06-26 18:04 - 00000000 ____D () C:\Users\dik\AppData\Local\{D3DDC3BD-9155-40AC-80EF-5F8AC57D0132}
2014-06-26 13:29 - 2014-06-26 13:29 - 00000000 ___RD () C:\Users\dik\Documents\Notes
2014-06-26 08:09 - 2014-06-26 11:09 - 00001412 _____ () C:\Users\dik\Desktop\Yahoo! Search.lnk
2014-06-26 08:09 - 2014-06-26 08:09 - 00003532 _____ () C:\windows\System32\Tasks\Yahoo! Search
2014-06-26 08:09 - 2014-06-26 08:09 - 00000000 ____D () C:\Users\dik\AppData\Local\Pay-By-Ads
2014-06-26 06:03 - 2014-06-26 06:03 - 00000000 ____D () C:\Users\dik\AppData\Local\{A23F97EE-FADA-4B94-9FD2-2F8158825DB9}
2014-06-25 06:28 - 2014-06-25 06:29 - 00000000 ____D () C:\Users\dik\AppData\Local\{6551F691-2AA1-4986-8985-2DEB2A8B60B9}
2014-06-24 07:40 - 2014-06-24 07:40 - 00000000 ____D () C:\Users\dik\AppData\Local\{C1F910FB-FCD8-48E4-8E23-6F3350E9E3CE}

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-07-24 17:25 - 2014-07-24 17:25 - 00000000 ____D () C:\FRST
2014-07-24 17:24 - 2011-05-06 08:01 - 00117754 _____ () C:\windows\setupact.log
2014-07-24 16:59 - 2014-02-26 19:26 - 00000000 ____D () C:\Users\dik\Desktop\Nowy folder (8)
2014-07-24 16:57 - 2013-09-24 14:42 - 00000930 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-07-24 16:54 - 2014-04-16 15:28 - 00000000 ____D () C:\Progress_TerminalXML
2014-07-24 16:41 - 2012-06-19 09:31 - 00001042 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-24 16:33 - 2011-10-18 20:37 - 01801007 _____ () C:\windows\WindowsUpdate.log
2014-07-24 15:02 - 2013-12-16 08:28 - 00000272 _____ () C:\windows\Tasks\RegClean Pro_DEFAULT.job
2014-07-24 15:01 - 2014-07-23 16:29 - 00003108 _____ () C:\windows\System32\Tasks\RegClean Pro
2014-07-24 15:01 - 2013-09-20 06:43 - 00001368 _____ () C:\Users\dik\Desktop\Wyczyść rejestr za darmo!.lnk
2014-07-24 10:41 - 2012-06-19 09:31 - 00001038 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-24 08:19 - 2011-10-19 18:08 - 00000000 ____D () C:\Users\dik\AppData\Roaming\SoftGrid Client
2014-07-24 07:03 - 2009-07-14 06:45 - 00020688 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-24 07:03 - 2009-07-14 06:45 - 00020688 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-24 06:56 - 2009-07-14 04:34 - 00000603 _____ () C:\windows\win.ini
2014-07-24 06:55 - 2013-05-29 14:38 - 00000000 ____D () C:\Program Files (x86)\VuuPC
2014-07-24 06:55 - 2009-07-14 07:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-07-24 06:03 - 2014-07-24 06:03 - 00000000 ____D () C:\Users\dik\AppData\Local\{71A0A4FA-2673-4CF9-9BB4-C620387867DA}
2014-07-23 19:22 - 2013-12-16 08:30 - 00073156 _____ () C:\Users\dik\daemonprocess.txt
2014-07-23 17:45 - 2011-05-05 14:41 - 00000000 ____D () C:\ProgramData\G DATA
2014-07-23 17:45 - 2010-11-21 05:47 - 00413372 _____ () C:\windows\PFRO.log
2014-07-23 17:44 - 2014-07-23 17:43 - 00961024 _____ () C:\Users\dik\Downloads\kl_uninstall.txt
2014-07-23 17:44 - 2011-05-05 14:41 - 00000000 ____D () C:\Program Files (x86)\G Data
2014-07-23 17:42 - 2014-07-23 17:42 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-07-23 17:42 - 2014-07-23 17:40 - 243878208 _____ (Kaspersky Lab) C:\Users\dik\Downloads\kav14.0.0.4651pl-pl.exe
2014-07-23 17:39 - 2014-07-23 17:39 - 04430600 _____ (Avira Operations GmbH & Co. KG) C:\Users\dik\Downloads\avira_en_av___ws2.exe
2014-07-23 17:39 - 2014-07-23 17:39 - 00000000 ____D () C:\OETemp
2014-07-23 17:37 - 2011-10-19 17:09 - 00002012 ____H () C:\Users\dik\Documents\Default.rdp
2014-07-23 17:11 - 2014-07-23 17:11 - 00000000 ____D () C:\Users\dik\AppData\Local\{D92CF441-D42F-4434-B2CB-B25BE2788CF4}
2014-07-23 16:25 - 2011-10-18 20:37 - 00000000 ____D () C:\Users\dik
2014-07-23 16:24 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\registration
2014-07-23 05:11 - 2014-07-23 05:10 - 00000000 ____D () C:\Users\dik\AppData\Local\{A787BCC0-3512-4A83-9070-E4C0696F532E}
2014-07-22 17:09 - 2014-07-22 17:09 - 00000000 ____D () C:\Users\dik\AppData\Local\{4B435928-CCBC-41D1-96D0-3DCF0E47F379}
2014-07-22 05:08 - 2014-07-22 05:08 - 00000000 ____D () C:\Users\dik\AppData\Local\{86A4709C-2799-49AA-984F-C07ADBE32337}
2014-07-21 14:44 - 2013-12-19 15:42 - 00000135 _____ () C:\Users\dik\AppData\Roaming\WB.CFG
2014-07-21 14:44 - 2013-12-12 14:55 - 00000000 ____D () C:\Users\dik\AppData\Local\TBHostSupport
2014-07-21 14:15 - 2012-01-05 15:51 - 02342912 ___SH () C:\Users\dik\Desktop\Thumbs.db
2014-07-21 07:21 - 2014-07-21 07:21 - 00000000 ____D () C:\Users\dik\AppData\Local\{DF72796E-94F0-43CE-9933-3EF44BE4D471}
2014-07-21 07:18 - 2014-02-26 16:06 - 00000000 ____D () C:\Program Files (x86)\WinZipper
2014-07-19 06:06 - 2014-07-19 06:06 - 00000000 ____D () C:\Users\dik\AppData\Local\{750A5D64-AADC-44A8-BDB0-2062D8E2B71D}
2014-07-18 06:39 - 2014-07-18 06:39 - 00000000 ____D () C:\Users\dik\AppData\Local\{D3C33D08-CBC0-4873-A866-A05E042AA958}
2014-07-17 18:17 - 2014-07-17 18:17 - 00000000 ____D () C:\Users\dik\AppData\Local\{9A7F0020-F6BD-43B2-900A-076B7576A31C}
2014-07-17 06:16 - 2014-07-17 06:16 - 00000000 ____D () C:\Users\dik\AppData\Local\{EB388BCD-CEED-4783-A9DD-B45D229F6BB1}
2014-07-16 17:31 - 2014-07-16 17:31 - 00000000 ____D () C:\Users\dik\AppData\Local\{1D0EC77F-7BEE-4858-B4C1-E83FA25C5153}
2014-07-16 09:15 - 2014-07-16 09:15 - 00085299 _____ () C:\Users\dik\Desktop\zdjecie.JPGakt1
2014-07-16 07:28 - 2013-12-16 08:28 - 00000280 _____ () C:\windows\Tasks\RegClean Pro_UPDATES.job
2014-07-16 05:30 - 2014-07-16 05:29 - 00000000 ____D () C:\Users\dik\AppData\Local\{5E98B047-5AED-462F-947B-37870F2A76FD}
2014-07-15 17:13 - 2014-07-15 17:13 - 00000000 ____D () C:\Users\dik\AppData\Local\{9FC83788-C5AC-49C9-A1FA-17DD2FC1A575}
2014-07-15 05:11 - 2014-07-15 05:11 - 00000000 ____D () C:\Users\dik\AppData\Local\{3CF6B996-BAA9-4EA9-A100-7842597DD926}
2014-07-14 11:15 - 2014-07-14 11:15 - 00000839 _____ () C:\Users\dik\Desktop\POZAŃSKI.txt
2014-07-14 07:17 - 2014-07-14 07:17 - 00000000 ____D () C:\Users\dik\AppData\Local\{43E355BA-CBB2-4E9F-908C-AE4201F9C05F}
2014-07-12 07:24 - 2014-07-12 07:24 - 00000000 ____D () C:\Users\dik\AppData\Local\{C38D9DB5-669C-4600-BD58-95B61F65FE9A}
2014-07-11 10:05 - 2014-07-11 10:05 - 00000000 ____D () C:\Users\dik\AppData\Local\{AB8ABFEE-93C2-42F4-AD13-304876E30AEB}
2014-07-10 06:12 - 2014-07-10 06:12 - 00000000 ____D () C:\Users\dik\AppData\Local\{AAB57FE4-FAEF-4D9D-823E-D8FFA1517B5B}
2014-07-10 05:09 - 2009-07-14 06:45 - 00281320 _____ () C:\windows\system32\FNTCACHE.DAT
2014-07-10 05:06 - 2014-05-06 17:51 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-07-10 05:06 - 2010-11-21 15:04 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-10 05:06 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\SysWOW64\Dism
2014-07-10 05:06 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\system32\Dism
2014-07-09 18:01 - 2013-08-14 18:39 - 00000000 ____D () C:\windows\system32\MRT
2014-07-09 17:59 - 2011-05-05 14:12 - 96441528 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-07-09 17:06 - 2014-07-09 17:06 - 00000000 ____D () C:\Users\dik\AppData\Local\{5EAD162B-E7C4-4C03-B435-628970E79A71}
2014-07-09 16:37 - 2014-07-09 16:37 - 00000000 _____ () C:\Users\dik\Documents\Nowy dokument tekstowy.txt
2014-07-09 15:33 - 2014-07-09 15:33 - 00000161 _____ () C:\Users\dik\Desktop\Katalog FTP -zdj%EAcia%20z%20wyjazdu%20do%20Tr%F3jmiasta- w pandora.polcar.com.pl.url
2014-07-09 10:57 - 2013-09-24 14:42 - 00003868 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2014-07-09 10:57 - 2012-06-19 09:31 - 00699056 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-07-09 10:57 - 2011-11-24 07:55 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-09 05:05 - 2014-07-09 05:05 - 00000000 ____D () C:\Users\dik\AppData\Local\{5F626737-9126-4C7F-AB53-C8E48519A36E}
2014-07-08 07:20 - 2014-07-08 07:20 - 00000000 ____D () C:\Users\dik\AppData\Local\{746F4A49-40F5-49D2-B0EE-FD99848FFA10}
2014-07-07 19:20 - 2014-07-07 19:20 - 00000000 ____D () C:\Users\dik\AppData\Local\{C362A5D2-B623-40C4-A821-216BC38D82B3}
2014-07-07 07:38 - 2014-07-07 07:38 - 00000000 ____D () C:\Users\dik\AppData\Roaming\ModelViews
2014-07-07 07:36 - 2014-07-07 07:36 - 00000000 ____D () C:\Users\dik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Optimizer
2014-07-07 07:36 - 2014-07-07 07:36 - 00000000 ____D () C:\Program Files (x86)\PC-Optimizer
2014-07-07 07:19 - 2014-07-07 07:19 - 00000000 ____D () C:\Users\dik\AppData\Local\{137A0AD0-CA21-4B01-AD1B-613A7A77CCFD}
2014-07-05 06:00 - 2014-07-05 06:00 - 00000000 ____D () C:\Users\dik\AppData\Local\{7F9974A9-6F6A-409A-BE64-07767A8272AB}
2014-07-04 20:23 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\rescache
2014-07-04 17:44 - 2012-04-17 12:38 - 00000600 _____ () C:\Users\dik\PUTTY.RND
2014-07-04 07:58 - 2014-07-04 07:58 - 00000000 ____D () C:\Users\dik\AppData\Local\{7E8C87A7-3CF3-4D49-B1CA-995D7B522D6E}
2014-07-03 06:20 - 2014-07-03 06:20 - 00000000 ____D () C:\Users\dik\AppData\Local\{2FE27832-E074-482D-949D-BB03CBB8EFF1}
2014-07-02 08:19 - 2014-07-02 08:18 - 00000000 ____D () C:\Users\dik\AppData\Local\{EF71C7E2-2226-49E6-9DE3-3D0E850B4E46}
2014-07-01 16:31 - 2014-07-01 16:31 - 00000000 ____D () C:\Users\dik\AppData\Local\{89D870B4-CEAF-4A96-B8EF-DA5406C33605}
2014-07-01 12:52 - 2014-07-01 12:52 - 00095356 _____ () C:\Users\dik\Desktop\zdjecie.JPG8
2014-07-01 04:31 - 2014-07-01 04:31 - 00000000 ____D () C:\Users\dik\AppData\Local\{4BD8E1FF-0402-491E-8232-F36F9FDB42F2}
2014-06-30 17:42 - 2014-06-30 17:42 - 00159219 _____ () C:\Users\dik\Desktop\zdjecie.JPG5
2014-06-30 17:41 - 2014-06-30 17:41 - 00125587 _____ () C:\Users\dik\Desktop\zdjecie.JPG4
2014-06-30 16:56 - 2014-04-29 08:46 - 00060761 _____ () C:\Users\dik\Desktop\wszystko.ods
2014-06-30 07:05 - 2014-06-30 07:05 - 00000000 ____D () C:\Users\dik\AppData\Local\{02BE33B8-0F89-4077-BA9E-83919AA9AB64}
2014-06-30 04:09 - 2014-07-09 05:19 - 00519168 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-06-30 04:04 - 2014-07-09 05:19 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-06-28 07:30 - 2014-06-28 07:30 - 00000000 ____D () C:\Users\dik\AppData\Local\{B9247583-6986-4E7C-9282-80C46E92C29D}
2014-06-27 06:58 - 2014-06-27 06:57 - 00000000 ____D () C:\Users\dik\AppData\Local\{565B8281-0B8A-4F00-B93F-172F0924DFE2}
2014-06-26 18:04 - 2014-06-26 18:04 - 00000000 ____D () C:\Users\dik\AppData\Local\{D3DDC3BD-9155-40AC-80EF-5F8AC57D0132}
2014-06-26 13:29 - 2014-06-26 13:29 - 00000000 ___RD () C:\Users\dik\Documents\Notes
2014-06-26 11:09 - 2014-06-26 08:09 - 00001412 _____ () C:\Users\dik\Desktop\Yahoo! Search.lnk
2014-06-26 08:09 - 2014-06-26 08:09 - 00003532 _____ () C:\windows\System32\Tasks\Yahoo! Search
2014-06-26 08:09 - 2014-06-26 08:09 - 00000000 ____D () C:\Users\dik\AppData\Local\Pay-By-Ads
2014-06-26 06:03 - 2014-06-26 06:03 - 00000000 ____D () C:\Users\dik\AppData\Local\{A23F97EE-FADA-4B94-9FD2-2F8158825DB9}
2014-06-25 06:29 - 2014-06-25 06:28 - 00000000 ____D () C:\Users\dik\AppData\Local\{6551F691-2AA1-4986-8985-2DEB2A8B60B9}
2014-06-24 07:40 - 2014-06-24 07:40 - 00000000 ____D () C:\Users\dik\AppData\Local\{C1F910FB-FCD8-48E4-8E23-6F3350E9E3CE}

Some content of TEMP:
====================
C:\Users\dik\AppData\Local\Temp\-rqb-csa.dll
C:\Users\dik\AppData\Local\Temp\8egklu-f.dll
C:\Users\dik\AppData\Local\Temp\BackupSetup.exe
C:\Users\dik\AppData\Local\Temp\ChromeInstaller.exe
C:\Users\dik\AppData\Local\Temp\eueioev_.dll
C:\Users\dik\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\dik\AppData\Local\Temp\FP_PL_PFS_INSTALLER_32bit.exe
C:\Users\dik\AppData\Local\Temp\GoogleToolbarInstaller_en32_signed.exe
C:\Users\dik\AppData\Local\Temp\hrtlib.dll
C:\Users\dik\AppData\Local\Temp\ICReinstall_setup.exe
C:\Users\dik\AppData\Local\Temp\ncn6qghn.dll
C:\Users\dik\AppData\Local\Temp\r-s6p2wa.dll
C:\Users\dik\AppData\Local\Temp\Sqlite3.dll
C:\Users\dik\AppData\Local\Temp\tbBit0.dll
C:\Users\dik\AppData\Local\Temp\v26933993.978.exe
C:\Users\dik\AppData\Local\Temp\v26935148.704.exe
C:\Users\dik\AppData\Local\Temp\vcredist_x64.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-04 20:16

==================== End Of Log ============================